Hash Functions (SHA-2, SHA-3) & Message Authentication Codes (HMAC)

#Fingerprinting Data: The Essence of Integrity#link

Continuing from our study of encryption, we must realize that secrecy is useless if the data is altered during transit. Hashing provides a 'digital fingerprint' of data, ensuring that not a single bit has been flipped by a malicious actor or a noisy network cable.

Cryptographic Hash Functions

A secure hash function must be deterministic (same input always equals same output), one-way (impossible to reverse), and collision-resistant (two different inputs should not produce the same output). While MD5 and SHA-1 were once standard, they are now broken and should never be used in new protocols.

The command above produces a fixed-length string regardless of the input size. However, a simple hash does not prove *who* sent the data, only that the data hasn't changed. This leads to the need for keyed hashes.

HMAC: Adding Identity to Integrity

HMAC (Hash-based Message Authentication Code) combines a cryptographic hash function with a secret key. This prevents 'length extension attacks' where an attacker could append data to a hashed message without knowing the original content.

import hmac
import hashlib

key = b'secret-shared-key'
message = b'Action: Transfer $100'

hmac_obj = hmac.new(key, message, hashlib.sha256)
print(f'HMAC: {hmac_obj.hexdigest()}')

Defense: Protecting Against Hash Collisions

In a production environment, the most critical defense is the immediate deprecation of legacy algorithms. When auditing a protocol, if you see MD5 or SHA-1 used for security-critical signatures, it should be flagged as a High severity finding.

• ▪Use SHA-256 or SHA-3 for all new projects
• ▪Implement HMAC for message authentication
• ▪Avoid 'rolling your own' hash construction
• ▪Salt hashes when storing passwords (using Argon2 or bcrypt)