tags:

views:

1338

answers:

3
+3  Q: 

Client Side MD5 Hash with Time Salt

I want to salt a hashed username and password (submitted via http POST) in JS on the client-side with a higher-order time value (< 1 minute resolution) to avoid sending the username and password hash as a constant value that could be used for a log-in attempt via POST fabrication by an unauthorized user (i.e. a sniffer).

This will impose a short expiry on the usefulness of the passed hash.

If they inspect the JS and see that it uses this time salt, how much easier will it make the job of breaking the MD5 if they know what the salt is?

Stephen

+1  A: 

Their job will become infeasible, since you can't use a rainbow table at all if the hash is salted correctly, and you can't break MD5 in less than a minute, by which time the hash is invalidated anyway.

Silas  2008-12-08 05:27:26
That is what I was wondering: will knowing the value of the salt make use of a rainbow table easier. Pretty soon you will be able to break MD5 < one minute. I may have to apply this idea with an even higher order time like < 1 hour. Thx.
 2008-12-08 18:03:04
+2  A: 

The salt doesn't need to be secret. In that sense, your solution is okay.

MD5 is broken in some applications; this one might be alright, but why not use a hash from the SHA-2 family? For that matter, why not use SSL to provide a confidential channel, and better security?

erickson  2008-12-08 06:29:41
You answered my basic question about weakening the use of the hash by making salt knowable. Does everyone concur?I probably will employ SHA-2, MD5 was an example. I'm trying to avoid SSL for reasons I will post in another question.
 2008-12-08 17:55:52
See also: http://stackoverflow.com/questions/1645161/salt-generation-and-open-source-software/1645190#1645190
Jacco  2009-12-26 13:22:39
+1  A: 

The time-based salt will not make MD5 any easier to break. You're still relying on 1) the user having a good password to defeat brute force calculations, and 2) MD5 being a decent hash. That's the basic answer to your question. However, this may not be a good idea anyway. Some comments--

Unless you can ensure the client or server's time are synchronized (or you use Javascript to fake a synchronization), the client would have to send the time it used as salt. The server would have to decide if the time used was close enough to the server's time.

Even if synchronized, you'd probably have to accept hashes plus or minus a minute or so because of latency on the Internet. Another problem is that if I'm sniffing I could immediately reuse this hash as long as I'm still within this time window.

Because of the problems above a better idea is to use a one-time server-assigned salt with the hash since it sounds like you don't want to use SSL. In other words, everytime a login form is sent to the client, the server would generate a random, unique salt string, sending it to the client and keep track that this is an acceptable salt. Then the client uses that as salt with the password. After this is submitted once, the server discards this as an acceptable salt string. No two hashes should ever be the same. The downside of this is you have to keep track of these acceptable salt strings.

TorgoGuy  2008-12-08 15:03:51
Time is a one-time salt. When I say high order time, I mean I will blank out the seconds so I only need to ensure the server will get the request within 60 seconds from the form submission. So I don't really need synchronization. I will send you another comment. Thanks for feedback!
 2008-12-08 17:59:06
Time is not a one-time salt. It does limit the time in which an attacker can attack, but can be reused over and over within the time window. If I'm sniffing a wifi connection and see someone logs in to your site, I can immediately log in with my computer as well, impersonating them.
TorgoGuy  2008-12-08 18:14:27
Yes, you do need synchronization. If the server's clock says it is 12:20pm and my client computer clock says it is 12:15pm, I will be unable to login if you're not accepting hashing from at least a 5 minute window.
TorgoGuy  2008-12-08 18:17:14

related questions

Unix gettimeofday() - compatible algorithm for determining week within month?
How do I convert a date/time to epoch time (aka unix time -- seconds since 1970) in Perl?
calculate elapsed time in flash
time.sleep -- sleeps thread or process?
Elapsed time without considering weekends and bank holidays in Java
What languages do date, time, and calendar operations really well?
Measure Total Network Transfer Time from Servlets
Time Parsing in Flex
How can I calculate time schedules (for free)?
What is your choice for a Time Managment Solution?
How can you insure your code runs with no variability in execution time due to cache?
How do you measure the time a function takes to execute?
Resetting detection of source file changes
How to parse relative time?
What is the simplest way to find the difference between 2 times in python?
Datetime arithmetic with a string in Ruby
What should we do to prepare for 2038?
What is the most efficient way to populate a time (or time range)?
“rusage” statistics
If I have a PHP string in the format YYYY-DD-MM and a timestamp in MySQL, is there a good way to convert between them?
How to display "12 minutes ago" etc in a PHP webpage?
Dealing with PHP server and MySQL server in different time zones
Design debate: what are good ways to store and manipulate versioned objects?
Help with CRON jobs?
How can I determine a web user's time zone?