Firewall Wizards mailing list archives
Re: File Integrity Check
From: "Geva Patz" <geva () planet co za>
Date: Mon, 16 Aug 1999 13:06:21 +0200
CRC is a Cyclic Redundancy Check. It's a polynomial, calculating a *very* unique value based on content. Much more effective than a MD5 or any
other
checksum.
Much more effective in X/Y/Zmodem communications, yes, where it's a lot quicker to calculate than an MD5 checksum, a lot shorter (usually a max of 32 bits rather than 128), and gives you limited error correction, too (i.e. it doesn't just indicate that there has been an error in transmission, but in some cases allows the erroneous bit(s) to be reconstructed without a retransmission). These properties, which make CRCs wonderfully suited to communications uses, are precisely what makes them near useless for security purposes. It's trivial to pad a file with a byte or four to generate any desired CRC. You can use the known properties of the checksum polynomial to calculate the values you need, or if you aren't up to that, a brain-dead brute-force search of the 32-bit space can be completed in a resonable time (bearing in mind that there are some very fast CRC calculation routines out there). MD5 has so far proved resistant to mathematical analysis to reverse-calculate values from checksums, and brute-forcing the value space just isn't practical. -- Geva
Current thread:
- File Integrity Check Russell Enderby (Aug 13)
- Re: File Integrity Check Marcus J. Ranum (Aug 13)
- Re: File Integrity Check Darren Reed (Aug 14)
- <Possible follow-ups>
- Re: File Integrity Check Steven M. Bellovin (Aug 13)
- Re: File Integrity Check Antonomasia (Aug 13)
- Re: File Integrity Check Bill_Royds (Aug 14)
- RE: File Integrity Check Choi, Byoung (Aug 15)
- Re: File Integrity Check Scot Anderson (Aug 15)
- Re: File Integrity Check Geva Patz (Aug 16)
- Re: File Integrity Check Adam Shostack (Aug 17)
- Re: File Integrity Check Dave Gillett (Aug 18)
- Re: File Integrity Check Bennett Todd (Aug 17)
- Re: File Integrity Check Scot Anderson (Aug 15)
- Re: File Integrity Check Bill_Royds (Aug 18)
- Re: File Integrity Check Brian Denehy (Aug 20)