文章基本信息

标题：The Security of Key Derivation Functions in WINRAR
本地全文：下载
作者：Chen, Jie ; Zhou, Jun ; Pan, Kun 等
期刊名称：Journal of Computers
印刷版ISSN：1796-203X
出版年度：2013
卷号：8
期号：9
页码：2262-2268
DOI：10.4304/jcp.8.9.2262-2268
语种：English
出版社：Academy Publisher
摘要：In various versions of WINRAR, the file security is mainly protected by user authentication and files encryption. Password based key derivation function (PBKDF) is the core of the WINRAR security mechanism. In this paper, the security of PBKDF algorithm and the encrypted file in WINRAR are analyzed by the Game-Playing approach. We show the upper boundary of the Adversary’s Advantage over the random function. With the theoretical derivation, the actual safety of the WINRAR encrypted files has been discussed. According to the latest developments for GPU-based exhaustive password search attacks, we do some experiments and draw a conclusion that if the length of password is longer than 6, the WINRAR and later versions are secure.
关键词：Message Authentication Code;Key Derivation Functions;Provable Security;Adversary’s Advantage;Random Oracle Model