Open In App

Message Digest in Information security

Last Updated : 16 Sep, 2019
Improve
Improve
Like Article
Like
Save
Share
Report

Message Digest is used to ensure the integrity of a message transmitted over an insecure channel (where the content of the message can be changed). The message is passed through a Cryptographic hash function. This function creates a compressed image of the message called Digest.

Lets assume, Alice sent a message and digest pair to Bob. To check the integrity of the message Bob runs the cryptographic hash function on the received message and gets a new digest. Now, Bob will compare the new digest and the digest sent by Alice. If, both are same then Bob is sure that the original message is not changed.





This message and digest pair is equivalent to a physical document and fingerprint of a person on that document. Unlike the physical document and the fingerprint, the message and the digest can be sent separately.

  • Most importantly, the digest should be unchanged during the transmission.
  • The cryptographic hash function is a one way function, that is, a function which is practically infeasible to invert. This cryptographic hash function takes a message of variable length as input and creates a digest / hash / fingerprint of fixed length, which is used to verify the integrity of the message.
  • Message digest ensures the integrity of the document. To provide authenticity of the message, digest is encrypted with sender’s private key. Now this digest is called digital signature, which can be only decrypted by the receiver who has sender’s public key. Now the receiver can authenticate the sender and also verify the integrity of the sent message.

Example:
The hash algorithm MD5 is widely used to check the integrity of messages. MD5 divides the message into blocks of 512 bits and creates a 128 bit digest(typically, 32 Hexadecimal digits). It is no longer considered reliable for use as researchers have demonstrated techniques capable of easily generating MD5 collisions on commercial computers.
The weaknesses of MD5 have been exploited by the Flame malware in 2012.

In response to the insecurities of MD5 hash algorithms, the Secure Hash Algorithm (SHA) was invented.

Implementation:
MD5 hash in Java

Related GATE Questions:
GATE-CS-2014-(Set-1)
GATE-CS-2016 (Set 1)


Like Article
Suggest improvement
Previous
What is Digital Signature in Blockchain?
Next
Birthday attack in Cryptography
Share your thoughts in the comments

Similar Reads

Information Classification in Information Security
Information Assurance vs Information Security
Difference between Cyber Security and Information Security
Principle of Information System Security : Security System Development Life Cycle
Difference between Information Security and Network Security
Cybersecurity vs Network Security vs Information Security
What is Information Security?
Threats to Information Security
Risk Management for Information Security | Set-1
Risk Management for Information Security | Set-2

S
SreejitBose
Article Tags :
We use cookies to ensure you have the best browsing experience on our website. By using our site, you acknowledge that you have read and understood our Cookie Policy & Privacy Policy
Lightbox