MD5 Algorithm | What Is MD5 Algorithm? | MD5 Algorithm Explained | Network Security | Simplilearn

00:08

with the consensus aiming towards an

00:10

educated public on digital privacy it's

00:12

no surprise to see an increasing

00:14

interest in encryption algorithms

00:16

we have already covered the major names

00:18

like the des and the aes algorithm

00:21

md5 algorithm was one of the first

00:23

hashing algorithms to take the global

00:25

stage as a successor to the md4

00:28

despite the security vulnerabilities

00:30

encountered in the future md5 still

00:33

remains a crucial part of data

00:35

infrastructure in a multitude of

00:36

environments

00:38

so hey everyone this is baba from simply

00:40

learn welcome to this video on the md5

00:43

hash algorithm

00:44

let us take a look at the topics we need

00:46

to cover for today's video

00:49

we take a look at what is hashing and

00:51

its principles examples and applications

00:54

we learn about the origin of the md5

00:57

algorithm along with its methodology

01:00

we take a look at the steps needed to

01:02

create hashed values using the md5

01:04

algorithm and finally learn about the

01:06

prospective advantages for the same

01:09

so let us first get acquainted with the

01:11

concept of hashing and its examples

01:16

hashing is the process of scrambling a

01:18

piece of information or data beyond

01:21

recognition

01:22

we can achieve this using hash functions

01:25

which are essentially algorithms that

01:27

perform mathematical operations on the

01:29

main plain text

01:31

the value generated after passing the

01:33

plain text through the hash function is

01:35

called the hash value hash digest or in

01:38

general just hash of the original data

01:40

while this may sound similar to

01:42

encryption the major difference is

01:44

hashes are made to be irreversible

01:47

no decryption key can convert a digest

01:49

to its original value

01:51

however a few hashing algorithms have

01:54

been broken down due to the increase in

01:56

computational complexity of the new

01:58

generation computers

01:59

there are new algorithms that still

02:01

stand the test of time and are they are

02:03

being used in multiple areas for

02:05

password storage integrity verification

02:07

etc

02:09

like we discussed earlier websites use

02:11

hashing to store user passwords so how

02:14

do they make use of these hashed

02:15

passwords when a user signs up to create

02:18

a new account the password is then run

02:20

through the hash function and the

02:22

resulting digest is stored on our

02:24

servers

02:25

so the next time a user logs into the

02:27

account the password he enters is passed

02:29

to the same hash function

02:31

if the digest matches with the one

02:33

stored in the server then he is allowed

02:35

to login to the account

02:38

this way no plaintext passwords get

02:40

stored preventing both the owner from

02:42

snooping on user data and protecting

02:44

users privacy in the unfortunate event

02:47

of a data breach or a hack

02:49

we also use hashing when it comes to

02:51

verifying data integrity

02:54

when a file is uploaded onto the

02:55

internet it is also passed through a

02:57

hash function

02:59

once the hash digest is generated it is

03:01

uploaded along with the file onto the

03:03

internet

03:05

when a user downloads the file for his

03:06

or her personal use they can also get

03:09

the hash downloaded with it

03:11

once the file is run through the hash

03:13

function again

03:14

the digest is compared to the one

03:16

provided by the uploader

03:18

if the value of both the digests are the

03:20

same the data integrity is verified and

03:23

we can be sure that the data was not

03:25

corrupted while transit

03:28

to generate these hash digest from a

03:30

standard input we use hash functions

03:33

such an example of a hash function is

03:35

the md5 algorithm

03:37

let us learn more about it in our main

03:39

focus for the day

03:43

the md5 hashing algorithm is a one-way

03:45

cryptographic functions that accepts a

03:48

message of any length as input and it

03:50

returns as output a fixed length digest

03:53

value to be used for authenticating the

03:55

original messages

03:56

the digest size is always 128 bits

03:59

irrespective of the input

04:01

the md5 hash function was originally

04:03

designed for use as a secure

04:05

cryptographic hash algorithm to

04:07

authenticate digital signatures

04:09

md5 has also been depreciated for users

04:12

other than as a non-cryptographic

04:14

checksum to verify data integrity and

04:16

detect unintentional data corruption

04:20

ronald rivest founder of rsa data

04:22

security and institute professor at mit

04:25

designed md5 as an improvement to a

04:27

prior message digest algorithm which was

04:29

the md4

04:31

as already iterated before the process

04:33

is straightforward we pass our plain

04:35

text message to the md5 hash functions

04:38

which in turn performs certain

04:39

mathematical operations on the clear

04:41

text to scramble the data

04:43

the 128-bit digest received from this is

04:46

going to be radically different from the

04:48

plain text

04:50

the goal of any message digest function

04:52

is to produce digests that appear to be

04:54

random

04:55

to be considered cryptographically

04:57

secure the hash functions should meet

05:00

two requirements

05:01

first that it is impossible for an

05:03

attacker to generate a message that

05:05

matches a specific hash value and second

05:08

that it is impossible for an attacker to

05:10

create two messages that produce the

05:12

same hash value

05:14

even a slight change in the plaintext

05:16

should trigger a drastic difference in

05:18

the two digest

05:20

this goes a long way in preventing hash

05:22

collisions which take place when two

05:24

different plaintexts have the same

05:25

digest

05:27

to achieve this level of intricacy there

05:29

are a number of steps to be followed

05:31

before we receive the digest

05:33

let us take a look at the detailed

05:35

procedure as to how the md5 hash

05:37

algorithm works

05:42

the first step is to make the plain text

05:44

compatible with the hash function

05:46

to do this we need to pad the bits in

05:48

the message

05:49

when we receive the input string we have

05:51

to make sure the size is 64 bit short of

05:54

a multiple of 512

05:56

when it comes to padding the bits we

05:58

must add one first followed by zeros to

06:01

round out the extra characters

06:03

this prepares the string to have a

06:05

length of just 64 bits less than any

06:07

multiple of 512

06:12

here on out we can proceed on to the

06:14

next step where we have to pad the

06:16

length bits

06:17

initially in the first step we appended

06:19

the message in such a way that the total

06:21

length of the bits in the message was 64

06:23

bit short of any multiple of 512.

06:27

now we add the length bits in such a way

06:29

that the total number of bits in the

06:31

message is perfectly a multiple of 512

06:35

that means 64-bit lens to be precise are

06:38

added to the message

06:39

our final string to be hashed is now a

06:41

definite multiple of 512.

06:47

the next step would be to initialize the

06:49

message digest buffer

06:51

the entire hashing plain text is now

06:54

broken down into 512 bit blocks

06:57

there are four buffers or registers that

06:59

are of 32 bits each named a b c and d

07:04

these are the four words that are going

07:06

to store the values of each of these sub

07:08

blocks

07:10

the first iteration to follow these

07:12

registers will have fixed hexadecimal

07:14

values as shown on the screen below

07:18

once these values are initial

07:22

of these 512 blocks we can divide each

07:25

of them into 16 further sub blocks of 32

07:27

bits each

07:29

for each of these sub blocks we run four

07:31

rounds of operations having the four

07:33

buffer variables a b c and d

07:36

these rounds require the other constant

07:38

variables as well which differ with each

07:40

round of operation

07:42

the constant values are stored in a

07:44

random array of 64 elements

07:46

since each 32-bit sub-block is run 4

07:49

times 16 such sub-blocks equal 64

07:52

constant values needed for a single

07:54

block iteration

07:56

the sub-blocks can be denoted by the

07:57

alphabet m and the constant values are

08:00

denoted by the alphabet t

08:03

coming to the actual round of operation

08:06

we see our four buffers which already

08:08

have pre-initialized values for the

08:09

first iteration

08:11

at the very beginning

08:12

the values of buffers b c and d are

08:15

passed on to a non-linear logarithmic

08:17

function

08:18

the formula behind this function changes

08:20

by the particular round being worked on

08:22

as we shall see later in this video

08:24

once the output is calculated it is

08:26

added to the raw value stored in buffer

08:28

a

08:29

the output of this addition is added to

08:32

the particular 32-bit sub-block using

08:34

which we are running the four operations

08:38

the output of this requisite function

08:39

then needs to be added to a constant

08:41

value derived from the constant array k

08:44

since we have

08:45

four different elements in the array

08:48

repeat

08:49

since we have 64 different elements in

08:51

the array we can use a distinct element

08:54

for each iteration of a particular block

08:56

the next step involves a circular shift

08:59

that increases the complexity of the

09:00

hash algorithm and is necessary to

09:03

create a unique digest for each

09:04

individual input

09:06

the output generated is later added to

09:08

the value stored in the buffer b

09:11

the final output is now stored in the

09:14

second buffer of b of the output

09:16

register

09:18

individual values of c d and a are

09:21

derived from the preceding element

09:22

before the iteration started meaning the

09:25

value of b gets stored in c

09:28

value of c get stored in d and the value

09:30

of d in a

09:32

now that we have a full register ready

09:34

for this sub-block the values of abcd

09:37

are moved on as input to the next

09:39

sub-block

09:40

once all 16 sub-blocks are completed the

09:43

final register value is saved and the

09:45

next 512-bit block begins

09:48

at the end of all these blocks we get a

09:50

final digest of the md5 algorithm

09:54

regarding the non-linear process

09:56

mentioned in the first step the formula

09:58

changes for each round it's being run on

10:00

this is done to maintain the

10:02

computational complexity of the

10:03

algorithm

10:04

and to increase randomness of the

10:06

procedure

10:07

the formula for each of the four rounds

10:09

uses the same parameters that is b c and

10:12

d to generate a single output the

10:14

formulas being used are shown on the

10:16

screen right now

10:18

algorithm

10:19

unlike the latest hash algorithm

10:21

families a 32-bit digest is relatively

10:24

easier to compare when verifying the

10:26

digest

10:28

they don't consume a noticeable amount

10:29

of disk storage and are comparatively

10:32

easier to remember and reiterate

10:36

passwords need not be stored in plain

10:38

text format making them accessible for

10:40

hackers and malicious actors

10:42

when using digest the database security

10:45

also gets a boost since the size of all

10:48

the hash values will be the same

10:50

in the event of a hack or a breach the

10:52

malicious actor will only receive the

10:54

hashed values so there is no way to

10:57

regenerate the plain text which should

10:59

be the user passwords in this case

11:01

since the functions are irreversible by

11:03

design hashing has become a compulsion

11:05

when storing user credentials on the

11:07

server nowadays

11:11

a relatively low memory footprint is

11:13

necessary when it comes to integrating

11:15

multiple services into the same

11:17

framework without a cpu overhead

11:20

the digest size is the same and the same

11:22

steps are run to get the hash value

11:24

irrespective of the size of the input

11:26

string

11:27

this helps in creating a low requirement

11:29

for computational power and is much

11:31

easier to run on older hardware which is

11:34

pretty common in server farms around the

11:35

world

11:39

we can monitor file corruption by

11:41

comparing hash values before and after

11:43

transit

11:45

once the hashes match file integrity

11:47

checks are valid and we can avoid data

11:50

corruption

11:51

hash functions will always give the same

11:54

output for the similar input

11:55

irrespective of the iteration parameters

11:58

it also helps in ensuring that the data

12:00

hasn't been tampered with on route to

12:03

the receiver of the message

12:06

hope you learned something interesting

12:07

today

12:08

if you have any queries regarding the

12:10

topic feel free to ask us in the

12:12

comments section and we will get back to

12:14

you as soon as possible subscribe to our

12:16

channel for more amazing content like

12:18

this and thank you for watching

12:24

hi there if you like this video

12:26

subscribe to the simply learn youtube

12:28

channel and click here to watch similar

12:30

videos turn it up and get certified

12:32

click here