Bin Li,Qinglei Zhou,Yan Cao,Xueming Si

DOI: https://doi.org/10.1016/j.cose.2022.102667

IF: 5.105

2022-01-01

Computers & Security

Abstract:The recovery of encrypted information systems based on password verification mechanisms is an important task in electronic forensics, data restoration, illegal information filtering, and network security maintenance. The traditional password recovery system is mainly based on CPUs and GPUs, which have low cracking efficiency and cannot meet the computing needs of users. Therefore, this paper proposes a cognitively reconfigurable mimic-based heterogeneous password recovery system. Applying the concept of mimic computing, a multidimensional and reconfigurable hybrid heterogeneous system is established through the use of CPUs, GPUs, and FPGAs, which works by coordinating software and hardware to improve the system’s computing ability and range of solution types to meet diverse cracking needs. Second, high-performance password recovery and password generation algorithms that run on FPGAs are designed to expedite the calculation and verification of passwords. Third, a hierarchical password database is established to realize dynamic feedback and updating of passwords, aiming for various application scenarios and improving password recovery efficiency. Finally, through task perception and decision-making reasoning and with dynamic structural transformation and load balancing, the computing potential of the system is fully mobilized so that the entire system can efficiently complete the encryption recovery task. Experimental analysis and results show that compared with traditional CPU and GPU systems, our system exhibits significantly improved recovery efficiency and can better support heterogeneous systems, with high scalability and energy efficiency.

Zhendong Zhang,Peng Liu,Weidong Wang,Shunbin Li,Peng Wang,Yingtao Jiang

DOI: https://doi.org/10.1109/mce.2020.3042166

2022-01-01

IEEE Consumer Electronics Magazine

Abstract:Password recovery has a high demand for computing power. This article aims to provide an overview of password recovery systems, including the basic concepts of password recovery, the popular hardware platforms ranging from the traditional application-specific integrated circuits and field-programmable gate arrays to modern graphic process units and hybrid CPU-FPGA chips, the password guessing methods, and the acceleration techniques applicable to crack various password encryption algorithms.

telecommunications,engineering, electrical & electronic,computer science, hardware & architecture

Zhendong Zhang,Peng Liu

DOI: https://doi.org/10.13154/tches.v2020.i4.1-23

2020-01-01

IACR Transactions on Cryptographic Hardware and Embedded Systems

Abstract:This paper presents an accelerator design for the password recovery of sha256crypt based on hybrid CPU-FPGA devices. By applying the brute-force attack computation model proposed in this paper, we decompose the sha256crypt function into two types of operations, namely the data dispatching and the block transforming. The data dispatching operation generates message blocks and the block transforming operation transforms message blocks into digests. These two operations are efficiently accelerated by the customized data dispatch unit and the pipelined block transform unit, respectively. Difficulties of adopting the pipeline technique are addressed also with the following techniques. The group scheduling is used to solve the data dependency that stalls the pipeline. The look-ahead execution eliminates the uncertainty of the execution path. The data path pruning and spatial-temporal multiplexing reduce the resource overhead of non-computing units. The proposed accelerator design is implemented and evaluated on the Xilinx Zynq-7000 XC7Z030-3 SoC. Our experimental results show that the proposed accelerator can improve energy efficiency by 2.54x over the state-of-the-art password recovery tool Hashcat running on an NVIDIA GTX1080Ti GPU. Compared with the pure FPGA-based implementation in John-the-Ripper, the proposed accelerator improves energy efficiency by 1.64x and improves resource efficiency by 1.69x.

Di Gao,Tianhao Shen,Cheng Zhuo

DOI: https://doi.org/10.1145/3225209.3225213

2018-01-01

Abstract:With increasing performance mismatch between processor and memory, "memory wall" has become the bottleneck of the entire computing system. In order to bridge the gap, processing-in-memory (PIM) has been revisited as a viable option to overcome the challenge, with various researches from devices to system. In this paper we present a complete design framework for PIM based acceleration with energy efficiency and performance improvement. The framework covers system level design and prototype architecture and software stack support to enable hardware accelerator design and optimization. It is also featured with configurability, easy access and effective evaluating and profiling. In the experiments, we analyzed a convolutional neural network to identify the least energy-efficient operation and replaced that by PIM acceleration. The experimental results show that the proposed accelerator is able to achieve up 6-9X performance gain for matrix multiplication as well as 10-15X energy improvement compared to conventional CPU-only implementation.

Fangxin Liu,Wenbo Zhao,Yongbiao Chen,Zongwu Wang,Zhezhi He,Rui Yang,Qidong Tang,Tao Yang,Cheng Zhuo,Li Jiang

DOI: https://doi.org/10.1145/3489517.3530575

2022-01-01

Abstract:Deep hashing has gained growing momentum in large-scale image retrieval. However, deep hashing is computation- and memory-intensive, which demands hardware acceleration. The unique process of hash sequence computation in deep hashing is non-trivial to accelerate due to the lack of an efficient compute primitive for Hamming distance calculation and ranking. This paper proposes the first PIM-based scheme for deep hashing accelerator, namely PIM-DH. PIM-DH is supported by an algorithm and architecture co-design. The proposed algorithm seeks to compress the hash sequence to increase the retrieval efficiency by exploiting the hash code sparsity without accuracy loss. Further, we design a lightweight circuit to assist CAM to optimize hash computation efficiency. This design leads to an elegant extension of current PIM-based architectures for adapting to various hashing algorithms and arbitrary size of hash sequence induced by pruning. Compared to the state-of-the-art software framework running on Intel Xeon CPU and NVIDIA RTX2080 GPU, PIM-DH achieves an average 4.75E+03 speedup with 4.64E+05 energy reduction over CPU, 2.30E+02 speedup with 3.38E+04 energy reduction over GPU. Compared with PIM architecture CASCADE, PIM-DH can improve

Xiaojing An,Haojun Zhao,Lulu Ding,Zhongrui Fan,Hanyue Wang

DOI: https://doi.org/10.48550/arXiv.1505.07635

2015-05-28

Abstract:RAR uses classic symmetric encryption algorithm SHA-1 hashing and AES algorithm for encryption, and the only method of password recovery is brute force, which is very time-consuming. In this paper, we present an approach using GPUs to speed up the password recovery process. However, because the major calculation and time-consuming part, SHA-1 hashing, is hard to be parallelized, so this paper adopts coarse granularity parallel. That is, one GPU thread is responsible for the validation of one password. We mainly use three optimization methods to optimize this parallel version: asynchronous parallel between CPU and GPU, redundant calculations and conditional statements reduction, and the usage of registers optimization. Experiment result shows that the final version reaches 43~57 times speedup on an AMD FirePro W8000 GPU, compared to a well-optimized serial version on Intel Core i5 CPU.

Distributed, Parallel, and Cluster Computing,Cryptography and Security

Hao Tian,Yan Li,Yangde Wang,Tang Peng,Shaopei Shi,Weidong Qiu

DOI: https://doi.org/10.1145/3331453.3361632

2019-01-01

Abstract:One-way hash algorithms have been widely used in the field of data security. As a state-owned cipher algorithm, the SM3 algorithm has a large number of applications in related fields. In this paper, we propose two optimization methods for SM3 algorithm based on OpenCL platform. The optimization methods are password generation optimization and instruction optimization. By reducing the complexity of the algorithm and reducing the number of instructions, the ultimate goal is to improve performance. Experiments show that the proposed optimization method can effectively improve the performance of the SM3 encryption hash algorithm. The computing performance of a single SM3 is 13958 MB/s on the AMD Radeon R9 200 series graphics card.

Weidong Qiu,Zheng Gong,Yidong Guo,Bozhong Liu,Xiaoming Tang,Yuheng Yuan

2016-01-01

Journal of information science and engineering

Abstract:Due to the development of GPGPU (General Purpose Graphic Processing Unit) technology, GPU has been applied in many computation tasks as accelerators. In this paper, a new password recovery technique for the standardized hash functions, MD5 and SHA1, are proposed by combining the optimization methods on GPU. The performance on AMD HD7970 is 2615 mc/s for SHA1 and 6877 mc/s for MD5, which is 10 times better than the original implementation. If the length of password is limited, our GPU-based technique makes it possible to recover password from hash values in a reasonable time.

Zhendong Zhang,Peng Liu,Weidong Wang,Yingtao Jiang

DOI: https://doi.org/10.1109/tc.2022.3197077

IF: 3.183

2023-03-15

IEEE Transactions on Computers

Abstract:There has been a growing demand for energy efficient and high performance password recovery systems. As password generation and password validation are two integral components of any password recovery system, the former yet lags behind the latter in performance particularly for the case when the popular rule-based password generation method is applied to the heterogeneous CPU-FPGA system. In this paper, we thus present a high performance, energy efficient accelerator to speed up the rule functions in rule-based password generation. Dubbed RUPA, this proposed accelerator explores previously undiscovered computational features and memory access patterns for processing the rule functions. Specially, we show that the rule functions can be mapped to three distinct groups according to their character dependency graphs. Correspondingly, three kinds of datapath units, referred to as rule logic units, are created, and the rule functions from the same group will be processed in their shared rule logic unit. Compared with the state-of-the-art password recovery system built upon a CPU-GPU platform, the FPGA-based RUPA system achieves 5.3x speed improvement and is 33.1x more energy efficient. If RUPA is integrated into the popular password recovery tool John the Ripper (JtR), JtR's rule-based attack performance can soar by more than 48.7x.

engineering, electrical & electronic,computer science, hardware & architecture

JIANG Bing-tian,QIU Wei-dong,LI Ping

DOI: https://doi.org/10.3969/j.issn.1009-8054.2011.04.021

2011-01-01

Abstract:With popularity of the Internet and development of the information technology,password recovery becomes an increasingly important field in cryptology,and is widely used in computer data,electronic evidence,etc. Nowadays,the password recovery system mostly adopts C/S architecture in its implementation,and is unable to satisfy the time demand for computer forensics. Based on cloud computing,a novel method for implementing fast password recovery system is designed. This private password recovery cloud is built up on the basis of Map-Reduce programming architecture and distributed file system storage,this provides a brand-new solution for constructing password recovery system with high performance and scalability.

Can Ge,Lingzhi Xu,Weidong Qiu,Zheng Huang,Jie Guo,Guozhen Liu,Zheng Gong

DOI: https://doi.org/10.1109/cse-euc.2017.226

2017-01-01

Abstract:One-way hash algorithms, including MD4, MD5 and SHA family, have been widely used in password protection. Focusing on brute force password recovery for one-way hash algorithm, the amount of computation depends on the complexity of the algorithm. This paper introduces an optimized brute force password recovery implementation for SHA-512 on GPU. By using several optimization methods, the performance reaches 1055M hash/second on double AMD R9 290 GPUs. Compared with Hashcat, our implementation is about 11% faster.

Quanquan Xie,Qinglei Zhou,Xueming Si,Bin Li

DOI: https://doi.org/10.2991/wartia-16.2016.69

2016-01-01

Abstract:According to the password recovery task's computation and local communication intensive features, we design a decision mechanism of password recovery based on bloom filter in the CPU+FPGA system architecture. Utilizing the advantages of the bloom filter in the searching of massive data, bloom filter uses the generated hash vector to filter the feature string and the result becomes the basis of crack mode decision before the start of the task. At the same time, it can accurately position where the password dictionary file is. The experiment results show that this method takes up smaller time of decision and reduces the huge overhead of dictionary transmission and mode switching. Compared with the traditional mode, this method can improve the efficiency of the whole task.

Yuhao Xi,Zhendong Zhang,Yuze Wang,Wen Wang,Xiaoxia Han,Weidong Wang,Peng Liu

DOI: https://doi.org/10.1109/icicm56102.2022.10011247

2022-01-01

Abstract:In today’s silicon design, there are far more processors than the main ones. Domain-specific accelerators and coprocessors are widely used to continuing to increase the performance and energy efficiency of computing systems. Focused on the security domain, this paper presents a heterogeneous ASIC SoC built with the most popular open-source RISC-V ISA, a coprocessor providing the trusted execution environment for confidential computing and an energy efficient rule-based password generation accelerator. Thanks to its continuously completing ecosystem, the RISC-V core provides application interfaces and task management for the whole SoC, through which we validated the security mechanism for confidential computing in the coprocessor and tested the performance of the password generation accelerator. In addition to verifying the functionality of our design in GlobalFoundries 22FDX technology, the evaluation results also show that our password recovery system is able to process about 0.97 passwords per cycle at 500 MHz and is $25.4 \times$ more energy efficient than that of FPGA implementation.

Dongcheon Kim,Seog Chung Seo

DOI: https://doi.org/10.1109/access.2024.3426605

IF: 3.9

2024-07-19

IEEE Access

Abstract:The increasing sensitivity of personal information has led to the widespread adoption of encryption technology for unstructured files and various applications. However, this presents significant challenges for law enforcement agencies tasked with gathering evidence for crime investigations and prosecutions. The use of encryption to impede forensic efforts poses difficulties, as passwords to encrypted files cannot be easily obtained. Consequently, there is a pressing need to develop high-speed techniques for cracking encrypted files to access critical evidence. To address this challenge, our research focused on optimizing the PBKDF2-HMAC-SHA2 algorithm, commonly used for password protection, and enhancing methods for cracking MS Office 2013+ files, a widely used office suite. We implemented optimizations at both the algorithmic and architectural levels. Algorithmically, we concentrated on reducing memory accesses and eliminating redundant computations within SHA2 and HMAC. Architecturally, we optimized memory access patterns, utilized specialized memory, and improved thread placement to enhance throughput performance. As a result, we achieved significant performance improvements. For PBKDF2-HMAC-SHA2, we saw a 29% improvement on the RTX3090 and a 33% improvement on the RTX4090 compared to Hashcat, the most popular open-source password recovery tool. For cracking MS Office 2013+ files, we achieved performance gains of up to 15% on the RTX3090 and up to 9% on the RTX4090 compared to commercial software like Passware and Elcomsoft. Since our software is open source, it can be used to accelerate password cracking efforts involving HMAC and hash functions. Moreover, its architecture can serve as a reference for developing parallel password-cracking tools.

computer science, information systems,telecommunications,engineering, electrical & electronic

Chao Li,Xiwei Zhang

DOI: https://doi.org/10.1080/10798587.2012.10643299

2012-01-01

Abstract:Rainbow attack is a very efficient attack which uses rainbow tables to offer an almost optimal time-memory tradeoff in the process of recovering the plaintext password from ciphertext hash. In this paper, we proposed a new method which can crack DES password quickly with less power consumption on a coarse grain reconfigurable architecture (CGRA) named reconfigurable encrypt-decrypt system (REEDS). To the best of our knowledge, this is the first try for password cracking based on "Rainbow Tables" under a dynamically CGRA platform presented in the literature. High parallel computing capability and good flexibility make the platform an excellent candidate to process multimedia application, encryption and decryption algorithm etc. In this paper, the whole work of DES password cracking based on rainbow tables is split into several sub tasks, which are mapped onto REEDS respectively and executed in parallel using pipeline approach. Experimental results show that the proposed system with 200 MHz clock rate can fulfill the DES password cracking task with great performance, which is up to 2000 times faster than the corresponding software approach. Moreover, it only consumes 194mW power which is less than the FPGA-based system or the GPU-based system.

Qingyuan Ding,Zhendong Zhang,Shunbin Li,Peng Liu

DOI: https://doi.org/10.1109/iscas.2019.8702713

2019-01-01

Abstract:Password recovery tools are used to recover lost passwords and regain access to precious data. Due to the extremely large time and energy consumption of password recovery, efficient hardware accelerators are demanded to accelerate the recovery process. However, simple and regular data interconnect paths between data sources and non-blocking hash pipelines are hard to construct for Roshal ARchive version 3 (RAR3) algorithm based on field programmable gate array (FPGA) devices. The difficulty comes from the fact that the message format of the hash pipeline inputs vary with the password length and the secure hash algorithm 1 (SHA-1) iteration phase. To attack this problem, a dual-granularity data path adjustment strategy is proposed to eliminate the randomness of message block formats caused by the irregularity of password length and to efficiently schedule the data through the regular data interconnect paths. Experimental results show that the proposed hardware accelerator for RAR3 password recovery is 3.3 × more energy-efficient than a state-of-the-art implementation Hashcat on NVIDIA GTX 1060 GPU.

Bin Li,Qinglei Zhou,Xueming Si,Jinhua Fu

DOI: https://doi.org/10.1109/access.2018.2869174

IF: 3.9

2018-01-01

IEEE Access

Abstract:With the rapid development of the Internet, increasingly more attention has been paid to network security problems. A network security defense technology has become a very important research field. Currently, most network equipment transmits data in plaintext at the data link layer, which exposes important information, such as IP addresses, port numbers, and application protocols, to an attacker and provides an opportunity for network attacks. To protect a network against attacks and ensure its security, this paper proposes a mimic encryption system for network security. Based on the concepts of moving target defense and mimic security defense, using the principles of randomization, dynamism, and diversification, a data link layer mimic encryption system is constructed from the underlying network of an information system. By transforming the frame format, a reconfigurable encryption algorithm, an hash algorithm, and a pseudo-random number generator are used to design different combination encryption modes. Then, the hash value of an encrypted frame is obtained by performing the hash operation, and feedback update is performed to generate new key parameters for the hash key pool. In addition, the pseudo-random selection of combinations of encryption algorithms and keys is performed to achieve "one frame-one key''. Finally, an FPGA is used as the network encryption card, and a CPU is used to realize two-party key agreement and the upper layer application. Using the FPGA + CPU hardware and software collaboration, the attack surface is expanded. Taking advantage of the high anti-interference property of an FPGA, part of the attack against the software system is filtered. The experimental results and analysis show that the encryption and decryption performance of this system in a 10 G network are approximately 500 MB/s. Thus, the system can effectively prevent the leakage of user data and resist network sniffing, vulnerability attacks, exhaustive key search attacks, and ciphertext-only attacks. Moreover, this system provides high security.

Guang Hu,Jianhua Ma,Benxiong Huang

DOI: https://doi.org/10.1109/DASC.2009.123

2009-01-01

Abstract:Driven by the insatiable demand of real-time graphics, especially from the market of computer games, graphics processing unit (GPU) is becoming a major computing horsepower during recent years since the performance of GPU is surpassing that of the contemporary CPU. This paper presents our study on how to efficiently recover the passwords for encrypted RAR files. Our research focus is on the AES key generation processing, which is the most time consuming stage in the whole RAR encryption/decryption process. The design and implementation of the password recovery are based on NVIDIA's CUDA (computer unified device architecture). A CPU-based version is also implemented as a reference and the performance comparison with that of the GPU-based version. In addition, a modified model is proposed to estimate the performance by static analysis of code for and then further assist program optimization.

Yongtao Luo,Bo Yang,Jie Liu,Ruibo Wang,Jinmin Wen,Tiaojie Xiao,Xuguang Chen,Chunye Gong

DOI: https://doi.org/10.1007/s42514-023-00146-y

2023-01-01

CCF Transactions on High Performance Computing

Abstract:With the improvement of security awareness, in order to guarantee information security, more advanced and secure encryption algorithms are applied to Microsoft Office. People also set more complex encryption passwords. However, once the initial password is forgotten, the encrypted information needs to be retrieved. The conventional brute force cracking methods and password recovery programs can hardly meet the actual deciphering needs. To this end, we develop a distributed parallel password recovery program (MT-Office) for Microsoft Office on the domestic heterogeneous multi-core processor (MT-3000). MT-Office takes full advantage of the multi-core and heterogeneous features of MT-3000, and is optimized and improved in both vectorization and global computing. At the same time, MT-Office provides multiple recovery strategies in password generation to improve the recovery efficiency. Compared with other platforms (e.g., Intel platforms and FT platforms), MT-3000 heterogeneous platform can achieve 60 × –218 × speedup ratio. For Office2010, we perform a strong scalability test on the new-generation supercomputer in National Supercomputer Center in Tianjin. MT-Office not only extends to 65,536 acceleration clusters on this system, shows good scalability, but also achieves almost linear speedup ratio. For Office2007, compared with other password recovery programs, MT-Office can achieve 2.5 × –131.1 × speedup ratio. It can be seen that MT-Office can better exploit the advantages of MT-3000, which not only has good scalability and parallelism, but also has faster deciphering speed and can be applied to practical engineering application.

Yiqun Zhang,Li Xu,Qing Dong,Jingcheng Wang,David Blaauw,Dennis Sylvester

DOI: https://doi.org/10.1109/jssc.2017.2776302

IF: 5.4

2018-01-01

IEEE Journal of Solid-State Circuits

Abstract:Providing security for the Internet of Things (IoT) is increasingly important, but supporting many different cryptographic algorithms and standards within the physical constraints of IoT devices is highly challenging. Software implementations are inefficient due to the high bitwidth cryptographic operations; domain-specific accelerators are often inflexible; and reconfigurable crypto processors generally have large area and power overhead. This paper proposes Recryptor, a reconfigurable cryptographic processor that augments the existing memory of a commercial general-purpose processor with compute capabilities. It supports in-memory bitline computing using a 10-transistor bitcell to support different bitwise operations up to 512-bits wide. Custom-designed shifter, rotator, and S-box modules sit near the memory, providing high-throughput near-memory computing capabilities. We demonstrate Recryptor’s programmability by implementing the cryptographic primitives of various public/ secret key cryptographies and hash functions. Recryptor runs at 28.8 MHz in 0.7 V, achieving $6.8\times $ average speedup and $12.8\times $ average energy improvements over the state-of-the-art software- and hardware-accelerated implementations with only 0.128 mm2 area overhead in 40-nm CMOS.