今天我醒了,想到是否可以预测字符串仅分析每个比较之间的时间。
我创建了一个基本的类(我知道它不是最好的算法,但对我有用)尝试证明这一点,答案是是YES 。
import java.util.HashMap;
import java.util.Map;
import java.util.Map.Entry;
public class Test {
public static final int iters = 1000000;
public static final String SECRET_WORD = "85742";
public static final char[] LETTERS = new char[] { '1', '2', '3', '4', '5',
'6', '7', '8', '9', '0' };
public static void main(String[] args) {
int length = calculateLength();
System.out.println("Secret word is " + SECRET_WORD
+ " with a real length of " + SECRET_WORD.length()
+ " and a calculate Length of " + length);
prediceText(length);
}
private static String prediceText(int length) {
StringBuilder sbMain = new StringBuilder(length);
for (int i = 0; i < length; i++) {
Map<Character, Double> map = map2();
while (map.entrySet().size() > 1) {
for (Entry<Character, Double> entry : map.entrySet()) {
String str = sbMain.toString() + entry.getKey();
while (str.length() < length) {
str += " ";
}
long[] diffs = new long[iters];
for (int j = 0; j < iters; j++) {
long timeInit = System.nanoTime();
if (SECRET_WORD.equals(str)) {
}
diffs[j] = System.nanoTime() - timeInit;
}
long total = 0;
for (long diff : diffs) {
total += diff;
}
entry.setValue((double) total / iters);
}
double min = Double.MAX_VALUE;
char myChar = 'a';
for (Entry<Character, Double> entry : map.entrySet()) {
if (entry.getValue() < min) {
myChar = entry.getKey();
min = entry.getValue();
}
}
System.out.print(".");
map.remove(myChar);
}
sbMain.append(map.keySet().iterator().next());
System.out.println("####### " + sbMain.toString() + " ######");
}
return sbMain.toString();
}
private static int calculateLength() {
Map<Integer, Double> map = map();
int iter = 0;
while (map.entrySet().size() > 1) {
for (Entry<Integer, Double> entry : map.entrySet()) {
StringBuilder sb = new StringBuilder();
while (sb.length() < entry.getKey()) {
sb.append("a");
}
String str = sb.toString();
long[] diffs = new long[iters];
for (int i = 0; i < iters; i++) {
long timeInit = System.nanoTime();
if (SECRET_WORD.equals(str)) {
}
diffs[i] = System.nanoTime() - timeInit;
}
long total = 0;
for (long diff : diffs) {
total += diff;
}
entry.setValue((double) total / iters);
}
double min = Double.MAX_VALUE;
int length = 0;
for (Entry<Integer, Double> entry : map.entrySet()) {
if (entry.getValue() < min) {
length = entry.getKey();
min = entry.getValue();
}
}
System.out.print(".");
iter++;
map.remove(length);
}
return map.keySet().iterator().next();
}
private static Map<Integer, Double> map() {
Map<Integer, Double> map = new HashMap<Integer, Double>();
for (int i = 1; i < 21; i++) {
map.put(i, (double) 0);
}
return map;
}
private static Map<Character, Double> map2() {
Map<Character, Double> map = new HashMap<Character, Double>();
for (char myChar : LETTERS) {
map.put(myChar, (double) 0);
}
return map;
}
}
此控制台显示:
...................Secret word is 85742 with a real length of 5 and a calculate Length of 5
.........####### 8 ######
.........####### 85 ######
.........####### 857 ######
.........####### 8574 ######
.........####### 85742 ######
该代码可以为我预测成功率90%的字符串,然后我认为良好的算法可能是一个问题。
这个问题是否具有安全含义?
是的,此类问题可能具有安全性。这就是时间攻击,在密码学中广为人知。通常,使用不同的算法比较敏感数据,例如无论是否发现差异,所有符号都被比较直到最后。但是应该采取预防措施,因为智能JIT编译器可以优化您的代码,因此仍然很脆弱。