# Background

* Before we talk about Rainbow tables I'd like to first talk about three key pieces of background information -

1. What is a key space?
2. What is a cryptographic hash?
3. How can a website use a cryptographic hash to protect your password?

## 1. What is a key space?

*You found your old phone!*
![Cell phone PIN pad](clipart/PhonePinPad.jpeg)

* You find your old phone in the back of your closet. A time capsule to your younger self, you're excited to see what's on it. You turn it on...
* ... but you've forgotten the PIN.
* You know back then you weren't very security conscious, and you're pretty sure the PIN you used was only two digits long. So you're going to guess your old PIN using "brute force" - trying every possible combination.
* So this is how you might start...
* Starting with a PIN that has a leading digit of '0', you try every possible digit in the second position - 0 through 9. Assuming you didn't find the correct PIN when '0' was the first digit...
* You now move to a leading digit of '1', and again try every possible digit in the second position - 0 through 9.
* This pattern makes it easy to know how many possible two-digit PINs there are...

But you forgot the PIN you used...

![Leading zero PINs](clipart/TwoDigitPIN_LeadingZero.png)

![Leading one PINs](clipart/TwoDigitPIN_LeadingOne.png)

*How many two-digit PINs are possible?*
![Cell phone PIN pad](clipart/PhonePinPad.jpeg)

![Two digit PIN possibilities](clipart/TwoDigitPINs.png)

* For each of the 10 possible digits for the first position, there are 10 possible digits for the second position.
* Multiplying 10 x 10 tells us how many two-digit PINs exist. 100....
* For fun, we can use Python to generate each one of these PINs for us.
* (Explain the code?)

In [22]:
import pandas as pd
from IPython.display import display, HTML

twoDigitPINs = pd.DataFrame()
for a in range(0,10):
    setOfTenPINs = list()
    for b in range(0,10):
        setOfTenPINs.append(str(a) + str(b))
        #print(str(a) + str(b))
    twoDigitPINs.insert(len(twoDigitPINs.columns), "leading_"+str(a),setOfTenPINs)

display(HTML(twoDigitPINs.to_html()))
    

Unnamed: 0,leading_0,leading_1,leading_2,leading_3,leading_4,leading_5,leading_6,leading_7,leading_8,leading_9
0,0,10,20,30,40,50,60,70,80,90
1,1,11,21,31,41,51,61,71,81,91
2,2,12,22,32,42,52,62,72,82,92
3,3,13,23,33,43,53,63,73,83,93
4,4,14,24,34,44,54,64,74,84,94
5,5,15,25,35,45,55,65,75,85,95
6,6,16,26,36,46,56,66,76,86,96
7,7,17,27,37,47,57,67,77,87,97
8,8,18,28,38,48,58,68,78,88,98
9,9,19,29,39,49,59,69,79,89,99


In [26]:
import pandas as pd
from IPython.display import display, HTML

twoDigitPINs = pd.DataFrame()
for a in range(0,10):
    for b in range(0,10):
        setOfTenPINs = list()
        for c in range(0,10):
            setOfTenPINs.append(str(a) + str(b) + str(c))
        twoDigitPINs.insert(len(twoDigitPINs.columns), "leading_"+str(a)+str(b),setOfTenPINs)

display(HTML(twoDigitPINs.to_html()))
    

Unnamed: 0,leading_00,leading_01,leading_02,leading_03,leading_04,leading_05,leading_06,leading_07,leading_08,leading_09,leading_10,leading_11,leading_12,leading_13,leading_14,leading_15,leading_16,leading_17,leading_18,leading_19,leading_20,leading_21,leading_22,leading_23,leading_24,leading_25,leading_26,leading_27,leading_28,leading_29,leading_30,leading_31,leading_32,leading_33,leading_34,leading_35,leading_36,leading_37,leading_38,leading_39,leading_40,leading_41,leading_42,leading_43,leading_44,leading_45,leading_46,leading_47,leading_48,leading_49,leading_50,leading_51,leading_52,leading_53,leading_54,leading_55,leading_56,leading_57,leading_58,leading_59,leading_60,leading_61,leading_62,leading_63,leading_64,leading_65,leading_66,leading_67,leading_68,leading_69,leading_70,leading_71,leading_72,leading_73,leading_74,leading_75,leading_76,leading_77,leading_78,leading_79,leading_80,leading_81,leading_82,leading_83,leading_84,leading_85,leading_86,leading_87,leading_88,leading_89,leading_90,leading_91,leading_92,leading_93,leading_94,leading_95,leading_96,leading_97,leading_98,leading_99
0,0,10,20,30,40,50,60,70,80,90,100,110,120,130,140,150,160,170,180,190,200,210,220,230,240,250,260,270,280,290,300,310,320,330,340,350,360,370,380,390,400,410,420,430,440,450,460,470,480,490,500,510,520,530,540,550,560,570,580,590,600,610,620,630,640,650,660,670,680,690,700,710,720,730,740,750,760,770,780,790,800,810,820,830,840,850,860,870,880,890,900,910,920,930,940,950,960,970,980,990
1,1,11,21,31,41,51,61,71,81,91,101,111,121,131,141,151,161,171,181,191,201,211,221,231,241,251,261,271,281,291,301,311,321,331,341,351,361,371,381,391,401,411,421,431,441,451,461,471,481,491,501,511,521,531,541,551,561,571,581,591,601,611,621,631,641,651,661,671,681,691,701,711,721,731,741,751,761,771,781,791,801,811,821,831,841,851,861,871,881,891,901,911,921,931,941,951,961,971,981,991
2,2,12,22,32,42,52,62,72,82,92,102,112,122,132,142,152,162,172,182,192,202,212,222,232,242,252,262,272,282,292,302,312,322,332,342,352,362,372,382,392,402,412,422,432,442,452,462,472,482,492,502,512,522,532,542,552,562,572,582,592,602,612,622,632,642,652,662,672,682,692,702,712,722,732,742,752,762,772,782,792,802,812,822,832,842,852,862,872,882,892,902,912,922,932,942,952,962,972,982,992
3,3,13,23,33,43,53,63,73,83,93,103,113,123,133,143,153,163,173,183,193,203,213,223,233,243,253,263,273,283,293,303,313,323,333,343,353,363,373,383,393,403,413,423,433,443,453,463,473,483,493,503,513,523,533,543,553,563,573,583,593,603,613,623,633,643,653,663,673,683,693,703,713,723,733,743,753,763,773,783,793,803,813,823,833,843,853,863,873,883,893,903,913,923,933,943,953,963,973,983,993
4,4,14,24,34,44,54,64,74,84,94,104,114,124,134,144,154,164,174,184,194,204,214,224,234,244,254,264,274,284,294,304,314,324,334,344,354,364,374,384,394,404,414,424,434,444,454,464,474,484,494,504,514,524,534,544,554,564,574,584,594,604,614,624,634,644,654,664,674,684,694,704,714,724,734,744,754,764,774,784,794,804,814,824,834,844,854,864,874,884,894,904,914,924,934,944,954,964,974,984,994
5,5,15,25,35,45,55,65,75,85,95,105,115,125,135,145,155,165,175,185,195,205,215,225,235,245,255,265,275,285,295,305,315,325,335,345,355,365,375,385,395,405,415,425,435,445,455,465,475,485,495,505,515,525,535,545,555,565,575,585,595,605,615,625,635,645,655,665,675,685,695,705,715,725,735,745,755,765,775,785,795,805,815,825,835,845,855,865,875,885,895,905,915,925,935,945,955,965,975,985,995
6,6,16,26,36,46,56,66,76,86,96,106,116,126,136,146,156,166,176,186,196,206,216,226,236,246,256,266,276,286,296,306,316,326,336,346,356,366,376,386,396,406,416,426,436,446,456,466,476,486,496,506,516,526,536,546,556,566,576,586,596,606,616,626,636,646,656,666,676,686,696,706,716,726,736,746,756,766,776,786,796,806,816,826,836,846,856,866,876,886,896,906,916,926,936,946,956,966,976,986,996
7,7,17,27,37,47,57,67,77,87,97,107,117,127,137,147,157,167,177,187,197,207,217,227,237,247,257,267,277,287,297,307,317,327,337,347,357,367,377,387,397,407,417,427,437,447,457,467,477,487,497,507,517,527,537,547,557,567,577,587,597,607,617,627,637,647,657,667,677,687,697,707,717,727,737,747,757,767,777,787,797,807,817,827,837,847,857,867,877,887,897,907,917,927,937,947,957,967,977,987,997
8,8,18,28,38,48,58,68,78,88,98,108,118,128,138,148,158,168,178,188,198,208,218,228,238,248,258,268,278,288,298,308,318,328,338,348,358,368,378,388,398,408,418,428,438,448,458,468,478,488,498,508,518,528,538,548,558,568,578,588,598,608,618,628,638,648,658,668,678,688,698,708,718,728,738,748,758,768,778,788,798,808,818,828,838,848,858,868,878,888,898,908,918,928,938,948,958,968,978,988,998
9,9,19,29,39,49,59,69,79,89,99,109,119,129,139,149,159,169,179,189,199,209,219,229,239,249,259,269,279,289,299,309,319,329,339,349,359,369,379,389,399,409,419,429,439,449,459,469,479,489,499,509,519,529,539,549,559,569,579,589,599,609,619,629,639,649,659,669,679,689,699,709,719,729,739,749,759,769,779,789,799,809,819,829,839,849,859,869,879,889,899,909,919,929,939,949,959,969,979,989,999


### What is a key space?

* So what is a key space? It's the number of possible *keys* given a set of *allowable characters*...
* We've been looking at two-digit PINs. The *key space* for a two-digit PIN is made up of *all possible PINs that have exactly 2 digits*.
* We determined that there were 100 possible PINs. So the *size* of the two-digit PIN key space is 100. The key space itself consists of all of those 100 PINs...
* Just to be clear, when we say *key* we mean "the particular key in the key space we're looking for." In our PIN example, the key is the correct PIN. When we're talking passwords, which contain more than just digits, the key will be "the correct password."...
* Finally, there's the matter of *allowable characters*. The terminology here I don't think is always agreed on.
* I believe a *character* is pretty much anything you can type in with your keyboard; letters, numbers, and special characters.
* You might sometimes hear *alphanumeric* character, which I believe is only numbers and letters - no special symbols.
* So when we talk about *allowable characters*, we're talking about all the characters that are considered valid inside a key space.
* For our PIN example, the set of allowable characters was the digits 0 through 9...
* But passwords often have many more allowable characters. You've probably seen this kind of message when you're creating a new account at some website. Here, the set allowable characters is apparently everything except a percentage character.
* Also interesting about this screenshot is that passwords must be "8 or more characters." So the key space for the passwords for this website can be described as "all the possible passwords of length 8 or greater, made up of any character - except for the percentage sign."

*Key space* - The number of possible **keys** given a set of **allowable characters**.

*The key space for a two-digit PIN:*

In [1]:
# 'a' is the leading digit of the PIN
for a in range(0,10):
    # 'b' is the second digit of the PIN
    for b in range(0,10):
        # Print the resulting PIN
        print(str(a) + str(b) +", ", end='')

00, 01, 02, 03, 04, 05, 06, 07, 08, 09, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 87, 88, 89, 90, 91, 92, 93, 94, 95, 96, 97, 98, 99, 

*Key* - A PIN, in this example; "the right answer"; a password. 

*Character* - Anything you can type? Letters, numbers, special symbols...  

*Allowable characters* - The characters that can exist in a key/PIN/password`.

![Allowable characters](clipart/AllowableCharacters.webp)
<!-- https://dumbpasswordrules.com/sites/admiral/ -->

## 2. What is a cryptographic hash?

* The full term is "Cryptographic hash function"...
* I've actually had some trouble defining a function. There's a lot of overlap with a mathematical function, but, it's not a complete overlap. So, I'm going to provide an incomplete definition here.
* For our purposes here, a function is a computer programming construct that accepts input, and in return produces output. But just know that this is a very narrow definition. I'm sure you know of other "functions" that don't fit this definition...
* Next, a hash is a function that accepts data of any length and provides in return output data *of a fixed size*.
* Simply: "Data of any length in, data of only 1 length out."...

* *Function* - A programming function is a construct that takes data in and provides data in return.

![Function diagram](clipart/Function.png)
<!-- https://dev.to/navi/why-functional-programming-matters-2o95 -->

* *Hash* - A type of function that accepts data of any length and produces output of a fixed size.

*Hash examples:*

* We can play around with some of the hash functions that Python supports
* Here's a list of all the supported hash functions on my particular Python installation
* SHA256, for example, when given an input of only two characters still provides output that's 64 hex characters in length
    * Now hex is just a condensed way of displaying lots of bits.
* md5, given the same output, produces hex characters
* This is still true even when we give the md5 function lots of data input

In [5]:
# https://docs.python.org/3/library/hashlib.html
import hashlib

#hashlib.algorithms_available
# I don't know what this 'b' means!
#hashlib.sha256(b"Hi").hexdigest()
hashlib.md5(b"Hello").hexdigest()

'8b1a9953c4611296a827abf8c47804d7'

In [6]:
len(_)

32

**Function** - A programming function is a construct that takes data in and provides data in return.

**Hash** - A type of function that accepts data of any size and provides an output value of a fixed size.  

**Cryptographic hash** - A hash function with some additional required properties. A cryptographic hash function...

* So we've covered 'function' and we've covered' hash, but what makes a *hash* a *cryptographic* hash?...
* First, it must be *deterministic*. This means that the same data in must always produce the same data out. So if 'abc' goes into a deterministic function, and '123' comes out, you can be assured that 'abc' in will *always* mean '123' out...
* Next, a cryptographic hash must be *one-way*. Meaning, you can't go backwards; you can't reverse a hash to see what input was used to produce it.
* I'm saying "you can't", but we're talking ideally here. One way to reverse a cryptographic hash is to hash every key in a key space, comparing the result for each key to the hash you're holding. You'll know you found the original input when the hashed output matches the has you have. ***computationally infeasible***
* A second way is to find some flaw in the hashing algorithm, allowing you to reverse a hash...
* Finally, given a small change in input, a cryptographic hash should produce dramatically different output...

1. (A hash should be) Must be *deterministic* - The same data in must always result in the same data out.

2. Must be *one-way* - The output from a cryptographic hash function shouldn't be reversible. (Pre-image resistance)
`2.2.` Second pre-image resistance? It should be difficult to find a different input that hashes to the same hash as a second input.  
Collision resistence - It should be diffult to find two different messages that hash to the same value.

3. Should produce *large changes in output* for even tiny changes in input (A "nice to have?")
*Length-extension attack?* - Given hash(m) and len(m) (but not 'm), an attacker can calculate `hash(m || m')`, where `||` denotes concatenation. This is problematic when used for message authentication.

*According to ChatGPT the three main properties of cryptographic hashes:*
* Preimage resistance
* Second-preimage resistance
* Collision resistance

1. **Deterministic?**
2. **One-way?**
3. **Small changes in input, large changes in output?**

* So lets look at some cryptographic hashes in Python again.
* The first time we looked at these I didn't call them cryptographic, and I'm actually not sure if they are all cryptographic. But the SHA-based ones are, as is MD5 - but it is the case the MD5 is considered "compromised."
* Give the input of "Hi", capital 'H', we see this following output
* Change the 'H' to lowercase, we see output that's entirely different.
* This is important for maintaining the one-way property of a cryptographic hash, since you wouldn't want an attacker to be able to make small modifications to input to slowly work towards output that matched a target hash.

In [1]:
# https://docs.python.org/3/library/hashlib.html
import hashlib

#hashlib.algorithms_available
# I don't know what this 'b' means!
a = hashlib.sha256(b"Hi").hexdigest()
b = hashlib.sha256(b"hi").hexdigest()
#hashlib.md5(b"Hi").hexdigest()

print(a + "\n" + b)

3639efcd08abb273b1619e82e78c29a7df02c1051b1820e99fc395dcaa3326b8
8f434346648f6b96df89dda901c5176b10a6d83961dd3c1ac88b59b2dc327aa4


'dd9393a356911e4ccaa23bbe3572625a'

### Where are cryptographic hashes used?

* Some examples of how cryptographic hashes are used...
* They can be used to verify that data hasn't been corrupted or tampered with...
* I don't know if you've ever come across this yourself, but often when downloading large files, like this Ubuntu ISO for installing Ubuntu, they provider will make hashes of the files available.
* Here, you can see at the top of the file listing is a file called SHA256SUMS...
* In that file are the SHA-256 sums for three of the large files in this directory...
* What you would do is, once you've downloaded the file, you would hash your copy of it, then compare that output with the hash of the file from the website.
* As we saw earlier, even the smallest change in input should produce a dramatic change in output. So even if one bit of the file was corrupted during the download. your hash output would be much different than the hash of the original file. In that case you would know to try the download again.
* This use of cryptographic hashes is more for data integrity than for security. It's true that if an attacker changed the file on the server its hash wouldn't match the hash of the unmodified file, however, often the list of file hash values it kept along with the files being downloaded themselves. This means it would be trivial for an attacker to modify the target file, then also modify the reported hash of the authentic file.

***Verify data hasn't been corrupted or tampered with***

![Ubuntu verify download 1](clipart/Ubuntu_VerifyDownload_1.png)

![Ubuntu verify download 2](clipart/Ubuntu_VerifyDownload_2.png)

![Ubuntu verify download 3](clipart/Ubuntu_VerifyDownload_3.png)

### Where are cryptographic hashes used?
***Digital signatures***

* Cryptographic hashes are used to digitally sign data, allowing applications and people to be reasonably assured that the data they're seeing came from the expected source, and is the same data that was originally sent.
* This is very similar to the file hashing we saw earlier, except now we hash the important data, then encrypt that data along with the hash.
* In this scenario the cryptographic hash is used along with public key cryptography...
* So very quickly - in public key cryptography there are key pairs which are different, but linked. Any data encrypted by one of the keys can be decrypted by its pair, regardless of whether we're calling the key the "public" or the "private" one.
* Actually, the only difference between a private key and a public key is the private key is the one you keep private.
* So here, Alice has some plain text she wants to securely send to Bob. She uses Bob's public key, which is available for anyone to use, and encrypts her plain text.
* That encrypted text is sent to Bob. Since only Bob's private key can decrypt data encrypted with his public key, and Bob has kept his private key private, only Bob can decrypt this encrypted data...
* But there's a sneaky problem here. Bob's public key is, of course, public. Someone could intercept Alice's encrypted message to Bob, and while that attacker couldn't read the contents, they could create their own message, encrypt it again with Bob's public key, and send that instead. Bob would have no idea that the message he recieved wasn't actually from Alice.
* The solution is cryptographic hashes! And, more public key crypto...
* To sign her message, Alice now sends the plain text message through a cryptographic hash function - in this case MD5.
* Then, she encrypts that hash with her own private key, and adds the result to the end of her plaintext message.
* Finally, just like was originally done, she encrypts the whole thing with Bob's public key.
* Bob can decrypt the message, he sees the plain text information, but also the encrypted hash...
* Because Bob was expecting this, he knows that he should use Alice's public key to decrypt the hash
* Next, he takes his own hash of the plain text he recieved (being sure to exclude the appended encrypted hash)
* He compares the decrypted hash with his own hash. If they match, he knows the text is the original text, and it was sent by Alice.
* Why does he know this? Because Alice's public key decrypted the correct hash, meaning it had to have been her private key that encrypted it. And by convention, we trust that Alice is the only one who has access to her private key.
* We know the plain text was the text Alice sent, because our hash of the text matches the unencrypted hash that Alice sent. And one of the properties of a cryptographic hash is that it shouldn't be possible to modify hash input without creating significantly different hash output.

*Public key cryptography* -
![Public key cryptography](clipart/PublicKeyCryptoDiagram.gif)
<!-- https://www.coengoedegebure.com/surviving-an-infosec-job-interview-cryptography/ -->

![Public key signing 1](clipart/PublicKeySigning_1.png)

![Public key signing 2](clipart/PublicKeySigning_2.png)

### Where are cryptographic hashes used?
***Blockchains, like Bitcoin***
<!-- https://www.ybrikman.com/writing/2014/04/24/bitcoin-by-analogy/ -->

* My last example of where cryptographic hashes are used is with blockchains, like Bitcoin uses...
* Here's a strange problem to consider: If someone made you promise that you would have your computer work very hard for a couple hours, how would you prove that it had done so?
* Most cryptographic hashes have two properties that can help us out with this: they're relatively hard to compute, the potential range of output they can produce is ridiculously huge. 
* Many block-chains that require "proof-of-work" take advantage of these two properties...
* Bitcoin, for example, requires that Bitcoin miners produce SHA256 hashes repeatedly in attempts to find input values that will produce a hash with a certain number of leading zeros.
* The data being hashed consists of hashes from previously computed "blocks" (the contents of which I'm not entirely familiar with), and a random number called a "nonce."
* Cryptominers modify this random number each time they try a new hash. They're looking for the random number which, when coupled with previously accepted hash values, produce an output hash with a certain number of leading zeros.
* This is hard to do, and assuming that SHA256 is a secure hash, there shouldn't be any way to discover what random number will produce a desired output hash. So Bitcoin miners toil away, computing billions of hashes, hoping that they'll be the one to find the magic random number that gets the target number of leading zeros. 

![Bitcoin hashing](clipart/bitcoin_hashing.png)
<!-- https://creativedata.stream/bitcoin-proof-of-work/ -->

In [60]:
import hashlib # https://docs.python.org/3/library/hashlib.html
import secrets # https://docs.python.org/3/library/secrets.html
import re # https://docs.python.org/3/library/re.html

prefix_data = "Very important blockchain information"

nonce = secrets.token_hex(32)

trial_plaintext = prefix_data+nonce

#print(trial_plaintext)

result_hash = hashlib.sha256(trial_plaintext.encode('ascii')).hexdigest()

groups_of_zeros = re.findall(r'0+', result_hash)
max_consecutive_zeros = max(len(group) for group in groups_of_zeros)

print(str(max_consecutive_zeros) + " zeros in a row found")
print(result_hash)

1 zeros in a row found
5ce05f479f268e8f860b5fa62c88c4ea65d2c9521dc9f696efff4baed4c27cfa


### Where are cryptographic hashes used?
***Password verification***
...

* You almost certainly have accounts at various websites across the internet, and for each of those accounts you set a (hopefully unique!) password.
* In order to allow a user to log in you might imagine that the website has a database full of account email addresses and passwords, but this is hopefully never the case. Which brings us to our final bit of Rainbow table background...

## 3. How is your account password protected by companies and websites?

* When you sign up for an account at a website, their server-side code will likely take your password and hash it using a cryptographic hash function. The resulting hash is what gets saved to their user database.
* Then, every time you log in, the password you provide is again hashed, and it's that hash that's compared to the hash that was stored when you first signed up.
* Again, we see how useful the properties of a cryptographic hash are -
    * The deterministic nautre of a cryptographic hash means the website can be certain the password you provided when you logged in is the same one you provided when you signed up, even though the website isn't storing your original password.
    * The extreme difficulty in reversing a hash means that even if an attacker compromises a website's user database, they won't necessarily have your plain-text password.  
    
*Now what?*
Can I provide them with a list of hashed passwords, and a method for brute forcing them?

In [5]:
# https://docs.python.org/3/library/hashlib.html
import hashlib

#hashlib.algorithms_available
# I don't know what this 'b' means!
hashlib.md5(b"monkey123").hexdigest()

'cc25c0f861a83f5efadc6e1ba9d1269e'

In [1]:
import ipywidgets as widgets
from IPython.display import display

# Create a Text widget
text_input = widgets.Text(
    placeholder='Type something',
    description='Input:',
    disabled=False
)

# Create a Button widget
submit_button = widgets.Button(
    description='Submit',
    disabled=False,
    button_style='', # 'success', 'info', 'warning', 'danger' or ''
    tooltip='Click to submit',
    icon='check' # (FontAwesome names without the `fa-` prefix)
)

# Display the Text and Button widgets
display(text_input, submit_button)

# Define the callback function
def on_submit_button_click(button):
    user_input = text_input.value
    print(f'User input: {user_input}')

# Link the callback function to the button's 'on_click' event
submit_button.on_click(on_submit_button_click)


Text(value='', description='Input:', placeholder='Type something')

Button(description='Submit', icon='check', style=ButtonStyle(), tooltip='Click to submit')

# The motivation behind Rainbow tables

* What we last discussed - about the user databases of websites not holding actualy passwords, but instead password hashes - can help explain the motivation for Rainbow tables, which I still haven't discussed yet.
* The news is filled with stories of companies losing control of their user databases to hackers, and if you've ever had an account with one of these companies, you've probably recieved the advice that you should reset your password.
* But why, if these databases didn't actually contain your password, and the hashes that they did contain were generated by a secure cryptographic hash?
* This is because it is possible to reverse hashes - that is, discover the plain text that generated a particular cryptographic hash - and that's through brute force.

In [18]:
# https://docs.python.org/3/library/hashlib.html
import hashlib

plaintext_password = b"abc"
hashed_password = hashlib.md5(plaintext_password).hexdigest()

print("Password: " + str(plaintext_password))
print("Hashed: " + hashed_password)


Password: b'abc'
Hashed: 900150983cd24fb0d6963f7d28e17f72


In [17]:
import string

for a in string.ascii_lowercase:
    for b in string.ascii_lowercase:
        for c in string.ascii_lowercase:
            if hashed_password == hashlib.md5((a+b+c).encode('ascii')).hexdigest():
                print("Found a match! " + a + b + c)

Found a match! abc


* What made finding the plain text so easy here?
* Certainly the password was short, but we also had the advantage of knowing that the password was only three characters long, and lower case only.
* Maybe not as obvious, we also knew the hash was an MD5 hash. You might be able to guess which hashing function was used just by looking at a hash, but it's not guarenteed. If you mistake a RIPEMD-256 hash for an SHA-256 hash, your brute forcing attempts will never turn up the correct plaintext.
* So lets go back to this real-world example...

![Allowable characters](clipart/AllowableCharacters.webp)
<!-- https://dumbpasswordrules.com/sites/admiral/ -->

* Consider the key space of passwords from this user database:
    * 8 characters or more
    * Lower- and upper-case letters
    * Special characters, just not '%'
* a-z, A-Z, 0-9, and ~`!@#$^&*()_+=- (and probably more, this is just from the top row of my keyboard)
* So lets see what it would take to brute force *just* all the 8 character passwords
* a-z = 26
* A-Z = 26
* 0-9 = 10
* Special characters = 15
* Total: 77
* To brute force a hashed password from this user database

In [23]:
# https://docs.python.org/3/library/string.html
import string

len(string.printable.replace('%', "", 1))

99