Abstract
Password recovery of ZIP encrypted files is an important problem in computer forensics. The encryption is based on standard cryptographic algorithms as SHA1, HMAC and AES. The traditional methods such as dictionary and brute-force require very large computing power and techniques of reducing the password space. In this paper, we have developed a distributed password recovery system based on Zynq (a heterogeneous chip combining ARM CPU and FPGA fabric) cluster. The FPGA provides hardware acceleration for cryptographic algorithms. And the ARM completes the decompression after decryption to check candidate passwords. To reduce the computation of unzip, we only decompress the header of the file compressed according to different headers of common document formats. We adopt a cluster-building methodology to improve parallelism and calculation power. Finally, the experimental results show that single node is as fast as a core of i7-3770 CPU and the 48-node cluster can check 50,000 passwords per second. It also achieves about \(2\times \) energy efficiency.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsNotes
References
Aes encryption information: Encryption specification ae-1 and ae-2. http://www.winzip.com/aes_info.htm
Xilinx inc. http://www.xilinx.com
Apostal, D., Foerster, K., Chatterjee, A., Desell, T.: Password recovery using MPI and CUDA. In: 2012 19th International Conference on High Performance Computing (HiPC), pp. 1–9. IEEE (2012)
Bai, X., Jiang, L., Dai, Q., Yang, J., Tan, J.: Acceleration of RSA processes based on hybrid ARM-FPGA cluster. In: ISCC (2017)
Garfinkel, S.L.: Digital forensics research: the next 10 years. Digit. Invest. 7, S64–S73 (2010)
Ge, L., Wang, L.: Research of password recovery method for RAR based on parallel random search. In: Batten, L., Li, G., Niu, W., Warren, M. (eds.) ATIS 2014. CCIS, vol. 490, pp. 211–218. Springer, Heidelberg (2014). https://doi.org/10.1007/978-3-662-45670-5_20
Hranickỳ, R., Matoušek, P., Ryšavỳ, O., Veselỳ, V.: Experimental evaluation of password recovery in encrypted documents. In: Proceedings of ICISSP 2016, pp. 299–306 (2016)
Hu, G., Ma, J., Huang, B.: Password recovery for RAR files using CUDA. In: Eighth IEEE International Conference on Dependable, Autonomic and Secure Computing, DASC 2009, pp. 486–490. IEEE (2009)
Kim, K.: Distributed password cracking on GPU nodes. In: 2012 7th International Conference on Computing and Convergence Technology (ICCCT), pp. 647–650. IEEE (2012)
Lu, K.C., Huang, A.F., Su, A.Y., Ding, T.J., Su, C.N.: Information password recovery with GPU. In: 2015 International Carnahan Conference on Security Technology (ICCST), pp. 1–5. IEEE (2015)
Acknowledgments
This work is supported by the National Science and Technology Major Project under Grant No. 2017YFB0803003, and the National Science Foundation of China (NSFC) under grant No. 61402475.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 Springer International Publishing AG
About this paper
Cite this paper
Bai, X., Jiang, L., Yang, J., Dai, Q., Bhuiyan, M.Z.A. (2017). Password Recovery for ZIP Files Based on ARM-FPGA Cluster. In: Wang, G., Atiquzzaman, M., Yan, Z., Choo, KK. (eds) Security, Privacy, and Anonymity in Computation, Communication, and Storage. SpaCCS 2017. Lecture Notes in Computer Science(), vol 10658. Springer, Cham. https://doi.org/10.1007/978-3-319-72395-2_37
Download citation
DOI: https://doi.org/10.1007/978-3-319-72395-2_37
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-72394-5
Online ISBN: 978-3-319-72395-2
eBook Packages: Computer ScienceComputer Science (R0)