The Security of Key Derivation Functions in WINRAR

Jie Chen, Jun Zhou, Kun Pan, Shuqiang Lin, Cuicui Zhao, Xiaochao Li
Department of Electronic Engineering, Xiamen University, Xiamen, China
Journal of Computers, Vol 8, No 9 (2013), 2262-2268, 2013


   title={The Security of Key Derivation Functions in WINRAR},

   author={Chen, Jie and Zhou, Jun and Pan, Kun and Lin, Shuqiang and Zhao, Cuicui and Li, Xiaochao},

   journal={Journal of Computers},






Download Download (PDF)   View View   Source Source   



In various versions of WINRAR, the file security is mainly protected by user authentication and files encryption. Password based key derivation function (PBKDF) is the core of the WINRAR security mechanism. In this paper, the security of PBKDF algorithm and the encrypted file in WINRAR are analyzed by the Game-Playing approach. We show the upper boundary of the Adversary’s Advantage over the random function. With the theoretical derivation, the actual safety of the WINRAR encrypted files has been discussed. According to the latest developments for GPU-based exhaustive password search attacks, we do some experiments and draw a conclusion that if the length of password is longer than 6, the WINRAR and later versions are secure.
No votes yet.
Please wait...

* * *

* * *

HGPU group © 2010-2021 hgpu.org

All rights belong to the respective authors

Contact us: