{"id":597,"date":"2020-07-20T22:24:08","date_gmt":"2020-07-20T20:24:08","guid":{"rendered":"http:\/\/wp.unil.ch\/persuasivelab\/?p=597"},"modified":"2021-01-03T19:46:07","modified_gmt":"2021-01-03T18:46:07","slug":"project-checksum","status":"publish","type":"post","link":"https:\/\/wp.unil.ch\/persuasivelab\/2020\/07\/project-checksum\/","title":{"rendered":"Project Checksum"},"content":{"rendered":"

\"checksumIn often cases software companies or independent developers distribute the binary files of their software using sources different than the original website. This creates a risk of making the original binaries corrupted, making the computer used to download them corrupt.<\/p>\n

For instance, versions of popular programs (e.g., BitTorrent clients) corrupted and disseminated by hackers include malware that turns the victims\u2019 computer into so-called bots, injects spyware and ads or even mine Bitcoins, thus generating profit for the hackers.<\/p>\n

Trying to reduce this risk, developers use a cryptographic check-sum or hash, corresponding to the binary file of their program. The functions used to generate such check-sums are built in a way that it is not tractable to generate another file with the exact same check-sum. Therefore, if the binary file of a program is corrupted, the corresponding hash will be different from that of the original file, thus allowing the users who download it to detect the corruption and cancel its installation.<\/p>\n

Project Leader:<\/strong> K\u00e9vin Huguenin.<\/p>\n

UNIL collaborators:<\/strong> Bertil Chapuis.<\/p>\n

External collaborators:<\/strong> Alexandre Meylan (Kudelski Security), Mathias Humbert (Armasuisse), Igor Bilogrevic (Google).<\/p>\n

Publications<\/strong><\/p>\n