public static ServerModulus computeServerModulus(BigInteger verifier) { BigInteger b = new BigInteger(8 * 64, new Random()); FrameWork.NetWork.Sha1Digest digest = new FrameWork.NetWork.Sha1Digest(); return(new ServerModulus(verifier.Multiply(K).Add(G.ModPow(b, N)).Remainder(N), b)); }
public static byte[] MGF1(byte[] seed) { uint i = 0; int pos = 0; byte[] cnt = new byte[4]; byte[] hout = new byte[20]; FrameWork.NetWork.Sha1Digest digest = new FrameWork.NetWork.Sha1Digest(); byte[] mask = new byte[40]; int masklen = 40; while (pos < masklen) { cnt[0] = (byte)((i >> 24) & 0xFF); cnt[1] = (byte)((i >> 16) & 0xFF); cnt[2] = (byte)((i >> 8) & 0xFF); cnt[3] = (byte)(i & 0xFF); digest.Reset(); digest.BlockUpdate(seed, 0, seed.Length); digest.BlockUpdate(cnt, 0, 4); if (pos + 20 > masklen) { digest.DoFinal(hout, 0); Buffer.BlockCopy(mask, pos, hout, 0, masklen - pos); pos = masklen; } else { digest.DoFinal(mask, pos); pos += 20; } ++i; } return(mask); }
public static BigInteger computeVerifier(byte[] salt, string name, string password) { byte[] partA = Encoding.ASCII.GetBytes(name); byte[] partB = Encoding.ASCII.GetBytes(password); byte[] credentials = new byte[20]; FrameWork.NetWork.Sha1Digest digest = new FrameWork.NetWork.Sha1Digest(); digest.BlockUpdate(partA, 0, partA.Length); digest.BlockUpdate(Encoding.ASCII.GetBytes(":"), 0, 1); digest.BlockUpdate(partB, 0, partB.Length); digest.DoFinal(credentials, 0); digest.Reset(); digest.BlockUpdate(salt, 0, salt.Length); digest.BlockUpdate(credentials, 0, credentials.Length); digest.DoFinal(credentials, 0); BigInteger x = new BigInteger(1, credentials); return(G.ModPow(x, N)); }
public static byte[] computeProof(string username, ServerModulus serverModulus, BigInteger clientModulus, BigInteger verifier, byte[] salt, out byte[] sessionId) { FrameWork.NetWork.Sha1Digest digest = new FrameWork.NetWork.Sha1Digest(); byte[] a = clientModulus.ToByteArrayUnsigned(); byte[] b = serverModulus.B.ToByteArrayUnsigned(); byte[] binU = new byte[20]; digest.BlockUpdate(a, 0, a.Length); digest.BlockUpdate(b, 0, b.Length); digest.DoFinal(binU, 0); digest.Reset(); BigInteger U = new BigInteger(1, binU); BigInteger S = verifier.ModPow(U, N).Multiply(clientModulus).Mod(N).ModPow(serverModulus.b, N); byte[] sessionKey = MGF1(S.ToByteArrayUnsigned()); sessionId = sessionKey; byte[] hashN = new byte[20]; byte[] hashG = new byte[20]; digest.BlockUpdate(N.ToByteArrayUnsigned(), 0, N.ToByteArrayUnsigned().Length); digest.DoFinal(hashN, 0); digest.Reset(); digest.BlockUpdate(G.ToByteArrayUnsigned(), 0, G.ToByteArrayUnsigned().Length); digest.DoFinal(hashG, 0); digest.Reset(); byte[] un = Encoding.ASCII.GetBytes(username); digest.BlockUpdate(un, 0, un.Length); un = new byte[20]; digest.DoFinal(un, 0); digest.Reset(); for (int i = 0; i < 20; i++) { hashN[i] ^= hashG[i]; } byte[] proof = new byte[20]; digest.BlockUpdate(hashN, 0, hashN.Length); digest.BlockUpdate(un, 0, un.Length); digest.BlockUpdate(salt, 0, salt.Length); digest.BlockUpdate(clientModulus.ToByteArrayUnsigned(), 0, clientModulus.ToByteArrayUnsigned().Length); digest.BlockUpdate(serverModulus.B.ToByteArrayUnsigned(), 0, serverModulus.B.ToByteArrayUnsigned().Length); digest.BlockUpdate(sessionKey, 0, sessionKey.Length); digest.DoFinal(proof, 0); digest.Reset(); return(proof); }