SHA256 Algorithm
Introduction
SHA-256 encryption algorithm is a division from the SHA-2 group, a.k.a. Secure Hash Algorithm 2. It can be known from the name that, the SHA is a type of hash function. This encryption algorithm encode the input message by hashing to encrypt and compress. The result of SHA encryption usually contains random alphanumeric characters.
Explanations of SHA-256 Algorithm
Before explicitly explain the detailed algorithm of SHA-256, it is essential to figure out what should be done in advance. Three sections can be extracted: the constants that are used in the algorithm, how to preprocess the data, and the logical operations that are used. After understanding these, the algorithm itself is easy to handle.
Before Dive into SHA-256
Constants
In the SHA-256 algorithm, 8 hash initial values and 64 hash constants are used. First, the eight initial values are as follow:
1 | uint32_t H[8] = { |
These numbers are selected from the first 32 bits of the decimal part of the square roots of the first eight natural prime numbers.
And the 64 hash constants are:
1 | static const uint32_t K[64] = { |
Similar to before, these 64 constants are selected from the first 32 bits of the cube roots of the first 64 natural prime numbers.
Data Preprocessing
The preprocessing stage of the SHA-256 algorithm has two steps:
- Append ‘1’ followed by enough ‘0’s at the end of the data so that the length of the message modulo 512 equals 448.
- Then append 64 bits of message length information at the end with big endian.
Notice that: albeit current length modulo 512 equals 448, the append operation is still necessary!
For example, now here’s data:
1 | 01100001 01100010 01100011 |
Then we need to append a ‘1’ and 423 ‘0’s:
1 | 01100001 01100010 01100011 1000000 |
Finally, the length of the original message should be appended to the end of current data by big endian.
Logical Operations
All of logical operations that involved with SHA-256 algorithm are as follow:
$$
Ch(x,y,z)=(x \land y) \oplus (\urcorner x \land z)
$$
$$
Maj(x,y,z)=(x\land y)\oplus (x \land z) \oplus (y \land z)
$$
$$
\Sigma_0(x) = S_R^2(x) \oplus S_R^{13}(x) \oplus S_R^{22}(x)
$$
$$
\Sigma_1(x) = S_R^6(x) \oplus S_R^{11}(x) \oplus S_R^{25}(x)
$$
$$
\sigma_0(x) = S_R^7(x) \oplus S_R^{18} \oplus R^3(x)
$$
$$
\sigma_1(x) = S_R^{17}(x) \oplus S_R^{19}(x) \oplus R^{10}(x)
$$
Explanations:
- $\land$: and.
- $\urcorner x$: not.
- $\oplus$: xor.
- $S_R^n$: Cycled right shift.
- $R^n$: Right shift.
Abstraction
How here comes to ultimately main part of the SHA-256 algorithm! All the details related to the algorithm will be elaborate here.
The first things is: break message into 512-bit chunks.
Suppose that the message $m$ can be splited into $n$ chunks, so the whole algorithm needs to iterate for $n$ times in order to get a 256-bit hash result. Initially, a 256-bit initial value $H_0$ is given, then operate with data chunk 1 and get $H_1$. Then operate with data chunk 2 and get $H_2$. Repeat above step until all data chunks are operated.
The pseudo-code are:
1 | data_chunks = divide_by_512_bit(message) |
Among each operation, each data chunk with 512-bit chunk are divided into 16 words, each word contains 32 bits and encoded with big endian, as $W_0,…,W_{15}$. Which means the first sixteen words can be directly derived from the $i^{th}$ chunk data. The rest words are derived through following equation:
$$
W_t=\sigma_1(W_{t-2})+W_{t-7}+\sigma_0(W_{t-15})+W_{t-16}
$$
Then, iterate by 8 words for 64 times follow these rules:
$$
A=H+\Sigma_1(E)+Ch(E,F,G)+K_i+W_i+Maj(A,B,C)+\Sigma_0(A)
$$
$$
B=A
$$
$$
C=B
$$
$$
D=C
$$
$$
E=D+H+\Sigma_1(E)+Ch(E,F,G)+W_i+K_i
$$
$$
F=E
$$
$$
G=F
$$
$$
H=G
$$
Notice that: the initial value of word A-H is $H_0$-$H_7$. And $K_i$ is the $i^{th}$ value of the initial hash value.