312-50V11 · Question #667
What is the algorithm used by LM for Windows2000 SAM?
The correct answer is B. DES. The LM hashing algorithm used to protect passwords in the Windows 2000 SAM database is built on DES encryption applied to each password half.
Question
What is the algorithm used by LM for Windows2000 SAM?
Options
- AMD4
- BDES
- CSHA
- DSSL
How the community answered
(22 responses)- A5% (1)
- B91% (20)
- D5% (1)
Why each option
The LM hashing algorithm used to protect passwords in the Windows 2000 SAM database is built on DES encryption applied to each password half.
MD4 generates NTLM password hashes in Windows; it is a distinct algorithm from the DES-based LM hashing scheme.
The LM hash is computed by uppercasing the password, null-padding it to 14 bytes, splitting it into two 7-byte halves, and using each half as a DES key to encrypt the known constant 'KGS!@#$%'. The two resulting 8-byte ciphertext blocks are concatenated to form the final LM hash stored in the SAM, and DES's known weaknesses combined with the short key halves make this scheme highly vulnerable to offline cracking.
SHA algorithms are not involved in LM hash generation; they are used in digital signatures, TLS, and modern password hashing schemes like bcrypt hybrids.
SSL is a network protocol that provides confidentiality over a channel, not an algorithm used for storing or hashing passwords in the SAM.
Concept tested: LM hash algorithm and DES in Windows SAM
Source: https://learn.microsoft.com/en-us/windows-server/security/windows-authentication/passwords-technical-overview
Topics
Community Discussion
No community discussion yet for this question.