nerdexam
EC-Council

312-50V11 · Question #667

What is the algorithm used by LM for Windows2000 SAM?

The correct answer is B. DES. The LM hashing algorithm used to protect passwords in the Windows 2000 SAM database is built on DES encryption applied to each password half.

System Hacking

Question

What is the algorithm used by LM for Windows2000 SAM?

Options

  • AMD4
  • BDES
  • CSHA
  • DSSL

How the community answered

(22 responses)
  • A
    5% (1)
  • B
    91% (20)
  • D
    5% (1)

Why each option

The LM hashing algorithm used to protect passwords in the Windows 2000 SAM database is built on DES encryption applied to each password half.

AMD4

MD4 generates NTLM password hashes in Windows; it is a distinct algorithm from the DES-based LM hashing scheme.

BDESCorrect

The LM hash is computed by uppercasing the password, null-padding it to 14 bytes, splitting it into two 7-byte halves, and using each half as a DES key to encrypt the known constant 'KGS!@#$%'. The two resulting 8-byte ciphertext blocks are concatenated to form the final LM hash stored in the SAM, and DES's known weaknesses combined with the short key halves make this scheme highly vulnerable to offline cracking.

CSHA

SHA algorithms are not involved in LM hash generation; they are used in digital signatures, TLS, and modern password hashing schemes like bcrypt hybrids.

DSSL

SSL is a network protocol that provides confidentiality over a channel, not an algorithm used for storing or hashing passwords in the SAM.

Concept tested: LM hash algorithm and DES in Windows SAM

Source: https://learn.microsoft.com/en-us/windows-server/security/windows-authentication/passwords-technical-overview

Topics

#LM hash#DES#Windows SAM#password encryption

Community Discussion

No community discussion yet for this question.

Full 312-50V11 Practice