Get the LinuxSecurity news you want faster with RSS
Powered By
Security Dictionary
Can't tell 'smtp' from 'snmp'? Find the precise meaning of these and hundreds of other security-related terms in our convenient and up-to-date Security Dictionary.
checksum
(I) A value that (a) is computed by a function that is dependent
on the contents of a data object and (b) is stored or transmitted
together with the object, for the purpose of detecting changes in
the data. (See: cyclic redundancy check, data integrity service,
error detection code, hash, keyed hash, protected checksum.)
(C) To gain confidence that a data object has not been changed, an
entity that later uses the data can compute a checksum and compare
it with the checksum that was stored or transmitted with the
object.
(C) Computer systems and networks employ checksums (and other
mechanisms) to detect accidental changes in data. However, active
wiretapping that changes data could also change an accompanying
checksum to match the changed data. Thus, some checksum functions
by themselves are not good countermeasures for active attacks. To
protect against active attacks, the checksum function needs to be
well-chosen (see: cryptographic hash), and the checksum result
needs to be cryptographically protected (see: digital signature,
keyed hash).
