This system utilises a high-performance, security-aware dynamic hashing mechanism to facilitate the reliable distribution of updates and hotfixes to designated client endpoints.
Update payloads are partitioned at randomized offsets, with each segment individually hashed using CityHash64, XXH64, and SpookyHash64.
A final integrity check is performed by computing a SHA-256 hash over the concatenated sequence of all segment hashes.
usage: server.py [-h] [-c CONFIG_FILE] [-g PATH_TO_NEW_CONFIG_FILE]
Secure Update Server with Dynamic Hash Verification
options:
-h, --help show this help message and exit
-c, --config CONFIG_FILE
Path to the configuration file
-g, --generate PATH_TO_NEW_CONFIG_FILE
Generate a new configuration file, for example, config.json
Server Configuration :
| KEY | VALUE |
|---|---|
| allowed | List of allowed client UUIDs |
| version | Version of the target program/files served by the update server |
| listen | Listening address |
| port | Listening port |
| update_file | Update file served by the update server |
| client_install_path | Path on the client where the update will be installed |
| client_install_script | Install script on the server that will be executed by the client during update installation |
usage: client.py [-h] [-c CONFIG_FILE] [-g PATH_TO_NEW_CONFIG_FILE]
Secure Update Client with Dynamic Hash Verification
options:
-h, --help show this help message and exit
-c, --config CONFIG_FILE
Path to the configuration file
-g, --generate PATH_TO_NEW_CONFIG_FILE
Generate a new configuration file, for example, config.json
Client Configuration :
| KEY | VALUE |
|---|---|
| UUID | Client UUID |
| version | Currently installed version of the target program/files on the client |
| server | Update server address |
| port | Update server port |
| DEPENDENCIES |
|---|
| xxhash |
| cityhash |
| spookyhash |
Please install the dependencies listed above using either pip install or python3 -m pip install, depending on your environment configuration.
During installation, ensure that server.py and client.py reside in the same directory as partialhash.py, as it contains the partial hashing module and is a required dependency.
Performance Evaluation of Dynamic Partial Hashing
| SCRIPT | FUNCTION |
|---|---|
| server.py | Server |
| client_evaluate.py | Client Evaluation for Elasped Time & Load Average |
| client_evaluate_memory.py | Clinet Evaluation for Memory Usage |
Performance Evaluation Evaluation of Dynamic Partial Hashing Variation with one Algorithm Replaced with MD5
| SCRIPT | FUNCTION |
|---|---|
| server_md5_replace.py | Server |
| client_evaluate_md5_replace.py | Client Evaluation for Elasped Time & Load Average |
| client_evaluate_md5_replace_memory.py | Clinet Evaluation for Memory Usage |
Security Evaluation of Dynamic Partial Hashing
| SCRIPT | FUNCTION |
|---|---|
| server.py | Server |
| client_evaluate_security.py | Clinet Evaluation for Split Parts & Attempts to Match the First Element |
| client_evaluate_security_instructiontagarr.py | Clinet Evaluation for Attempts to Reproduce the Instruction Tag Array |
Performance Evaluation of Piecewise Hashing
| SCRIPT | FUNCTION |
|---|---|
| server_piecewise_md5.py | Server |
| client_piecewise_md5_evaluate.py | Client Evaluation for Elasped Time & Load Average |
| client_piecewise_md5_evaluate_memory.py | Clinet Evaluation for Memory Usage |
Performance Evaluation of Piecewise Hashing with Non-cryptographic Hashing Functions
| SCRIPT | FUNCTION |
|---|---|
| server_piecewise_noncrypto.py | Server |
| client_piecewise_noncrypto_evaluate.py | Client Evaluation for Elasped Time & Load Average |
| client_piecewise_noncrypto_evaluate_memory.py | Clinet Evaluation for Memory Usage |
Security Evaluation of Piecewise Hashing
| SCRIPT | FUNCTION |
|---|---|
| server_piecewise_md5.py | Server |
| client_piecewise_evaluate_security.py | Clinet Evaluation for Split Parts & Attempts to Match the First Element |
| client_piecewise_evaluate_security_instructiontagarr.py | Clinet Evaluation for Attempts to Reproduce the Instruction Tag Array |