How secure is 256 bit security?

Поделиться
HTML-код
  • Опубликовано: 1 янв 2025

Комментарии • 3,1 тыс.

  • @TaranVH
    @TaranVH 7 лет назад +10066

    the funny thing is, even if you had 4 billion galaxies of computers working on that problem, even if someone found the solution, because light has a speed limit, and the universe is expanding, you wouldn't even be able to communicate the solution to everyone.

    • @2010ngojo
      @2010ngojo 7 лет назад +344

      Taran Van Hemert
      Maybe they can use quantum entanglement as some form of communication. Not sure how though.

    • @DeusExAstra
      @DeusExAstra 6 лет назад +478

      2010ngojo - Even with quantum entanglement you couldnt do it because it doesnt allow for information to be sent faster than light.

    • @microlobbies2378
      @microlobbies2378 6 лет назад +74

      DeusExAstra I need to brush up on some physics

    • @jojojojo-yi6wb
      @jojojojo-yi6wb 6 лет назад +12

      Taran Van Hemert sup taran

    • @setsunaes
      @setsunaes 6 лет назад +116

      I might be wrong, but if you already have some sort of quantum powered way of comunication, then you DON'T NEED to guess in the first place, isn't? what is easier to get? Quantum powered way of comunications or a quantum computer capable to destroy to dust SHA-256 encryption?

  • @decycle2912
    @decycle2912 5 лет назад +6199

    The funny thing is, even though 256 bit is really secure, a number of people are just dumb enough to just tell attackers their password.

    • @user_rKChwLeBqKYyurEfiSLFmCBNC
      @user_rKChwLeBqKYyurEfiSLFmCBNC 4 года назад +296

      Yeah even my brother who set up my wifi router set the password as "password"

    • @HarmonicaMustang
      @HarmonicaMustang 4 года назад +395

      A chain is only as strong as its weakest link. You can have the most secure system in the world, but all you need is the wrong user to use 'password' as their password and a breach is inevitable.

    • @lightlysal
      @lightlysal 4 года назад +84

      Most forms of compromising rely on human error

    • @liesdamnlies3372
      @liesdamnlies3372 4 года назад +98

      The human link in the security chain is always the weakest; there's a reason most successful hacks are done with social engineering. (No really.)

    • @user_rKChwLeBqKYyurEfiSLFmCBNC
      @user_rKChwLeBqKYyurEfiSLFmCBNC 3 года назад +12

      @Jonny Nobody so you just replied to a 4-month-old reply that is on a 1-year-old comment and I only have seen your reply now(4 hours after you replied) so new password !1Y4 M4h

  • @ExplosiveLizard
    @ExplosiveLizard 4 года назад +4110

    * 507 Billion years later
    "I'm in"

    • @losarroyo5946
      @losarroyo5946 4 года назад +15

      All

    • @user_rKChwLeBqKYyurEfiSLFmCBNC
      @user_rKChwLeBqKYyurEfiSLFmCBNC 4 года назад +82

      And I think by then if people would be still alive we would have 1024 bit secure lock or something

    • @harryw4802
      @harryw4802 4 года назад +33

      @@clayz1 bruh thats going to be around 3.09e1,292,913,986

    • @Owenrandom
      @Owenrandom 4 года назад +2

      exp(2)

    • @harryw4802
      @harryw4802 4 года назад +2

      @@Owenrandom brruh

  • @charikakashyap6403
    @charikakashyap6403 4 года назад +6932

    Imagine a lucky bastard getting it right in the first guess.

    • @introverteddawg9805
      @introverteddawg9805 4 года назад +638

      Luckier than 4 billion Giga galactic Super computers would most probably be in 507 billion years lmao.

    • @lucaslucas191202
      @lucaslucas191202 4 года назад +1056

      A 1/115792089237316195423570985008687907853269984665640564039457584007913129639936 chance?
      That man would be so fucking lucky I'm pretty sure the universe would simply explode from the improbability. I mean, it's on that level

    • @khf3940
      @khf3940 4 года назад +578

      @@lucaslucas191202 chances are low, but never zero!

    • @lucaslucas191202
      @lucaslucas191202 4 года назад +374

      @@khf3940
      So close to zero that you can safely call it zero though. Our brains aren't made to understand such numbers so when we say "not zero" we usually overestimate how likely it is. It's the same problem with the lottery. People buy that even though they mathematically shouldn't.
      Because of that it might actually be _more_ correct to call it zero to make people understand what you're talking about.

    • @elinevieirarodrigues9501
      @elinevieirarodrigues9501 4 года назад +82

      A 256-bit quantum computer will do it in less than 6 months

  • @3blue1brown
    @3blue1brown  7 лет назад +395

    Q&A Answers: ruclips.net/video/8r5WKpK9-m8/видео.html
    Edit: One thing I wish I had said explicitly is that even though a perfect and idealized cryptographic hash function would behave like a random function, in reality, there is some element of predictability to functions like those in the SHA-2 family. So even though SHA256 has a 256-bit output, it's actual level of security is lower than 256 bits.

    • @legionmammal9785
      @legionmammal9785 7 лет назад +21

      You state that it takes an average of 2^256 guesses to get the correct hash. Wouldn't the correct value for that be 2^255 guesses, as you'd on average search half the solution space? Also, hasn't there been research on some cryptographic hash functions (not sure if it would include SHA-256) which dramatically lower these exponents?

    • @xbzq
      @xbzq 7 лет назад +9

      There's been plenty of research. Governments have lots of cash and lots of reasons to find a way to hack into these hash functions, but SHA-256 has not been "cracked" yet. As the previous video says, no one really knows if it's mathematically cryptographically secure because it's very complex math. SHA1 is not secure but only because it doesn't require enough computing power to break. It only takes one Google to crack it. Google "sha1 cracked".

    • @WheretIB2
      @WheretIB2 7 лет назад +3

      In the video you describe the complexity of a brute-force pre-image attack.
      Wouldn't a collision attack work for digital signatures?
      The complexity of that for SHA-256 seems to be 2^65.5, which while still not being practical is not as impressive as 2^256.
      Edit: 2^65.5 attack that I mention seems to apply only for a SHA-256 with a reduced number of hashing rounds performed (31 out of 64), for a full method there's a 'birthday collision attack' with a complexity 2^128

    • @foobargorch
      @foobargorch 7 лет назад +4

      -2^255 is right on average- [see correction by 3blue1brown below], but complexity theory usually uses big O which is worst case, I think that might be way people often say 2^256. As for collision attacks, finding proof of work is indeed not a pre-image attack, think of the difficulty as bounding a set of elements, and you get a chance for a collision with each of those. But that doesn't apply to digital signatures - in bitcoin those are made using ecdsa, with the secp256k1 curve, and I think it's possible to attack it more efficiently than brute force, but I don't think it's as cheap as a collision attack. As far as the size of the search space, NIST used to recommend 2^80 for being secure for the "foreseeable future", otherwise known as a security parameter of 80 bits, and since the 90s they changed the general to 128. Collision resistance requires a hash that outputs double that bit width, so modern hashes are usually 256 bits (and also why ripemd and sha1 are 160, note that ripemd is used in bitcoin for addresses, on top of sha256 if I remember correctly). Finally, if to attempt to future proof against quantum computing, if you double the bitwidth again then this is supposed to be enough to resist nondeterministic collision searches, which is the main reason to use 512 bit hashes as far as I know.
      Update: I should say - regarding ecdsa attacks - I think that because I know I don't know enough about the algebraic structures of elliptic curves, but as far as I know the 256 bit representations have some bias because of them, and also because improperly chosen curves are breakable, but don't quote me on this since I don't actually understand the details.

    • @3blue1brown
      @3blue1brown  7 лет назад +50

      To the point about it really requiring half as many guesses, (i.e. 2^255 not 2^256): This is true for something like hacking a digital signature, where you are methodically going through all possibilities. But if a cryptographic hash function truly behaves like a random function, guessing and checking a nonce with a hash will not look like going through all possible hashes one-by-one, it's more like rolling a die over and over until you hit a 6, in which the expected number of rolls needed is 6, not 3. While running this GigaGalactic supercomputer, many of the guesses will actually collide, so it is not a methodical search through all possible hashes.
      However, as you point out, the actual security on SHA256 is indeed lower than 256-bits. It turns out not to quite behave like a nice random function. But this discussion just centered on an idealized cryptographic hash function.

  • @VRC-tk0511
    @VRC-tk0511 4 года назад +867

    In reality:
    hashed "qwerty" and "password"
    Boom!
    Hit!

    • @multicolourpen6492
      @multicolourpen6492 4 года назад +47

      we need to write qwertyui because it requires 8 characters

    • @MrRenanwill
      @MrRenanwill 4 года назад +11

      Password hashed is secure just If It have never been hashed, and believe me, It probably have been, unless you take It into account to make your password.
      The ingenuos be like: But my password is my birthday and just me have It as birthday!
      Ah! Of course no one on earth have the same birthday as you! Hahahah

    • @Lucas_strable
      @Lucas_strable 2 года назад

      @@MrRenanwill A password with 990k characters would be possible to hack?

    • @erner_wisal
      @erner_wisal 8 месяцев назад +1

      ​@@Lucas_strable impropable, but possible

    • @distorted_heavy
      @distorted_heavy 8 месяцев назад +3

      Hash and salt, now you'll HAVE to brute force everything

  • @nyx211
    @nyx211 7 лет назад +3887

    Turns out it's preeeettty secure...

    • @99897767
      @99897767 7 лет назад +107

      nyx211 not really...You see, quantum computing can cut down the required processing time(hence increased processing power) in logarithmic scale, which means cutting down the time needed to "hash" until match is wayyy lower compared to the current day method. So yes, we are quite fucked.

    • @cleitonfelipe2092
      @cleitonfelipe2092 7 лет назад +93

      And don't forget that the hash can be guessed in the early stages, not always having to be the last computed hash, so there's a chance to be even faster

    • @Chokmuf
      @Chokmuf 7 лет назад +74

      They already found solutions to way more secure encryption, so secure it can completely render quantum computers useless. This is done by using other quantum computers.

    • @arthurg.machado6803
      @arthurg.machado6803 7 лет назад +18

      Lancelot V even if quantum computers turns out to test these billions of trillions times faster it would still be an unbelievable amount of time.

    • @99897767
      @99897767 7 лет назад +24

      Arthur Machado it is not just billion trillion time faster, it is logarithmicly faster. For example a computer can do x amount of work at a time, the quantum computer can do x^8 amount of work, which is not just *fast* can justify it.

  • @Jabrils
    @Jabrils 7 лет назад +1674

    i love you

    • @aaronhe6877
      @aaronhe6877 4 года назад +5

      uh...hi

    • @Broxalax
      @Broxalax 4 года назад +32

      We should just be friends

    • @xot9897
      @xot9897 4 года назад +16

      Why don’t you marry him

    • @nas73603
      @nas73603 4 года назад +1

      How could u not apreciate this

    • @nas73603
      @nas73603 4 года назад +1

      We are watching this at practically the same time!

  • @shenkoincorporation5110
    @shenkoincorporation5110 3 года назад +4

    Thanks!

  • @BossManTee
    @BossManTee 6 лет назад +3188

    But can all these computers combined able to run crysis?

    • @SBerTtube
      @SBerTtube 4 года назад +141

      Yes, unlike you can not able in English

    • @BittenKitten
      @BittenKitten 4 года назад +123

      I think like 10 FPS in 720

    • @JBrinx18
      @JBrinx18 4 года назад +100

      But can they run Microsoft Flight Simulator 2020?

    • @anomalycenter1197
      @anomalycenter1197 4 года назад +233

      @@SBerTtube I had more of a stroke trying to read your comment than the one you responded to

    • @myselfshubhamrana
      @myselfshubhamrana 4 года назад +6

      New thing is MS Flight Simulator

  • @FourthDerivative
    @FourthDerivative 5 лет назад +864

    "...so you're telling me there's a chance!"

    • @wirito
      @wirito 5 лет назад +10

      I knew it! ....I read ya...

    • @uncleabs9272
      @uncleabs9272 3 года назад +1

      YEAHHHHH!

  • @hpetty9404
    @hpetty9404 3 года назад +265

    Everyone of this man's videos is like a weird mixture of extremely informative yet peaceful and therapeutic LOL. Another amazing video!

  • @Superphilipp
    @Superphilipp 5 лет назад +572

    "next, try to imagine 4 billion copies of the milky way" ... okay, I'm out.

    • @cedrik1031
      @cedrik1031 3 года назад +8

      I know it's quite a while ago you commented here but how does it make sense to take 4 billion copies if only 1 percent of 1 copy actually is filled with planets that are important for the calculation?

    • @Superphilipp
      @Superphilipp 3 года назад +12

      @@cedrik1031 It's not my hypothetical, ask him that.

    • @cedrik1031
      @cedrik1031 3 года назад +4

      @@Superphilipp yeah I know that but I doubt anyone would have seen it if I wrote my own comment, so I just tried my luck with you but thanks for the answer✌

    • @blackout6519
      @blackout6519 3 года назад +9

      @@cedrik1031 I thought he said imagine that the Milky Way was filled with 4 billion planets where 4 billion peoplee had access to a Googlekilo worth of computers. Meaning that in this hypothetical more than 1% of the Milky Way would be filled with planets

    • @GomVorder78439
      @GomVorder78439 9 месяцев назад

      Man this acid is really messing with me

  • @itschilled
    @itschilled 7 лет назад +1334

    Small note: it would likely not take you 2^256 guesses to get it correct, as that is every single possible combination of guesses. Rather, it would take an average of 2^255, which is the halfway point between 0 and 2^256 (as any power of 2 is twice as many as the previous power). Minor detail but helps with the general understanding.

    • @_sudipidus_
      @_sudipidus_ 6 лет назад +92

      ALittleOff the worst case scenario is implied I guess, Big O wise

    • @deeptochatterjee532
      @deeptochatterjee532 6 лет назад +160

      ALittleOff so with the giga galactic super computer running for 37 times the age of the universe it is just a 1in 2 billion chance. Got it.

    • @Feonid1
      @Feonid1 6 лет назад +40

      No, it would still be 1 in 4 billion chance

    • @TheGrooseIsLoose
      @TheGrooseIsLoose 6 лет назад +67

      To chime in a year late, ALittleOff was correcting at 0:35 when he says it would take “on average” 2^256 guesses. Worst case it would take 2^256 guesses, but on average, it would take 2^255 + 1/2 guesses.
      You can find this with some simple math: Let n = 2^256 just for ease of reading. Since there is a 1/n chance for the hash to be any numbered guess, we can find the average number by adding up the possible numbers of guesses and dividing by n. The number of guesses can be anything from 1 to n. If we add up those numbers, we get n(n+1)/2. Dividing by n gives us (n+1)/2=2^255 + 1/2.

    • @АндрейАлпеев-в2ь
      @АндрейАлпеев-в2ь 6 лет назад +12

      There is no such a thing as worst case in here since(assuming sha256 to be an ideal hash function) every new guess gives you exactly 1/2^256 probability of success independently of previous guesses. Actually, after 2^256 guesses you'll still have failed to find the preimage wuth probability very close to 1/e.

  • @vieuetcon
    @vieuetcon 4 года назад +881

    Theres always some kind of simplicity behind complexity. In computers, sometimes, the "security" looks like a big iron door, until you realize you can pass beside that door, coz theres no walls beside that door..

    • @festivebear9946
      @festivebear9946 2 года назад +103

      And that's exactly what hackers try to do. get your passwords or details in some other way than bruteforcing.

    • @jmiller6066
      @jmiller6066 Год назад +18

      Which is actually one of the major reasons cryptocurrencies are such a misguided idea. It's like building a castle made of indestructible stone that has no guards.

    • @Doreschok
      @Doreschok Год назад +2

      I have done the calculations. I discovered that it takes a approximate maximum of 497.1026 centuries for the speed of 4Billion hashes per second.

    • @codinghub3759
      @codinghub3759 Год назад +10

      ​​@@DoreschokAre you sure that is correct? I checkd and it takes approximately 8 × 10^59 years

    • @jacobwilson8275
      @jacobwilson8275 8 месяцев назад

      @@jmiller6066 how so?

  • @kuri7154
    @kuri7154 7 лет назад +60

    Really an amazing way to quantify these numbers...great job.
    So often when a number is big enough it just falls into the category of "a really really big number" so people never, or, could never, figure out how big it really is.

  • @scottjenks3075
    @scottjenks3075 7 лет назад +2066

    This video is pretty misleading. It's a good illustration of how big a 256 bit number is, but NOT a good illustration of how secure 256 bit security is. These cryptographic hash functions are broken and need to be replaced every few years. This happens because weaknesses are found in the algorithm that make them easier to guess, and has very little to do with raw computing power. SHA-1 is now considered dangerously weak, and output 160 bits. No one made a computer that checked all 2^160 combinations. People found weaknesses in the algorithm. This has been true for almost everything in cryptography from the Enigma to MD5.

    • @SayWhaaaaaaaaaaaaaaaaaaaaaaat
      @SayWhaaaaaaaaaaaaaaaaaaaaaaat 7 лет назад +67

      the weakness is collision and i think in this case it's not important. with files you can add bytes and so on to create the same hash for 2 different files... with blochchain it's much much harded even if sha256 would be cracked.

    • @theq4602
      @theq4602 7 лет назад +21

      The CIA probably already has quantum computers that crack this shit in hours. I mean D-wave is a thing so...

    • @viharcontractor1679
      @viharcontractor1679 7 лет назад +147

      David Vermillion Thats false, Current quantum computers are way weaker than the regular(Binary) computers.

    • @IntarwebUser
      @IntarwebUser 7 лет назад +63

      Well... It's important to know how many bits you need in an algorithm where the only option is brute force. And it seems as though 256 bits is enough for that. It tells me that there's no need to jump up to 512 or 1024 or more in order to secure against brute force attacks, we've already got all that we need. How many extra bits of padding is needed to compensate for an algorithm's flaws would require a video of its own.

    • @capmofthesea1275
      @capmofthesea1275 7 лет назад +25

      so do you mean that after enough time patterns start to become apparent and you can start reducing the number of bits you have to guess?

  • @TunaBear64
    @TunaBear64 3 года назад +48

    4:33 Now the channel surpassed 2^21 subscribers
    And close to reach 2^22 subscribers
    Congratulations
    I always loved your videos, the quality of the explanation of the topics is simply unmatched, I swear I learned more from this and other educational channels than from school/college on the last 4 years
    Keep going, the world need more channels like this.

    • @michaherman8722
      @michaherman8722 8 месяцев назад

      2^22 surpassed, and in the middle in the way to 2^23

  • @MIO9_sh
    @MIO9_sh 6 лет назад +1389

    Introducing, quantum computers! (all traditional security screwed up)

    • @aaronhe6877
      @aaronhe6877 4 года назад +9

      hey hello

    • @liesdamnlies3372
      @liesdamnlies3372 4 года назад +222

      Uh, sure, but not hash functions. Further, Shor's algorithm (which is the one that gets all the hype about this) only works on encryption schemes that depend on factoring large numbers, namely RSA. Since RSA uses prime numbers, it makes factoring the multiple of two of them really hard (the numbers are huge). We can revamp everything to stop using RSA (and already have been, for many, many years) relatively easily, given the impetus that it'll be completely broken soon enough.
      We've already got encryption schemes that can run on classical computers that are hardened against both known classical and known quantum attacks. Often they take more compute time and are more complicated to implement, but with how classical computing is still getting faster, and specialized hardware can be built to accelerate encryption and decryption once the standards are set, this really shouldn't be a big issue.

    • @absolutezero6190
      @absolutezero6190 4 года назад +7

      @@liesdamnlies3372 is lattice-based cryptography a candidate for post-quantum

    • @liesdamnlies3372
      @liesdamnlies3372 4 года назад +7

      @@absolutezero6190 I wasn't familiar with them until you mentioned it and I did a little bit of reading. Seems like it though.

    • @gorkemseven1146
      @gorkemseven1146 4 года назад +1

      nah as long as the "checker" has traditional methods, quantum computing wont work.

  • @SSM24_
    @SSM24_ Год назад +242

    Bonus fun fact: If you actually take 4,000,000,000 to the 8th power, what you'd get is closer to 2^255 than 2^256 (specifically, about 2^(255.18), or 1.13 * 2^255). Approximating 2^32 (4,294,967,296) as just "4 billion" ends up losing more overall value here than you might expect.

  • @DarkSim64
    @DarkSim64 3 года назад +39

    "It would require on average 2^256 guesses".
    Shouldn't it be "at most" ?, if all the guesses are wrong until the very last?
    And on average (2^256)/2 guesses?

    • @aarushparvataneni3249
      @aarushparvataneni3249 3 года назад +14

      So 2^255 guesses

    • @DarkSim64
      @DarkSim64 3 года назад +2

      @@aarushparvataneni3249 Oh yeah that's true

    • @ikokujin
      @ikokujin 3 года назад +6

      I think it's 2^256 on average. You may guess a new message which evaluates to a hash you've already seen before.

    • @JMacSD
      @JMacSD 2 года назад +1

      No. I just replied to another comment about this, where 3blue1brown himself commented: "While running this GigaGalactic supercomputer, many of the guesses will actually collide, so it is not a methodical search through all possible hashes". So yes, if you do it this way you can expect to find the answer after only checking half of the pool:
      Have a list of all 256 bit numbers, guess 1 & remove it from the list & calc the hash & check it, repeat until you have the hash you want.

    • @johnmackenzie3871
      @johnmackenzie3871 2 года назад

      No. You could guess 2^1000 times and still get it wrong, there's no "at most guesses" in probability.

  • @quaternaryyy
    @quaternaryyy 7 лет назад +717

    Worth mentioning: Some cryptocurrencies (I think Litecoin does this) use a different hash function called scrypt instead of SHA-256. scrypt is designed to be impossible to create application-specific integrated circuits for, because it requires large amounts of RAM and computing power, unlike something like SHA-256 which is essentially a bunch of logic gates.
    Neat!

    • @profeturulz8373
      @profeturulz8373 7 лет назад +62

      quaternary It took awhile but we already have 500mh scrypt ASICS. Still Ethereum is only mined with GPUs.

    • @RapGeneral11
      @RapGeneral11 7 лет назад +5

      The number of all chess games possible is arround 10^10^50. I love this number.

    • @amirabudubai2279
      @amirabudubai2279 7 лет назад +41

      There is no such thing as a program that is impossible to design an ASIC for.

    • @danlorett2184
      @danlorett2184 7 лет назад +53

      Impossible is really the wrong word. Impractical is better. It wouldn't significantly improve your efficiency enough to matter even if you did make an ASIC for it, basically.

    • @mduckernz
      @mduckernz 7 лет назад +10

      Amir Abudubai Correct, mostly, though it will just start looking more and more like a CPU ;)
      These coins also have the feature that they can modify the parameters without creating a new chain, so you would either need ASICs with redundant hardware (fails the "becoming a CPU" stumbling block), of you would need new ASICs each time this happened (fails by being infeasible due to cost and time)

  • @MrRigdensChannel
    @MrRigdensChannel 7 лет назад +206

    This video is awesome. Imagine a super advanced galactic empire just trying to break into a single file.

    • @lagillas
      @lagillas 6 лет назад +11

      Mr. Rigden's Channel Sub-humans aliens in the Year 70.5 Billion in the future and still to get the private key of Satoshi Nakamoto

  • @amconners
    @amconners 4 года назад +100

    "Next, try to imagine four billion copies of the Milky Way."
    No. My brain will break if I try to imagine that.

    • @Sev7.
      @Sev7. 4 года назад +5

      *try*

    • @mixnewton5157
      @mixnewton5157 3 года назад +5

      actually only computations by a single GPU can't be imagined

  • @glenntrewitt
    @glenntrewitt 5 лет назад +22

    My personal favorite "big number" is the number of atoms in the universe - about 10^80 (Wikipedia), or 2^83. Molecules vibrate at 10^13 .. 10a^14 Hz - call it 2^17. So, if every atom did one guess-and-check every time it twitched, you'd still need 2^156 seconds - about 2^40 years, which is 250 times the age of the universe.

    • @vibaj16
      @vibaj16 11 месяцев назад +1

      2^256/(10^80*10^14) is about 1.2*10^-17, so your scenario would actually only take around 12 attoseconds.

    • @WeKnowWhatWeAreAimingAt
      @WeKnowWhatWeAreAimingAt 3 месяца назад

      Mines TREE(G57K57)

  • @qzbnyv
    @qzbnyv 3 года назад +3

    Hah. I remember watching this video (and the main one) on release day back when you had 2^18 subscribers (262,144 people). But now you've recently passed 2^22 subscribers (4,194,304 people)!!! Great work, 3b1b :)

  • @JW-oe6nw
    @JW-oe6nw 3 года назад +4

    Hey congrats on surpassing 2^22 subscribers!

  • @shroudeexperience6377
    @shroudeexperience6377 7 лет назад +769

    ♫ 2 to the 2 to the 2 to the 3 ♫
    ♫ i like good currency and i like good trees ♫

    • @unflexian
      @unflexian 7 лет назад +45

      ♫ conversion and currency ♫

    • @whiz8569
      @whiz8569 7 лет назад +52

      ♫ I'm a menace, a miner, a hash-figure finder ♫
      ♫ Gimme a table and in less than an hour ♫
      ♫ Give the chain a new link in it ♫
      ♫ Get some bits for fixin' it, Slide 'em in some hooker's tit ♫

    • @AlxM96
      @AlxM96 7 лет назад +26

      ♫ so, find that hash for me, find that hash for me ♫
      ♫ come on, mine, find that hash for me, find that has for me ♫

    • @andreaspatsalides1914
      @andreaspatsalides1914 7 лет назад +26

      🎵England is my city 🎵

    • @hieuphungminh6690
      @hieuphungminh6690 7 лет назад +10

      tits

  • @ThomasMeliWellness
    @ThomasMeliWellness 7 лет назад +31

    You are the best math teacher I've ever come across. Amazingly lucid.

  • @LeslieChevelle
    @LeslieChevelle Год назад +2

    3 blue 1 brown always comes In clutch with the visualizations. This reminds of combinatorial explosion, and how often it comes up in real world problems, it would be interesting to see you make a video going into depth on this topic.

  • @jimi02468
    @jimi02468 5 лет назад +250

    I just want an hour long video of a growing binary number at 0:11

    • @matt_zafeiriou
      @matt_zafeiriou 4 года назад +10

      1 week*

    • @1900OP
      @1900OP 4 года назад +5

      Python is fast. And you should know that printing to the console is an IO task and C++ isn't that much faster than any other programming language at doing that.

    • @DaniPaunov
      @DaniPaunov 4 года назад +5

      @Omar alpjaly For the differences between languages being "very small and hardly noticeable", python sure takes 62 times longer than c++ to count to 2^32 - 1
      Yes I tested it

    • @Cenentury0941
      @Cenentury0941 4 года назад +4

      @@chappie3642 considering that it's a fucking RUclips comment, it should be obvious why a smaller line count as well as more readability is more desirable than execution time, because guess what, everyone READ the comment as opposed to execute it.
      Furthermore, if you still insist on execution time mattering, then I'm sure that you'll be thrilled to know that since the bottle neck in both cases is the console, both python and c++ have the same execution time as they're both faster than the CLI's output capability. In other words, by using python, you'll literally write 2 lines of code to achieve the same result in the same time as if you did it in c++.

    • @user-wc1sm8cj8s
      @user-wc1sm8cj8s 3 года назад +4

      >>> # in python:
      >>> import time
      >>> x = 0
      >>> while True:
      ... print('{0:b}'.format(x))
      ... x += 1
      ... time.sleep(0.1)

  • @davidcain2548
    @davidcain2548 7 лет назад +183

    2:51 okay I get it, its a large number

    • @carbrickscity
      @carbrickscity 7 лет назад +2

      Not as large as a Googol :)

    • @Minecraftrok999
      @Minecraftrok999 7 лет назад +3

      CarBricksCity and a Googol isn't even anything near Grahams Number.

    • @ArminPlayer
      @ArminPlayer 6 лет назад +3

      graham Number is infinite time smaller than infinity

    • @marcusgraham5777
      @marcusgraham5777 5 лет назад +3

      But can it run Crysis?

    • @lachriz5460
      @lachriz5460 3 года назад

      It's a relativ large number

  • @regal_7877
    @regal_7877 19 дней назад +2

    Funny how this video is being recommended now that Google's developed their quantum computer probably capable of cracking this encryption in a couple of weeks or less.

  • @radiaz121
    @radiaz121 3 года назад +3

    Now in 2021, you're almost at 4^22 subscribers. Keep up the good work

    • @neededathrowaway1818
      @neededathrowaway1818 3 года назад +1

      I think you mean 2^22? 4^22 is... _a tiny bit_ larger.

    • @catassistant
      @catassistant День назад

      @@neededathrowaway1818thats 2 more

  • @michael-gary-scott
    @michael-gary-scott 7 лет назад +50

    Literally just finished the last video. Loving these cryptography videos!

    • @edancoll3250
      @edancoll3250 7 лет назад +15

      Yet you weren't able to understand when Oscar explained the idea of a budget surplus to you??

    • @he1ar1
      @he1ar1 7 лет назад +2

      +adrian peiron You are right in that many of the existing economic structures were created by the elite to serve the elite.
      Modern economic 'science' is applied mathematics. You have to know the rules to led you to a sound methodology. Without that you are just a theorist no better than a hack.
      Unfortunately there are certain fields in economics that are stuck in a habit of intellectual masturbation rather than doing something based in reality.

    • @mahamadoumamadou5225
      @mahamadoumamadou5225 6 лет назад

      Michael Scott

  • @Shrooblord
    @Shrooblord 7 месяцев назад +1

    It's so fun to hear Grant say "wow, we recently passed 262k subscribers" and I look over to the sub count today and there's 6.21 MILLION of us.

    • @Billy-q5s
      @Billy-q5s 4 месяца назад

      6.38 Million now

  • @DannySullivanMusic
    @DannySullivanMusic 7 лет назад +7

    Now you're almost at 2^19 subs. Congrats!

    • @3blue1brown
      @3blue1brown  7 лет назад +3

      Thanks! I think a second Q&A round will be in order soon.

  • @Tavlin
    @Tavlin 7 лет назад +99

    3:14 to 3:30 will be my new phone ring or my alarm sound :D
    Great visualization, as allways ^-^

  • @KD-rh2cr
    @KD-rh2cr 7 лет назад +113

    how are all of his animations always so smooth?

    • @vinzer72frie
      @vinzer72frie 6 лет назад +17

      Video is in 60fps

    • @peterbonnema8913
      @peterbonnema8913 6 лет назад +62

      1 kilogoogle of computing power for rendering frames

    • @asterixgallier8102
      @asterixgallier8102 5 лет назад +9

      Well, he is a mathematician and a programmer...

    • @sharungarg
      @sharungarg 5 лет назад +17

      It's because he uses his self developed animation library "manim", written in python.

    • @m4rk0b0y
      @m4rk0b0y 4 года назад +1

      @@vinzer72frie i heared that humans can only hear 30fps

  • @jw7672
    @jw7672 3 года назад +29

    If the universe is infinite, then someone, somewhere will guess and get it right on the first try. In fact, infinite number of people would.

    • @MAUROtele
      @MAUROtele 3 года назад +6

      already happened, infinitely many times

    • @theodiscusgaming3909
      @theodiscusgaming3909 3 года назад +3

      But it would also take infinite time to transmit the correct answer back to earth.

    • @B-DINO
      @B-DINO 3 года назад

      @@MAUROtele thar comment already happened an infinite amount of times

    • @B-DINO
      @B-DINO 3 года назад

      @@theodiscusgaming3909 not if it got there an infinite time ago

    • @theodiscusgaming3909
      @theodiscusgaming3909 3 года назад +3

      @@B-DINO the universe has a finite age though

  • @TheMechanicalBob
    @TheMechanicalBob 23 дня назад

    What an amazing way to illustrate the enormous power needed, to break SHA256 - great work, thank you!

  • @ollpu
    @ollpu 7 лет назад +163

    Oh, and keep in mind, that they'd all have to be working on the same, single hash/key.

    • @sayamqazi
      @sayamqazi 5 лет назад +11

      Yeah exactly they need to communicate to not try the same thing some other computer already did.

    • @kas-lw7xz
      @kas-lw7xz 5 лет назад +4

      @@sayamqazi and that, will use petabytes of ram, and even an i9 propably can't handle it

    • @stoler7980
      @stoler7980 5 лет назад

      phyrexkasgaming definitely* also, we would have different processors for maximum efficiency and just communicate it all through a database. The computers would each have assigned images which they process into hashes and repeat. That’s how I would do it, but we would be limited heavily by physical and storage space.

    • @ShadowManceri
      @ShadowManceri 4 года назад +7

      They don't really need to communicate at all. When you assign the problem you can easily just say that A solves numbers 1 to 1000, B solves numbers 1001 to 2000 etc. Report back if you have something. Then you just wait for someone to report back that they either are out of numbers to solve or have solved it.

    • @liesdamnlies3372
      @liesdamnlies3372 4 года назад +2

      @@ShadowManceri Horray for basic software engineering logic. ... Sadly in short supply at most schools that teach software engineering but whatever...

  • @user-qh5jk1mn5i
    @user-qh5jk1mn5i 5 лет назад +132

    My first guess: 111111111111111111111111111...111110111...111111111
    Computer: Hello, sad loser
    Me: I’m in

    • @guardianangel1468
      @guardianangel1468 4 года назад

      first guess: 01000101101001001010101001111100101000101101001001010101001111100110010001001011100101010101010110100010101001010110101010010000010100010110100100101010100111110010100010110100100101010100111110011001000100101110010101010101011010001010100101011010101001000001

    • @lesleygamerx9463
      @lesleygamerx9463 4 года назад

      000011001101010101010101010101101010101010101001000010101020101

    • @garrettzucker2894
      @garrettzucker2894 4 года назад

      @@guardianangel1468 I'll use your guess as my key, thanks

    • @Rocket_Mindset
      @Rocket_Mindset 4 года назад +1

      @@garrettzucker2894 wait, that's illegal

  • @meta04
    @meta04 4 года назад +1

    Chinese/Japanese/Korean use a different system for abbreviating large numbers: 10,000 is 万 or equivalent; 100,000,000 is 億 or equivalent; etc.
    And the Chinese, Japanese, and Korean subtitles _all_ use "40億" instead of "42億" or "43億" when translating "4 billion". It hurts to look at.

  • @channelmegafide
    @channelmegafide 6 лет назад +8

    I must say, you have a brilliant way of explaining things!

  • @sixhundredandfive7123
    @sixhundredandfive7123 3 года назад +3

    "...now, this is a number, so far removed from anything we ever deal with, that it may be hard to appreciate it's size."
    *That's what she said*

  • @abhishekshivkumar734
    @abhishekshivkumar734 7 лет назад +474

    wouldn't it be 2^255 guesses on average? 2^256 possibilities, try half of them and you have a 50% chance of breaking through

    • @mr.x4001
      @mr.x4001 7 лет назад +26

      +Abhishek Shivkumar I thought the same...

    • @iurigrang
      @iurigrang 7 лет назад +90

      Not really, since the outcome of the hash function is unpredictable, it can (and it does) give the same output for different messages, so basically, in each try you'd have 2^(-256) chance of guessing it right independently of how many tries you've done before.
      That gives you sum over n of n*p*(1-p)^(n-1) from n=0 to infinity average guesses (where p=2^(-256)), which you can solve using n*(1-p)^(n-1)=-d/dp((1-p)^(n)) and trying to write the sum as function of it's derivative and solving the differential equation, or alternatively writing n*(1-p)^(n-1) as (1/(1-p))-*-((n+1)-*-(1-p)^n-(1-p)^n) and trying to write the sum as function of itself and solving the linear equation. Or even more alternatively, you could plug that on wolfram and see that when m goes to infinity (the sum goes from 1 to m) the sum goes to 1/p, which is 2^256.
      Another thing is that the average amount of guesses isn't necessarily when amount that gives you 50% chance, that's the median. But since if we could avoid doing repeated guesses the probability would grow linearly, the 2 would coincide.

    • @TehNetherlands
      @TehNetherlands 7 лет назад +34

      Yes, after you checked half of them, the chance of having found the right hash would be 50%. This would also be the average time it would take to find the right hash.

    • @Daniel-cz9gt
      @Daniel-cz9gt 7 лет назад

      is not 255 vs 256 remember that he group them in 8 groups of 2^32

    • @Daniel-cz9gt
      @Daniel-cz9gt 7 лет назад +1

      So the difference is actually 2^224 vs 2^256

  • @priangsunath3951
    @priangsunath3951 3 года назад +21

    Glad to see you getting close to 2^32 subscribers! I've always enjoyed the topics you discuss and how you explain them :)

  • @jewlwlknhieorhghertuzeakhgheko
    @jewlwlknhieorhghertuzeakhgheko 3 года назад

    Díky!

  • @obijuan4727
    @obijuan4727 5 лет назад +646

    5 years later...
    how 256 bit encryption is useless thanks to quantum computers

    • @giorginaiannucci8270
      @giorginaiannucci8270 5 лет назад +1

      Ricardo Milos 🙄😂

    • @glory6998
      @glory6998 5 лет назад

      😂😂😂😂 absolutely 👍

    • @khutulka
      @khutulka 5 лет назад

      +1

    • @kostas2190
      @kostas2190 5 лет назад +27

      quantum computers in 2024??? LOL!!! do you mean 50 years later?

    • @rogervanbommel1086
      @rogervanbommel1086 5 лет назад +12

      Quantum computer can only break RSA with has keys of 2048 bit 256 bit RSA has been Made useless and quantum computers Cannot break AES

  • @ronaldli5
    @ronaldli5 4 года назад +10

    Now imagine doing these guesses manually by hand instead of a GPU in even the first step.

  • @koimops5024
    @koimops5024 3 года назад +2

    I now understand that i need to encrypt my files with 256-bit security.
    Thanks

    • @warikoo7581
      @warikoo7581 3 года назад +1

      I do invest and refer people to Mrs.ChangChang because she is the best trader I have seen

    • @warikoo7581
      @warikoo7581 3 года назад

      You can can reach Her on what:::::::::app

    • @warikoo7581
      @warikoo7581 3 года назад

      🇱🇷.+1......46/9-3[12-2)97....1

  • @TimSwast
    @TimSwast 5 лет назад +18

    Thanks for sharing this sense of scale! It's amazing to think about how large the numbers we are able to represent actually are. すごい!

  • @tjejojyj
    @tjejojyj 7 лет назад +4

    This is good but you should remind your audience what Edward Snowden said (paraphrasing) "Encryption is secure but end point security is generally terrible." Any system is only as strong as its weakest point.
    Congratulations on 2^18 subscribers. Well deserved. I hope you get to 2^20!

    • @sayamqazi
      @sayamqazi 6 лет назад

      Yes cant do much if the end users are stupid

  • @Alakazam_WR
    @Alakazam_WR 3 года назад

    Getting close to the 2^22 subs mark. Keep it up!!

  • @tomsterbg8130
    @tomsterbg8130 3 года назад +6

    1:26 And there's me wondering how the game Factorio reached such a fine level of performance efficiency and my quad core still struggles really hard with more than 100k calculations per second

  • @khalidazalmad
    @khalidazalmad 7 лет назад +409

    but if P=NP, we are fucked no ?

    • @anselmschueler
      @anselmschueler 7 лет назад +46

      We would be indeed. Also, quantom Computers. (Probably)

    • @foobargorch
      @foobargorch 7 лет назад +19

      www.quora.com/Is-cryptographic-hash-inversion-believed-to-be-NP-complete-or-NP-hard-etc

    • @conejo093
      @conejo093 7 лет назад +42

      If P=NP and an AI generated, we would be fucked^256

    • @MrBeiragua
      @MrBeiragua 7 лет назад +38

      Not necessarily. Even if P = NP, you still would have to show which P replaces the current NP. Not easy.

    • @youtubeforme7735
      @youtubeforme7735 7 лет назад +5

      I don't think there is any algorithm for quantum computers that easily solve hashes. And currently, making them say 15 = 3X5 is a big success, so I think there is no need to worry before a few years/decades

  • @leny32
    @leny32 2 года назад +1

    Now you have surpassed 2^22 subscriber ;)

  • @wailam3255
    @wailam3255 7 лет назад +12

    This is an excellent illustration of the number 2^256. Cryptographer Bruce Schneier has an interested paragraph in his book "Applied Cryptography", suggesting we don't have enough energy in our solar system to count through 2^256. This is because the 2nd law of thermodynamic states that a bit change requires minimum energy of kT erg, where k is the Boltzman constant, T is the absolute temperature. 2^256 is such a huge number, that to cycle through will require more energy than our sun can produce for the next so many billions of years, even including the supernova. Notice the video assumes billions of galaxies. So with the current physics and math 2^256 is beyond reach. However, we don't know about new physics and new math...

  • @MahmoodMuhenned
    @MahmoodMuhenned 6 лет назад +63

    Just imagine your first guess from all of these 2^256 turns out to be the true one

    • @hammar324
      @hammar324 5 лет назад +47

      Don't ever go to Las Vegas.

    • @sayamqazi
      @sayamqazi 5 лет назад +32

      Friendly advice: You should not try gambling ever.

    • @sarthaksharma4816
      @sarthaksharma4816 5 лет назад +3

      But it would still be a 'Guess'.
      Try to calculate the probability of guessing the correct answer twice. :)

    • @null3007
      @null3007 5 лет назад +1

      @@sarthaksharma4816 Due to how exponents work I think the answer is 2^258 which seems like a difference but that's really pretty massive.

    • @hellmaestroosu792
      @hellmaestroosu792 5 лет назад

      @@sarthaksharma4816 Correct me if I'm wrong, wouldn't it be for guessing it once :
      1/(1/2^256) = 1/1.1579208923731619542357098500869x10^77‬
      And then to guess it twice you square it? So, 1/1.3407807929942597099574016910872x10^154‬

  • @pid8307
    @pid8307 3 года назад +2

    In this video it says 262,144 subscribers (some 4 years ago). Today, 15 June 2021, we're at 3,74 million. As a lot has happened in these 4 years (faster hardware and growing number of crypto-miners) it would be nice to have not just an update, but a now/then comparison. Congrats and keep up the good work!

  • @thestrikerz1123
    @thestrikerz1123 4 года назад +5

    Ah yes ! The 3 AM content i was looking for .

  • @carbrickscity
    @carbrickscity 7 лет назад +6

    To show you how small 2^256 is:
    2^256 < 10^78 < Googol < Googolplex < Googolplexian < 3^^^3 < G1 < Graham's number

    • @asterixgallier8102
      @asterixgallier8102 5 лет назад +1

      To show you how big 2^256 is: 00:00

    • @carbrickscity
      @carbrickscity 4 года назад

      That's small. Very small.

    • @chair7728
      @chair7728 4 года назад

      @@carbrickscity its not small you can just compare it to a bigger number

    • @carbrickscity
      @carbrickscity 4 года назад

      If you compare it to daily numbers then yes it is big but compare to the world of big numbers it's small compare to even googol, which is just the beginning of big numbers. There is an infinite number of numbers bigger than it.

    • @lucass8119
      @lucass8119 3 года назад

      @@carbrickscity Yes but compared to how fast computers can generate and guess numbers it is really big. Imagine flipping a coin 256 times and you need to land on heads every time. How long will it take you to get there? A really long time. Granted, a computer can generate number much faster than you can flip a coin but the problem remains - it will take a really long time. You will reach the heat death of the universe before then. And, in a couple years, SHA-512 will be adopted and now the problem is significantly longer.

  • @ThatJay283
    @ThatJay283 3 года назад +1

    Nice video. Now you're close to passing 2^22 subscribers.

  • @steve-martin-42
    @steve-martin-42 7 лет назад +10

    wow that's big.
    just watched this and you cryptocurrency video, this blew my head as I know an analogy to describe what relationship 1 Billion is to 1 Million using time. The crypto video answer so many questions, thank you

    • @25857470
      @25857470 7 лет назад +1

      steve martin what's that analogy?

  • @jrabelo_
    @jrabelo_ 7 лет назад +52

    @3Blue1Brown can you consider doing a video about md5 and sha1 hash colisions? thanks for the amazing explanations again

  • @tyraelpl
    @tyraelpl 3 года назад

    And here we are a bit over 4 years later with nearly 4 milion subs! Gz!

  • @aaronhe6877
    @aaronhe6877 4 года назад +6

    What about SHA512?

  • @unrulyObnoxious
    @unrulyObnoxious 7 лет назад +469

    Google++ xD

    • @NoNameAtAll2
      @NoNameAtAll2 7 лет назад +15

      is used by 1/(4 Billion) people

    • @ebigunso
      @ebigunso 7 лет назад +19

      That name made me think of C++

    • @HAL-mv2cw
      @HAL-mv2cw 7 лет назад +3

      Google+ next gen (but stille not popular xD)

    • @lunarcoffee
      @lunarcoffee 7 лет назад +6

      We can only wonder why it wasn't ++Google. What is it with people and disliking prefix?

    • @Minecraftrok999
      @Minecraftrok999 7 лет назад +3

      LunarCoffee because it takes longer to recognize what it actually is about? Would be my guess.
      I.e. For c++, when the 'c' is spoken, I know it's about a programming language and am then waiting to hear which one.

  • @mrnoobguy100
    @mrnoobguy100 4 года назад +1

    Excellent video mate, loved the visualizations of 2^256. Really puts it into perspective !

  • @emmerad
    @emmerad 4 года назад +51

    My Intel 8086:
    Heavy sweating.

  • @dnwiebe
    @dnwiebe 5 лет назад +19

    I once saw an argument based on energy rather than speed that followed this very general outline:
    Suppose you had a computer that operated at absolute maximum theoretical efficiency, so that there was no way it could possibly use less energy to flip a bit from zero to one, or one to zero. Suppose that's all this computer did: flip a single bit from one to zero and back again, over and over. (No counting: that's too complicated, reserved for a future version of the system. Certainly no complicated hashing or other common brute-force crypto-attack techniques: this is just a prototype.) Suppose you put this computer in the most naturally-cold place in the universe, to maximize its efficiency. (Don't want to spend energy on cooling, only on bit-flipping.)
    Now suppose you could capture the entire energy output of a standard-size supernova, and feed this energy into your super-cold bit-flipper--assuming the existence of whatever energy-storage technology would be necessary to spread out the energy consumption over whatever time interval the bit-flipper required.
    A supernova's worth of energy would be enough to power the bit-flipper through about 2^192 bit flips; which means you'd need to feed in 2^64 supernovas to get all the way up to 2^256. So that's version 0.1. By version 1.0, you'd need an actual crypto-attack algorithm, rather than just bit flipping, where each of the 2^256 attempts would require hundreds of thousands or maybe millions of bit flips. But..first things first.
    So I probably have the numbers wrong, and perhaps some of the details as well...but that was the overall shape of the argument. I'd love to see you do a video on the real argument with actual numbers.

  • @aniruddhsinhjadav4045
    @aniruddhsinhjadav4045 2 года назад +1

    I like how he called it "Giga galactic supercomputers ", like its a thing

  • @minion3259
    @minion3259 7 лет назад +9

    3:16 lol i love that phrase

  • @Quick_in_and_out
    @Quick_in_and_out 7 лет назад +63

    Quick maths!

    • @СергійТіток
      @СергійТіток 5 лет назад

      Admin Panel, Bootstrap, On-line chat, Responsive, Sample Data Installer, Theme Color Switcher. e-web.top/category/security/

  • @Pedrar
    @Pedrar Год назад +1

    the fact that only 6 years ago there were 7.3 billion and now there is around 8 billion

  • @logemedia
    @logemedia Год назад +3

    This is perfection! Your explanation in brilliant! Now can you do one about the private key security function and the possible key combinations. 🙏

  • @michael9651
    @michael9651 4 года назад +2

    Answer: Way too secure, SAVED YOU 5 MINUTES

  • @peioruiz1851
    @peioruiz1851 4 года назад

    dude, i came to this video because i was watching your patreon tiers. I don't regret it

  • @thob
    @thob 7 лет назад +6

    This example is beautiful.

  • @КостяКиндалюк
    @КостяКиндалюк 3 года назад +4

    0:37...The worst case is when you need to make 2^256 attempts, and the best case - when you need to make just 1 attempt. So... why average number of attempts is 2^256?

  • @doctari1061
    @doctari1061 Год назад +1

    That was actually fun to watch. Cheers

  • @hanro50
    @hanro50 7 лет назад +11

    Time to borrow some intergalactic supercomputers from alternative universes...then borrow a time machine...then a inter dimensional portal

  • @iriseley
    @iriseley 5 лет назад +6

    4:23, now the channel is ½ of 2^20 in a span of 3 years! 2^256 will take a long time to crack!

    • @sallerc
      @sallerc 3 года назад +1

      2^21 and counting

    • @TunaBear64
      @TunaBear64 Год назад +2

      2^22 now, keep going.

  • @adamur2
    @adamur2 3 года назад +2

    What about ASIC machines? Why they were not mentioned?

    • @warikoo7581
      @warikoo7581 3 года назад +1

      I do invest and refer people to Mrs.ChangChang because she is the best trader I have seen

    • @warikoo7581
      @warikoo7581 3 года назад +1

      You can can reach Her on what:::::::::app

    • @warikoo7581
      @warikoo7581 3 года назад +1

      🇱🇷.+1......46/9-3[12-2)97....1

  • @ninjamaster224
    @ninjamaster224 7 лет назад +6

    any idea if quantum computing might help in bitcoin mining?

    • @smartmineofficial
      @smartmineofficial 7 лет назад +1

      Not exactly, it would destroy the premise of Bitcoin since a single Quantum Computer will have enough computation power to outperform the whole network.

    • @lagillas
      @lagillas 6 лет назад

      If quantum computers someday achieve enough power to guess a PV key.... Well we don't have to care about money anymore because that fkn thing ( quantum computer ) would be able to create AI that will do EVERY work for us

    • @louisphilippe1100
      @louisphilippe1100 6 лет назад

      Dont ever dream about those computers working. Because when that day comes, cracking current block chain is going to be so easy since quantum computer can easily factor huge prime number with Shor's algorithm.

    • @louisphilippe1100
      @louisphilippe1100 6 лет назад

      Not at all. Quantum computers will reduce the security of public keys encryption into dust because the shor's algorithm can factor primes really fast. So it would take almost no efforts to crack any current crypto system because they all use ECC. If you can factor primes fast, you cracked pretty much all the public encryption system because they are all based on the idea of factoring being a hard task.

    • @dueldu70
      @dueldu70 6 лет назад

      @louisphillippe1100
      Nice thought but not every Public-Key Encryption system uses the premise that the prime factorization of large integers is infeasible.
      Look at the discrete logarithm. IIRC it doesn't have an algorithm that is designed for quantum computers.
      (Although polynomial time would most likely still be too little to actually stop such a machine...)

  • @fernandovegacatalan7586
    @fernandovegacatalan7586 5 лет назад +5

    This video is incorrect because it expects a perfect hash function, which would give a truly unique hash value for every possible value. But because we are using a finite range (2 ** 256 possible values), this is impossible.
    Knowing this, we can use what is called a birthday "attack", which is based on the principle described above and allows us to reduce the number of guesses from 2 ** 256 to "only" 2 ** 130 for a probability of a 0.9999 of obtaining a valid guess. EZPZ guys

  • @Khinte69
    @Khinte69 Год назад

    Now u got more than 2^22 subs. Keep it up

  • @tripy75
    @tripy75 7 лет назад +10

    Holly crap I'm addicted to this.
    Thanks to smaterEveryDays to send me here.

    • @uoymeoe1104
      @uoymeoe1104 4 года назад +1

      This video is pretty misleading. It's a good illustration of how big a 256 bit number is, but NOT a good illustration of how secure 256 bit security is. These cryptographic hash functions are broken and need to be replaced every few years. This happens because weaknesses are found in the algorithm that make them easier to guess, and has very little to do with raw computing power. SHA-1 is now considered dangerously weak, and output 160 bits. No one made a computer that checked all 2^160 combinations. People found weaknesses in the algorithm. This has been true for almost everything in cryptography from the Enigma to MD5.

  • @seanofpeace
    @seanofpeace 4 года назад +12

    And, assuming Moore's Law continues unabated, this entire process will take 1 second around the year 2540.

  • @masterpieceinprogress143
    @masterpieceinprogress143 3 года назад +1

    I doubt anybody will ever see this, but I came up with my own analogy to describe how absurdly huge this number really is. FIrst off, I saw in some other random YT video - that humans are pumping out roughly 60 quintillion inputs for the SHA 256 per second. So if humanity continued calculating at this pace, how long would we have to keep computing before we found 2 inputs that equate to the same output?
    TLDR: A long fucking time.
    Analogy: We have a lot of time to kill, so let's start by imagining that we kill time by walking in a straight line until we reach the moon. Once you reach the moon, turn around and come home. When you get home, (you would have been gone roughly 18 years) buy a powerball ticket. If that ticket wins the jackpot, buy a mega millions ticket. If the mega millions is ALSO a winner, flick a penny into the Grand Canyon.
    After flicking the penny into the Grand Canyon, continue on your walk - back and forth from the Earth to the moon and back. Again, when you return to Earth, buy another powerball ticket. The only way you will ever throw a penny into the Grand Canyon, is if both the Powerball AND Mega Millions tickets are winners. As you could imagine, you're going to do this until all 5.45 million cubic yards of the Grand Canyon is completely filled to the brim with pennies. That's a lot of lotto wins!
    Of course you haven't even scratched the surface of how much time needs to pass, so we're going to continue on with this pattern - until you have filled the Grand Canyon with pennies 200,000 times over. Eventually I'm assuming you will get bored of filling the Grand Canyon with pennies, so after 200,000 of these fills you can switch to the Pacific ocean. The pacific ocean is a lot bigger than the Grand Canyon, and it would take about twice as long to fill with pennies as it took to fill the Grand Canyon 200,000 times. Woah.
    Now that the pacific ocean is filled to the brim with pennies, empty it out and find a nice place on Earth to park a Chevy Malibu. Return to the Grand Canyon - Fill it with pennies 200,000 times. Return to the pacific ocean, and fill that with pennies as well. Keep in mind, each penny represents winning back-to-back lotteries after a round trip from the Earth to the moon and back at a walking pace. Each Chevy Malibu is going to be the equivalent amount of time as: filling the Grand Canyon with pennies 200,000 times as well as the pacific ocean once.
    How many Chevy Malibus will we have to stack before we finally have run out of possible calculations? Answer: It's a fucking lot of Chevy Malibus. You're gonna stack those babies on top of each other until they too reach the moon. Then you're going to start a new stack of Chevy Malibus - and that stack too will also reach the moon. And then you're going to do another.
    and another
    and another
    and another
    until you have reached roughly 33.7249 Earth-Moon length stacks of Chevy Malibus. Now that you are exhausted, sick of pennies, and a little over 61 quindecillion years old, you can drive the last Chevy Malibu down the giant cosmic escalator of Malibus from roughly 3/4 of the way to the moon back to Earth where you will finally get to rest - and enjoy seeing 2 different inputs that provide the exact same 256 bit output in the SHA 256. I can only imagine what those 2 different inputs look like. I hope you'll share with the rest of us. Is it a picture of a Chevy Malibu and the dimensions of a penny? Is it one of the back-to-back lottery winning numbers? Who knows? You do. Because you did it.

  • @maks886
    @maks886 3 года назад +3

    "Never tell me the odds!"

  • @Einsteinium.
    @Einsteinium. 3 года назад +3

    pretty sure dream could "guess" them first try

  • @rogerodipo3499
    @rogerodipo3499 3 года назад

    Bruh what you're doing here is amazing! Keep it wayyyy up!

  • @saiitej7480
    @saiitej7480 3 года назад +4

    so chances are like getting text from crush

  • @badhombre4942
    @badhombre4942 4 года назад +6

    Spoiler alert: The Universe is actually a computer that's trying to find a 256 bit hash.

  • @nemeziz_prime
    @nemeziz_prime 2 года назад

    This channel deserves 2^256 subscribers 🤩

  • @aliakgoz3509
    @aliakgoz3509 7 лет назад +8

    what about quantum computers? it is said (theoretically) it takes less then 1 hour to decrypt a 266-bit signature with quantum computers...

    • @storyls
      @storyls 7 лет назад +6

      He is talking about hashing functions. Hashing functions like SHA256 are relatively safe from quantum, attacks, but public-private key cryptography is not, and that is the danger.
      Well, currently public private key cryptography. There are quantum resistant cryptography things.

    • @ohayougozaimasu6424
      @ohayougozaimasu6424 7 лет назад +3

      With quantum computers quantum cryptography might come, i.e. using entangled particles instead of generating keys.

    • @spik330
      @spik330 7 лет назад

      current quantum computers are for optimisation. They use the fundamental laws of the universe to solve problems.

    • @spik330
      @spik330 7 лет назад

      d-wave, NASA.

  • @MorallyAmbigousEnby
    @MorallyAmbigousEnby 5 лет назад +4

    can this intergalactic super computer array tell me how to reduce the net entropy of the universe?

    • @barrackoli
      @barrackoli 5 лет назад +1

      INSUFFICIENT DATA FOR MEANINGFUL ANSWER.

  • @dolos_kuroshoe
    @dolos_kuroshoe 3 года назад

    And now your channel has passed 2^22 subscribers. Good on ya.