Hash Function Explorer: Avalanche Effect & Collision Resistance

simulator beginner ~8 min
Loading simulation...
Avalanche: 49.2% — near-ideal 50% bit change

Flipping one input bit changes approximately 49.2% of the 64 output bits — close to the ideal 50% avalanche property that characterizes a strong cryptographic hash function.

Formula

Avalanche ratio = Hamming(H(x), H(x⊕1bit)) / bits
Birthday bound ≈ 2^(b/2) for b-bit hash
P(collision, n samples) ≈ 1 - e^(-n²/(2·2^b))

One-Way Compression

A cryptographic hash function takes any input — a single character or an entire database — and produces a fixed-size fingerprint. SHA-256 always outputs exactly 256 bits regardless of input size. This compression is irreversible: given only the hash, there is no efficient way to reconstruct the original input. This one-way property is the foundation of password storage, digital signatures, and blockchain integrity.

The Avalanche Effect

Change a single bit in the input and watch the output transform completely. A good hash function changes approximately 50% of output bits for any single-bit input change, with no discernible pattern. This avalanche effect means similar inputs produce entirely different hashes — there is no way to predict how an input change will affect the output without computing the hash. This simulator visualizes the bit-by-bit comparison in real time.

Collision Resistance

A collision occurs when two different inputs produce the same hash. For a 256-bit hash, there are 2^256 possible outputs — more than the number of atoms in the observable universe. The birthday paradox means a collision can be found in approximately 2^128 attempts, which is still astronomically large. When a hash function's collision resistance is broken (as happened with MD5 and SHA-1), it must be retired from security-critical applications.

Hash Functions in Practice

Beyond cryptocurrency, hash functions secure the entire internet. TLS certificates use them for integrity verification. Git identifies every commit, file, and tree by its SHA-1 hash. Password systems store salted hashes instead of plaintext passwords. Deduplication systems use hashes to identify identical files without comparing their contents. The humble hash function is arguably the most important primitive in all of cryptography.

FAQ

What is a cryptographic hash function?

A cryptographic hash function maps arbitrary-length input to a fixed-length output (the digest or hash) with three key properties: pre-image resistance (hard to find input from hash), second pre-image resistance (hard to find another input with the same hash), and collision resistance (hard to find any two inputs with the same hash). SHA-256, used in Bitcoin, produces a 256-bit hash.

What is the avalanche effect?

The avalanche effect means changing even one input bit causes approximately 50% of the output bits to change, in an unpredictable pattern. This property, formalized as the Strict Avalanche Criterion, ensures that similar inputs produce uncorrelated outputs — essential for security.

What is the birthday attack?

The birthday attack exploits the birthday paradox: in a group of 23 people, there is a 50% chance two share a birthday. Similarly, for a hash with b bits of output, approximately 2^(b/2) random inputs are needed to find a collision with 50% probability. This is why 256-bit hashes require 2^128 work to attack — still infeasible.

How does Bitcoin use hash functions?

Bitcoin uses SHA-256 in multiple ways: mining (finding a nonce that produces a hash below the target), block chaining (each header contains the hash of the previous header), Merkle trees (transaction integrity), and address generation (RIPEMD-160 of SHA-256 of the public key).

Sources

Other simulations: Cryptocurrency & Blockchain

simulator

Blockchain Mining Simulator
simulator

Consensus Algorithm Visualizer
simulator

Merkle Tree Builder
simulator

Proof-of-Work Puzzle

Embed

<iframe src="https://homo-deus.com/lab/cryptocurrency/hash-function/embed" width="100%" height="400" frameborder="0"></iframe>
View source on GitHub