Implementation and Evaluation of New Cryptography Algorithm for Applications

Transcription

1 AI Khamg and ARRamli Implementation and Evaluation of New Cryptography Algorithm for Applications AI Khamg Department of Computer and Communication Systems Engineering Faculty of Engineering -University Putra Malaysia 43400UPM, Serdang, Selangor DE, Malaysia ARRamli Department of Computer and Communication Systems Engineering Faculty of Engineering -University Putra Malaysia 43400UPM, Serdang, Selangor DE, Malaysia Abstract Today security is an important thing that we need to transpose data from location to another safely As there is strong security, there is great hacker and spire at the other side Therefore, many models and systems are looking for an ideal method to provide a secure environment for better optimization of the electronic connected-world Cryptography accepts the challenge and plays the main role of the modern secure communication world The purpose of this paper is to introduce and demonstrate a new algorithm for Internet and security The purposed algorithm was developed based on the combination of symmetric and asymmetric algorithm whereas the length of the key and digital signature was considered In this manner, the length of the key would not affect the time execution of this algorithm and digital signature in the end of message would increase the authentication between the sender and the recipient The main steps in this algorithm started with reading the plain text "original message" from the user The second step is to apply the hash method on this message by using shuffle mechanism Now the message is ready to do the encryption process that is dividing the text message to bit for each 4 sub keys, so if the text message less than bit then use another sub key The last step is to send the message to another side (the recipient) To retrieve the original massage the recipient must apply the inverse of all the previous stages ie rehashing and decryption In this study comparison between the proposed algorithm and RSA algorithm (asymmetric algorithm) was examined and successful results were obtained Because of its short time execution and higher authentication, using this algorithm will ensure the security for internet applications Key Words: security, Cryptography, Length of the key, Digital signature, Shuffle mechanism, RSA "Rivest Shamir and Adleman" 1 Introduction Cryptography is defined as the art or science of secret writing, or more exactly, of storing information Cryptography as a term coined in 1658 a famous English physician and writer Thomas Brown [1]The origin of the word cryptography comes from the Greek, where crypto meant hidden and 34

2 Implementation and Evaluation of New Cryptography Algorithm for Applications grafik meant writing A cryptosystem is defined as a method to accomplish cryptography Cryptanalysis is the practice of defeating such attempts to hide information and includes both cryptography and cryptanalysis [2] The original information to be hidden is called "plaintext" The hidden information is called "cipher text" Converting plaintext to cipher text is performed by Encryption while the procedure of converting the cipher text to plaintext is performed by Decryption [3] A cryptosystem is designed so that decryption can be accomplished only under certain conditions, which generally means only by persons in possession of both a decryption engine (computer program) and a particular piece of information, called the decryption key, which supplied to the decryption engine in the process of decryption Plaintext is converted into ciphertext by means of an encryption engine whose operation is fixed and determinate (the encryption method), but which functions in practice in a way dependent on a piece of information (the encryption key) which has a major effect on the output of the encryption process [4] The result of using the decryption method and the decryption key to decrypt ciphertext produced by using the encryption method and the encryption key should always be the same as the original plaintext [5, 6] The purpose of this paper is to introduce and demonstrate a new algorithm for Internet and security with key length 160 bit The purposed algorithm was developed based on the combination of symmetric and asymmetric algorithm whereas the length of the key and digital signature was considered This paper organized as follow Section 2 describes the experimental setup and illustrates the procedure of the new cryptography algorithm Section 3 discusses the experiential results Finally, Section 4 concluded this paper 2 Material and Methodology 21 Experiment Setup The experimental part of this research has been implemented using Visual Basic programming language Visual Basic is a high-performance language for technical computing It integrates computation, visualization; one important thing in this type of programming language is plains to interface with the internet and uses it in some applications of Internet like and building the explorer pages in the Net 22 Procedure of the Algorithm The purposed algorithm was developed based on the combination of symmetric and asymmetric algorithm whereas the length of the key and digital signature was considered In this manner, the length of the key would not affect the execution time of this algorithm and digital signature in the end of message would increase the authentication between the sender and the recipient Figure1 illustrates the main steps used in this algorithm The Original Message "plain text " Hashing Function Encryption Operation Send the message Decryption Operation Rehashing Function Original Text Fig1 Main steps in the proposed algorithm International Journal of The Computer, the Internet and Management Vol 17No1 (January-April, 2009) pp

3 AI Khamg and ARRamli 221 Hashing Function A hash function is an algorithm, which creates a digital representation or fingerprint in the form of the hash value or the hash result of the standard length, which is usually much smaller than the message, but nevertheless, substantially unique to it Any change in the message invariably produces a different hash result when the same hash function is used In the case of a secure hash function, sometimes termed one-way hash function, it is computationally infeasible to derive the original message from knowledge of its hash value [7, 8] The hashing function has applied on the message, where there are N tables of the hashing characters that will be used via replaced it by the original character (character of reading message) These tables are contains all character in the keyboard with the additions English and Arabic character created using shuffle mechanism as shown in Figure 2 Character 1 Switch 1 Switch 2 Switch 3 Character 1 length of key here is 1024 bits This length is longer than the stronger case of the symmetric key ie, 128 bit [9] and less than the most popular size of the asymmetric key ie, 3072 bit This mathematical model can be shown in Fig3 Assuming p as the plain text (original character), k as the key and c as the Cipher text and h as the hashing message, so the algorithm describing in the following equation: H 1 = Hash( P1) 1 H 2 = Hash( P2) 2 H 3 = Hash( P3) 3 H 4 = Hash( P4) 4 C1 = H1 K1 5 C2 = H 2 K 2 6 C3 = H3 K3 7 rotate ( C3) = C3 8 C4 = H 4 K 4 9 C32 = H32 K32 10 Character 2 Character 2 Character 3 Character 3 Character n Character n Fig2 Simple diagrams represent the shuffle mechanism 222 Encryption Operation After the message has hashed via hashing function, at this moment the message is ready to apply the encryption process The text message was divided into bit for each 4-sub key, where the Fig3 shows the simplified algorithm scheme In this algorithm there are 4 rounds of encryption processes, where the first rounds 36

4 Implementation and Evaluation of New Cryptography Algorithm for Applications from C1 to C32, has presented, and then apply the remaining rounds on the next blocks of the plain text until finish four rounds of the encryption processes Figure 4 shows the flowchart of the encryption operation decryption process followed by rehashing to retrieve the original message Figure 5 shows the flowchart of the cryptographic algorithm Fig4 Flowchart of Encryption Operation 223 Sending the Message After the text message has been encrypted, now it is ready to be sent to another side recipient" in order to make the inverse operation decryption and rehashing 224 Decryption and Rehashing All these operation represent the inverse of two operation encryption firstly and the hashing finally After receiving the plain text from the sender side, it must apply the Fig5 Flowchart of Decryption Operation 3 Experimental Results The hashing, encryption and decryption of the proposed algorithm were implemented on the following hardware specifications: 1- Intel Pentium iii 870MHz processor 2- Intel CC820 ATX motherboard International Journal of The Computer, the Internet and Management Vol 17No1 (January-April, 2009) pp

5 AI Khamg and ARRamli MB SDRAM 4- Hard disk UANTUM FIREBALLIct20 10 As explained earlier, the implemented system based on the proposed algorithm consisted of these main modules ie, hashing function, data encryption and data decryption All results related to these operations are presented in next section Figure 6 shows the graphic user interface (GUI) of the proposed algorithm All functions was illustrated in this figure like Fetch, Send, Close, Address of the sender, Address of the receiver, Subject name, Delete Message Send Message, Send Attachment, Save the Message, Open File, Encryption, Decryption and finally Clear the Message Fig6 Shows the GUI of the proposed Algorithm 31 Compare the Proposed Algorithm with RAS Algorithm Comparison between the two algorithms, proposed algorithm with size 1024 bit key and the RSA algorithm with size 1024 bit key has done This comparison was conducted on three text files sized of 200 Kb, 350 Kb and 500 Kb for both algorithms For the proposed algorithm as shown in the Tables 1, Table 2, and Table 3 where use four encrypted data tables which names (Tb1, Tb2, Tb3, and Tb4) For each of the encrypted table the encryption and decryption time were calculated The average time of all encrypted tables calculated as well For RSA algorithm, Encryption and decryption time were calculated as shown in Table 4 38

6 Implementation and Evaluation of New Cryptography Algorithm for Applications Table 1 Encryption and decryption time using proposed algorithm for file with size 200Kb Table # The Tdr size Tb1 921ms 1225,s 200kb Tb2 1023ms 1314ms Tb3 954ms 1142ms Tb4 988ms 1174ms Avg 971ms Avg 1214ms The: Time to compute hashing and encryption Tdr : Time to compute decryption and rehashing Table 2 Encryption and decryption time using proposed algorithm for file with size 350Kb Table # The Tdr size Tb1 1241ms 1523ms 350kb Tb2 1144ms 1495ms Tb3 1185ms 1504ms Tb4 1132ms 1488ms Avg 1176ms Avg 1502ms The: Time to compute hashing and encryption Tdr : Time to compute decryption and rehashing Table 3 Encryption and decryption time using proposed algorithm for file with size 500Kb Table # The Tdr size Tb1 1812ms 2102ms 500kb Tb2 1652ms 1955ms Tb3 1658ms 1988ms Tb4 1702ms 1902ms Avg 1713ms Avg 1986ms The: Time to compute hashing and encryption Tdr : Time to compute decryption and rehashing International Journal of The Computer, the Internet and Management Vol 17No1 (January-April, 2009) pp

7 AI Khamg and ARRamli Table 4 Encryption and Decryption time using RSA algorithm Size Te Td 200kb 3256ms 5762ms 350kb 67906ms 11223ms 500kb 10223ms 18256ms Time (ms) Proposed RSA Key size (kb) Fig7 Shows the encryption time in both algorithms Time (ms) Proposed RSA Key size(kb) Fig8 Shows the decryption time in both algorithms Figure7 shows the encryption time consumption in both algorithms The decryption time consumption is shown in figure 8 From the two previous figures, we found out that the encryption and decryption time consuming in the proposed algorithm is shorter than the RSA algorithm, whereas the time increases according to the size of the text For instance, text with size 500 Kb take a longer time to compute the encryption and decryption than the file with text 200Kb As 40

8 Implementation and Evaluation of New Cryptography Algorithm for Applications a result of increase the calculation time when the size of the text is increased 32 Type of Operations in Cryptography Algorithm All algorithms involve a certain finite set of mathematical operation These operations include addition, subtraction, multiplication, division, logical AND logical OR logical XOR logical NOT two s complement, shifts and rotation, expositional moduleo arithmetic, as well as many others All these operations play main role in cryptographic algorithm for symmetric algorithm; the role was to provide a complicated encryption and decryption scheme by using many substitutions and transpositions multiple times over On the other hand, asymmetric algorithm involve very complex mathematical theory as the basis for encryption, decryption Table 5 summarized the type of mathematical operation involved in cryptographic algorithm Table 5 Mathematical operations used in cryptography Algorithm Proposed algorithm International "IDEA Data encryption "Algorithm Blowfish Rivest Cipher " "number 5 RC5 Rike "RSA& RPK "Public Key Algorithm diffe-hellman "DHKA key Agreement "algorithm Operation type Shuffle exchange, Logical XOR, Rotation Logical XOR, Addition, Multiplication, Left Rotation, and Modulo Arithmetic Logical XOR, Addition, and Modulo Arithmetic Logical XOR, Addition, Multiplication, Left Rotation, and Modulo Arithmetic Exponentiation and Modulo Arithmetic Exponentiation and Modulo Arithmetic 33 The Strength of Encryption The strength of encryption is discerned in accordance with the required time to decode a key [10] The calculation of encryption strength of an encryption algorithm is as equation 11-1 ((Differen tialcharacteri stic) /2)) CompSpeed second(1h) 24 h 365days Differential Characteristic = (p1p2) 1 Filtering weight Filtering weight = P1 C1 =2 8 International Journal of The Computer, the Internet and Management Vol 17No1 (January-April, 2009) pp

9 AI Khamg and ARRamli DC = = 2-24 For proposal algorithm DC equal 2 96 because in this algorithm there are four rounds 96 6 ( 2 / 2 ) x 883 x10 = 111E +30 year 3600 x 24 x 365 The Figure 9 shows the comparison of needed time (years) to crack some of algorithms, where we found the AES algorithm has a highest strength, and need a long time to crack then SEED and DES algorithms respectively The proposed algorithm as we can show from the table needs 111E +30 year needed time ( years) 100E E E E E E E E+00 AES SEED DES prposed algorithm algorithm type Fig 9 Decryption Time in Both algorithms 4 Conclusion The problem of time execution and the authentication between sender and receiver are considered in this study New algorithm was developed based on the combination of symmetric and asymmetric algorithm for E- mail encryption It is a powerful tool in protecting the privacy The information and privacy commissioner encourages readers to put this new knowledge into practice and to actively investigate using E mail encryption software If you do not protect your privacy with tools like e mail encryption, as was discussing in the experimental process the time consuming in 4 different table to do encryption and send the message via to another side and doing the decryption process depending on the table number that has made encryption processing where the number of table has been send including in the original message to retrieve the plain message in the recipient side If the message exposed to attacking via hackers while was sending to the receiver it will corrupt and cannot retrieve the original message again There are two ways in which this work can be improved One is speedup the implemented algorithm using parallel processing to reduce time of encryption and decryption The other approach by using hardware component and can either develop this study to encrypt the image files References [1] I Nichols, K Randall (1999), ICSA Guide to Cryptography, McGraw-Hill Companies Inc, New York [2] PMayer (1994), Introduction to cryptography 42

10 Implementation and Evaluation of New Cryptography Algorithm for Applications ion/165727html, January [3] SL Salomao, JM Alcantara, VC Alves, F M Franca (2000), Improved IDEA Integrated circuits and systems design proceedings, September pp [4] YY Al-Salqan (1997), Distributed computing systems, Proceedings of the Sixth IEEE Computer Society Workshop, 29-31Oct pp: [5] S Yongxing, W Xinmei (1999), An approach to finding the attacks on the cryptographic Protocols, National Key Lab on ISN, Xidian University, Xi'an, PXChina [6] B Preneel, R Govaerts, J Vandewalle (1992), Hash functions for information authentication, Proceedings Compeuro 92, 6th annual European Conference on Computer Systems and Software Engineering, May 4-8, pp [7] S L Danielsen, P B Hansen, K E Stubkjaer (1998), Wavelength conversion in optical Packet switching light wave Technology, Vol 16, Issue12, Dec, pp [8] M Blaze,W Diffie, RL Rivest (1996), Minimal key Lengths for symmetric ciphers to provide adequate commercial security January [9] L Gao, L Hanbo, GESobelman (1999), A compact fast variable key size elliptic curve Cryptosystem coprocessor, Field-Programmable Custom Computing Machines, FCCM 99 Proceedings Seventh Annual IEEE Symposium on April pp: [10] L Chang-Doo, C Bong-Jun, P Kyoo- Seok (2004), Design and evaluation of a block encryption Algorithm using dynamic-key mechanism, Future Generation Computer Systems 20, International Journal of The Computer, the Internet and Management Vol 17No1 (January-April, 2009) pp