PGP - S/MIME - Internet Firewalls for Trusted System: Roles of Firewalls Firewall related terminology- Types of Firewalls - Firewall designs - SET for E-Commerce Transactions. Pretty Good Privacy (PGP
CS6004 CYBER FORENSICS NETWORK LAYER SECURITY TRANSPORT LAYER SECURITY IPSec Protocol IP Authentication Header SSL protocol Cryptographic Computations IP ESP TLS Protocol. Key Management Protocol for IPSec. 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 2/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 3/22
Stands for Pretty Good Privacy Developed by Phil Zimmerman in 1995 Documentation and source code is freely available. The package is independent of operating system and processor 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 4/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 5/22
PGP offers 5 services Authentication Confidentiality Compression E-mail compatibility Segmentation 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 6/22
Sender creates a message SHA-1 used to generate 160-bit hash code of message Hash code is encrypted with RSA using the sender's private key, and result is attached to message Receiver uses RSA or DSS with sender's public key to decrypt and recover hash code Receiver generates new hash code for message and compares with decrypted hash code, if match, message is accepted as authentic 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 7/22
Sender generates message and random 128-bit number to be used as session key for this message only Message is encrypted, using CAST-128 / IDEA/3DES with session key Session key is encrypted using RSA with recipient's public key, then attached to message Receiver uses RSA with its private key to decrypt and recover session key Session key is used to decrypt message 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 8/22
uses both services on same message Create signature & attach to message Encrypt both message & signature Attach RSA encrypted session key 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 9/22
PGP compresses message after signing but before encrypting so can store uncompressed message & signature for later verification & because compression is non deterministic uses ZIP compression algorithm 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 10/22
when using PGP will have binary data to send (encrypted message etc) however email was designed only for text hence PGP must encode raw binary data into printable ASCII characters uses radix-64 algorithm maps 3 bytes to 4 printable chars also appends a CRC PGP also segments messages if too big 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 11/22
Consider the mapping of a 24-bit input (a block of three octets) into a four-character output consisting of the 8- bit set in the 32-bit block. Suppose the 24-bit raw text is: 10110010 01100011 00101001 The hexadecimal representation of this text sequence is b2 63 29 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 12/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 13/22
Arranging this input sequence in blocks of 6 bits yields 101100 100110 001100 101001 Extracted 6-bit decimal values 44, 38, 12, 41 Referring to Table, the radix-64 encoding of these decimal values produces the following characters smmp 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 14/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 15/22
http://www.binaryhexconverter.com/hex-to-binary-converter Consider the encoding process from 8-bit input groups to the output character string in the radix-64 alphabet. Input raw text: 0x 15 d0 2f 9e b7 4c 8-bit octets 00010101 11010000 00101111 10011110 10110111 01001100 6-bit index 000101 011101 000000 101111 100111 101011 011101 001100 Decimal 5 29 0 47 39 43 29 12 Output character R64 ASCII format (0x) F d A v n r d M 46 64 41 76 6e 72 64 4d Binary 01000110 01100100 01000001 01110110 01101110 01110010 01100100 01001101 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 16/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 17/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 18/22
Public-Key Algorithms Symmetric-Key Algorithms Compression Algorithm Hash Algorithms 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 19/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 20/22
Consider the encoding process from 8-bit input groups to the output character string in the radix-64 alphabet. Input raw text: 0x 15 d0 2f 9e b7 Input raw text: 0x 15 d0 2f 9e 1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 21/22
1/27/2017 A.Aruna / CS6303 / Arithmetic Logical Unit 22/22