Outline. Cryptography. Encryption/Decryption. Basic Concepts and Definitions. Cryptography vs. Steganography. Cryptography: the art of secret writing

Similar documents
CSCI 454/554 Computer and Network Security. Topic 2. Introduction to Cryptography

Basic Concepts and Definitions. CSC/ECE 574 Computer and Network Security. Outline

CSC 474/574 Information Systems Security

Cryptography Basics. IT443 Network Security Administration Slides courtesy of Bo Sheng

9/30/2016. Cryptography Basics. Outline. Encryption/Decryption. Cryptanalysis. Caesar Cipher. Mono-Alphabetic Ciphers

CSC 774 Network Security

CSC/ECE 774 Advanced Network Security

Introduction to Cryptography

CSCI 454/554 Computer and Network Security. Topic 5.2 Public Key Cryptography

Outline. CSCI 454/554 Computer and Network Security. Introduction. Topic 5.2 Public Key Cryptography. 1. Introduction 2. RSA

CSE 127: Computer Security Cryptography. Kirill Levchenko

Chapter 3 Traditional Symmetric-Key Ciphers 3.1

APNIC elearning: Cryptography Basics

Outline. Public Key Cryptography. Applications of Public Key Crypto. Applications (Cont d)

Security: Cryptography

Security. Communication security. System Security

Classical Cryptography. Thierry Sans

Encryption and Forensics/Data Hiding

Introduction. CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell

CRYPTOLOGY KEY MANAGEMENT CRYPTOGRAPHY CRYPTANALYSIS. Cryptanalytic. Brute-Force. Ciphertext-only Known-plaintext Chosen-plaintext Chosen-ciphertext

Chapter 9 Public Key Cryptography. WANG YANG

CNT4406/5412 Network Security

Classical Encryption Techniques. CSS 322 Security and Cryptography

2/7/2013. CS 472 Network and System Security. Mohammad Almalag Lecture 2 January 22, Introduction To Cryptography

Distributed Systems. 26. Cryptographic Systems: An Introduction. Paul Krzyzanowski. Rutgers University. Fall 2015

Lecture 2. Cryptography: History + Simple Encryption,Methods & Preliminaries. Cryptography can be used at different levels

Computer Security. 08. Cryptography Part II. Paul Krzyzanowski. Rutgers University. Spring 2018

Computer Security. 08r. Pre-exam 2 Last-minute Review Cryptography. Paul Krzyzanowski. Rutgers University. Spring 2018

Security+ Guide to Network Security Fundamentals, Third Edition. Chapter 11 Basic Cryptography

Nature Sunday Academy Lesson Plan

Encryption. INST 346, Section 0201 April 3, 2018

CSCE 813 Internet Security Symmetric Cryptography

Some Stuff About Crypto

Lecture IV : Cryptography, Fundamentals

CSC 580 Cryptography and Computer Security

Cryptography Math/CprE/InfAs 533

Cryptographic Concepts

18-642: Cryptography 11/15/ Philip Koopman

Cryptography MIS

Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2010

Cryptography (Overview)

Classical Encryption Techniques

Lecture 30. Cryptography. Symmetric Key Cryptography. Key Exchange. Advanced Encryption Standard (AES) DES. Security April 11, 2005

Outline Basics of Data Encryption CS 239 Computer Security January 24, 2005

A New Symmetric Key Algorithm for Modern Cryptography Rupesh Kumar 1 Sanjay Patel 2 Purushottam Patel 3 Rakesh Patel 4

Computer Security 3/23/18

Public Key Cryptography

Cryptography and Network Security 2. Symmetric Ciphers. Lectured by Nguyễn Đức Thái

2.1 Basic Cryptography Concepts

Lecture 1 Applied Cryptography (Part 1)

CSE 3461/5461: Introduction to Computer Networking and Internet Technologies. Network Security. Presentation L

Public-key Cryptography: Theory and Practice

Ref:

David Wetherall, with some slides from Radia Perlman s security lectures.

Traditional Symmetric-Key Ciphers. A Biswas, IT, BESU Shibpur

Principles of Information Security, Fourth Edition. Chapter 8 Cryptography

Cryptography Introduction to Computer Security. Chapter 8

Introduction to Cryptography CS 136 Computer Security Peter Reiher October 9, 2014

Chapter 8 Security. Computer Networking: A Top Down Approach. 6 th edition Jim Kurose, Keith Ross Addison-Wesley March 2012

T H E U N I V E R S I T Y O F B R I T I S H C O L U M B I A. Introduction to Cryptography

EEC-484/584 Computer Networks

Cryptographic Techniques. Information Technologies for IPR Protections 2003/11/12 R107, CSIE Building

Winter 2011 Josh Benaloh Brian LaMacchia

Outline. Data Encryption Standard. Symmetric-Key Algorithms. Lecture 4

Public Key Algorithms

Introduction to Network Security Missouri S&T University CPE 5420 Cryptology Overview

S. Erfani, ECE Dept., University of Windsor Network Security

Behrang Noohi. 22 July Behrang Noohi (QMUL) 1 / 18

(2½ hours) Total Marks: 75

Practical Aspects of Modern Cryptography

CRYPTOGRAPHY & DIGITAL SIGNATURE

n-bit Output Feedback

JNTU World JNTU World. JNTU World. Cryptography and Network Security. Downloaded From JNTU World ( )( )JNTU World

Chapter 2: Classical Encryption Techniques

Tuesday, January 17, 17. Crypto - mini lecture 1

L2. An Introduction to Classical Cryptosystems. Rocky K. C. Chang, 23 January 2015

SECURITY IN NETWORKS

Introduction to Cryptography. Vasil Slavov William Jewell College

Other Uses of Cryptography. Cryptography Goals. Basic Problem and Terminology. Other Uses of Cryptography. What Can Go Wrong? Why Do We Need a Key?

OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY

Protecting Information Assets - Week 11 - Cryptography, Public Key Encryption and Digital Signatures. MIS 5206 Protecting Information Assets

ASYMMETRIC CRYPTOGRAPHY

Cryptanalysis. Ed Crowley

Cryptography Functions

UNIT - IV Cryptographic Hash Function 31.1

CSC 474/574 Information Systems Security

LECTURE 4: Cryptography

Cryptographic Hash Functions

Information Systems Security

Cryptography Introduction

Topics. Number Theory Review. Public Key Cryptography

Cryptography BITS F463 S.K. Sahay

PROTECTING CONVERSATIONS

(a) Symmetric model (b) Cryptography (c) Cryptanalysis (d) Steganography

Introduction to Cryptography, Helger Lipmaa

Cryptosystems. Truong Tuan Anh CSE-HCMUT

Study Guide to Mideterm Exam

NETWORK SECURITY & CRYPTOGRAPHY

Lecture 6: Symmetric Cryptography. CS 5430 February 21, 2018

Security Requirements

Transcription:

Outline CSCI 454/554 Computer and Network Security Basic Crypto Concepts and Definitions Some Early (Breakable) Cryptosystems Key Issues Topic 2. Introduction to Cryptography 2 Cryptography Basic Concepts and Definitions Cryptography: the art of secret writing Converts data into unintelligible (randomlooking) form Must be reversible (can recover original data without loss or modification) Not the same as compression n bits in, n bits out Can be combined with compression What s the right order? 3 4 Cryptography vs. Steganography Encryption/Decryption Cryptography conceals the contents of communication between two parties Anonymous communication conceals who is communicating Kerckhoffs's principle A cryptosystem should be secure even if everything about the system, except the key, is public knowledge Steganography (hiding in plain sight) conceals the very existence of communication Examples? Watermark Info leakage Security through obscurity Defense in depth Open source software? 5 encryption key Plaintext: a message in its original form decryption key Ciphertext: a message in the transformed, unrecognized form Encryption: the process that transforms a into a Decryption: the process that transforms a to the corresponding Key: the value used to control encryption/decryption. 6

Cryptanalysis code breaking, attacking the cipher Difficulty depends on sophistication of the cipher amount of information available to the code breaker Any cipher can be broken by exhaustive trials, but rarely practical When can you recognize if you have succeeded? Ciphertext Only Attacks Ex.: attacker can intercept encrypted communications, nothing else when is this realistic? Breaking the cipher: analyze patterns in the provides clues about the encryption method/key 7 8 Known Plaintext Attacks Ex.: attacker intercepts encrypted text, but also has access to some of the corresponding (definite advantage) When is this realistic? Requires - pairs to recover the key, but the attacker cannot choose which particular pairs to access. Makes some codes (e.g., monoic ciphers) very easy to break Chosen Plaintext Attacks Ex.: attacker can choose any desired, and intercept the corresponding When is this realistic? Choose exactly the messages that will reveal the most about the cipher 9 10 Chosen Ciphertext Attacks Ex.: attacker can present any desired to the cipher, and get the corresponding When is this realistic? Isn t this the goal of cryptanalysis??? The Weakest Link in Security Cryptography is rarely the weakest link Weaker links Implementation of cipher Distribution or protection of keys 11 12

Perfectly Secure Ciphers 1. Ciphertext does not reveal any information about which s are more likely to have produced it i.e., the cipher is robust against chosen attacks and 2. Plaintext does not reveal any information about which s are more likely to be produced i.e, the cipher is robust against chosen attacks Computationally Secure Ciphers 1. The cost of breaking the cipher quickly exceeds the value of the encrypted information and/or 2. The time required to break the cipher exceeds the useful lifetime of the information Under the assumption there is not a faster / cheaper way to break the cipher, waiting to be discovered 13 14 Secret Keys vs. Secret Algorithms Security by obscurity We can achieve better security if we keep the algorithms secret Hard to keep secret if used widely Reverse engineering, social engineering Publish the algorithms Security of the algorithms depends on the secrecy of the keys Less unknown vulnerability if all the smart (good) people in the world are examine the algorithms Secret Keys vs. Secret Algorithms Commercial world Published Wide review, trust Military Keep algorithms secret Avoid giving enemy good ideas Military has access to the public domain knowledge anyway. 15 16 Caesar Cipher Replace each letter with the one 3 letters later in the ex.: CAT! FDW Some Early Ciphers Trivial to break 17 18

Captain Midnight Secret Decoder Ring Replace each letter by one that is δ positions later, where δ is selectable (i.e., δ is the key) example: IBM! HAL (for δ=25) Also trivial to break with modern computers (only 26 possibilities) 19 Mono-Alphabetic Ciphers Generalized substitution cipher: an arbitrary (but fixed) mapping of one letter to another 26! ( 4.0*10 26 2 88 ) possibilities The key must specify which permutation; how many bits does that take? 20 Attacking Mono-Alphabetic Ciphers Broken by statistical analysis of letter, word, and phrase frequencies of the language Frequency of single letters in English language, taken from a large corpus of text: Attacking (Cont d) If all words equally likely, probability of any one word would be quite low how many words are there in the English language? Actual frequencies of some words in English language: 21 22 (Tip: Counting Letter Frequencies) Program letter, written by TJ O Connor Output for Declaration of Independence: 23 Vigenere Cipher A set of mono-ic substitution rules (shift amounts) is used the key determines what the sequence of rules is also called a poly-ic cipher Ex.: key = (3 1 5) i.e., substitute first letter in by letter+3, second letter by letter+1, third letter by letter+5 then repeat this cycle for each 3 letters 24

Vigenere (Cont d) Ex.: = BANDBAD message shift amount B A N D B A D 3 1 5 3 1 5 3 message E B S G C F G Breaking the cipher: look for repeated patterns in the Hill Ciphers Encrypts m letters of at each step i.e., is processed in blocks of size m Encryption of p to produce c is accomplished by: c = Kp the m m matrix K is the key K s determinant must be relatively prime to size of (26 for our example) decryption is multiplication by inverse: p = K -1 c remember: all arithmetic mod 26 25 26 Hill Cipher Example 1 2 For m = 2, let K =, K -1 = 3 5 21 2 3 25 Plaintext p = A B X Y D G 0 1 23 24 3 6 (21*15+2*13) mod 26 (1*0+2*1) mod 26 (3*23+5*24) mod 26 Ciphertext c = 2 5 19 7 15 13 C F T H P N Hill (Cont d) Fairly strong for large m But, vulnerable to chosen attack choose m s, generate corresponding s form a m x m matrix X from the s, and m x m matrix Y from the s (details omitted) can solve directly for K (i.e., K = Y X -1 ) 27 28 Permutation Ciphers The previous codes are all based on substituting one symbol in the for another symbol in the Permutation cipher: permute (rearrange, transpose) the letters in the message the permutation can be fixed, or can change over the length of the message Permutation (Cont d) Permutation cipher ex. #1: Permute each successive block of 5 letters in the message according to position offset <+1,+3,-2,0,-2> message W H Y O W H Y C A N T I F L Y Y W W O H C H N A Y F T Y L I message 29 30

Permutation (Cont d) Permutation cipher ex. #2: arrange in blocks of n columns and m rows then permute columns in a block according to a key K n = 4 Key (perm. of columns)! 4 3 1 2 Plaintext 1 2 3 4 symbol 5 6 7 8 positions 9 10 11 12 sequence (by position) for one block m = 3 3 7 11 4 8 12 2 6 10 1 5 9 31 Permutation (Cont d) A longer example: = ATTACK POSTPONED UNTIL TWO AM Key: 4 3 1 2 5 7 6 A T T A C K P O S T P O N E D U N T I L T W O A M X Y Z TTNA APTM TSUO AODW COIX PETZ KNLY 32 A Perfectly Secure Cipher: One-Time Pads According to a theorem by Shannon, a perfectly secure cipher requires: a key length at least as long as the message to be encrypted the key can only be used once (i.e., for each message we need a new key) Very limited use due to need to negotiate and distribute long, random keys for every message Idea OTP (Cont d) generate a random bit string (the key) as long as the, and share with the other communicating party encryption: XOR this key with to get decrypt: XOR same key with to get Key 33 34 OTP (Cont d) key (pad) 01011001 01000101 01010011 = 00010111 00001010 01110011 = 01001110 01001111 00100000 Some Key Issues Why can t the key be reused? 35 36

Types of Cryptography Secret Key Cryptography Number of keys Hash functions: no key Secret key cryptography: one key Public key cryptography: two keys - public, private The way in which the is processed Stream cipher: encrypt input message one symbol at a time Block cipher: divide input message into blocks of symbols, and processes the blocks in sequence May require padding 37 encryption decryption key Same key key Same key is used for encryption and decryption Also known as Symmetric cryptography Conventional cryptography 38 Secret Key Cryptography (Cont d) Basic technique Product cipher: Multiple applications of interleaved substitutions and permutations S P S P S Secret Key Cryptography (Cont d) Ciphertext approximately the same length as Examples Stream Cipher: RC4 Block Cipher: DES, IDEA, AES key 39 40 Applications of Secret Key Cryptography Transmitting over an insecure channel Challenge: How to share the key? Secure Storage on insecure media Authentication Challenge-response To prove the other party knows the secret key Must be secure against chosen attack Integrity check Message Integrity Code (MIC) a.k.a. Message Authentication Code (MAC) Public Key Cryptography (PKC) encryption decryption Public key Private key Invented/published in 1975 A public/private key pair is used Public key can be publicly known Private key is kept secret by the owner of the key Much slower than secret key cryptography Also known as Asymmetric cryptography 41 42

Public Key Cryptography (Cont d) message Sign Private key Digital signature Another mode: digital signature Verify Public key Only the party with the private key can create a digital signature. The digital signature is verifiable by anyone who knows the public key. The signer cannot deny that he/she has done so. The signature is created on a hash value of the message. Yes/No 43 Applications of Public Key Cryptography Data transmission: Alice encrypts m a using Bob s public key e B, Bob decrypts m a using his private key d B. Storage: Can create a safety copy: using public key of trusted person. Authentication: No need to store secrets, only need public keys. Secret key cryptography: need to share secret key for every person to communicate with. 44 Applications of PKC (Cont d) Digital signatures Sign hash H(m) with the private key Authorship Integrity Non-repudiation: can t do with secret key cryptography Key exchange Establish a common session key between two parties Particularly for encrypting long messages Message of arbitrary length Also known as Message digests Hash Algorithms Hash H One-way transformations One-way functions Hash functions A fixed-length short message Length of H(m) much shorter then length of m Usually fixed lengths: 128 or 160 bits 45 46 Hash Algorithms (Cont d) Desirable properties of hash functions Performance: Easy to compute H(m) One-way property (Preimage resistance): Given H(m) but not m, it s difficult to find m. Weak collision free (Second preimage resistance): Given m 1, it s difficult to find m 2 such that H(m 1 ) = H(m 2 ). Strong collision free (Collision Resistance): Computationally infeasible to find m 1, m 2 such that H(m 1 ) = H(m 2 ) Applications of Hash Functions Primary application Generate/verify digital signatures Message m Message m H H Signature Sig(H(m)) H(m) H(m) Sign Private key Verify Public key Signature Sig(H(m)) Yes/No 47 48

Applications of Hash Functions (Cont d) Password hashing Doesn t need to know password to verify it Store H(password+salt) and salt, and compare it with the user-entered password Salt makes dictionary attack more difficult Message integrity Agree on a secrete key k Compute H(m k) and send with m Doesn t require encryption algorithm, so the technology is exportable Applications of Hash Functions (Cont d) Message fingerprinting Verify whether some large data structures (e.g., a program) has been modified Keep a copy of the hash At verification time, recompute the hash and compare Hashing program and the hash values must be protected separately from the large data structures 49 50 Summary Cryptography is a fundamental, and most carefully studied, component of security not usually the weak link Perfectly secure ciphers are possible, but too expensive in practice Early ciphers aren t nearly strong enough Key distribution and management is a challenge for any cipher 51

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback