applied cryptography pt 1
play

Applied Cryptography (Pt. 1) Engineering Secure Software Last - PowerPoint PPT Presentation

Dec 17, 2022 •33 likes •333 views

Applied Cryptography (Pt. 1) Engineering Secure Software Last Revised: October 13, 2020 SWEN-331: Engineering Secure Software Benjamin S Meyers 1 Networks, Cryptography, and You Most application developers Dont implement networking

  1. Applied Cryptography (Pt. 1) Engineering Secure Software Last Revised: October 13, 2020 SWEN-331: Engineering Secure Software Benjamin S Meyers 1

  2. Networks, Cryptography, and You Most application developers ● Don’t implement networking protocols ○ Don’t implement encryption algorithms ○ Knowing how to safely deploy them, however, is paramount ● Different situations call for different techniques ○ Types of authentication ■ One-way digests (hashes) ■ Symmetric-key vs. Public-key ■ Trusting public keys ■ Know thy algorithms instead of “just use crypto” ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 2

  3. The Basic Problems The internet is a scary, scary place ● Anyone can join ○ Anyone can sniff ○ BUT! “Distrust everything all the time” is not feasible ● Authentication: are you who you say you are? ● Trust must be built somehow ○ Encryption: can someone listen in? ● Authentication and encryption overlap in techniques ● How do we encrypt data for someone we do not trust? ○ How do we know nobody else has the key? ○ How do we authenticate this machine? ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 3

  4. Multi-Factor Authentication Security experts recommend that we utilize three types of ● authentication: Something you know ○ e.g. passwords (but these can be guessed) ■ Something you have ○ Maybe a physical item ■ Maybe a one-time randomly generated key ■ e.g. Both: pre-seeded secure PRNG key fob ■ Something you are ○ Biometrics? Tons of false positives ■ Easier for humans, at least right now (e.g. facial recognition) ■ SWEN-331: Engineering Secure Software Benjamin S Meyers 4

  5. Multi-Factor Authentication Something you know ● e.g. passwords (but these can be guessed) ○ Which is a better password? ○ A: jK8v!ge4D B: CorrectHorseBatteryStaple SWEN-331: Engineering Secure Software Benjamin S Meyers 5

  6. Multi-Factor Authentication Something you know ● e.g. passwords (but these can be guessed) ○ Which is a better password? ○ A: jK8v!ge4D B: CorrectHorseBatteryStaple 9 characters 25 characters ● ● Hard to remember Easy to remember ● ● A couple days to guess Many lifetimes to guess ● ● SWEN-331: Engineering Secure Software Benjamin S Meyers 6

  7. Multi-Factor Authentication Something you have ● Maybe a physical item ○ Authenticator app on your phone ■ Maybe a one-time randomly generated key ○ e.g. Both: pre-seeded secure PRNG key fob ○ YubiKey (or similar) ■ Source: https://blockspot.io/ Source: https://www.yubico.com/ SWEN-331: Engineering Secure Software Benjamin S Meyers 7

  8. Verifying Integrity of Data Compare data to “known correct answer” ● Not in “plain text” ○ Need “obfuscated” version of “the truth” ○ Using a hash digest ● A variable-length plaintext is “hashed” into a fixed-length hash ○ value, often called a “message digest” or “hash” Hash functions verify integrity ○ The digest is sensitive to changes in the source data ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 8

  9. Hash Collisions By definition, hash digests cannot uniquely map data to hash ● Thus, many pieces of data can map to the same hash ○ A collision is 2+ known pieces of data that map to the same hash ○ Can be used to “spoof” a password ○ MD4, MD5, SHA1 are now considered “broken” (thus insecure) ● Colliding digests can be manufactured ○ Creating a rogue cert using hash collisions in MD5 ○ Still cannot be reversed, and probably won’t be ○ Password crackers: JohnTheRipper, Brutus, rainbowcrack, ○ cainandabel Recommendation: SHA2 (256bit) ● SWEN-331: Engineering Secure Software Benjamin S Meyers 9

  10. Authentication with Hash Digests Problem: sensitive data needs to be identified only by the ● original user, nobody else e.g. user wants to authenticate, but we don’t want to store ○ passwords in plaintext in case an attacker breaks in Solution: hash digest algorithms ● Compute a very large number based on a chunk of data ○ The more numbers it can map to, the better (e.g. 2 128 ) ■ Similar chunks of data should not compute the same hash ■ Same number? Highly probable it’s the same data ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 10 10

  11. Authentication with Hashes Use case: (re)set password ● Bobby Server Database User inputs password ○ Already Server hashes password ○ authenticated Server stores hash ○ set pwd=“xkcd327” SHA512(“xkcd327”) store Bobby:cc4b3... Done! Done! SWEN-331: Engineering Secure Software Benjamin S Meyers 11 11

  12. Authentication with Hashes Use case: (re)set password ● Bobby Server Database User inputs password ○ Already Server hashes password ○ authenticated Server stores hash ○ set pwd=“xkcd327” Abuse Case: break-in ● SHA512(“xkcd327”) Attacker steals plaintext ○ store Bobby:cc4b3... passwords from database Harm done: can authenticate ○ as any user Done! Mitigation: hashes can’t be ○ Done! reversed SWEN-331: Engineering Secure Software Benjamin S Meyers 12 12

  13. Authentication with Hashes Use case: authenticate ● Bobby Server Database User inputs password ○ login pwd=“xkcd327” Server computes hash ○ Server compares computed ○ Is Bobby hash with stored hash SHA512(“xkcd327”)? Yes! Come on in! SWEN-331: Engineering Secure Software Benjamin S Meyers 13 13

  14. Abuse Case: Rainbow Tables What if an attacker steals the hashes? ● Common passwords + common digests = common hashes ○ Thus, attackers have large databases of pre-computed hashes ○ called rainbow tables Solution: hashing with salt ● What is salt? Today’s VOTD ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 14 14

  15. Salt & Pepper Salt: ● Add a random string (salt) to the password before hashing ○ Store hash and salt ○ Salt only has to be long enough to be unique ○ Pepper: ● Add a random string (pepper) to the password before hashing ○ Do not store the pepper, or store it in another location ○ Pepper has to be long enough to remain secret (<= 112 bits) ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 15 15

  16. Symmetric-Key Cryptography Encrypt key == Decrypt key (shared secret) ● So keep that key a secret! ○ Traditional arrangement ○ Modern algorithms ● e.g. AES, Blowfish, 3DES ○ Fastest and mathematically strongest form of cryptography ● Traditional usage ● Encryption of data storage: backups, hard drives, etc. ○ Networking situations: once you exchange the key! ○ SWEN-331: Engineering Secure Software Benjamin S Meyers 16 16

  17. Public-Key (Asymmetric) Cryptography Encrypt key is public , decrypt key is private ● Anyone in the world can encrypt data and send it to you ○ But they can’t decrypt any other messages sent to you ○ Most popular modern algorithm: RSA ● Factorization of two prime numbers ○ Public/private keys generated from computing two very large prime ○ numbers RSA has never been cracked, although… ● The algorithms for generating very large prime numbers have been ○ cracked and are often poorly implemented Result of poor PRNG practices (bad algorithms and bad seeds) ○ Traditional usage: networking (SSH, SSL, PGP) ● SWEN-331: Engineering Secure Software Benjamin S Meyers 17 17

  18. Symmetric vs. Asymmetric Encryption Source: https://www.101computing.net/symmetric-vs-asymmetric-encryption/ SWEN-331: Engineering Secure Software Benjamin S Meyers 18 18

  19. Public-Key Authentication Key: ● E[..] is encrypt (public) ○ D[..] is decrypt (private) ○ D[E[m]]=m is encrypt then decrypt m (normal usage) ○ D[m] is use the decryption on plain text m (strange, but legal) ○ Scenario: Adam and Eve ● ○ Adam’s public and private: E Adam [..] and D Adam [..] ○ Eve’s public and private: E Eve [..] and D Eve [..] ○ They know each others’ public keys Adam wants to ensure Eve that the message came from him ● So he does m=“This should be bubbles: D Adam [bubbles]” ○ Sends E Eve [m] to Eve -- only Eve can read the message with D Eve [m] ○ Eve checks E Adam [D Adam [bubbles]]=bubbles to be sure that the message came ○ from Adam SWEN-331: Engineering Secure Software Benjamin S Meyers 19 19

  20. Public/Private Key Encryption Encrypted User 1 Message User 2 Public Key Message Encrypted User 2 Private Key User 2 Message Message SWEN-331: Engineering Secure Software Benjamin S Meyers 20 20

  21. Digital Signing Signed User 1 Message User 1 Private Key Message Signed ‘Validated’ User 1 Public Key User 2 Message Message Validation: ● Message has not been modified ○ Message came from a known sender ○ Message is NOT encrypted ● SWEN-331: Engineering Secure Software Benjamin S Meyers 21 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp; http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Applied Cryptography Lecture 1 Applied Cryptography Lecture 1 Our first encounter with secrecy:

Applied Cryptography Lecture 1 Applied Cryptography Lecture 1 Our first encounter with secrecy:

Applied Cryptography Lecture 1 Applied Cryptography Lecture 1 Our first encounter with secrecy: Secret-Sharing Secrecy Secrecy Cryptography is all about controlling access to information Access to learning and/or influencing

2.01k views • 171 slides
Course Information CS 838 Applied Cryptography Instructor: Thomas Ristenpart Website:

Course Information CS 838 Applied Cryptography Instructor: Thomas Ristenpart Website:

Course Information CS 838 Applied Cryptography Instructor: Thomas Ristenpart Website: http://pages.cs.wisc.edu/ rist/cs838/ 1 / 55 Cryptography usage Did you use any cryptography today? 2 / 55 Cryptography usage Did you use any

851 views • 83 slides
Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and Source Code in C , 2nd. Edition, Bruce Schneier, John Wiley &amp; Sons, Inc. Outline Cryptographic Protocols Introduction Introduction

759 views • 45 slides
Classical Cryptography CS461/ECE422 Fall 2009 1 Reading CS Chapter 9 section 1 through 2.2

Classical Cryptography CS461/ECE422 Fall 2009 1 Reading CS Chapter 9 section 1 through 2.2

Classical Cryptography CS461/ECE422 Fall 2009 1 Reading CS Chapter 9 section 1 through 2.2 Applied Cryptography , Bruce Schneier Handbook of Applied Cryptography, Menezes, van Oorschot, Vanstone Available online

739 views • 43 slides
Cryptography Made to Measure Workshop on Applied Cryptography Matt Robshaw NTU, Singapore

Cryptography Made to Measure Workshop on Applied Cryptography Matt Robshaw NTU, Singapore

Cryptography Made to Measure Workshop on Applied Cryptography Matt Robshaw NTU, Singapore Orange Labs December 3, 2020 Paris, France Orange Labs A New Kind of Network Telecommunication companies like France Tlcom / Orange are

601 views • 36 slides
Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall:

Symmetric Key Encryp.on 9/9/2009 598MAN Applied Cryptography 1 Outline Recall: defini.ons of encryp.on Perfect secrecy CPA security CCA security Today Prac.cal construc.ons 9/9/2009 598MAN Applied Cryptography

490 views • 28 slides
Bitcoin &amp; Blockchain applied cryptography problems Adam Back &lt;adam@blockstream.com&gt;

Bitcoin &amp; Blockchain applied cryptography problems Adam Back &lt;adam@blockstream.com&gt;

Bitcoin &amp; Blockchain applied cryptography problems Adam Back &lt;adam@blockstream.com&gt; Cryptography adoption criteria Conservative security assumptions Or graceful security degradation Reasonably compact serialisation

1.18k views • 22 slides
T riple Handshake: can cryptography, formal methods, and applied security be friends?

T riple Handshake: can cryptography, formal methods, and applied security be friends?

T riple Handshake: can cryptography, formal methods, and applied security be friends? http://miTLS.org Karthik Bhargavan Markulf Kohlweiss with Antoine Delignat-Lavaud, Cdric Fournet, Alfredo Pironti, Pierre-Yves Strub, Santiago Zanella

639 views • 46 slides
Cast of Characters Alice and Bob Applied Cryptography Week 1 Alice and Bob are always sending

Cast of Characters Alice and Bob Applied Cryptography Week 1 Alice and Bob are always sending

Cast of Characters Alice and Bob Applied Cryptography Week 1 Alice and Bob are always sending secret messages to Basic Tools and Protocols each other. Eve Frank Beatrous Eve is always listening in (Eavesdropping) on Alices and Bobs

245 views • 7 slides
Isogeny-Based Public-Key Cryptography David Jao Department of Combinatorics &amp; Optimization

Isogeny-Based Public-Key Cryptography David Jao Department of Combinatorics &amp; Optimization

Isogeny-Based Public-Key Cryptography David Jao Department of Combinatorics &amp; Optimization Centre for Applied Cryptographic Research June 17, 2016 CENTRE FOR APPLIED CRYPTOGRAPHIC RESEARCH (CACR) Motivation: Post-Quantum Cryptography

355 views • 16 slides
Authentication CS461/ECE422 1 Reading Chapter 10 from Handbook of Applied Cryptography

Authentication CS461/ECE422 1 Reading Chapter 10 from Handbook of Applied Cryptography

Authentication CS461/ECE422 1 Reading Chapter 10 from Handbook of Applied Cryptography http://www.cacr.math.uwaterloo.ca/hac/ about/chap10.pdf 2 Overview Basics of an authentication system Passwords Storage Selection

410 views • 38 slides
Public Key Cryptography G. Eric Moorhouse, UW Math References A.J. Menezes, P.C. van Oorschot

Public Key Cryptography G. Eric Moorhouse, UW Math References A.J. Menezes, P.C. van Oorschot

Public Key Cryptography G. Eric Moorhouse, UW Math References A.J. Menezes, P.C. van Oorschot and S.A. Vanstone, Applied Cryptography, CRC Press, 1997. D.R. Stinson, Cryptography: Theory and Prac- tice, CRC Press, 1995. R.L. Rivest, A. Shamir

443 views • 20 slides
CSCE 790 Secure Computer Systems Applied Cryptography Professor Qiang Zeng Spring 2020

CSCE 790 Secure Computer Systems Applied Cryptography Professor Qiang Zeng Spring 2020

CSCE 790 Secure Computer Systems Applied Cryptography Professor Qiang Zeng Spring 2020 Symmetric vs. Asymmetric Cryptography Symmetric cipher is much faster With asymmetric ciphers, you can post your Public Key to the world

273 views • 26 slides
APPLIED CRYPTOGRAPHY: FROM ALGORITHMS TO LIBRARIES @ABSTRACTJ GOAL OF THIS PRESENTATION

APPLIED CRYPTOGRAPHY: FROM ALGORITHMS TO LIBRARIES @ABSTRACTJ GOAL OF THIS PRESENTATION

APPLIED CRYPTOGRAPHY: FROM ALGORITHMS TO LIBRARIES @ABSTRACTJ GOAL OF THIS PRESENTATION ALGORITHMS An algorithm must be seen to be believed. Donald E. Knuth THIS TALK IS NOT ABOUT ALGORITHMS, ONLY SECURITY the state of being

1.03k views • 74 slides
Applied Cryptography (Pt. 2) Engineering Secure Software Last Revised: October 16, 2020

Applied Cryptography (Pt. 2) Engineering Secure Software Last Revised: October 16, 2020

Applied Cryptography (Pt. 2) Engineering Secure Software Last Revised: October 16, 2020 SWEN-331: Engineering Secure Software Benjamin S Meyers 1 Recap Symmetric keys Benefit: fastest, mathematically the strongest Drawback:

425 views • 23 slides
Recommendation to Protect Your Data in the Future Prof. Dr.-Ing. Tim Gneysu Arbeitsgruppe

Recommendation to Protect Your Data in the Future Prof. Dr.-Ing. Tim Gneysu Arbeitsgruppe

Recommendation to Protect Your Data in the Future Prof. Dr.-Ing. Tim Gneysu Arbeitsgruppe Technische Informatik / IT-Sicherheit (CEITS) LEARNTEC Karlsruhe 27.01.2016 Long-Term Security in the Real World Most IT applications have a

505 views • 18 slides
Modern cryptography 2 CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography 2 CSCI 470: Web Science Keith Vertanen Overview Modern cryptography

Modern cryptography 2 CSCI 470: Web Science Keith Vertanen Overview Modern cryptography Asymmetric cryptography Diffie-Hellman key exchange (last time) Pubic key: RSA Pretty Good Privacy (PGP) Digital signing Public

682 views • 26 slides
Everything you need to know about Cryptography (unless youre a mathematician) Dont try

Everything you need to know about Cryptography (unless youre a mathematician) Dont try

Everything you need to know about Cryptography (unless youre a mathematician) Dont try this at home. Get an expert. Basic Cryptographic Tools Seriously though. Bad crypto ruins lives. Basic Cryptographic Tools Cryptographic Hash

177 views • 17 slides
Cryptography Cryptography secret- secret -key and and public key and and public- -key

Cryptography Cryptography secret- secret -key and and public key and and public- -key

Cryptography Cryptography secret- secret -key and and public key and and public- -key technologies key technologies September 4, 2020 Administrative getting VM files getting VM files Administrative new 1 Administrative

736 views • 45 slides
Protection and Security - II Encrypts a block of data at a time (64 bit messages, with 56 bit

Protection and Security - II Encrypts a block of data at a time (64 bit messages, with 56 bit

CSC 4103 - Operating Systems Symmetric Encryption Spring 2007 Same key used to encrypt and decrypt E ( k ) can be derived from D ( k ), and vice versa Lecture - XXI DES is most commonly used symmetric block-encryption algorithm

496 views • 4 slides
Securing the connected world Security acceleration for cloud computing/data centers Company

Securing the connected world Security acceleration for cloud computing/data centers Company

Securing the connected world Security acceleration for cloud computing/data centers Company history 1991: Founded as ASIC design house in Louvain-la-Neuve, Belgium 1995: Becomes part of the Barco group. 1999: 1st SoC development for

189 views • 14 slides
Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO Use this space to add an image. IMPLEMENTATION, OR CRYPTO RNG Insert an image and change the scale to cover this box. ALSO, KEY MANAGEMENT IS

1.01k views • 81 slides
Protection &amp; Security Tevfik Ko ar University at Buffalo December 6 th , 2011 1 The

Protection &amp; Security Tevfik Ko ar University at Buffalo December 6 th , 2011 1 The

CSE 421/521 - Operating Systems Fall 2011 Lecture - XXVI Protection &amp; Security Tevfik Ko ar University at Buffalo December 6 th , 2011 1 The Security Problem Protecting your system resources, your files, identity, confidentiality,

362 views • 13 slides

More recommend