authentication and data integrity
play

Authentication and Data Integrity Authentication with Symmetric - PDF document

Oct 28, 2023 •336 likes •613 views

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

  1. Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of Engineering and Technology CQUniversity Australia Digital Signatures Prepared by Steven Gordon on 15 Apr 2020, auth.tex, r1850 1

  2. Cryptography Contents Authentication and Data Integrity Aims of Aims of Authentication Authentication Authentication with Symmetric Key Encryption Authentication with Symmetric Key Encryption Authentication with Hash Functions Authentication Authentication with Hash Functions with MACs Digital Signatures Authentication with MACs Digital Signatures 2

  3. Cryptography Attacks on Information Transfer Authentication and Data Integrity 1. Disclosure: encryption Aims of 2. Traffic analysis: encryption Authentication Authentication 3. Masquerade: message authentication with Symmetric Key Encryption 4. Content modification: message authentication Authentication with Hash 5. Sequence modification: message authentication Functions Authentication 6. Timing modification: message authentication with MACs 7. Source repudiation: digital signatures Digital Signatures 8. Destination repudiation: digital signatures 3 We have cover encryption primarily from the perspective of preventing disclosure attacks, i.e. providing confidentiality. Now we will look at pre- venting/detecting masquerade, modification and repudiation attacks using authentication techniques. Note that we consider digital signatures as a form of authentication.

  4. Cryptography Aims of Authentication Authentication and Data Integrity ◮ Receiver wants to verify: Aims of 1. Contents of the message have not been modified ( data Authentication authentication ) Authentication with Symmetric 2. Source of message is who they claim to be ( source Key Encryption authentication ) Authentication ◮ Different approaches available: with Hash Functions ◮ Symmetric Key Encryption Authentication ◮ Hash Functions with MACs ◮ Message Authentication Codes (MACs) Digital Signatures ◮ Public Key Encryption (i.e. Digital Signatures) 4 We will cover these different approaches in the following sections.

  5. Cryptography Contents Authentication and Data Integrity Aims of Aims of Authentication Authentication Authentication with Symmetric Key Encryption Authentication with Symmetric Key Encryption Authentication with Hash Functions Authentication Authentication with Hash Functions with MACs Digital Signatures Authentication with MACs Digital Signatures 5

  6. Cryptography Symmetric Encryption for Authentication Authentication and Data Integrity Aims of Authentication Authentication with Symmetric Key Encryption Authentication Credit: Figure 12.1(a) in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 with Hash Functions Authentication with MACs Digital Signatures 6 The figure on slide 6 shows symmetric key encryption used for confiden- tiality. Only B (and A) can recover the plaintext. However in some cases this also provides: • Source Authentication: A is only other user with key; B knows it must have come from A • Data Authentication: successfully decrypted implies data has not been modified The source and data authentication assumes that the decryptor (B) can recognise that the result of the decryption, i.e. the output plaintext, is correct.

  7. Cryptography Recognising Correct Plaintext in English Authentication (question) and Data Integrity Aims of B receives ciphertext (supposedly from A , using shared Authentication secret key K ): Authentication with Symmetric DPNFCTEJLYONCJAEZRCLASJTDQFY Key Encryption B decrypts with key K to obtain plaintext: Authentication with Hash SECURITYANDCRYPTOGRAPHYISFUN Functions Was the plaintext encrypted with key K (and hence sent by Authentication with MACs A )? Is the ciphertext received the same as the ciphertext Digital Signatures sent by A ? 7 The typical answer for above is yes, the plaintext was sent by A and nothing has been modified. This is because the plaintext “makes sense”. Our knowledge of most ciphers (using the English language) is that if the wrong key is used or the ciphertext has been modified, then decrypting will produce an output that does not make sense (not a combination of English words).

  8. Cryptography Recognising Correct Plaintext in English Authentication (question) and Data Integrity Aims of B receives ciphertext (supposedly from A , using shared Authentication secret key K ): Authentication with Symmetric QEFPFPQEBTOLKDJBPPXDBPLOOVX Key Encryption B decrypts with key K to obtain plaintext: Authentication with Hash FTUEUEFTQIDAZSYQEEMSQEADDKM Functions Was the plaintext encrypted with key K (and hence sent by Authentication with MACs A )? Is the ciphertext received the same as the ciphertext Digital Signatures sent by A ? 8 Based on the previous argument, the answer is no. Or more precise, either the plaintext was not sent by A , or the ciphertext was modified along the way. This is because the plaintext makes no sense, and we were expected it to do so.

  9. Cryptography Recognising Correct Plaintext in Binary Authentication (question) and Data Integrity Aims of B receives ciphertext (supposedly from A , using shared Authentication secret key K ): Authentication with Symmetric 0110100110101101010110111000010 Key Encryption B decrypts with key K to obtain plaintext: Authentication with Hash 0101110100001101001010100101110 Functions Was the plaintext encrypted with key K (and hence sent by Authentication with MACs A )? Is the ciphertext received the same as the ciphertext Digital Signatures sent by A ? 9 This is harder. We cannot make a decision without further understanding of the expected structure of the plaintext. What are the plaintext bits supposed to represent? A field in a packet header? A portion of a binary file? A random key? Without further information, the receiver does not know if the plaintext is correct or not. And therefore does not know if the ciphertext was sent by A and has not been modified.

  10. Cryptography Recognising Correct Plaintext Authentication and Data Integrity ◮ Many forms of information as plaintext can be Aims of recognised at correct Authentication ◮ However not all, and often not automatically Authentication with Symmetric Key Encryption ◮ Authentication should be possible without decryptor Authentication having to know context of the information being with Hash Functions transferred Authentication ◮ Authentication purely via symmetric key encryption is with MACs Digital Signatures insufficient ◮ Solutions: ◮ Add structure to information, such as error detecting code ◮ Use other forms of authentication, e.g. MAC 10 We will see some of the alternatives in the following sections.

  11. Cryptography Contents Authentication and Data Integrity Aims of Aims of Authentication Authentication Authentication with Symmetric Key Encryption Authentication with Symmetric Key Encryption Authentication with Hash Functions Authentication Authentication with Hash Functions with MACs Digital Signatures Authentication with MACs Digital Signatures 11

  12. Cryptography Authentication by Hash and then Encrypt Authentication and Data Integrity Aims of Authentication Authentication with Symmetric Key Encryption Authentication with Hash Functions Credit: Figure in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 Authentication with MACs Digital Signatures 12 The figure on slide 12 shows a scheme where the hash function is used to add structure to the message. When the receiver decrypts, they will be able to determine if the plaintext is correct by comparing the hash of the message component with the stored hash value. This is one method of addressing the problem of using just symmetric key encryption on its own for authentication. This scheme provides confidentiality of the message and authentication.

  13. Cryptography Authentication by Encrypting a Hash Authentication and Data Integrity Aims of Authentication Authentication with Symmetric Key Encryption Authentication with Hash Functions Authentication Credit: Figure in Stallings, Cryptography and Network Security , 5th Ed., Pearson 2011 with MACs Digital Signatures 13 The figure on slide 13 shows a different scheme where only the hash value is encrypted. The receiver can verify that nothing has been changed. This scheme provides authentication, but does not attempt to provide confidentiality. This is useful in reducing any computation overhead when confidentiality is not required.

  14. Cryptography Attack of Authentication by Encrypting a Hash Authentication (exercise) and Data Integrity Aims of If a hash function did not have the Second Preimage Authentication Resistant property, then demonstrate an attack on the Authentication with Symmetric scheme in The figure on slide 13. Key Encryption Authentication with Hash Functions Authentication with MACs Digital Signatures 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
Data Integrity & Authentication Message Authentication Codes (MACs) Goal Ensure integrity

Data Integrity & Authentication Message Authentication Codes (MACs) Goal Ensure integrity

Data Integrity & Authentication Message Authentication Codes (MACs) Goal Ensure integrity of messages, even in presence of an active adversary who sends own messages. Alice Bob (sender) (reciever) Fran (forger) Remark: Authentication

450 views • 31 slides
MESSAGE AUTHENTICATION 1 / 103 Integrity and authenticity The goal is to ensure that M

MESSAGE AUTHENTICATION 1 / 103 Integrity and authenticity The goal is to ensure that M

MESSAGE AUTHENTICATION 1 / 103 Integrity and authenticity The goal is to ensure that M really originates with Alice and not someone else M has not been modified in transit 2 / 103 Integrity and authenticity example Bob Alice (Bank)

1.31k views • 112 slides
1 Message Encryption- see Table 11.1 in the book Message Encryption if public-key encryption

1 Message Encryption- see Table 11.1 in the book Message Encryption if public-key encryption

Message Authentication CPE 542: CRYPTOGRAPHY & NETWORK SECURITY message authentication is concerned with: protecting the integrity of a message Chapter 11 Message Authentication and validating identity of originator Hash

462 views • 6 slides
Integrity Assurance in Resource-Bounded Systems through Stochastic Message Authentication Aron

Integrity Assurance in Resource-Bounded Systems through Stochastic Message Authentication Aron

2nd Symposium and Bootcamp on the Science of Security (HotSoS) April 21st, 2015 Integrity Assurance in Resource-Bounded Systems through Stochastic Message Authentication Aron Laszka, Yevgeniy Vorobeychik, and Xenofon Koutsoukos Institute for

404 views • 22 slides
Security 2 CSC 249 April 12, 2018 Network Security Recap Message Integrity and Authentication

Security 2 CSC 249 April 12, 2018 Network Security Recap Message Integrity and Authentication

Security 2 CSC 249 April 12, 2018 Network Security Recap Message Integrity and Authentication Trusted Intermediaries Secure email pretty good privacy (PGP) 2 1 Cryptographic Keys Alices Bobs K A encryption decryption K B key

427 views • 13 slides
Module 5: Implementing Data Integrity Overview Types of Data Integrity Enforcing Data

Module 5: Implementing Data Integrity Overview Types of Data Integrity Enforcing Data

Module 5: Implementing Data Integrity Overview Types of Data Integrity Enforcing Data Integrity Defining Constraints Types of Constraints Disabling Constraints Using Defaults and Rules Deciding Which Enforcement Method

260 views • 23 slides
Integrity and Authentication CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen,

Integrity and Authentication CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen,

Integrity and Authentication CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula, David Fifield, Mia Gil Epner, David Hahn, Warren He, Grant Ho, Frank Li, Nathan Malkin, Mitar Milutinovic, Rishabh Poddar, Rebecca

862 views • 30 slides
Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password Token-based authentication Third party authentication Local Authentication How to store and verify password? Clear Data can be hacked

615 views • 14 slides
Integrity measurements for stronger cloud-based authentication John Zic 1 Thomas Hardjono 2 1

Integrity measurements for stronger cloud-based authentication John Zic 1 Thomas Hardjono 2 1

Integrity measurements for stronger cloud-based authentication John Zic 1 Thomas Hardjono 2 1 CSIRO Computational Informatics 2 MIT Kerberos and Internet of Trust Trust in the Digital World: Enabling the Economies of Trust Zic and

371 views • 19 slides
Data integrity protection Data integrity protection with cryptsetup tools with cryptsetup tools

Data integrity protection Data integrity protection with cryptsetup tools with cryptsetup tools

Centre for Research on Cryptography and Security research.redhat.com crocs.fi.muni.cz Data integrity protection Data integrity protection with cryptsetup tools with cryptsetup tools What is the Linux dm-integrity module and What is the

883 views • 25 slides
KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY Blockchain & Security Ruth Crowell, Chief Executive Asia Pacific Precious Metals

460 views • 10 slides
Using LIMS to Drive Data Integrity in a Regulated Environment Dr David Hardy Technical Solutions

Using LIMS to Drive Data Integrity in a Regulated Environment Dr David Hardy Technical Solutions

Using LIMS to Drive Data Integrity in a Regulated Environment Dr David Hardy Technical Solutions Manager Digital Sciences The world leader in serving science Data Integrity Definitions Data Integrity: The degree to which a collection of data

432 views • 24 slides
MESSAGE AUTHENTICATION CODES and PRF DOMAIN EXTENSION Mihir Bellare UCSD 1 Integrity and

MESSAGE AUTHENTICATION CODES and PRF DOMAIN EXTENSION Mihir Bellare UCSD 1 Integrity and

MESSAGE AUTHENTICATION CODES and PRF DOMAIN EXTENSION Mihir Bellare UCSD 1 Integrity and authenticity The goal is to ensure that M really originates with Alice and not someone else M has not been modified in transit Mihir Bellare

989 views • 46 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
Crypto Conclusion (maybe) Message Authentication Codes Key Management Fall 2018 CS 334:

Crypto Conclusion (maybe) Message Authentication Codes Key Management Fall 2018 CS 334:

Crypto Conclusion (maybe) Message Authentication Codes Key Management Fall 2018 CS 334: Computer Security 1 Message Authentication message authentication is concerned with: protecting the integrity of a message Confirming

512 views • 48 slides
Guided Specification and Analysis of a Loyalty Card System Laurent Cuennet 1 Marc Pouly 2 c 3

Guided Specification and Analysis of a Loyalty Card System Laurent Cuennet 1 Marc Pouly 2 c 3

Guided Specification and Analysis of a Loyalty Card System Laurent Cuennet 1 Marc Pouly 2 c 3 Sa sa Radomirovi 1 University of Fribourg 2 Lucerne University of Applied Sciences 3 Institute of Information Security, ETH Z urich July 13,

625 views • 37 slides
Blockchain distributed ledgers GOTO 2015 Copenhagen Tamas Blummer Chief Ledger Architect

Blockchain distributed ledgers GOTO 2015 Copenhagen Tamas Blummer Chief Ledger Architect

Blockchain distributed ledgers GOTO 2015 Copenhagen Tamas Blummer Chief Ledger Architect Digital Asset Holdings tamas@digitalasset.com What does it promise? Audit-ability Network wide consensus Privacy and Compliance Trust

141 views • 13 slides
Q2 2019 Results Call August 13, 2019 10 AM EST / 11 AM ART Disclaimer The material that follows

Q2 2019 Results Call August 13, 2019 10 AM EST / 11 AM ART Disclaimer The material that follows

Q2 2019 Results Call August 13, 2019 10 AM EST / 11 AM ART Disclaimer The material that follows is a presentation of general background information about Pampa Energa SA as of the date of the presentation. It is information in summary form

605 views • 16 slides
Use of GPS Data as Evidence in Court Prof Andrew Dempster Legal Concerns Early days:

Use of GPS Data as Evidence in Court Prof Andrew Dempster Legal Concerns Early days:

Use of GPS Data as Evidence in Court Prof Andrew Dempster Legal Concerns Early days: liability Space Law treaties cannot solve liability questions about the failure of a GNSS signal ICAO has tried to create a treaty re GNSS

372 views • 19 slides
Recap: Part 6 Public key cryptosystem: a pair of keys Public-key: meant for public, should

Recap: Part 6 Public key cryptosystem: a pair of keys Public-key: meant for public, should

Recap: Part 6 Public key cryptosystem: a pair of keys Public-key: meant for public, should be given out Private-key: remains always secret An operation performed by one key in the pair can be inversed only by the other key

267 views • 13 slides
Flaws in Applying Proof Methodologies to Signature Schemes Jacques Stern - David Pointcheval

Flaws in Applying Proof Methodologies to Signature Schemes Jacques Stern - David Pointcheval

Flaws in Applying Proof Methodologies to Signature Schemes Jacques Stern - David Pointcheval Ecole normale suprieure - France John Malone-Lee - Nigel Smart University of Bristol - UK Summary Summary The methodology of provable

479 views • 12 slides
Credit Suisse Transportation Conference September 9, 2010 James A. Squires Executive Vice

Credit Suisse Transportation Conference September 9, 2010 James A. Squires Executive Vice

Credit Suisse Transportation Conference September 9, 2010 James A. Squires Executive Vice President Finance and CFO Norfolk Southern Corporation Agenda Recent Financial Results Current Business Environment Productivity Scorecard

353 views • 31 slides
WESTERN NC CONVERSION HEALTH FOUNDATION FORUM Kim Stravolo kstravolo@maryblackfoundation.org Vice

WESTERN NC CONVERSION HEALTH FOUNDATION FORUM Kim Stravolo kstravolo@maryblackfoundation.org Vice

8/2/2018 WESTERN NC CONVERSION HEALTH FOUNDATION FORUM Kim Stravolo kstravolo@maryblackfoundation.org Vice President/CFO Mary Black Foundation Todays Discussion Who are we? History Evolvement of Initiatives Collaboration

223 views • 5 slides

More recommend