crypto fundamentals
play

Crypto Fundamentals Dr. Mohammed Shafiul Alam Khan Assistant - PowerPoint PPT Presentation

Jul 27, 2023 •260 likes •596 views

Crypto Fundamentals Dr. Mohammed Shafiul Alam Khan Assistant Professor Institute of Information Technology (IIT), University of Dhaka (DU) shafiul@du.ac.bd December 10, 2017 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 1 / 31

  1. Crypto Fundamentals Dr. Mohammed Shafiul Alam Khan Assistant Professor Institute of Information Technology (IIT), University of Dhaka (DU) shafiul@du.ac.bd December 10, 2017 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 1 / 31

  2. Outline Fundamental Security Properties 1 Quick View on Different Ciphers 2 Diffie-Hellman Key Exchange 3 Public Key Infrastructure (PKI) 4 Hash Functions 5 Conclusion 6 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 2 / 31

  3. Fundamental Security Properties Outline Fundamental Security Properties 1 Quick View on Different Ciphers 2 Diffie-Hellman Key Exchange 3 Public Key Infrastructure (PKI) 4 Hash Functions 5 Conclusion 6 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 3 / 31

  4. Fundamental Security Properties Fundamental Security Properties Properties Confidentiality Integrity Availability OR Authentication protecting the information from disclosure to unauthorized parties protecting information from being modified by unauthorized parties ensuring that authorized parties are able to access the information when needed The CIA triad is a very fundamental concept in security. However, it has been suggested that the CIA triad is not enough. M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 4 / 31

  5. Fundamental Security Properties How Crypto Comes in the Scene It is insufficient to protect ourselves with laws; we need to protect ourselves with mathematics. — Bruce Schneier Security/Cryptographic Tools Encryption Hash / Message Authentication Code Encryption ensures confidentiality property Hash / Message Authentication Code ensures integrity property M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 5 / 31

  6. Quick View on Different Ciphers Outline Fundamental Security Properties 1 Quick View on Different Ciphers 2 Diffie-Hellman Key Exchange 3 Public Key Infrastructure (PKI) 4 Hash Functions 5 Conclusion 6 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 6 / 31

  7. Quick View on Different Ciphers What is a Cipher OR Encryption Examples When we use Google search or In general when we use https in web browsing Different applications, for example, voice and data communication in telecommunication network M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 7 / 31

  8. Quick View on Different Ciphers How Cipher Works Every cipher should work with an Algorithm (suppose to be public), and a key which is private Mostly the algorithm does a set of Substitution and Transposition based on the secret key. M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 8 / 31

  9. Quick View on Different Ciphers Types of Encryption Symmetric Encryption — use same key for both encryption and decryption Asymmetric Encryption (Public key encryption) — use different keys in encryption and decryption Block ciphers — Encrypt/Decrypt a block of data at a time. Example: AES, RSA Stream ciphers — Encrypt/Decrypt a bit stream. Example: RC4, RC5 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 9 / 31

  10. Quick View on Different Ciphers Symmetric Encryption Symmetric Encryption Provides only confidentiality service Need to share the key with the receiver If there are n users, then number of keys required are of order n 2 Key distribution is challenging M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 10 / 31

  11. Quick View on Different Ciphers Asymmetric Encryption Asymmetric Encryption Could provides both confidentiality and authentication service If there are n users, then 2n keys are required What could be problem in such encryption? What about key distribution? M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 11 / 31

  12. Quick View on Different Ciphers Asymmetric Encryption Asymmetric Encryption Could provides both confidentiality and authentication service If there are n users, then 2n keys are required What could be problem in such encryption? What about key distribution? CA PKI M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 11 / 31

  13. Quick View on Different Ciphers Key Bit Length and Key Space Cipher algorithms vary in support of different key length. For example, DES uses 56-bit key AES has 128-bit, 192-bit and 256-bit versions RSA keys could be 1024-bit or 2048-bit Bit length impact on the key space M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 12 / 31

  14. Quick View on Different Ciphers Attacks on Encryption Brute force attack — Search for all possible keys in the key space. For example, in DES 2 56 keys need to explore in AES 2 128 , 2 192 or 2 256 keys need to explore in RSA 2 1024 or 2 2048 keys need to explore Cryptanalysis attack — Use probabilistic theories to find the key Known plaintext attack Choosen plaintext attack M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 13 / 31

  15. Quick View on Different Ciphers Attacks on Encryption Dictionary Attack M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 14 / 31

  16. Quick View on Different Ciphers Traditional Ciphers Mono-Alphabetic Cipher Extension could be poly-alphabetic ciphers. Are not suitable in the age of computing (easily breakable using brute force attack) M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 15 / 31

  17. Quick View on Different Ciphers Modern Ciphers AES (Advanced Encryption Standard) — Symmetric crypto-systems RSA (Rivest-Shamir-Adleman) — one of the first practical public-key crypto-systems RSA is based on the difficulties of finding prime factors of a large number. (demo with an url) Other public key crypto-systems are ECC (Elliptic Curve Cryptography), ElGamal crypto-systems RC5 — a symmetric stream cipher In RC5 a key stream is generated based on the secret key and the generated key stream is Xored with the input message. M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 16 / 31

  18. Diffie-Hellman Key Exchange Outline Fundamental Security Properties 1 Quick View on Different Ciphers 2 Diffie-Hellman Key Exchange 3 Public Key Infrastructure (PKI) 4 Hash Functions 5 Conclusion 6 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 17 / 31

  19. Diffie-Hellman Key Exchange Diffie-Hellman Key Exchange Features Allows two users to exchange a secret key (Addressed the challenge of symmetric ciphers) Requires no prior secrets Real-time over an untrusted network Ensure perfect forward secrecy — a property of secure communication protocols in which compromise of long-term keys does not compromise past session keys M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 18 / 31

  20. Diffie-Hellman Key Exchange How it Works Based on the difficulty of computing discrete logarithms of large numbers M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 19 / 31

  21. Diffie-Hellman Key Exchange Applications and Drawback Applications Secure Sockets Layer (SSL)/Transport Layer Security (TLS) Secure Shell (SSH) Internet Protocol Security (IPSec) Drawbacks Although there is no successful attack on the mathematical aspect of the protocol, however, Man-in-the-Middle attack is possible in the protocol if not carefully designed. Authenticated Diffie-Hellman Key Agreement (1992) could protect such attack M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 20 / 31

  22. Public Key Infrastructure (PKI) Outline Fundamental Security Properties 1 Quick View on Different Ciphers 2 Diffie-Hellman Key Exchange 3 Public Key Infrastructure (PKI) 4 Hash Functions 5 Conclusion 6 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 21 / 31

  23. Public Key Infrastructure (PKI) Public Key Infrastructure (PKI) Features Provides a set of roles, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates Manage public-key encryption M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 22 / 31

  24. Public Key Infrastructure (PKI) Public Key Infrastructure (PKI) Application In network, PKI allows for the centralization of network authentication Authentication of client systems using SSL (Secure Socket Layer) signatures or encryption in web browser. Other applications include the transmission of authenticated email messages using S/MIME (Secure/Multi-purpose Internet Mail Extensions), OpenPGP (Open Pretty Good Privacy) and other technologies M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 23 / 31

  25. Hash Functions Outline Fundamental Security Properties 1 Quick View on Different Ciphers 2 Diffie-Hellman Key Exchange 3 Public Key Infrastructure (PKI) 4 Hash Functions 5 Conclusion 6 M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 24 / 31

  26. Hash Functions Hash Functions Properties deterministic so the same message always results in the same hash infeasible to find two different messages with the same hash value infeasible to generate a message from its hash value except by trying all possible messages M S A Khan (IIT, DU) Crypto Fundamentals December 10, 2017 25 / 31

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

New Crypto-fundamentals in RIOT Peter Kietzmann peter.kietzmann@haw-hamburg.de 3rd get-together

New Crypto-fundamentals in RIOT Peter Kietzmann peter.kietzmann@haw-hamburg.de 3rd get-together

New Crypto-fundamentals in RIOT Peter Kietzmann peter.kietzmann@haw-hamburg.de 3rd get-together of the friendly Operating System for the Internet of Things September 13, 2018 Crypto-Fundamentals??? IoT requires security. . . ... as we

918 views • 48 slides
CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE WILLIAMSBURG, VA THURSDAY, OCTOBER 17 TH , 2019 JOHN KELLY, PE IOWA DEPARTMENT OF PUBLIC HEALTH DISCLAIMER THIS PRESENTATION: IS INTENDED FOR

843 views • 40 slides
Fundamentals of Lattice-Based Cryptography Chris Peikert University of Michigan 2nd Crypto

Fundamentals of Lattice-Based Cryptography Chris Peikert University of Michigan 2nd Crypto

Fundamentals of Lattice-Based Cryptography Chris Peikert University of Michigan 2nd Crypto Innovation School Shanghai, China 13 December 2019 1 / 23 Talk Outline 1 Lattices and hard problems 2 The SIS and LWE problems; basic applications 3

970 views • 94 slides
Fundamentals of Computer Security Spring 2015 Radu Sion Intro Encryption Hash Functions A

Fundamentals of Computer Security Spring 2015 Radu Sion Intro Encryption Hash Functions A

Fundamentals of Computer Security Spring 2015 Radu Sion Intro Encryption Hash Functions A Message From Our Sponsors Computer Security Fundamentals Fundamentals System/Network Security, crypto How do things work Why How to

824 views • 26 slides
Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Bart Jacobs

Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Bart Jacobs

Crypto intro Crypto intro Symmetric crypto Symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen Achieving security goals with symmetric crypto Radboud University Nijmegen e-Passport example

269 views • 7 slides
- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops

- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops

- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops Did you know? Our payment system has ZERO FEES for processing payments How it works? It takes only a few minutes to complete Merchant Initiate

269 views • 11 slides
Javascript Crypto & The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on

Javascript Crypto & The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on

Javascript Crypto & The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on Real-World Crypto January 2013 promote openness, innovation & opportunity on the Web. previously easy to deploy easy to use privacy

610 views • 22 slides
Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Achieving security

Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Achieving security

Crypto intro Crypto intro Symmetric crypto Symmetric crypto Achieving security goals with symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen Radboud University Nijmegen e-Passport example

1.11k views • 12 slides
Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information Sciences

Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information Sciences

Crypto intro Symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen e-Passport example Encryption: modes of operation Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information

856 views • 73 slides
Outline Public key crypto RSA Essentials Computer Security: Public Key Crypto Public Key Crypto

Outline Public key crypto RSA Essentials Computer Security: Public Key Crypto Public Key Crypto

Public key crypto Public key crypto RSA Essentials RSA Essentials Public Key Crypto in Java Public Key Crypto in Java Radboud University Nijmegen Radboud University Nijmegen Public key protocols Public key protocols Diffie-Hellman and El

448 views • 16 slides
w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals

w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals

Aditus Luxury Access Platform for Crypto A ffl uents Presentation 21 Nov 2017 w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals Crypto-currency values have been the best performing asset class

206 views • 19 slides
Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO Use this space to add an image. IMPLEMENTATION, OR CRYPTO RNG Insert an image and change the scale to cover this box. ALSO, KEY MANAGEMENT IS

1.01k views • 81 slides
19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

Is 2 255 19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a strong elliptic curve 128-bit crypto: Okay. over the field Z (2 255 19). 256-bit crypto: High security! Is that safe? 512-bit

121 views • 11 slides
Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform

Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform

Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform Stable Coin Dapps Sum $ Bitcoin 154.00 $ Ethereum 29.00 $ XRP 18.70 $ BCH 7.70 $ EOS 7.20 $ LiteCoin 7.00 $ BNB 4.70 $ Tether

160 views • 12 slides
Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for 2020 Tim Gneysu Hardware Security Group Horst Grtz Institute for IT-Security, Bochum 1/24/2013 Outline Introduction Alternative Public-Key

735 views • 55 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Discrete-Log Based Public Key Cryptosystems Jim Royer September 25, 2018 Introduction to

Discrete-Log Based Public Key Cryptosystems Jim Royer September 25, 2018 Introduction to

Note: Log = logarithm, not Discrete-Log Based Public Key Cryptosystems Jim Royer September 25, 2018 Introduction to Cryptography 1 References Symmetric and Asymmetric Cryptosystems Public-Key Cryptosystems Based on the Discrete

436 views • 9 slides
Isogeny-based cryptography, a quantum-safe alternative Annamaria Iezzi University of South

Isogeny-based cryptography, a quantum-safe alternative Annamaria Iezzi University of South

Isogeny-based cryptography, a quantum-safe alternative Annamaria Iezzi University of South Florida FWIMD - February 9, 2019 The key exchange problem ALICE and BELLE, communicating over a public channel, want to agree on a common secret

499 views • 18 slides
15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline Introduction: terminology, cryptanalysis, security Private-Key Algorithms: Rijndael, DES Number Theory Groups Public-Key Algorithms: RSA, ElGamal,

525 views • 26 slides
On the Static Diffie-Hellman Problem on Elliptic Curves over Extension Fields Robert Granger

On the Static Diffie-Hellman Problem on Elliptic Curves over Extension Fields Robert Granger

Motivation - Exotic Security Assumptions in Cryptography Main Algorithm and Results Oracle-assisted Static DHP for binary curves On the Static Diffie-Hellman Problem on Elliptic Curves over Extension Fields Robert Granger

1.32k views • 105 slides
A survey of Key Management for Secure Group Communication Sandro Rafaeli and David Hutchison

A survey of Key Management for Secure Group Communication Sandro Rafaeli and David Hutchison

A survey of Key Management for Secure Group Communication Sandro Rafaeli and David Hutchison Presented By: Anil Bazaz CS6204, Spring 2005 Intro: Group Communication Uses IP multicast to transmit data Does not limit access to data No

543 views • 19 slides
Elliptic Curve Isogeny Based Cryptosystems Frederik Vercauteren Open Security Research (China)

Elliptic Curve Isogeny Based Cryptosystems Frederik Vercauteren Open Security Research (China)

Elliptic Curve Isogeny Based Cryptosystems Frederik Vercauteren Open Security Research (China) KU Leuven ESAT/COSIC (Belgium) frederik.vercauteren@gmail.com 23 August 2016 Frederik Vercauteren Elliptic Curve Isogeny Based Cryptosystems 23

839 views • 52 slides
POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1

POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1

POST-QUANTUM CRYPTOGRAPHY HOW WILL WE ENCRYPT TOMORROW? Hanno Bck https://hboeck.de 1 INTRODUCTION Hanno Bck, freelance journalist and hacker. Writing for Golem.de and others. Fuzzing Project , funded by Linux Foundation's Core

1.09k views • 46 slides
Lecture 8 Public Key Cryptography (Diffie-Hellman and RSA) 1 Public Key Cryptography

Lecture 8 Public Key Cryptography (Diffie-Hellman and RSA) 1 Public Key Cryptography

Lecture 8 Public Key Cryptography (Diffie-Hellman and RSA) 1 Public Key Cryptography Asymmetric cryptography Invented in 1974-1978 (Diffie-Hellman and Rivest-Shamir- Adleman) Two keys: private (SK), public (PK) Encryption: with

445 views • 17 slides

More recommend