cryptography and network security
play

Cryptography and Network Security Bhaskaran Raman Department of - PowerPoint PPT Presentation

Nov 30, 2022 •176 likes •360 views

Cryptography and Network Security Bhaskaran Raman Department of CSE, IIT Kanpur Reference: Whitfield Diffie and Martin E. Hellman, Privacy and Authentication: An Introduction to Cryptography, in Proc. IEEE, vol. 67, no.3, pp. 397 - 427,

  1. Cryptography and Network Security Bhaskaran Raman Department of CSE, IIT Kanpur Reference: Whitfield Diffie and Martin E. Hellman, “Privacy and Authentication: An Introduction to Cryptography”, in Proc. IEEE, vol. 67, no.3, pp. 397 - 427, 1979 Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  2. Cryptography Fundamentals ● Privacy versus Authentication: – Privacy: preventing third party from snooping – Authentication: preventing impostering ● Two kinds of authentication: – Guarantee that no third party has modified data – Receiver can prove that only the sender originated the data ● Digital Signature ● E.g., for electronic transactions Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  3. Cryptographic Privacy Eavesdropper P C P Sender Encryption Decryption Receiver Network C = S -1 C = S K (P) K (P) Key: K ● Encrypt before sending, decrypt on receiving – Terms: plain text and cipher text ● Two components: key, and the algorithm – Should algorithm be secret? ● Yes, for military systems; no, for commercial systems ● Key distribution must be secure Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  4. Cryptographic Authentication Eavesdropper C' P P' Sender Encryption Decryption Receiver Network C' = S -1 C = S K (P) K (P') Key: K ● The same system can also be used for authentication Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  5. Cryptanalysis ● Cryptanalysis: attacker tries to break the system – E.g., by guessing the plain text for a given cipher text – Or, by guessing the cipher text for some plain text ● Possible attacks: – Cipher-text only attack – Known plain-text attack – Chosen plain-text attack – Chosen text attack Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  6. Security Guarantees ● Two possibilities: – Unconditional – Computational security ● Unconditional security: an example – One-time tape ● Most systems have computational security – How much security to have? – Depends on cost-benefit analysis for attacker Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  7. Public-Key Systems ● Shared-key ==> difficulties in key distribution – C(n,2) = O(n^2) keys ● Public key system – Public component and a private component – Two kinds: ● Public key distribution: establish shared key first ● Public key cryptography: use public/private keys in encryption/decryption – Public key cryptography can also be used for digital signatures Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  8. Some Example Systems ● Permuted alphabet (common puzzle) – Can be attacked using frequency analysis, patterns, digrams, trigrams – Attack becomes difficult if alphabet size is large ● Transposition ● Poly-alphabetic: periodic or running key ● Codes versus ciphering – Codes are stronger, and also achieve data compression Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  9. Some Popular Systems ● Private key systems: – DES, 3DES ● Public key systems: – RSA: based on difficulty of factoring – Galois-Field (GF) system: based on difficulty of finding logarithm – Based on knapsack problem Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  10. Digital Encryption Standard (DES) 64 bits 64 bits 64 bits + Plain-text Key Cipher-text P -1 P R1 R2 R16 Permutation, 16 rounds of identical operation, inverse permutation L i-1 R i-1 Each round uses a different 48-bit key K i F K i (from K) and a + combiner function F L i-1 R i-1 Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  11. Triple-DES (3DES) ● DES can be broken with 2^55 tries: – 4500 years on an Alpha workstation – But only 6 months with 9000 Alphas ● Triple-DES: – Use DES thrice, with 3 separate keys, or with two keys (K1 first, then K2, then K1 again) Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  12. Rivest, Shamir, Adleman (RSA) Public-Key Crypto-System ● Based on the fact that finding large (e.g. 100 digit) prime numbers is easy, but factoring the product of two such numbers appears computationally infeasible ● Choose very large prime numbers P and Q – N = P x Q – N is public; P, Q are secret ● Euler totient: Phi(N) = (P-1)(Q-1) = Number of integers less than N & relatively prime to N Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  13. RSA (continued) ● Next, choose E in [2, Phi(N)-1], E is public ● A message is represented as a sequence M1, M2, M3..., where each M in [0, N-1] ● Encryption: C = M E mod N ● Using the secret Phi(N), A can compute D such that ED = 1 mod Phi(N) ● ED = k x Phi(N) + 1 ● Then, for any X < N, X k x Phi(N)+1 = X mod N Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  14. RSA (Continued) ● Decryption: C D = M ED = M k x Phi(N)+1 = M mod N ● Example: Choose P = 17, Q = 31 – N = 527, Phi(N) = 480 – Choose E = 7, then D = 343 – If M = 2, Encryption: C = 128 – Decryption: D = C D mod N = 128 343 mod 527 = 2 Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  15. Taxonomy of Ciphers ● Block ciphers: divide plain text into blocks and encrypt each independently ● Properties required: – No bit of plain text should appear directly in cipher text – Changing even one bit in plain text should result in huge (50%) change in cipher text – Exact opposite of properties required for systematic error correction codes ● Stream cipher: encryption depends on current state Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  16. Key Management ● Keys need to be generated periodically – New users – Some keys may be compromised ● Addressing the O(n^2) problem with key distribution – Link encryption – Key Distribution Centre (KDC): all eggs in one basket – Multiple KDCs: better security ● Key management easier in public key cryptography Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

  17. Some Non-Crypto Attacks ● Man-in-the-middle attack: play a trick by being in the middle ● Traffic analysis: – Can learn information by just looking at presence/absence of traffic, or its volume – Can be countered using data padding ● Playback or replay attacks: – To counter: need to verify timeliness of message from sender while authenticating – Beware of issues of time synchronization Fundamentals of Wired and Wireless Networks, Kameswari Chebrolu and Bhaskaran Raman, 09-13 May 2005

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security

Network Security Network Security Srinidhi Varadarajan Network security Network security Foundations: what is security? cryptography authentication message integrity key distribution and certification Security in practice:

634 views • 36 slides
Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is cryptography? Related fields: Cryptography (&quot;secret writing&quot;): Making secret messages Turning plaintext (an ordinary readable message)

1.2k views • 57 slides
Cryptography and Network Security Lecture 0 Manoj Prabhakaran IIT Bombay Security In this

Cryptography and Network Security Lecture 0 Manoj Prabhakaran IIT Bombay Security In this

Cryptography and Network Security Lecture 0 Manoj Prabhakaran IIT Bombay Security In this course: Cryptography as used in network security Network Devices People Cryptography &amp; Security In this course: Cryptography

634 views • 22 slides
Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your

Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your

Chapter 16 Cryptography and Network Transport Level Security Security Chapter 16 Use your mentality Wake up to reality From the song, &quot;I've Got You under My Skin Fifth Edition by Cole Porter by William Stallings Lecture slides by

300 views • 5 slides
Security CSC 249 April 10, 2018 Network Security Symmetric Key Cryptography Caesar cipher DES

Security CSC 249 April 10, 2018 Network Security Symmetric Key Cryptography Caesar cipher DES

Security CSC 249 April 10, 2018 Network Security Symmetric Key Cryptography Caesar cipher DES and AES Public Key Cryptography 2 1 Cryptographic Keys Alices Bobs K A encryption decryption K B key key ciphertext encryption

381 views • 12 slides
Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn Black J CSCI 6268/TLEN 5831, Fall 2004 Introduction UC Davis PhD in 2000 Cryptography Interested in broader security as well

492 views • 12 slides
Cryptography and Cryptography and Network Security Network Security Chapter Chapter 3 3

Cryptography and Cryptography and Network Security Network Security Chapter Chapter 3 3

Cryptography and Cryptography and Network Security Network Security Chapter Chapter 3 3 Fourth Edition Fourth Edition by William Stallings by William Stallings Lecture slides by Lecture slides by Lawrie Lawrie Brown Brown Modern Block

1.07k views • 43 slides
PGP from: Cryptography and Network Security Fifth Edition by William Stallings Lecture slides by

PGP from: Cryptography and Network Security Fifth Edition by William Stallings Lecture slides by

PGP from: Cryptography and Network Security Fifth Edition by William Stallings Lecture slides by Lawrie Brown (*) (*) adjusted by Fabrizio d'Amore Electronic Mail Security Despite the refusal of VADM Poindexter and LtCol North to appear, the

471 views • 31 slides
Cryptography and Cryptography and Network Security Network Security Chapter Chapter 5 5

Cryptography and Cryptography and Network Security Network Security Chapter Chapter 5 5

Cryptography and Cryptography and Network Security Network Security Chapter Chapter 5 5 Fourth Edition Fourth Edition by William Stallings by William Stallings Lecture slides by Lawrie Brown Lecture slides by Lawrie Brown Origins

444 views • 27 slides
Cryptography and Cryptography and Network Security Network Security Chapter Chapter 2 2

Cryptography and Cryptography and Network Security Network Security Chapter Chapter 2 2

Cryptography and Cryptography and Network Security Network Security Chapter Chapter 2 2 Fourth Edition Fourth Edition by William Stallings by William Stallings Lecture slides by Lawrie Brown Lecture slides by Lawrie Brown Symmetric

604 views • 46 slides
Cryptography and Network RSA Security Every Egyptian received two names, which were known Chapter

Cryptography and Network RSA Security Every Egyptian received two names, which were known Chapter

4/19/2010 Chapter 9 Public Key Cryptography and Cryptography and Network RSA Security Every Egyptian received two names, which were known Chapter 9 respectively as the true name and the good name, or the great name and the little name; and

410 views • 6 slides
Cryptography and network security Firewalls slide 1 Firewalls Idea: separate local network

Cryptography and network security Firewalls slide 1 Firewalls Idea: separate local network

Cryptography and network security Firewalls slide 1 Firewalls Idea: separate local network from the Internet Trusted hosts and networks Firewall Router Intranet Demilitarized Zone: DMZ publicly accessible servers and networks

746 views • 31 slides
CS 4803 Crypto as a science (modern cryptography) has short but Computer and Network Security

CS 4803 Crypto as a science (modern cryptography) has short but Computer and Network Security

Cryptography is very old and very new Crypto is an ancient discipline Recall Julius Caesar, Enigma,... CS 4803 Crypto as a science (modern cryptography) has short but Computer and Network Security exciting history Most of it

638 views • 4 slides
Cryptography &amp; Network Security Introduction Introduction Chester Rebeiro IIT Madras CR

Cryptography &amp; Network Security Introduction Introduction Chester Rebeiro IIT Madras CR

Cryptography &amp; Network Security Introduction Introduction Chester Rebeiro IIT Madras CR The Connected World CR 2 Information Storage CR 3 Increased Security Breaches 81% more in 2015 CR

1.46k views • 29 slides
Encryption and Network Security Cryptography is widely used to protect networks Relies on

Encryption and Network Security Cryptography is widely used to protect networks Relies on

Encryption and Network Security Cryptography is widely used to protect networks Relies on encryption algorithms and protocols discussed previously Can be applied at different places in the network stack With different effects and

525 views • 21 slides
McBits: fast constant-time code-based cryptography (to appear at CHES 2013) D. J. Bernstein

McBits: fast constant-time code-based cryptography (to appear at CHES 2013) D. J. Bernstein

McBits: fast constant-time code-based cryptography (to appear at CHES 2013) D. J. Bernstein University of Illinois at Chicago &amp; Technische Universiteit Eindhoven Joint work with: Tung Chou Technische Universiteit Eindhoven Peter

823 views • 46 slides
Usuba High-Throughput and Constant-Time Ciphers, by Construction Pierre- Darius Mercadier

Usuba High-Throughput and Constant-Time Ciphers, by Construction Pierre- Darius Mercadier

Usuba High-Throughput and Constant-Time Ciphers, by Construction Pierre- Darius Mercadier Evariste Dagand LIP6 CNRS Inria Sorbonne Universit e June 24, 2019 1 / 15 Anatomy of a block cipher The Rectangle cipher Plaintext (64

1.02k views • 81 slides
Announcements You shouldve received an email from the mailing list with a link to course

Announcements You shouldve received an email from the mailing list with a link to course

CS 642: Computer Security and Privacy Cryptography [Intro] Spring 2020 Earlence Fernandes earlence@cs.wisc.edu Thanks to Franzi Roesner Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, Ada Lerner, John Manferdelli, John Mitchell, Vitaly

692 views • 26 slides
Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Karlstad University Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M, C, E, D, K) M: the set of plaintexts C: the set of ciphertexts E: M x K -&gt; C enciphering functions D: C x K

446 views • 40 slides
Strings l Chapter 3s problem context is cryptography, but mostly it is about strings and

Strings l Chapter 3s problem context is cryptography, but mostly it is about strings and

Starting chapter 3 Strings l Chapter 3s problem context is cryptography, but mostly it is about strings and related ideas l Strings are basically sequences of characters l A string literal is enclosed in quotes ( '' or in Python):

292 views • 12 slides
Yasser F. O. Mohammad 2010.2.23 REMINDER 1: Active Attacks Masquerade Modification Replay DoS

Yasser F. O. Mohammad 2010.2.23 REMINDER 1: Active Attacks Masquerade Modification Replay DoS

Yasser F. O. Mohammad 2010.2.23 REMINDER 1: Active Attacks Masquerade Modification Replay DoS REMINDER 2: Security Services in X.800 Authentication 1. Pear entity authentication Data origin authentication Access Control 2.

618 views • 13 slides
Lightweight Circuits with Shift and Swap Subhadeep Banik Asian Symmetric Key Workshop, ISI

Lightweight Circuits with Shift and Swap Subhadeep Banik Asian Symmetric Key Workshop, ISI

Lightweight Circuits with Shift and Swap Subhadeep Banik Asian Symmetric Key Workshop, ISI Kolkata November 18, 2018 Introduction Types of Circuits: Brief background. Block cipher circuits: Round based vs Serial. Eg: Working example

489 views • 44 slides
Computational Survivalism Compiler(s) for the End of Moores Law: a case study Pierre-

Computational Survivalism Compiler(s) for the End of Moores Law: a case study Pierre-

Computational Survivalism Compiler(s) for the End of Moores Law: a case study Pierre- Evariste Dagand Joint work with Darius Mercadier Based on an original idea from Xavier Leroy LIP6 CNRS Inria Sorbonne Universit e 1 / 31

775 views • 76 slides

More recommend