cryptology
play

Cryptology Cryptology = Cryptography + Cryptanalysis Usage: - PowerPoint PPT Presentation

Feb 06, 2024 •191 likes •809 views

An introduction to Cryptology 1 2015/03/ EMA, Franceville, Gabon Damien Robert quipe LFANT, Inria Bordeaux Sud-Ouest Institut de Mathmatiques de Bordeaux quipe MACISA, Laboratoire International de Recherche en Informatique et

  1. An introduction to Cryptology 1 2015/03/ — EMA, Franceville, Gabon Damien Robert Équipe LFANT, Inria Bordeaux Sud-Ouest Institut de Mathématiques de Bordeaux Équipe MACISA, Laboratoire International de Recherche en Informatique et Mathématiques Appliquées 1 A big thanks to my colleagues of the Caramel team in Nancy who provided most of the content for this course

  2. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Cryptology Cryptology = Cryptography + Cryptanalysis Usage: SSL/TLS, ssh, gpg GSM, Wifi, Bluetooth Credit Card, Transport card, Passport Remark Cryptology ⊂ Security

  3. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Public Canal Alice communicates with Bob through a public canal. Eve does passive attacks on this canal (spying) and Charlie does active attacks. Active attacks: Usurpation of identity; Altering data; Repudiation Replay, repetition Man in the middle Delay, Destruction

  4. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Primitives Confidentiality Symmetric encryption, Asymmetric encryption Integrity Cryptographic hash functions Authenticity Signature, MAC

  5. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Primitives Confidentiality Symmetric encryption, Asymmetric encryption Integrity Cryptographic hash functions Authenticity Signature, MAC

  6. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Primitive Without key: hash, random generator With key symmetric MAC Encryption: stream, block asymmetric: number theory, codes, lattices… signature Encryption

  7. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Confidentiality, Authenticity Confidentiality: E : { 0,1 } n → { 0,1 } n a permutation; D = E − 1 . Encryption: m �→ c = E ( m ) , Decryption: c �→ m = D ( c ) . Authenticity: c = A ( m ) . Alice sends ( m , v ) . Bob receives ( m ′ , v ′ ) . Verification: V ( m ′ , v ′ ) = OK, NOT OK.

  8. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Kerchoff’s laws So no external validation of security possible; And transmitting the algorithmes in painful; E and D needs to be secret; Kerchoff: parametrizes the algorithms by a key K ; E : { 0,1 } n × { 0,1 } k → { 0,1 } n such that E ( · , K ) is a permutation for all K ; E can be public, the only secret is the secret key K .

  9. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Channels of communications Public Authenticated Confidential Authenticated + Confidential Goals Using a authenticated and/or confidential channel, construct an authenticated and/or confidential channels inside a public channel. The goal if of course to use the preexisting authenticated/confidential channel as little as possible, and do everything else in the authenticated/confidential channel constructed inside the public channel.

  10. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Example 1: integrity Security: Preimage resistance; Second-Preimage resistance; Collision resistance. Alice sends m through the public channel, and h ( m ) through the integrity channel, where h : { 0,1 } ∗ → { 0,1 } 256 is a cryptographic hash function.

  11. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Example 2: authenticity (symmetric) through a authenticated and confidential channel. Alice sends A secret key K is generated (randomisation) and sent to Alice and Bob ( m ,MAC ( m , K )) through the public channel. Bob verify via VERIF ( m , K ) . The MAC is a hash function parametrized by K . Security: from several couples ( M , C ) Can’t retrieve K ; Can’t generate a new ( M ′ , C ′ ) ; Can’t distinguish the distribution C from a uniform distribution.

  12. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Example 2: authenticity (asymmetric) Signature vs MAC: Public verification Non repudiation A couple ( K S , K P ) is generated by Alice and she sends the public key K P to Bob via an authenticated channel. Alice sends ( m ,SIGN ( m , K S )) through the public channel, and Bob verify via VERIF ( m , K P ) . Security: from several couples ( M , C ) and K P Can’t retrieve K S ; Can’t generate a new ( M ′ , C ′ ) ; Can’t distinguish the distribution C from a uniform distribution.

  13. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Example 3: confidentiality (symmetric) attack) A secret key K is generated (randomisation) and sent to Alice and Bob through a authenticated and confidential channel. Alice sends c = E ( m , K ) through the public channel, Bob decrypts via m = D ( c , K ) . Security: from several ciphers C , several couples ( M , C = E ( M , K )) (chosen plain text attack) and several couples ( C , M = D ( M , K )) (chosen cipher text Can’t retrieve K ; Can’t find M ′ from a new C ′ ; Can’t distinguish the distribution C from a uniform distribution.

  14. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Example 3: confidentiality (asymmetric) cipher text attack) A couple ( K S , K P ) is generated by Bob and he sends the public key K P to Alice via an authenticated channel. Alice sends c = E ( m , K P ) through the public channel, and Bob decrypt via m = D ( c , K S ) . Security: from K P , several ciphers C , several couples ( M , C = E ( M , K )) (chosen plain text attack) and several couples ( C , M = D ( M , K )) (chosen Can’t retrieve K S ; Can’t find M ′ from a new C ′ ; Can’t distinguish the distribution C from a uniform distribution.

  15. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Asymmetric vs symmetric Does not need a confidential channel; Much slower. to the symmetric channel to increase speed. N persons ⇒ N keys rather than N 2 ; ⇒ Use an asymmetric cipher to send a symmetric secret key and switch

  16. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Security Only cipher known Chosen plain text: CPA, Adaptative chosen plain text: CPA2 Chosen cipher text: CCA, Adaptative chosen cipher text: CCA2 Ultimate goal: IND-CCA2 cryptosystem. Attacks: Black box or structural analysis; Side channels. ⇒ Invert the function: OW (One Wayness) ⇒ Indistiguinbility: IND. Detect an encryption of 1 from an encryption of 0 with probability > 0.5 + ǫ . IND = Semantic security.

  17. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Security parameters Remark very long term security and for protection against potential attacks. For (and completely kill others like factorisation or the discrete logarithm problem). 2 40 : One minute on a standard computer; 2 60 : One year on a standard computer; 2 80 : One year with 10 6 cores at 5 G H z = NSA? 2 128 : security goal. One may want to take higher security parameters 192 bits or 256 bits for instance quantum computers can divide by 2 the security of some problems

  18. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography One way function Origin: hash table to speed up lookup Very important in cryptology, needs strong properties Example Example One way function x �→ f ( x ) easy, but y �→ f − 1 ( y ) hard. Multiplication, exponentiation in ( � / p � ∗ , × ) . In asymmetric key cryptography, use of trapdoor one way function: a secret trap can allows to compute f − 1 . If N = pq , x �→ x 2 is a trapdoor one way function.

  19. Concepts Randomness and hash function Stream ciphers Block ciphers Public key cryptography Hash function Origin: hash table to speed up lookup; Very important in cryptology, needs strong properties: No preimage No second preimage No collision Example A checksum is not an hash function MD5 (Broken), SHA-1 (Almost broken), SHA-2, SHA-3 h : { 0,1 } ∗ → { 0,1 } n ; x �→ x 2 mod pq is one way but not a cryptographic hash function.

  20. Concepts Collision Randomness and hash function So we have the inequalities (in fact it is an order of equivalence) Public key cryptography Block ciphers Stream ciphers Let h be an hash function with n bits of output; N = 2 n . Given y ∊ { 0,1 } n , finding y at random requires Θ ( 2 n ) tries; What about a collision: x 1 � = x 2 | h ( x 1 ) = h ( x 2 ) ? After k tries, the probability of not finding a collision is p ( k ) = ( 1 − 1 / N )( 1 − 2 / N ) ... ( 1 − k / N ) � � i / N � − k 2 / 2 N log p ( k ) = log ( 1 − i / N ) � − i p ( k ) � exp ( − k 2 / 2 N ) � So if k = Θ ( N ) , p ( k ) is small and the probability of collision is high; To get 128 bits of security we need n = 256

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Security building blocks: cryptology Markus Peuhkuri 2005-02-08 Lecture topics Cryptology

Security building blocks: cryptology Markus Peuhkuri 2005-02-08 Lecture topics Cryptology

Security building blocks: cryptology Markus Peuhkuri 2005-02-08 Lecture topics Cryptology Encryption Secure hash Security and cryptology Information security = crypto? A significant art by

422 views • 7 slides
Information Transmission Chapter 6 Cryptology OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY

Information Transmission Chapter 6 Cryptology OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY

1 Information Transmission Chapter 6 Cryptology OVE EDFORS ELECTRICAL AND INFORMATION TECHNOLOGY Learning outcomes After this lecture the student should undertand what cryptology is and how it is used, be familiar with the crypto

307 views • 18 slides
Introduction to Cryptology Laboratory for cryptologic algorithms Arjen K. Lenstra What is

Introduction to Cryptology Laboratory for cryptologic algorithms Arjen K. Lenstra What is

Introduction to Cryptology Laboratory for cryptologic algorithms Arjen K. Lenstra What is Cryptology? The art and science of secret writing What this talk could be: ------------------------------------

959 views • 59 slides
PBIBD and its applications in Cryptology Bimal Roy Indian Statistical Institute www.isical.ac.in/

PBIBD and its applications in Cryptology Bimal Roy Indian Statistical Institute www.isical.ac.in/

PBIBD and its applications in Cryptology Bimal Roy Indian Statistical Institute www.isical.ac.in/ bimal In this talk ... We will first describe the combinatorial framework of PBIBD And then proceed to show its applications in Cryptology 1.

578 views • 29 slides
A New Publication Model for FSE: IACR Transactions on Symmetric Cryptology (ToSC) Bart Preneel

A New Publication Model for FSE: IACR Transactions on Symmetric Cryptology (ToSC) Bart Preneel

Rump Session 2016 A New Publication Model for FSE: IACR Transactions on Symmetric Cryptology (ToSC) Bart Preneel COSIC KU Leuven and iMinds FSE ToSC Fast Software Encryption IACR Transactions on Symmetric Cryptology =

303 views • 5 slides
Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing

Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing

Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing September 20, 2018 A. H ulsing 2MMC10 Cryptology 1 / 12 Message authentication Sometimes we want more than secrecy! Acknowledgement of receipt,

262 views • 22 slides
Grbner Bases: a Tools for Cryptology Jean-Charles Faugre PolSys - INRIA/UPMC ECRYPT II

Grbner Bases: a Tools for Cryptology Jean-Charles Faugre PolSys - INRIA/UPMC ECRYPT II

Grbner Bases: a Tools for Cryptology Jean-Charles Faugre PolSys - INRIA/UPMC ECRYPT II Summer School on Tools 2012 Plan Grbner Bases: a Tools for Cryptology Introduction to Algebraic Cryptanalysis and Grbner bases. Part I

1.26k views • 104 slides
MACISA Mathematics applied to cryptology and information security in Africa 2014/09/24

MACISA Mathematics applied to cryptology and information security in Africa 2014/09/24

MACISA Mathematics applied to cryptology and information security in Africa 2014/09/24 LIRIMA Evaluation Seminar, Paris Tony Ezome, Damien Robert quipe LFANT, Inria Bordeaux Sud-Ouest Context High need for secure communications

468 views • 17 slides
CRYPTOLOGY WITH CRYPTOOL 1 Practical Introduction to Cryptography and Cryptanalysis Scope,

CRYPTOLOGY WITH CRYPTOOL 1 Practical Introduction to Cryptography and Cryptanalysis Scope,

CRYPTOLOGY WITH CRYPTOOL 1 Practical Introduction to Cryptography and Cryptanalysis Scope, Technology, and Future of CrypTool 1.4.xx Prof. Bernhard Esslinger and the CrypTool Team www.cryptool.org (Updated: 19 September 2017, with release CT

1.22k views • 121 slides
Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY Plaintext Cyphertext More definitions block cipher stream cipher hash function shared key public key digital signature

383 views • 16 slides
Shortest Vector from Lattice Sieving: a Few Dimensions for Free eo Ducas 1 L Cryptology Group,

Shortest Vector from Lattice Sieving: a Few Dimensions for Free eo Ducas 1 L Cryptology Group,

Shortest Vector from Lattice Sieving: a Few Dimensions for Free eo Ducas 1 L Cryptology Group, CWI, Amsterdam, The Netherlands EUROCRYPT 2018 Tel Aviv, April 30th 1 Supported by a Veni Innovational Research Grant from NWO (639.021.645). L

904 views • 40 slides
Introduction to Cryptology: confidentiality, integrity, authenticity 2015/12 Yaound,

Introduction to Cryptology: confidentiality, integrity, authenticity 2015/12 Yaound,

Introduction to Cryptology: confidentiality, integrity, authenticity 2015/12 Yaound, Cameroun Damien Robert quipe LFANT, Inria Bordeaux Sud-Ouest Institut de Mathmatiques de Bordeaux quipe MACISA, Laboratoire International de

753 views • 53 slides
Modern Cryptology: from public key cryptography to homomorphic encryption 2015/12 Yaound,

Modern Cryptology: from public key cryptography to homomorphic encryption 2015/12 Yaound,

Modern Cryptology: from public key cryptography to homomorphic encryption 2015/12 Yaound, Cameroun Damien Robert quipe LFANT, Inria Bordeaux Sud-Ouest Institut de Mathmatiques de Bordeaux quipe MACISA, Laboratoire International de

960 views • 46 slides
Dynamic, Metamorphic (and opensource) Virtual Machines A. Desnos ESIEA - Operational Cryptology

Dynamic, Metamorphic (and opensource) Virtual Machines A. Desnos ESIEA - Operational Cryptology

Introduction Obfuscation Virtual Machines Android/Java appplications Conclusion Dynamic, Metamorphic (and opensource) Virtual Machines A. Desnos ESIEA - Operational Cryptology and Virology Laboratory (CVO) 38 rue des Dr Calmette et Gurin,

1.21k views • 75 slides
Proposal for Translating Cryptology Terms to Hebrew Yossi Markovitz initiated this list. Ron

Proposal for Translating Cryptology Terms to Hebrew Yossi Markovitz initiated this list. Ron

Proposal for Translating Cryptology Terms to Hebrew Yossi Markovitz initiated this list. Ron Irmai, Shraga Irmai, Adi Shamir, Moti Yung, Orr Dunkelman and Roni Roth contributed various terms and had var- ious suggestions that improved this list.

542 views • 10 slides
Quantum Supremacy and Its Implication to Cryptology Arpita Maitra TCG Centre for Research and

Quantum Supremacy and Its Implication to Cryptology Arpita Maitra TCG Centre for Research and

Quantum Supremacy and Its Implication to Cryptology Arpita Maitra TCG Centre for Research and Education in Science and Technology [arpita76b@gmail.com] August 27, 2020 Arpita Maitra Quantum Supremacy Controversy: Supremacy Or Advantage!

929 views • 63 slides
Researching the International in International Tax Law Cline Braumann Department of

Researching the International in International Tax Law Cline Braumann Department of

Researching the International in International Tax Law Cline Braumann Department of European, International and Comparative Law, University of Vienna Sour urce ce:H :H. Armstr trong ng R Roberts ts, engraving ng 1 16 Decembe

674 views • 17 slides
Dissipation by flows Festival de thorie, Aix-en-Provence, 07.2011 Romain Nguyen van yen 1,3 ,

Dissipation by flows Festival de thorie, Aix-en-Provence, 07.2011 Romain Nguyen van yen 1,3 ,

Dissipation by flows Festival de thorie, Aix-en-Provence, 07.2011 Romain Nguyen van yen 1,3 , Marie Farge 1 , Kai Schneider 2 1 LMD-CNRS, ENS Paris, France 2 M2P2-CNRS et CMI, Universit dAix-Marseille, France 3 FB Mathematik &

498 views • 36 slides
Security and Privacy of Hash-Based Software Applications This work has been partially supported

Security and Privacy of Hash-Based Software Applications This work has been partially supported

Security and Privacy of Hash-Based Software Applications This work has been partially supported by the LabEx PERSYVAL-Lab (ANR-11-LABX-0025-01) funded by the French program Investissement davenir. Amrit Kumar January 6, 2017 Privatics team,

1.08k views • 85 slides
FIE LD E XPE RIME NTS Ganna Pogrebna G.Pogrebna@warwick.ac.uk www.gannapogrebna.com April 28,

FIE LD E XPE RIME NTS Ganna Pogrebna G.Pogrebna@warwick.ac.uk www.gannapogrebna.com April 28,

28/04/2015 FIE LD E XPE RIME NTS Ganna Pogrebna G.Pogrebna@warwick.ac.uk www.gannapogrebna.com April 28, 2015 Where to find lecture materials? Website: www.gannapogrebna.com Section: Teaching Item: EC984 2015

401 views • 27 slides
MASTERS AND ND SLA LAVES OF OF INFOR NFORMATION ON us Solom Solomon Ma on Marcus Simion

MASTERS AND ND SLA LAVES OF OF INFOR NFORMATION ON us Solom Solomon Ma on Marcus Simion

MASTERS AND ND SLA LAVES OF OF INFOR NFORMATION ON us Solom Solomon Ma on Marcus Simion Stoilow Institute of Mathematics Romanian Academy solomarcus@gmail.com Ten Sta n State tements to B nts to Be Conside onsidered f d for or Inf

1.43k views • 104 slides
Tutorial Ranking Mechanisms in Games Vanessa Volz and Boris Naujoks CIG 2018, Maastricht

Tutorial Ranking Mechanisms in Games Vanessa Volz and Boris Naujoks CIG 2018, Maastricht

Tutorial Ranking Mechanisms in Games Vanessa Volz and Boris Naujoks CIG 2018, Maastricht Vanessa Volz and Boris Naujoks Tutorial Ranking Mechanisms in Games CIG 2018, Maastricht 1 / 60 Applications of Ranking Mechanisms Hierarchy Winner in

644 views • 60 slides
quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut quis nostrud exerci tation

quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut quis nostrud exerci tation

quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut quis nostrud exerci tation ullamcorper suscipit

253 views • 24 slides
The Psychology of Youth Social Media Use Shawn S. Sidhu, M.D. ssidhu@salud.unm.edu References

The Psychology of Youth Social Media Use Shawn S. Sidhu, M.D. ssidhu@salud.unm.edu References

The Psychology of Youth Social Media Use Shawn S. Sidhu, M.D. ssidhu@salud.unm.edu References 1) Mitchell, Stephen A and Margaret J. Black. Freud and Beyond: A History of Modern Psychoanalytic Thought . New York: Basic Books, 1995. Print. 2)

374 views • 21 slides

More recommend