fundamentals of cryptography algorithms and security
play

Fundamentals of Cryptography: Algorithms, and Security Services - PowerPoint PPT Presentation

Jan 03, 2023 •141 likes •711 views

Fundamentals of Cryptography: Algorithms, and Security Services Professor Guevara Noubir Northeastern University noubir@ccs.neu.edu Cryptography: Theory and Practice, Douglas Stinson, Chapman & Hall/CRC Network Security: Private

  1. Fundamentals of Cryptography: Algorithms, and Security Services Professor Guevara Noubir Northeastern University noubir@ccs.neu.edu Cryptography: Theory and Practice, Douglas Stinson, Chapman & Hall/CRC Network Security: Private Communication in a Public World [Chap. 2-8] Charles Kaufman, Mike Speciner, Radia Perlman, Prentice-Hall Cryptography and Network Security, William Stallings, Prentice Hall

  2. Outline � Introduction to security/cryptography � Secret Key Cryptography � DES, IDEA, AES � Modes of Operation � ECB, CBC, OFB, CFB, CTR � Message Authentication Code (MAC) � Hashes and Message Digest � Public Key Algorithms CSU610: SWARM Cryptography Overview 2

  3. Why/How? � Why security? � Internet, E-commerce, Digi-Cash, disclosure of private information … � Security services: � Authentication, Confidentiality, Integrity, Access control, Non- repudiation, availability � Cryptographic algorithms: � Symmetric encryption (DES, IDEA, AES) � Hashing functions � Symmetric MAC (HMAC) � Asymmetric (RSA, El-Gamal) CSU610: SWARM Cryptography Overview 3

  4. Terminology � Security services: � Authentication, confidentiality, integrity, access control, non- repudiation, availability, key management � Security attacks: � Passive, active � Cryptography models: � Symmetric (secret key), asymmetric (public key) � Cryptanalysis: � Ciphertext only, known plaintext, chosen plaintext, chosen ciphertext, chosen text CSU610: SWARM Cryptography Overview 4

  5. Security services Authentication: � assures the recipient of a message the authenticity of the claimed source � Access control: � limits the access to authorized users � Confidentiality: � protects against unauthorized release of message content � Integrity: � guarantees that a message is received as sent � Non-repudiation: � protects against sender/receiver denying sending/receiving a message � Availability: � guarantees that the system services are always available when needed � Security audit: � keeps track of transactions for later use (diagnostic, alarms…) � Key management: � allows to negotiate, setup and maintain keys between communicating entities � CSU610: SWARM Cryptography Overview 5

  6. Security Attacks Security attacks: � Interception (confidentiality) � Interruption (availability) � Modification (integrity) � Fabrication (authenticity) � Kent’s classification � Passive attacks: � � Release of message content � Traffic analysis Active attacks: � � Masquerade � Replay � Modification of message � Denial of service CSU610: SWARM Cryptography Overview 6

  7. Kerchoff’s Principle � The cipher should be secure when the intruder knows all the details of the encryption process except for the secret key � “No security by obscurity” � Examples of system that did not follow this rule and failed? CSU610: SWARM Cryptography Overview 7

  8. Attacks on Encrypted Messages Ciphertext only: � encryption algorithm, ciphertext to be decoded � Known plaintext: � encryption algorithm, ciphertext to be decoded, pairs of (plaintext, � ciphertext) Chosen plaintext: � encryption algorithm, ciphertext to be decoded, plaintext (chosen by � cryptanalyst) + corresponding ciphertext Chosen ciphertext: � encryption algorithm, ciphertext to be decoded, ciphertext (chosen by � cryptanalyst) + corresponding plaintext Chosen text: � encryption algorithm, ciphertext to be decoded, plaintext + � corresponding ciphertext (both can be chosen by attacker) CSU610: SWARM Cryptography Overview 8

  9. Encryption Models Symmetric encryption (conventional encryption) � Encryption Key = Decryption Key � E.g., AES, DES, FEAL, IDEA, BLOWFISH � Asymmetric encryption � Encryption Key ≠ Decryption key � E.g., RSA, Diffie-Hellman, ElGamal � Cryptanalyst Cryptanalyst Plaintext Plaintext Plaintext Ciphertext Plaintext Ciphertext Message Message Encryption Encryption Decryption Message Decryption Message source source Algorithm Algorithm Algorithm Destination Algorithm Destination Encryption Encryption Decryption Decryption Key Key Key Key CSU610: SWARM Cryptography Overview 9

  10. Encryption Models Plaintext Plaintext Plaintext Plaintext Ciphertext Ciphertext Message Encryption Decryption Message Message Encryption Decryption Message source Algorithm Algorithm Destination source Algorithm Algorithm Destination Encryption Encryption Decryption Decryption Key Key Key Key Symmetric encryption: Shared key Shared key Shared key Shared key Asymmetric encryption: Private key Private key Public key Public key CSU610: SWARM Cryptography Overview 10

  11. Some Building Blocks of Cryptography/Security Encryption algorithms � One-way hashing functions (= message digest, cryptographic checksum, � message integrity check, etc.) � Input: variable length string � Output: fixed length (generally smaller) string � Desired properties: Hard to generate a pre-image (input) string that hashes to a given string, � second preimage, and collisions One-way functions � � y = f ( x ): easy to compute � x = f -1 ( y ): much harder to reverse (it would take millions of years) � Example: multiplication of 2 large prime number versus factoring � discrete exponentiation/discrete logarithms � Protocols � � authentication, key management, etc. CSU610: SWARM Cryptography Overview 11

  12. Securing Networks Applications Layer Monitoring/Logging/Intrusion Detection � Where to put Control/Management (configuration) telnet/ftp, http: shttp , mail: PGP the security in a ( SSL/TLS, ssh ) Network Security Tools: protocol stack? Transport Layer (TCP) � Practical ( IPSec, IKE ) considerations: Network Layer (IP) � End to end Link Layer security ( IEEE802.1x/IEEE802.10 ) � No modification to OS Physical Layer ( spread-Spectrum, quantum crypto, etc. ) CSU610: SWARM Cryptography Overview 12

  13. Secret Key Cryptography = Symmetric Cryptography = Conventional Cryptography CSU610: SWARM Cryptography Overview 13

  14. Symmetric cryptosystems (conventional cryptosystems) � Substitution techniques: � Caesar cipher � Replace each letter with the letter standing x places further � Example: (x = 3) � plain: meet me after the toga party � cipher: phhw ph diwhu wkh wrjd sduwb � Key space: 25 � Brut force attack: try 25 possibilities � Monoalphabetic ciphers � Arbitrary substitution of alphabet letters � Key space: 26! > 4x10 26 > key-space(DES) � Attack if the nature of the plaintext is known (e.g., English text): � compute the relative frequency of letters and compare it to standard distribution for English (e.g., E:12.7, T:9, etc.) � compute the relative frequency of 2-letter combinations (e.g., TH) CSU610: SWARM Cryptography Overview 14

  15. English Letters Frequencies CSU610: SWARM Cryptography Overview 15

  16. Symmetric cryptosystems (Continued) Multiple-Letter Encryption (Playfair cipher) � � Plaintext is encrypted two-letters at a time � Based on a 5x5 matrix � Identification of individual diagraphs is more difficult (26x26 possibilities) � A few hundred letters of ciphertext allow to recover the structure of plaintext (and break the system) � Used during World War I & II Polyalphabetic Ciphers (Vigenère cipher) � � 26 Caesar ciphers, each one denoted by a key letter key: deceptivedeceptivedeceptive � plain: wearediscoveredsaveyourself � cipher: ZICVTWQNGRZGVTWAVZHCQYGLMGJ � � Enhancement: auto-key (key = initial||plaintext) Rotor machines: multi-round monoalphabetic substitution � � Used during WWII by Germany (ENIGMA) and Japan (Purple) CSU610: SWARM Cryptography Overview 16

  17. One-Time Pad � Introduced by G. Vernam (AT&T, 1918), improved by J. Mauborgne � Scheme: � Encryption: c i = p i ⊕ k i � c i : i th binary digit of plaintext, p i : plaintext, k i : key � Decryption: p i = c i ⊕ k i � Key is a random sequence of bits as long as the plaintext � One-Time Pad is unbreakable � No statistical relationship between ciphertext and plaintext � Example (Vigenère One-Time Pad): � Cipher: ANKYODKYUREPFJBYOJDSPLREYIUN � Plain-1 (with k1): MR MUSTARD WITH THE CANDLE � Plain-2 (with k2) : MISS SCARLET WITH THE KNIFE � Share the same long key between the sender & receiver CSU610: SWARM Cryptography Overview 17

  18. Transposition/Permutation Techniques Based on permuting the plaintext letters � Example: rail fence technique � mematrhtgpry etefeteoaat A more complex transposition scheme � Key: 4312567 � Plain: attackp � ostpone duntilt woamxyz Cipher: TTNAAPTMTSUOAODWCOIXKNLYPETZ � Attack: letter/diagraph frequency � Improvement: multiple-stage transposition � CSU610: SWARM Cryptography Overview 18

  19. Today’s Block Encryption Algorithms Key size: � Too short = > easy to guess � Block size: � Too short easy to build a table by the attacker: (plaintext, ciphertext) � Minimal size: 64 bits � Properties: � One-to-one mapping � Mapping should look random to someone who doesn’t have the key � Efficient to compute/reverse � How: � Substitution (small chunks) & permutation (long chunks) � Multiple rounds � ⇒ SPN (Substitution and Permutation Networks) and variants CSU610: SWARM Cryptography Overview 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Fundamentals of Cryptography: Algorithms, and Security Services Professor Guevara Noubir

Fundamentals of Cryptography: Algorithms, and Security Services Professor Guevara Noubir

Fundamentals of Cryptography: Algorithms, and Security Services Professor Guevara Noubir Northeastern University noubir@ccs.neu.edu Network Security: Private Communication in a Public World [Chap. 2-8] Charles Kaufman, Mike Speciner, Radia

697 views • 59 slides
15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline Introduction: terminology, cryptanalysis, security Private-Key Algorithms: Rijndael, DES Number Theory Groups Public-Key Algorithms: RSA, ElGamal,

525 views • 26 slides
1 Terminology Security services: Authentication, confidentiality, integrity,

1 Terminology Security services: Authentication, confidentiality, integrity,

Fundamentals of Cryptography: Algorithms, and Security Services Professor Guevara Noubir Northeastern University noubir@ccs.neu.edu Network Security: Private Communication in a Public World [Chap. 2-8] Charles Kaufman, Mike Speciner, Radia

454 views • 20 slides
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 12 Applying Cryptography

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 12 Applying Cryptography

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 12 Applying Cryptography Objectives Define digital certificates List the various types of digital certificates and how they are used Describe the components of

569 views • 7 slides
Fundamentals of Computer Security Spring 2015 Radu Sion Key Exchange Public Key Cryptography

Fundamentals of Computer Security Spring 2015 Radu Sion Key Exchange Public Key Cryptography

Fundamentals of Computer Security Spring 2015 Radu Sion Key Exchange Public Key Cryptography Public Key Cryptography Computer Security Fundamentals Fundamentals RSA February 10, 2015 2 Key Exchange Computer Security Fundamentals

1.06k views • 23 slides
Outline Cryptography and Encryption Uses of cryptography Algorithms Symmetric

Outline Cryptography and Encryption Uses of cryptography Algorithms Symmetric

Outline Cryptography and Encryption Uses of cryptography Algorithms Symmetric cryptography CS 239 Asymmetric cryptography Computer Security January 26, 2005 Lecture 5 Lecture 5 Page 1 Page 2 CS 239, Winter 2005 CS 239,

321 views • 13 slides
Outline Cryptography and Encryption Uses of cryptography Algorithms Symmetric

Outline Cryptography and Encryption Uses of cryptography Algorithms Symmetric

Outline Cryptography and Encryption Uses of cryptography Algorithms Symmetric cryptography CS 239 Asymmetric cryptography Computer Security February 5, 2003 Lecture 7 Lecture 7 Page 1 Page 2 CS 239, Winter 2003 CS 239,

263 views • 11 slides
C) Public Key Cryptography C.a) Fundamentals C.b) RSA with Applications C.c) DSA and Diffie

C) Public Key Cryptography C.a) Fundamentals C.b) RSA with Applications C.c) DSA and Diffie

1 C) Public Key Cryptography C.a) Fundamentals C.b) RSA with Applications C.c) DSA and Diffie Hellman W. Schindler: Cryptography, B-IT, winter 2006 / 2007 2 C.a) Fundamentals 3 C.1 Introducing Remark Public key cryptosystems are widely

621 views • 47 slides
1 Cryptography basics Secret-key encryption Algorithms (E, D) are widely known Also

1 Cryptography basics Secret-key encryption Algorithms (E, D) are widely known Also

Security The security environment Basics of cryptography User authentication Chapter 9: Security Attacks from inside the system Attacks from outside the system Protection mechanisms Trusted systems CS 1550, cs.pitt.edu

538 views • 11 slides
APPLIED CRYPTOGRAPHY: FROM ALGORITHMS TO LIBRARIES @ABSTRACTJ GOAL OF THIS PRESENTATION

APPLIED CRYPTOGRAPHY: FROM ALGORITHMS TO LIBRARIES @ABSTRACTJ GOAL OF THIS PRESENTATION

APPLIED CRYPTOGRAPHY: FROM ALGORITHMS TO LIBRARIES @ABSTRACTJ GOAL OF THIS PRESENTATION ALGORITHMS An algorithm must be seen to be believed. Donald E. Knuth THIS TALK IS NOT ABOUT ALGORITHMS, ONLY SECURITY the state of being

1.03k views • 74 slides
1 2 Security Authentication Principles 3 4 Hypertext Transfer Cryptography Protocol Secure

1 2 Security Authentication Principles 3 4 Hypertext Transfer Cryptography Protocol Secure

Chapter 18 1 2 Security Authentication Principles 3 4 Hypertext Transfer Cryptography Protocol Secure (HTTPS) 5 6 Security Best Common Practices Threat Vectors 7 Summary Fundamentals of Web Development - 2 nd Ed. Randy Connolly

603 views • 14 slides
Network Security Fundamentals Security Training Course Dr. Charles J. Antonelli The University

Network Security Fundamentals Security Training Course Dr. Charles J. Antonelli The University

Network Security Fundamentals Security Training Course Dr. Charles J. Antonelli The University of Michigan 2013 Network Security Fundamentals Module 6 Firewalls & VPNs Topics Firewall Fundamentals Case study: Linux iptables

778 views • 46 slides
iCSC 2011 Lecture 1 3-4 March 2011, CERN Computer Security Theme Understanding Cryptography

iCSC 2011 Lecture 1 3-4 March 2011, CERN Computer Security Theme Understanding Cryptography

Understanding Cryptography Outline Understanding Cryptography: From Caesar to RSA 1 Basic Substitution & Attacks Nicola Chiapolini 2 More Complex Methods 3 Something Completely Different? UZH 4 Two Modern Algorithms Inverted CERN School of

363 views • 10 slides
Network Security Fundamentals Security Training Course Dr. Charles J. Antonelli The University

Network Security Fundamentals Security Training Course Dr. Charles J. Antonelli The University

Network Security Fundamentals Security Training Course Dr. Charles J. Antonelli The University of Michigan 2013 Network Security Fundamentals Module 7 Intrusion Detection Topics Fundamentals Network IDS Snort Host-based IDS

1.03k views • 72 slides
Message Authentication Codes Auth. with MAC Security Algorithms CSS441: Security and

Message Authentication Codes Auth. with MAC Security Algorithms CSS441: Security and

CSS441 Introduction Functions Auth. with Encryption Message Authentication Codes Auth. with MAC Security Algorithms CSS441: Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by

673 views • 21 slides
Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is cryptography? Related fields: Cryptography ("secret writing"): Making secret messages Turning plaintext (an ordinary readable message)

1.2k views • 57 slides
Dtection automatique danomalies de performance Mohamed Said Mosli Bouksiaa, Franois Trahay,

Dtection automatique danomalies de performance Mohamed Said Mosli Bouksiaa, Franois Trahay,

Dtection automatique danomalies de performance Mohamed Said Mosli Bouksiaa, Franois Trahay, Gal Thomas Introduction Matriel complexe : NUMA, caches hirarchiques, GPU, etc Logiciels complexes : MPI+OpenMP, MPI+CUDA, etc

905 views • 58 slides
Query enumeration and nowhere dense graphs Alexandre Vigny February 15, 2019 Introduction

Query enumeration and nowhere dense graphs Alexandre Vigny February 15, 2019 Introduction

Introduction Query enumeration Nowhere dense Algorithms Whats next ? Conclusion Query enumeration and nowhere dense graphs Alexandre Vigny February 15, 2019 Introduction Query enumeration Nowhere dense Algorithms Whats next ?

1.25k views • 90 slides
Optimal reinsurance with ruin probability target Arthur Charpentier 7th International Workshop on

Optimal reinsurance with ruin probability target Arthur Charpentier 7th International Workshop on

Arthur CHARPENTIER - Optimal reinsurance with ruin probability target Optimal reinsurance with ruin probability target Arthur Charpentier 7th International Workshop on Rare Event Simulation, Sept. 2008 http

362 views • 25 slides
Qu Quantum co computers, ho how do do the hey work and nd wha hat can n the hey do do?

Qu Quantum co computers, ho how do do the hey work and nd wha hat can n the hey do do?

Qu Quantum co computers, ho how do do the hey work and nd wha hat can n the hey do do? Outline Quantum technology Quantum computing What is the advantage? The qubits Operating the quantum computer Quantum computing initiatives

475 views • 31 slides
WBTS: the new class of WSTS without WQO Alain Finkel LSV, ENS Paris-Saclay (ex ENS Cachan)

WBTS: the new class of WSTS without WQO Alain Finkel LSV, ENS Paris-Saclay (ex ENS Cachan)

Introduction News on coverability Erds and Tarski Theorem WBTS = WSTS - WQO + FAC Conclusion WBTS: the new class of WSTS without WQO Alain Finkel LSV, ENS Paris-Saclay (ex ENS Cachan) SynCoP + PV 22-23 April 2017 Blasenhus, Uppsala,

1.31k views • 102 slides
Lecture no: 8 051 Inter-symbol interference Linear equalizers Decision-feedback

Lecture no: 8 051 Inter-symbol interference Linear equalizers Decision-feedback

RADIO SYSTEMS ETI Contents Lecture no: 8 051 Inter-symbol interference Linear equalizers Decision-feedback equalizers Maximum-likelihood sequence estimation Equalization Ove Edfors, Department of Electrical and

463 views • 8 slides
Study of the surrogate-reac1on method via the simultaneous

Study of the surrogate-reac1on method via the simultaneous

Study of the surrogate-reac1on method via the simultaneous measurement of fission and gamma- decay probabili1es (ACTISUR->ACTInides-SURrogate) P. Marini ,

586 views • 44 slides
Overview Overview Motivation Motivation Collision detection Collision detection

Overview Overview Motivation Motivation Collision detection Collision detection

Overview Overview Motivation Motivation Collision detection Collision detection Classification Classification Query type Query type Alan Liu Alan Liu Algorithms Algorithms aliu@simcen.usuhs.mil

429 views • 5 slides

More recommend