introduction to cryptography
play

Introduction to Cryptography Helger Lipmaa Laboratory for - PowerPoint PPT Presentation

May 23, 2023 •371 likes •946 views

T-79.159 Cryptography and Data Security Introduction to Cryptography Helger Lipmaa Laboratory for Theoretical Computer Science Helsinki University of Technology helger@tcs.hut.fi http://www.tcs.hut.fi/helger T-79.159 Cryptography and Data

  1. T-79.159 Cryptography and Data Security Introduction to Cryptography Helger Lipmaa Laboratory for Theoretical Computer Science Helsinki University of Technology helger@tcs.hut.fi http://www.tcs.hut.fi/˜helger T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 1

  2. Cryptography and Data Security / 2004 • Lecturer: Helger Lipmaa • Reception: by appointment • Lectures and recommended exercise sessions • Course material: Slides • Newsgroup: opinnot.tik.salaus T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 2

  3. Comparison with T-79.159/2003 • Slides from 2003 are on the web • Can use for “early learning”, except that: • Slides will be corrected (bugs + made more readable) • There will be at least one extra lecture • Reference book for 2003, Network Security (Kaufman, Perlman, Speciner), is still usable but not required T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 3

  4. Goals • Introduction to cryptography and its methods • To give basic overview of existing primitives and protocols • To explain which tasks and how can be performed securely and which tasks can be not • To understand what it means for something to be secure • Hopefully: To develop basic cryptographic thinking T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 4

  5. What this course is (not) about? • Not about politics, coorporate security • Not about database security, intrusion detection — university has other courses for that • Not much about applications like PGP • Is about cryptography, the mathematical part of cryptography • Is about novel uses of cryptography (e-voting, . . . ) T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 5

  6. Prerequisities • Mathematics: one or two years of basic studies + Mat-1.128 (or an analogue). Discrete mathematics is essential! • Understanding of computer architectures • Coding skills: some home assignments will need programming • Some basic knowledge about data security • Sophisticated and curious mind. Interest in solving puzzles, security issues T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 6

  7. Course Team • Lectures: Helger Lipmaa (English + some other obscure languages) • Tutorials: Markku-Juhani Saarinen (Finnish + English + . . . ) T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 7

  8. Course Layout • More or less follow the textbook during approx. the first seven lectures • New and interesting stuff in last lectures • Students can buy the textbook (has been spotted in Akateeminen), but it is not necessary T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 8

  9. Tentative Schedule ♯ Date Subject 1. 21.1 Introduction (Chapter 2) 2. 28.1 Secret key Cryptography (Chp 3) 3. 4.2 Hash functions (Chp 5) — MJOS 4. 11.2 Block cipher modes (Chp 4) 5. 18.2 Public key algorithms (Chp 6) 6. 25.2 Identification (roughly Chp 7) 7. 3.3 . . . [new] — MJOS 8. 10.3 Zero-knowledge and commitments 9. 17.3 Secret sharing, threshold encryption, MPC 10. 7.4 Pseudorandomness, provable security 11. 14.4 Electronic cash 11. 21.4 . . . [new] 12. 28.4 Epilogue T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 9

  10. Course Passing • 12 lectures, 11 tutorials — when lecture is on Wednesday, the cor- responding tutorial (homework) will be available on Monday and the exercise session will be held on Thursday (of the next week) • Thus, first exercise session: 29.01 • Homeworks checked by MJOS (B254, mjos at tcs.hut.fi) during the exercise session • To get to exam, 50% of the homeworks must be passed (6 of 11) • Exam — time not fixed yet T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 10

  11. First Lecture: Introduction to Cryptography 1. What is cryptography? 2. Breaking an encryption scheme 3. Types of cryptographic functions 4. Secret key cryptography 5. Public key cryptography 6. Hash algorithms (Chapter 2) T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 11

  12. What is cryptography? • κρυπτo - γραφη = hidden + writing • Historically, cryptography = the science of secret communication (en- cryption) • Alice and Bob want to communicate without the governmental inter- ception • Two governments want to communicate without any interception what- soever T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 12

  13. What is cryptography? • Apart from encryption, contemporary cryptography makes it possible to ⋆ authenticate people, ⋆ verify the integrity of data ⋆ . . . (many unexpected applications) • Communication of digital information (encoded as numbers) • Different functions map numbers other numbers either to encrypt them, to authenticate, . . . T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 13

  14. Need for the Key • Ciphertext = encrypted plaintext (message), C = E ( M ) • Plaintext = decrypted ciphertext, M = E − 1 ( C ) • Function E − 1 must be secret—otherwise it is easy to compute M from C • If Alice and Bob want to have twodirectional traffic, they must share the function E (and E − 1 ) — a hardware module, piece of software or a mathematical description T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 14

  15. The Need for the Key • Bad 1: the description of E might be long, and hard to share • Bad 2: the description of E might be long, and hard to keep in secret • E.g., can be recovered by reverse engineering the hardware module • Solution: E and E − 1 are public, but C also depends on a short secret key K • Easier to share, easier to keep secret (memorize, or store in tamper- proof hardware) T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 15

  16. Types of cryptographic functions • Secret key cryptography: 1 key • Public key cryptography: 2 keys • Hash functions: no keys T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 16

  17. Secret key encryption: basic model Eve Cannot understand :( E − 1 E M = E − 1 C = E K ( M ) K ( E K ( M )) M K K Preshared keys Alice Bob T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 17

  18. Encryption: definitions Adversary Eve Cipher, Encryption Inverse cipher, Decryption Public channel E − 1 E M = E − 1 C = E K ( M ) K ( E K ( M )) M Plaintext Ciphertext K K Preshared key Private channel Alice Bob Sender Receiver T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 18

  19. Scientific method of cryptography • Security of cryptographic primitives is either ⋆ Provable: e.g., one-time pad is secure ⋆ Reducable: “ E is secure if F is secure” ⋆ Heuristic: “we cannot break E , and a lot of other people also do not know how to break it” • Fundamentally, it is not known if any cryptographic method is secure — since it might happen that P = NP , or that quantum computers can break all ciphers T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 19

  20. Scientific method of cryptography • Provable : most desired, but such systems cannot be practical • Reducable : practical in some applications, but usually slow and one must have secure basic primitives • Heuristic : results in crazy but extremely practical ciphers • It is also not easy to define what exactly is meant by security in prac- tice! • The real method: Alice designs a cipher, Bob breaks it, Alice fixes the break, Carol breaks it, Alice and Diana fix the break, Edward breaks it, . . . , Theodor proposes a completely new cipher, Urho breaks it, . . . T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 20

  21. Ciphers should be public, 1/2 • If cipher is kept secret, it may be harder to break it • However, one cannot rely on secrecy: the more people use a cipher, the more information about it is bound to leak • Main reason for publishing: gives free scientific scrutinity • Avoids also criticism T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 21

  22. Ciphers should be public, 2/2 • People will try to break your cipher (for their personal fame, for hobby, for . . . ). If they cannot break it in a while, the cipher might be secure • If you know the cipher is secure anyways (i.e., not heuristic), then pub- lishing it does not help to break it! • Motivations for keeping it secret: (a) trade secrets, (b) NSA/KGB/. . . develops a secure cipher and does not want oth- ers to start use it T-79.159 Cryptography and Data Security, 21.01.2004 Introduction to Cryptography, Helger Lipmaa 22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 19th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security fail?

758 views • 72 slides
Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and Source Code in C , 2nd. Edition, Bruce Schneier, John Wiley & Sons, Inc. Outline Cryptographic Protocols Introduction Introduction

759 views • 45 slides
Introduction to Symmetric Cryptography Lars R. Knudsen June 2014 L.R. Knudsen Introduction to

Introduction to Symmetric Cryptography Lars R. Knudsen June 2014 L.R. Knudsen Introduction to

Introduction to Symmetric Cryptography Lars R. Knudsen June 2014 L.R. Knudsen Introduction to Symmetric Cryptography What is cryptography? Cryptography is communication in the presence of an adversary Ron Rivest. Coding theory Detection and

877 views • 28 slides
Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key

Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key

Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key Cryptography 1 Renate Scheidler The RSA Cryptosystem 2 Department of Mathematics & Statistics Department of Computer Science University of

372 views • 7 slides
Security II: Cryptography Jonathan Katz, Yehuda Lindell: Introduction to Modern Cryptography

Security II: Cryptography Jonathan Katz, Yehuda Lindell: Introduction to Modern Cryptography

Related textbooks Main reference: Security II: Cryptography Jonathan Katz, Yehuda Lindell: Introduction to Modern Cryptography Chapman & Hall/CRC, 2nd ed., 2014 Further reading: Markus Kuhn Christof Paar, Jan Pelzl: Understanding

794 views • 27 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
CS 1501 www.cs.pitt.edu/~nlf4/cs1501/ An Introduction to Cryptography Introduction to crypto

CS 1501 www.cs.pitt.edu/~nlf4/cs1501/ An Introduction to Cryptography Introduction to crypto

CS 1501 www.cs.pitt.edu/~nlf4/cs1501/ An Introduction to Cryptography Introduction to crypto Cryptography - enabling secure communication in the presence of third parties Alice wants to send Bob a message without anyone else being

878 views • 44 slides
Related textbooks Jonathan Katz, Yehuda Lindell: Security II: Cryptography Introduction to

Related textbooks Jonathan Katz, Yehuda Lindell: Security II: Cryptography Introduction to

Related textbooks Jonathan Katz, Yehuda Lindell: Security II: Cryptography Introduction to Modern Cryptography Chapman & Hall/CRC, 2008 Christof Paar, Jan Pelzl: Markus Kuhn Understanding Cryptography Springer, 2010

470 views • 20 slides
Introduction to Public-Key Cryptography Nadia Heninger University of Pennsylvania June 11, 2018

Introduction to Public-Key Cryptography Nadia Heninger University of Pennsylvania June 11, 2018

Introduction to Public-Key Cryptography Nadia Heninger University of Pennsylvania June 11, 2018 We stand today on the brink of a revolution in cryptography. Diffie and Hellman, 1976 Symmetric cryptography AES k ( m ) * Toy

935 views • 50 slides
Course Information Cryptography usage CSE 107 Introduction to Modern Cryptography

Course Information Cryptography usage CSE 107 Introduction to Modern Cryptography

Course Information Cryptography usage CSE 107 Introduction to Modern Cryptography Instructor: Mihir Bellare Did you use any cryptography today? Website: http://cseweb.ucsd.edu/~mihir/cse107 Mihir Bellare UCSD 1 Mihir Bellare UCSD 2

166 views • 12 slides
Outline ElGamal Signature Scheme 1 CPSC 418/MATH 318 Introduction to Cryptography El Gamal

Outline ElGamal Signature Scheme 1 CPSC 418/MATH 318 Introduction to Cryptography El Gamal

Outline ElGamal Signature Scheme 1 CPSC 418/MATH 318 Introduction to Cryptography El Gamal Signature Scheme, Cryptography in Practice: Random Number Odds and Ends on Public Key Crypto 2 Generation, Key Management Cryptography in Real Life 3

367 views • 14 slides
Introduction to Public Key Cryptography Toke Meier Carlsen University of the Faroe Islands eID

Introduction to Public Key Cryptography Toke Meier Carlsen University of the Faroe Islands eID

Introduction to Public Key Cryptography Toke Meier Carlsen University of the Faroe Islands eID the Corner Stone of digitalizing 2016-09-07 What is cryptography? What is cryptography? Hello Alice Hello Alice Bobs wants to send messages

400 views • 16 slides
Elliptic Curve Cryptography An Introduction Dr. F . Vercauteren Katholieke Universiteit Leuven

Elliptic Curve Cryptography An Introduction Dr. F . Vercauteren Katholieke Universiteit Leuven

Cryptography Elliptic Curves EC Cryptographic Primitives Pairings Elliptic Curve Cryptography An Introduction Dr. F . Vercauteren Katholieke Universiteit Leuven 22 April 2008 Dr. F. Vercauteren Elliptic Curve Cryptography An Introduction

491 views • 32 slides
Outline CPSC 418/MATH 318 Introduction to Cryptography Recap: Authentication 1 Cryptography in

Outline CPSC 418/MATH 318 Introduction to Cryptography Recap: Authentication 1 Cryptography in

Outline CPSC 418/MATH 318 Introduction to Cryptography Recap: Authentication 1 Cryptography in Practice: Entity Authentication, SSH Entity Authentication 2 Kerberos 5 Renate Scheidler Station-to-Station protocol Department of Mathematics

297 views • 8 slides
15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline

15-853:Algorithms in the Real World Cryptography #2 15-853 Page 1 Cryptography Outline Introduction: terminology, cryptanalysis, security Private-Key Algorithms: Rijndael, DES Number Theory Groups Public-Key Algorithms: RSA, ElGamal,

525 views • 26 slides
Security Issues in Mobile Agents E C Vijil School of Information Technology vijil@it.iitb.ac.in

Security Issues in Mobile Agents E C Vijil School of Information Technology vijil@it.iitb.ac.in

Security Issues in Mobile Agents E C Vijil School of Information Technology vijil@it.iitb.ac.in 16 January 2002 Security Issues in Mobile Agents 1 Overview of the Talk The Mobile Agent Paradigm Security Threats and Counter Measures

587 views • 24 slides
SSL / TLS How broken is it? Interesting times Introduction I'm Hanno Bck, freelance

SSL / TLS How broken is it? Interesting times Introduction I'm Hanno Bck, freelance

SSL / TLS How broken is it? Interesting times Introduction I'm Hanno Bck, freelance Journalist, administrator at schokokeks.org (webhosting) Long-time interest in crypto, diploma thesis on RSA-PSS This talk was planned before the

648 views • 37 slides
$Q(PSLULFDO6WXG\RI5HDO9LGHR %DQGZLGWKDQGUHVSRQVHWLPHQRWHQRXJK

$Q(PSLULFDO6WXG\RI5HDO9LGHR %DQGZLGWKDQGUHVSRQVHWLPHQRWHQRXJK

,QWURGXFWLRQ 6WUHDPLQJ$XGLRDQG9LGHRLVJURZLQJ 7UDGLWLRQDO,QWHUQHWVWXGLHVEXW YLGHRLVGLIIHUHQW $Q(PSLULFDO6WXG\RI5HDO9LGHR %DQGZLGWKDQGUHVSRQVHWLPHQRWHQRXJK

452 views • 7 slides
Correlation Clustering Bounding and Comparing Methods Beyond ILP Micha Elsner and Warren Schudy

Correlation Clustering Bounding and Comparing Methods Beyond ILP Micha Elsner and Warren Schudy

Correlation Clustering Bounding and Comparing Methods Beyond ILP Micha Elsner and Warren Schudy Department of Computer Science Brown University May 26, 2009 Document clustering rec.motorcycles soc.religion.christian 2 Document clustering:

802 views • 59 slides
Machine Learning 10-601 Tom M. Mitchell Machine Learning Department Carnegie Mellon University

Machine Learning 10-601 Tom M. Mitchell Machine Learning Department Carnegie Mellon University

Machine Learning 10-601 Tom M. Mitchell Machine Learning Department Carnegie Mellon University March 4, 2015 Today: Readings: Bishop chapter 8 Graphical models Mitchell chapter 6 Bayes Nets: EM Mixture of Gaussian

331 views • 32 slides
Current Status NNTPEXT Working Group Stan Barber, Co-Chair 12/11/2000 Status Summary

Current Status NNTPEXT Working Group Stan Barber, Co-Chair 12/11/2000 Status Summary

Current Status NNTPEXT Working Group Stan Barber, Co-Chair 12/11/2000 Status Summary Current Practices Draft became RFC 2980 (Thanks, Ned!) RFC977bis is in 12 th release since it became draft-ietf-nntp-base-XX.txt There have

418 views • 13 slides
Welcome to CS440 / ECE 448 Introduction to Artificial Intelligence Prof.

Welcome to CS440 / ECE 448 Introduction to Artificial Intelligence Prof.

Welcome to CS440 / ECE 448 Introduction to Artificial Intelligence Prof. Julia Hockenmaier Lecture 1: Introduction CS440/ECE448 Introduction to Artificial Intelligence Prof. Julia Hockenmaier

522 views • 34 slides
DESIGN LESSONS FROM THE FASTEST Q&A SITE IN THE WEST Lena Mamykina Columbia University s t

DESIGN LESSONS FROM THE FASTEST Q&A SITE IN THE WEST Lena Mamykina Columbia University s t

DESIGN LESSONS FROM THE FASTEST Q&A SITE IN THE WEST Lena Mamykina Columbia University s t e u g a l c i e p s a Bella Manoim Bard College h t W i y r r e T e l a h c i M y b Manas Mittal UC Berkeley EECS e

701 views • 45 slides

More recommend