june 6 2016 this week
play

June 6, 2016 this week Public key cryptography Pieter van den - PDF document

Jan 20, 2024 •88 likes •177 views

June 6, 2016 this week Public key cryptography Pieter van den Hombergh RSA and friends Crypto, PPK Public key cryptography Public and private Keys Information exchange Shared secret Authentication/signing Signing Pieter van den Hombergh

  1. June 6, 2016 this week Public key cryptography Pieter van den Hombergh RSA and friends Crypto, PPK Public key cryptography Public and private Keys Information exchange Shared secret Authentication/signing Signing Pieter van den Hombergh Authenticity Public Key Fontys Hogeschool voor Techniek en Logistiek Infrastructure Securely (trusted) distribution of keys Current technology of the June 6, 2016 ww-web SSL/TLS Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 1/27 Public key Scheme use and implementation cryptography Pieter van den Hombergh In 1976 1 Whitfield Diffie and Martin Hellman RSA and friends described how a digital signature scheme could be used. Crypto, PPK The idea of key exchange Public and private Keys Information exchange Ronald Rivest , Aid Shamir and Len Aldeman provided Shared secret Authentication/signing an implementaion for such a scheme in the RSA Signing algortihm in 1977. Authenticity Public Key Infrastructure Securely (trusted) distribution of keys Current technology of the ww-web SSL/TLS 1 quite recent compared to other, symmetric schemes Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 2/27 Simplified explanation of RSA Public key cryptography Pieter van den Hombergh The concept heavily relies on number theory, some of RSA and friends which goes back a long time, and modulo arithmetic Crypto, PPK with big numbers. Public and private Keys Information exchange The strength lies in the fact that factoring large Shared secret Authentication/signing numbers is a slow process. Signing Authenticity The central model is Public Key Infrastructure ( m e ) d ≡ m (mod n ) Securely (trusted) distribution of keys Current technology of the where e , d and n are very large 2 positive integer numbers. ww-web SSL/TLS All computations, including the exponentiation, are done using modulo n arithmetic. Note that also in this case, ( m e ) d = ( m d ) e ≡ m ( mod n ), which shows the equivalence of the exponents d and e and is also essential in the approach. 2 think hundreds of bits Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 3/27 Public key Example use cryptography Pieter van den Hombergh A lice creates key pair, of which ( n , e ) is the public key and RSA and friends ( n , d ) is the private key. She shares the public key with Crypto, PPK B ob. Public and private Keys B ob encrypts the message M. He therefor turns M into a Information exchange Shared secret large integer m , such that 0 ≤ m < m and gcd( m , n ) = 1 Authentication/signing Signing by using a padding scheme. From that he computes the Authenticity ciphertext c where Public Key Infrastructure c ≡ m e (mod n ) Securely (trusted) distribution of keys Current technology of the ww-web which he transmits to A lice. SSL/TLS A lice uses exponent d from her private key (n,d) to compute m ≡ c d (mod n ) producing the same m as B ob used. She than applies the reverse of the padding scheme, finding the original message. Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 4/27 1

  2. June 6, 2016 this week Key generation Public key cryptography Pieter van den Hombergh 1 Choose two distinct large primes p and q . These should RSA and friends be chosen random with a true random generator. (As Crypto, PPK in: unpredictable). Public and private Keys Information exchange 2 Compute n = p × q This n is the modulus in both public Shared secret Authentication/signing and private key. Its length, in bits, is the key length. Signing 3 Compute the Eulers totient function ϕ ( n ), which for the Authenticity primes p and q is simply n − ( p + q − 1). This is kept Public Key Infrastructure private. Securely (trusted) distribution of keys 4 Choose e such that 1 < e < ϕ ( n ) and gcd( e , ϕ ( n )) = 1, Current technology of the ww-web saying e and ϕ ( n ) are coprime . SSL/TLS 5 Determine d from d ≡ e − 1(mod ϕ ( n )) The e and n are combined into the public key, the d and n make up the private key. source: RSA Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 5/27 Public key Public-key cryptography cryptography Pieter van den Hombergh Alice RSA and friends Crypto, PPK Public and private Keys Information exchange 0110101010 Large Shared secret 1101110100 Random Authentication/signing Signing 0011011010 Number Authenticity Key Public Key Infrastructure Generation Securely (trusted) distribution of keys Program Current technology of the ww-web SSL/TLS A Public A Private The key pair, simplified. Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 6/27 Encrypt-decrypt Public key cryptography Pieter van den Hombergh Bob RSA and friends Crypto, PPK Hello Encrypt Public and private Keys Alice! Information exchange Shared secret Alice's Authentication/signing public key Signing 6EB69570 Authenticity 08E03CE4 Public Key Infrastructure Securely (trusted) distribution of keys Current technology of the Alice ww-web SSL/TLS Hello Decrypt Alice! Alice's private key The use of the keys Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 7/27 Public key Shared secret cryptography Pieter van den Hombergh Alice RSA and friends Crypto, PPK Bob's Combine 751A696C Public and private Keys public key keys 24D97009 Information exchange Shared secret Alice and Bob's Authentication/signing shared secret Signing Alice's Authenticity private key Public Key Infrastructure Bob Securely (trusted) distribution of keys Current technology of the ww-web Alice's Combine 751A696C SSL/TLS public key keys 24D97009 Alice and Bob's shared secret Bob's private key A shared secret can be use as key for a symmetric encryption. (Diffy-Hellman) Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 8/27 2

  3. June 6, 2016 this week Signing Public key cryptography Pieter van den Hombergh To sign a message, a signature can be added, by RSA and friends encrypting with the public key. (Signed and sent by Crypto, PPK Alice to Bob). Public and private Keys Information exchange Shared secret Authentication/signing X = encrypt (pubkey Bob , encrypt (privkey Alice , M )) Signing Authenticity where M is the message and X the result of encrypting, Public Key then signing it. Infrastructure Securely (trusted) The encrypted X is sent along an insecure path. distribution of keys Current technology of the ww-web Decryption and verification is done with the reverse use SSL/TLS of opposite keys. M = decrypt (pubkey Alice , decrypt (privkey Bob , X )) Note that the intermediate product is still encrypted (with Alice’s pubkey). Remember the evaluation order of the function calls! Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 9/27 Public key Signing with public key technology cryptography Pieter van den Hombergh We have seen that encryption uses the public key of the RSA and friends recipient to encrypt, and the private key of same to Crypto, PPK decrypt. Public and private Keys Information exchange The Owner of the key has the private key and is (or Shared secret Authentication/signing should be the only one that can decrypt. Signing Authenticity In signing we do the (almost) reverse: Public Key From the message to be signed, we compute a hash h . Infrastructure Securely (trusted) The sender encrypts this hash with his private key, distribution of keys Current technology of the ww-web appends it to the message. SSL/TLS some steps left out... (quiz which one?) The receiver decrypts the crypted hash, and if successfull, knows that the sender must have encrypted it, because he is the only one with access to the private key. Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 10/27 Signing in a picture Public key cryptography Pieter van den Hombergh RSA and friends Crypto, PPK Public and private Keys Information exchange Shared secret Authentication/signing Signing Authenticity Public Key Infrastructure Securely (trusted) distribution of keys Current technology of the ww-web SSL/TLS In place of the wiggly vertical, we could add encryption to keep the information confidential. Quiz: What will the Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 11/27 picture then look like? Public key Man in the Middle attack cryptography Pieter van den Hombergh RSA and friends Crypto, PPK Public and private Keys Information exchange Shared secret Authentication/signing Signing Authenticity Public Key Infrastructure Securely (trusted) distribution of keys Current technology of the ww-web SSL/TLS If the MITM can make the end user trust HIS certificate, he can decrypt the communication from the end user to him, and because he communicates to the server “on behalf” of the end user, also the traffic from the server intended for the end user. He can also modify the information. Pieter van den Hombergh/FHTenL Public key cryptography June 6, 2016 12/27 3

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CS32 - Week 1 Umut Oztok June 24, 2016 Umut Oztok CS32 - Week 1 Administration

CS32 - Week 1 Umut Oztok June 24, 2016 Umut Oztok CS32 - Week 1 Administration

CS32 - Week 1 Umut Oztok June 24, 2016 Umut Oztok CS32 - Week 1 Administration Email:umut@ucla.edu Office hours: R 09:30am-12:30pm (BH 4663) Umut Oztok CS32 - Week 1 Constructor Special member function to initialize an instance of a

414 views • 25 slides
PRESENTATION For the 26 week period ended 30 June 2017 Financial highlights 26 week 26 week

PRESENTATION For the 26 week period ended 30 June 2017 Financial highlights 26 week 26 week

INVESTOR PRESENTATION For the 26 week period ended 30 June 2017 Financial highlights 26 week 26 week period period ended ended Increase/ 30 June 24 June (decrease) 2017 2016 per cent Revenue (million) 169.8 158.0 7 Underlying

387 views • 28 slides
June 6, 2016 this week Message confidentiality HOM Purpose Terminology Message

June 6, 2016 this week Message confidentiality HOM Purpose Terminology Message

June 6, 2016 this week Message confidentiality HOM Purpose Terminology Message confidentiality block Using Mathematical Operations Pieter van den Hombergh stream study Fontys Hogeschool voor Techniek en Logistiek June 6, 2016

309 views • 4 slides
Opening Remarks 29 th Annual Marine Money Week June 22, 2016 Jefferies LLC Buying a Bargain or

Opening Remarks 29 th Annual Marine Money Week June 22, 2016 Jefferies LLC Buying a Bargain or

Opening Remarks 29 th Annual Marine Money Week June 22, 2016 Jefferies LLC Buying a Bargain or Catching a Falling Knife? 2 Market Snapshot June 2015 June 2016 Global GDP Growth (1 Yr Fwd) 2.9% 2.4% Brent Crude Oil ($/barrel) $63.87

290 views • 13 slides
15-112 Fundamentals of Programming Week 5 - Lecture 4: Wrap up June 16, 2016 Exceptions

15-112 Fundamentals of Programming Week 5 - Lecture 4: Wrap up June 16, 2016 Exceptions

15-112 Fundamentals of Programming Week 5 - Lecture 4: Wrap up June 16, 2016 Exceptions Exception Exception: run-time error out of the ordinary event exceptional event Handling Exceptions try/except block try : s =

535 views • 34 slides
15-112 Fundamentals of Programming Week 5 - Lecture 3: More Advanced Recursion June 15, 2016

15-112 Fundamentals of Programming Week 5 - Lecture 3: More Advanced Recursion June 15, 2016

15-112 Fundamentals of Programming Week 5 - Lecture 3: More Advanced Recursion June 15, 2016 Recursion vs Iteration 15-112 View Recursion Iteration - Elegance + - Performance + Debugability - + Memoization def fib(n): if (n &lt;

762 views • 62 slides
Instruction Week of June 1 st 2020 Ms. Kellys sixth grade global thinkers Student of the week:

Instruction Week of June 1 st 2020 Ms. Kellys sixth grade global thinkers Student of the week:

Instruction Week of June 1 st 2020 Ms. Kellys sixth grade global thinkers Student of the week: Student of the week for the week of May 27 th 2020: Jerry for having a great week of online learning and submitting assignments! Student of

525 views • 40 slides
Innovative financing for sustainable energy in practice Wednesday 15 June 2016 9:00 10:30

Innovative financing for sustainable energy in practice Wednesday 15 June 2016 9:00 10:30

SUSTAINABLE ENERGY WEEK 13-17 June 2016 Innovative financing for sustainable energy in practice Wednesday 15 June 2016 9:00 10:30 De Gasperi room, Charlemagne building Speakers Peter SWEATMAN Paul HODSON Didier GAMBIER Louise WHITE

415 views • 27 slides
27 June 1st July 2016, Malabo, Equatorial Guinea 3rd AFI AVIATION SYMPOSIUM, 28 June

27 June 1st July 2016, Malabo, Equatorial Guinea 3rd AFI AVIATION SYMPOSIUM, 28 June

2 nd AFI WEEK 27 June 1st July 2016, Malabo, Equatorial Guinea 3rd AFI AVIATION SYMPOSIUM, 28 June Presentation by the Cameroon Civil Aviation Authority SEARCH AND RESCUE (SAR) PREPARADENESS 2 ARE WE PREPARED ? To save lives To

684 views • 54 slides
GROUPAMA GROUP INVESTOR PRESENTATION June 2016 June 2016 June 2016 June 2016 GROUP PROFILE

GROUPAMA GROUP INVESTOR PRESENTATION June 2016 June 2016 June 2016 June 2016 GROUP PROFILE

GROUPAMA GROUP INVESTOR PRESENTATION June 2016 June 2016 June 2016 June 2016 GROUP PROFILE Introduction CREDIT HIGHLIGHTS - A LEADING MULTI-LINE MUTUAL INSURER Market-leading positions in Leader across various Property &amp; Casualty

647 views • 40 slides
HTML &amp; CSS Level 1: Week 5 June 2, 2014 Instructor: Devon Persing Last week CSS

HTML &amp; CSS Level 1: Week 5 June 2, 2014 Instructor: Devon Persing Last week CSS

HTML &amp; CSS Level 1: Week 5 June 2, 2014 Instructor: Devon Persing Last week CSS abbreviations Using class and id for styles Pseudo-classes Fancy backgrounds {} Abbreviated hex colors color: #333333 ; /* becomes */ color:

1.04k views • 89 slides
Summary from Rome: FCC Week 2016 Hadron Collider Mike Syphers, NIU/Fermilab APC Seminar 23

Summary from Rome: FCC Week 2016 Hadron Collider Mike Syphers, NIU/Fermilab APC Seminar 23

Summary from Rome: FCC Week 2016 Hadron Collider Mike Syphers, NIU/Fermilab APC Seminar 23 June 2016 2 The Future Circular Collider Study On the heals of the LHC success, looking into the next steps toward higher-energy accelerators

755 views • 74 slides
14.54 International Trade Lecture 4: Exchange Economies 14.54 Week 3 Fall 2016 14.54 (Week 3)

14.54 International Trade Lecture 4: Exchange Economies 14.54 Week 3 Fall 2016 14.54 (Week 3)

14.54 International Trade Lecture 4: Exchange Economies 14.54 Week 3 Fall 2016 14.54 (Week 3) Exchange Economies Fall 2016 1 / 35 Todays Plan 1 Basic Setup of Endowment Economy Autarky Equilibrium 2 Small Open Economy 3 Two Country

613 views • 35 slides
INVESTOR PRESENTATION For the 53 week period ended 30 December 2016 Trading update 53 week 52

INVESTOR PRESENTATION For the 53 week period ended 30 December 2016 Trading update 53 week 52

INVESTOR PRESENTATION For the 53 week period ended 30 December 2016 Trading update 53 week 52 week period ended period 30 ended 25 Increase/ December December (decrease) 2016 2015 (per cent) Revenue (million) 313.6 305.3 3

489 views • 27 slides
14.54 International Trade Lecture 10: Production Functions 14.54 Week 6 Fall 2016 14.54 (Week

14.54 International Trade Lecture 10: Production Functions 14.54 Week 6 Fall 2016 14.54 (Week

14.54 International Trade Lecture 10: Production Functions 14.54 Week 6 Fall 2016 14.54 (Week 6) Production Functions Fall 2016 1 / 20 Todays Plan Midterm Results 1 Properties of Production Functions (2 Factors) 2 Isoquants 3

388 views • 20 slides
14.54 International Trade Lecture 3: Preferences and Demand 14.54 Week 2 Fall 2016 14.54 (Week

14.54 International Trade Lecture 3: Preferences and Demand 14.54 Week 2 Fall 2016 14.54 (Week

14.54 International Trade Lecture 3: Preferences and Demand 14.54 Week 2 Fall 2016 14.54 (Week 2) Preferences and Demand Fall 2016 1 / 29 Todays Plan Utility maximization 1 Budget set 1 Preferences 2 Solution 3 Relative demand 4

554 views • 29 slides
Luca Bedogni Marco Di Felice Dipartimento di Scienze dellInformazione Universit di

Luca Bedogni Marco Di Felice Dipartimento di Scienze dellInformazione Universit di

Programming with Android: Activities and Intents Luca Bedogni Marco Di Felice Dipartimento di Scienze dellInformazione Universit di Bologna Outline What is an intent ? Intent-field description Handling Explicit Intents Handling

422 views • 30 slides
CS378 - Mobile Computing Intents Intents Allow us to use applications and components that

CS378 - Mobile Computing Intents Intents Allow us to use applications and components that

CS378 - Mobile Computing Intents Intents Allow us to use applications and components that are part of Android System and allow other applications to use the components of the applications we create Examples of Google applications:

473 views • 31 slides
Brian LaMacchia Agenda Guest lecture: Christian Rechberger, KU Leuven Towards SHA-3

Brian LaMacchia Agenda Guest lecture: Christian Rechberger, KU Leuven Towards SHA-3

Winter 2011 Josh Benaloh Brian LaMacchia Agenda Guest lecture: Christian Rechberger, KU Leuven Towards SHA-3 Message-based protocols S/MIME XMLDSIG &amp; XMLENC IPsec (depending on time) Design Charrette Part II

984 views • 75 slides
Electronic Mail Overview Electronic mail History Format of email RFC 822, MIME,

Electronic Mail Overview Electronic mail History Format of email RFC 822, MIME,

Electronic Mail Overview Electronic mail History Format of email RFC 822, MIME, email addresses Sending email SMTP, DNS Retrieving email POP, IMAP, Web-based 2 Flashback to the 70s ARPANET just recently came

437 views • 40 slides
Chapter 5 Electronic Mail Security -Pretty Good Privacy (PGP) -S/MIME 1 Need for E-Mail

Chapter 5 Electronic Mail Security -Pretty Good Privacy (PGP) -S/MIME 1 Need for E-Mail

Chapter 5 Electronic Mail Security -Pretty Good Privacy (PGP) -S/MIME 1 Need for E-Mail Security E-mail is necessary for E-Commerce Daily communication E-Mail is also very public, allowing for access at each point from the

1.1k views • 23 slides
Implementing a Cooperative Multi-Tenant Capable Prometheus Users: run small-scale

Implementing a Cooperative Multi-Tenant Capable Prometheus Users: run small-scale

Jonas Groe Sundrup 10.08.2018 PromCon 2018 Implementing a Cooperative Multi-Tenant Capable Prometheus Users: run small-scale infrastructure arent monitoring experts 1 Target users Goal: Share monitoring infrastructure

560 views • 33 slides
Operating Multi-Tenant Kafka Services for Developers Data Council SF 2019 Ali Hamidi - Heroku

Operating Multi-Tenant Kafka Services for Developers Data Council SF 2019 Ali Hamidi - Heroku

Operating Multi-Tenant Kafka Services for Developers Data Council SF 2019 Ali Hamidi - Heroku Data Agenda Intro Motivation Single Tenant Dedicated Multi-tenancy Configuration &amp; Tuning Testing Automation

1.09k views • 90 slides
PLATFORM AS A SERVICE MULTI TENANCY AND OPEN STANDARDS Peter Chittum @pchittum

PLATFORM AS A SERVICE MULTI TENANCY AND OPEN STANDARDS Peter Chittum @pchittum

PLATFORM AS A SERVICE MULTI TENANCY AND OPEN STANDARDS Peter Chittum @pchittum salesforce.com Platform as a Service Multi Tenancy and Open Standards Peter Chittum Developer Evangelist @pchittum Safe Harbor Safe harbor statement

545 views • 39 slides

More recommend