Presentation is loading. Please wait.

Presentation is loading. Please wait.

Le Trong Ngoc Security Fundamentals (2) Encryption mechanisms 4/2011.

Published byCori Briggs Modified over 8 years ago

Similar presentations

Presentation on theme: "Le Trong Ngoc Security Fundamentals (2) Encryption mechanisms 4/2011."— Presentation transcript:

1 Le Trong Ngoc Security Fundamentals (2) Encryption mechanisms 4/2011

2 1.2 2-9 AES In February 2001, NIST announced that a draft of the Federal Information Processing Standard (FIPS) was available for public review and comment. Finally, AES was published as FIPS 197 in the Federal Register in December 2001. The criteria defined by NIST for selecting AES fall into three areas: 1. Security 2. Cost 3. Implementation.

3 1.3 2-9 Continued AES is a non-Feistel cipher that encrypts and decrypts a data block of 128 bits. It uses 10, 12, or 14 rounds. The key size, which can be 128, 192, or 256 bits, depends on the number of rounds. AES has defined three versions, with 10, 12, and 14 rounds. Each version uses a different cipher key size (128, 192, or 256), but the round keys are always 128 bits.

4 1.4 2-9 Continued General design of AES encryption cipher

5 1.5 2-9 Continued Data units used in AES

6 1.6 2-9 Continued Block-to-state and state-to-block transformation

7 1.7 2-9 Continued Changing plaintext to state

8 1.8 2-9 Continued Structure of each round at the encryption site

9 1.9 2-9 Continued SubBytes The first transformation, SubBytes, is used at the encryption site. To substitute a byte, we interpret the byte as two hexadecimal digits.

10 1.10 2-9 Continued

11 1.11 2-9 Continued

12 1.12 2-9 Continued

13 1.13 2-9 Continued Transformation Using the GF(2 8 ) Field AES also defines the transformation algebraically using the GF(28) field with the irreducible polynomials (x 8 + x 4 + x 3 + x + 1), as shown in Figure 7.8.

14 1.14 2-9 Continued SubBytes and InvSubBytes processes

15 1.15 2-9 Continued Let us show how the byte 0C is transformed to FE by subbyte routine and transformed back to 0C by the invsubbyte routine.

16 1.16 2-9 Continued ShiftRows In the encryption, the transformation is called ShiftRows.

17 1.17 2-9 Continued We need an interbyte transformation that changes the bits inside a byte, based on the bits inside the neighboring bytes. We need to mix bytes to provide diffusion at the bit level.

18 1.18 2-9 Continued Constant matrices used by MixColumns and InvMixColumns

19 1.19 2-9 Continued AddRoundKey AddRoundKey proceeds one column at a time. AddRoundKey adds a round key word with each state column matrix; the operation in AddRoundKey is matrix addition.

20 1.20 2-9 Continued To create round keys for each round, AES uses a key- expansion process. If the number of rounds is N r, the key-expansion routine creates N r + 1 128-bit round keys from one single 128-bit cipher key.

21 1.21 2-9 Continued Key Expansion in AES-128

22 1.22 2-9 Continued

23 1.23 2-9 Continued The key-expansion routine can either use the above table when calculating the words or use the GF(2 8 ) field to calculate the leftmost byte dynamically, as shown below (prime is the irreducible polynomial):

24 1.24 2-9 Continued Assuming that the 128-bit cipher key agreed upon by Alice and Bob is (24 75 A2 B3 34 75 56 88 31 E2 12 00 13 AA 54 87) 16.

25 1.25 2-9 Continued Each round key in AES depends on the previous round key. The dependency, however, is nonlinear because of SubWord transformation. The addition of the round constants also guarantees that each round key will be different from the previous one. Example The two sets of round keys can be created from two cipher keys that are different only in one bit.

26 1.26 2-9 Continued

27 1.27 2-9 Continued The concept of weak keys, as we discussed for DES does not apply to AES. Assume that all bits in the cipher key are 0s. The following shows the words for some rounds: The words in the pre-round and the first round are all the same. In the second round, the first word matches with the third; the second word matches with the fourth. However, after the second round the pattern disappears; every word is different.

28 1.28 2-9 Continued Ciphers and inverse ciphers of the original design

29 1.29 2-9 Continued Cipher and reverse cipher in alternate design

30 1.30 2-9 Continued

31 1.31 2-9 Continued AES was designed after DES. Most of the known attacks on DES were already tested on AES. Brute-Force Attack AES is definitely more secure than DES due to the larger-size key. Statistical Attacks Numerous tests have failed to do statistical analysis of the ciphertext. Differential and Linear Attacks There are no differential and linear attacks on AES as yet.

32 1.32 2-9 Continued Statistical Attacks Numerous tests have failed to do statistical analysis of the ciphertext. Differential and Linear Attacks There are no differential and linear attacks on AES as yet. The algorithms used in AES are so simple that they can be easily implemented using cheap processors and a minimum amount of memory.

Download ppt "Le Trong Ngoc Security Fundamentals (2) Encryption mechanisms 4/2011."

Similar presentations

Origins  clear a replacement for DES was needed Key size is too small Key size is too small The variants are just patches The variants are just patches.

Origins  clear a replacement for DES was needed Key size is too small Key size is too small The variants are just patches The variants are just patches.
Chap. 5: Advanced Encryption Standard (AES) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.

Chap. 5: Advanced Encryption Standard (AES) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.
1 Lecture 3: Secret Key Cryptography Outline concepts DES IDEA AES.

1 Lecture 3: Secret Key Cryptography Outline concepts DES IDEA AES.
Data Encryption Standard (DES)

Data Encryption Standard (DES)
Data Encryption Standard (DES)

Data Encryption Standard (DES)
1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.

1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.
Cryptography and Network Security Chapter 5 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 5 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Chapter 5

Cryptography and Network Security Chapter 5
The Advanced Encryption Standard (AES) Simplified.

The Advanced Encryption Standard (AES) Simplified.
Rachana Y. Patil 1 Data Encryption Standard (DES) (DES)

Rachana Y. Patil 1 Data Encryption Standard (DES) (DES)
Data Encryption Standard (DES)

Data Encryption Standard (DES)
 Stream ciphers o Encrypt chars/bits one at a time o Assume XOR w the key, need long key to be secure  Keystream generators (pseudo-random key) o Synchronous.

 Stream ciphers o Encrypt chars/bits one at a time o Assume XOR w the key, need long key to be secure  Keystream generators (pseudo-random key) o Synchronous.
Advanced Encryption Standard

Advanced Encryption Standard
Cryptography and Network Security

Cryptography and Network Security
1 The AES block cipher Niels Ferguson. 2 What is it? Block cipher: encrypts fixed-size blocks. Design by two Belgians. Chosen from 15 entries in a competition.

1 The AES block cipher Niels Ferguson. 2 What is it? Block cipher: encrypts fixed-size blocks. Design by two Belgians. Chosen from 15 entries in a competition.
Algorithm Scheme. AddRoundKey Each round uses four different words from the expanded key array. Each column in the state matrix is XORed with a different.

Algorithm Scheme. AddRoundKey Each round uses four different words from the expanded key array. Each column in the state matrix is XORed with a different.
This Lecture: AES Key Expansion Equivalent Inverse Cipher Rijndael performance summary.

This Lecture: AES Key Expansion Equivalent Inverse Cipher Rijndael performance summary.
AES clear a replacement for DES was needed

AES clear a replacement for DES was needed
Advanced Encryption Standard. This Lecture Why AES? NIST Criteria for potential candidates The AES Cipher AES Functions and Inverse Functions AES Key.

Advanced Encryption Standard. This Lecture Why AES? NIST Criteria for potential candidates The AES Cipher AES Functions and Inverse Functions AES Key.
Cryptography and Network Security (AES) Dr. Monther Aldwairi New York Institute of Technology- Amman Campus 10/18/2009 INCS 741: Cryptography 10/18/20091Dr.

Cryptography and Network Security (AES) Dr. Monther Aldwairi New York Institute of Technology- Amman Campus 10/18/2009 INCS 741: Cryptography 10/18/20091Dr.

Similar presentations

Ads by Google