Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSE331: Introduction to Networks and Security Lecture 20 Fall 2002.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "CSE331: Introduction to Networks and Security Lecture 20 Fall 2002."— Presentation transcript:

1 CSE331: Introduction to Networks and Security Lecture 20 Fall 2002

2 CSE331 Fall 20022 Announcements Reminder: Project 2 is due Monday, Oct. 28 th Final Exam: Tuesday, Dec. 17 – 8:30-10:30am –Room to be determined

3 CSE331 Fall 20023 Recap RSA Today: –Finish up RSA –Basic Security Protocols

4 CSE331 Fall 20024 Fermat’s Little Theorem Generalized by Euler. Theorem: If gcd(a,n) = 1 then a  (n) mod n = 1. Easy to compute a -1 mod n –a -1 mod n = a  (n)-1 mod n –Why? a * a  (n)-1 mod n = a  (n)-1+1 mod n = a  (n) mod n = 1

5 CSE331 Fall 20025 RSA Key Generation Choose large primes p and q. –Should be roughly equal length (in bits) Let n = p*q Choose a random encryption exponent e –With requirement: e and (p-1)*(q-1) are relatively prime. Derive the decryption exponent d –d = e -1 mod ((p-1)*(q-1)) –d is e’s inverse mod ((p-1)*(q-1)) Public key: K = (e,n) pair of e and n Private key: k = (d,n) Discard primes p and q (they’re not needed anymore)

6 CSE331 Fall 20026 RSA Encryption and Decryption Message: m Assume m < n –If not, break up message into smaller chunks –Good choice: largest power of 2 smaller than n Encryption: E((e,n), m) = m e mod n Decryption: D((d,n), c) = c d mod n

7 CSE331 Fall 20027 Proof that D inverts E c d mod n = (m e ) d mod n(definition of c) = m ed mod n(arithmetic) = m k*(p-1)*(q-1) + 1 mod n(d inverts e) = m*m k*(p-1)*(q-1) mod n(arithmetic) = m*1 mod n(Fermat) = m (m < n)

8 CSE331 Fall 20028 Chinese Remainder Theorem Suppose: –p and q are relatively prime –a  b (mod p) –a  b (mod q) Then: a  b (mod p*q) Proof: –p divides (a-b) (because a mod p = b mod p) –q divides (a-b) –Since p, q are relatively prime, p*q divides (a-b) –But that is the same as: a  b (mod p*q)

9 CSE331 Fall 20029 Finished Proof Note: m p-1  1 mod p (if p doesn’t divide m) Implies: m k*  (n)+1  m mod p –Also holds for m = a*p Same argument yields: m k*  (n)+1  m mod q Chinese Remainder Theorem implies: m k*  (n)+1  m mod n

10 CSE331 Fall 200210 Cryptographic Protocols Consider communication over a network… What is the threat model? –What are the vulnerabilities? SR T SenderTransmission MediumReceiver O Interceptor

11 CSE331 Fall 200211 What Can the Observer Do? Intercept them (confidentiality) Modify them (integrity) Fabricate other messages (integrity) Replay them (integrity) Block the messages (availability) Delay the messages (availability) Cut the wire (availability) Flood the network (availability)

12 CSE331 Fall 200212 Diffie-Hellman Key Exchange Problem with shared-key systems: Distributing the shared key Suppose that Alice and Bart want to agree on a secret (i.e. a key) –Communication link is public –They don’t already share any secrets

13 CSE331 Fall 200213 Diffie-Hellman by Analogy: Paint AliceBart “Let’s use yellow” “OK, yellow.” 1.Alice & Bart decide on a public color, and mix one liter of that color. 2.They each choose a random secret color, and mix two liters of their secret color. 3.They keep one liter of their secret color, and mix the other with the public color. 2.They each choose a random secret color, and mix two liters of their secret color. 3.They keep one liter of their secret color, and mix the other with the public color. 2.They each choose a random secret color, and mix two liters of their secret color.

14 CSE331 Fall 200214 Diffie-Hellman by Analogy: Paint AliceBart 4. They exchange the mixtures over the public channel. 5.When they get the other person’s mixture, they combine it with their retained secret color. 6. The secret is the resulting color: Public + Alice’s + Bart’s

15 CSE331 Fall 200215 Diffie-Hellman Key Exchange Choose a prime p (publicly known) –Should be about 512 bits or more Pick g < p (also public) –g must be a primitive root of p. –A primitive root generates the finite field p. –Every n in {1, 2, …, p-1} can be written as g k mod p –Example: 2 is a primitive root of 5 –2 0 = 1 2 1 = 2 2 2 = 4 2 3 = 4 (mod 5) –Intuitively means that it’s hard to take logarithms base g because there are many candidates.

16 CSE331 Fall 200216 Diffie-Hellman AliceBart 1.Alice & Bart decide on a public prime p and primitive root g. “Let’s use (p, g)” “OK” 2.Alice chooses secret number A. Bart chooses secret number B 3.Alice sends Bart g A mod p. g A mod p g B mod p 4.The shared secret is g AB mod p.

17 CSE331 Fall 200217 Details of Diffie-Hellman Alice computes g AB mod p because she knows A: –g AB mod p = (g B mod p) A mod p An eavesdropper gets g A mod p and g B mod p –They can easily calculate g A+B mod p but that doesn’t help. –The problem of computing discrete logarithms (to recover A from g A mod p is hard.

18 CSE331 Fall 200218 Example Alice and Bart agree that q=71 and g=7. Alice selects a private key A=5 and calculates a public key g A  7 5  51 (mod 71). She sends this to Bart. Bart selects a private key B=12 and calculates a public key g B  7 12  4 (mod 71). He sends this to Alice. Alice calculates the shared secret: S  (g B ) A  4 5  30 (mod 71) Bart calculates the shared secret S  (g A ) B  51 12  30 (mod 71)

19 CSE331 Fall 200219 Why Does it Work? Security is provided by the difficulty of calculating discrete logarithms. Feasibility is provided by –The ability to find large primes. –The ability to find primitive roots for large primes. –The ability to do efficient modular arithmetic. Correctness is an immediate consequence of basic facts about modular arithmetic.

Download ppt "CSE331: Introduction to Networks and Security Lecture 20 Fall 2002."

Similar presentations

RSA.

RSA.
CSE331: Introduction to Networks and Security Lecture 19 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 19 Fall 2002.
Data encryption with big prime numbers

Data encryption with big prime numbers
22C:19 Discrete Structures Integers and Modular Arithmetic

22C:19 Discrete Structures Integers and Modular Arithmetic
22C:19 Discrete Math Integers and Modular Arithmetic Fall 2010 Sukumar Ghosh.

22C:19 Discrete Math Integers and Modular Arithmetic Fall 2010 Sukumar Ghosh.
Lecture 3.3: Public Key Cryptography III CS 436/636/736 Spring 2012 Nitesh Saxena.

Lecture 3.3: Public Key Cryptography III CS 436/636/736 Spring 2012 Nitesh Saxena.
7. Asymmetric encryption-

7. Asymmetric encryption-
15-251 Great Theoretical Ideas in Computer Science.

Great Theoretical Ideas in Computer Science.
Session 4 Asymmetric ciphers.

Session 4 Asymmetric ciphers.
Foundations of Network and Computer Security J J ohn Black Lecture #10 Sep 18 th 2009 CSCI 6268/TLEN 5550, Fall 2009.

Foundations of Network and Computer Security J J ohn Black Lecture #10 Sep 18 th 2009 CSCI 6268/TLEN 5550, Fall 2009.
CNS2010handout 8 :: introduction to number theory1 computer and network security matt barrie.

CNS2010handout 8 :: introduction to number theory1 computer and network security matt barrie.
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.
CSE331: Introduction to Networks and Security Lecture 21 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 21 Fall 2002.
Cryptography Lecture 11: Oct 12. Cryptography AliceBob Cryptography is the study of methods for sending and receiving secret messages. adversary Goal:

Cryptography Lecture 11: Oct 12. Cryptography AliceBob Cryptography is the study of methods for sending and receiving secret messages. adversary Goal:
Dr. Lo’ai Tawalbeh Fall 2005 Chapter 10 – Key Management; Other Public Key Cryptosystems Dr. Lo’ai Tawalbeh Computer Engineering Department Jordan University.

Dr. Lo’ai Tawalbeh Fall 2005 Chapter 10 – Key Management; Other Public Key Cryptosystems Dr. Lo’ai Tawalbeh Computer Engineering Department Jordan University.
1 Lecture #10 Public Key Algorithms HAIT Summer 2005 Shimrit Tzur-David.

1 Lecture #10 Public Key Algorithms HAIT Summer 2005 Shimrit Tzur-David.
CS470, A.SelcukPublic Key Cryptography1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukPublic Key Cryptography1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Csci5233 Computer Security & Integrity 1 Cryptography: Basics (2)

Csci5233 Computer Security & Integrity 1 Cryptography: Basics (2)
Cryptography & Number Theory

Cryptography & Number Theory
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

Similar presentations

Ads by Google