Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure Systems Design Ramesh Karri Office Hours: Tues/Wed/Thurs: 12:00- 1:30 in LC 001

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Secure Systems Design Ramesh Karri Office Hours: Tues/Wed/Thurs: 12:00- 1:30 in LC 001"— Presentation transcript:

1 Secure Systems Design Ramesh Karri ramesh@india.poly.edu Office Hours: Tues/Wed/Thurs: 12:00- 1:30 in LC 001 ramesh@india.poly.edu

2 Security and Privacy Data confidentiality Data confidentiality Data integrity Data integrity Authentication Authentication Non-repudiation Non-repudiation Applications Applications smartcards, securid, smart tokens, GSM SIM etc… smartcards, securid, smart tokens, GSM SIM etc… VPN Gateways, Secure Routers, …. VPN Gateways, Secure Routers, …. Cryptography is the fundamental building block Cryptography is the fundamental building block

3 Data confidentiality Symmetric block ciphers Symmetric block ciphers Encrypt (plaintext block, key)= ciphertext block Encrypt (plaintext block, key)= ciphertext block Decrypt (ciphertext block, key)= plaintext block Decrypt (ciphertext block, key)= plaintext block Encryption key = Decryption key Encryption key = Decryption key Advanced Encryption Standard (AES)Advanced Encryption Standard (AES) 128-bit plaintext block, 128-bit secret key 128-bit plaintext block, 128-bit secret key Stream ciphers Stream ciphers Key stream generator; encryption is a simple xor operationKey stream generator; encryption is a simple xor operation Cipher feedback mode of AES etc..Cipher feedback mode of AES etc.. Output feedback mode of AES etc..Output feedback mode of AES etc..

4 Symmetric Block Cipher

5 Data Integrity Message authentication code Message authentication code Detect modification to messagesDetect modification to messages Cipher block chaining mode of AES,DESCipher block chaining mode of AES,DES

6 Design of High Speed Encryption Devices Message Authentication Codes Message Authentication Codes Previous: 600 MbpsPrevious: 600 Mbps Our research: 80-100 GbpsOur research: 80-100 Gbps 2004 IEEE DAC/ISSSC Best Design Contest, 3 rd Prize2004 IEEE DAC/ISSSC Best Design Contest, 3 rd Prize Ongoing research: Encryption and its various modes of operation Ongoing research: Encryption and its various modes of operation Arbitrary Block LengthArbitrary Block Length Authenticated EncryptionAuthenticated Encryption Opportunity to make a dramatic impactOpportunity to make a dramatic impact

7 Testing of Encryption Devices Are secure against mathematics based attacks Are secure against mathematics based attacks Differential CryptanalysisDifferential Cryptanalysis Linear CryptanalysisLinear Cryptanalysis Are not secure against implementation attacks Are not secure against implementation attacks Differential Power analysisDifferential Power analysis Differential Timing analysisDifferential Timing analysis Differential Fault analysisDifferential Fault analysis Our research: Design against DFA Our research: Design against DFA Developed a patented techniqueDeveloped a patented technique Alexander Von Humboldt FellowshipAlexander Von Humboldt Fellowship Working on several new techniques (extremely low cost)Working on several new techniques (extremely low cost)

8 Reverse Engineering Encryption Device Implementations Scan chains based attack Scan chains based attack DES, AES, etc… DES, AES, etc… Secure hardware design methodology Secure hardware design methodology Break AES encryption algorithm using a combination of mathematical analysis and side channel information Break AES encryption algorithm using a combination of mathematical analysis and side channel information Become famous Become famous

9 Contact Bo Yang, Nikhil Joshi or Ramesh Karri in LC 001 (basement) Contact Bo Yang, Nikhil Joshi or Ramesh Karri in LC 001 (basement)

Download ppt "Secure Systems Design Ramesh Karri Office Hours: Tues/Wed/Thurs: 12:00- 1:30 in LC 001"

Similar presentations

DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.

DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.
Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.
“Advanced Encryption Standard” & “Modes of Operation”

“Advanced Encryption Standard” & “Modes of Operation”
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.

1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.
Digital Kommunikationselektroink TNE027 Lecture 6 (Cryptography) 1 Cryptography Algorithms Symmetric and Asymmetric Cryptography Algorithms Data Stream.

Digital Kommunikationselektroink TNE027 Lecture 6 (Cryptography) 1 Cryptography Algorithms Symmetric and Asymmetric Cryptography Algorithms Data Stream.
Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.
Symmetric Encryption Example: DES Weichao Wang. 2 Overview of the DES A block cipher: – encrypts blocks of 64 bits using a 64 bit key – outputs 64 bits.

Symmetric Encryption Example: DES Weichao Wang. 2 Overview of the DES A block cipher: – encrypts blocks of 64 bits using a 64 bit key – outputs 64 bits.
Block Ciphers: Workhorses of Cryptography COMP 1721 A Winter 2004.

Block Ciphers: Workhorses of Cryptography COMP 1721 A Winter 2004.
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.

Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
Lecture 23 Symmetric Encryption

Lecture 23 Symmetric Encryption
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)

Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)
Scan Based Attack on Dedicated Hardware Implementation of Data Encryption Standard Bo Yang ECE Dept Polytechnic Univ Kaijie Wu ECE Dept Univ of Illinois.

Scan Based Attack on Dedicated Hardware Implementation of Data Encryption Standard Bo Yang ECE Dept Polytechnic Univ Kaijie Wu ECE Dept Univ of Illinois.
Decryption Algorithms Characterization Project ECE 526 spring 2007 Ravimohan Boggula,Rajesh reddy Bandala Southern Illinois University Carbondale.

Decryption Algorithms Characterization Project ECE 526 spring 2007 Ravimohan Boggula,Rajesh reddy Bandala Southern Illinois University Carbondale.
Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.

Network Security. Contents Security Requirements and Attacks Confidentiality with Conventional Encryption Message Authentication and Hash Functions Public-Key.

Similar presentations

Ads by Google