Presentation is loading. Please wait.

Presentation is loading. Please wait.

SECURITY Chapter 7.3 – 7.5 Presentation by Deepthi Reddy.

Published byAmbrose Lawson Modified over 8 years ago

Similar presentations

Presentation on theme: "SECURITY Chapter 7.3 – 7.5 Presentation by Deepthi Reddy."— Presentation transcript:

1

2 SECURITY Chapter 7.3 – 7.5 Presentation by Deepthi Reddy

3 Cryptographic Algorithms  A message is encrypted by the sender applying some rule to transform the plaintext message to a cipher text. E(K,M) = {M}k  Recipient must know the inverse rule in order to transform the cipher text into the original plain text. D(K, E(K, M)) = M  Secret-Key cryptography: two types –Symmetric cryptography –Asymmetric cryptography

4 Symmetric Algorithms  Symmetric (secret key) E(K, M) = {M} K D(K, E(K, M)) = M Same key for E and D. M must be hard(infeasible) to compute if K is not known. Usual form of attack is brute- force: try all possible key values for a known pair M, {M} K. Resisted by making K sufficiently large ~ 128 bits

5 Asymmetric Algorithms  Asymmetric (public key) D(K d. E(K e, M)) = M ( Separate encryption and decryption keys: K e, K d) depends on the use of a trap-door function to make the keys. E has high computational cost. Very large keys > 512 bits  Hybrid protocols - used in SSL (now called TLS) Uses asymmetric crypto to transmit the symmetric key that is then used to encrypt a session.

6 Cipher blocks  Most algorithms work on 64-bit blocks.  chaining n n+3n+2n+1 XOR E(K, M) n-1n-2 n-3 plaintext blocks ciphertext blocks Figure 7.6 Cipher block chaining (CBC)

7 Stream Ciphers  stream ciphers XOR E(K, M) number generator n+3n+2n+1 plaintext stream ciphertext stream buffer keystream Figure 7.7 Stream cipher

8 Symmetric encryption algorithms These are all programs that perform confusion and diffusion operations on blocks of binary data TEA: a simple but effective algorithm developed at Cambridge U (1994) for teaching and explanation. 128-bit key, 700 kbytes/sec DES: The US Data Encryption Standard (1977). No longer strong in its original form. 56-bit key, 350 kbytes/sec. Triple-DES: applies DES three times with two different keys. 112- bit key, 120 Kbytes/sec IDEA: International Data Encryption Algorithm (1990). Resembles TEA. 128-bit key, 700 kbytes/sec AES: A proposed US Advanced Encryption Standard (1997). 128/256-bit key.

9 Asymmetric encryption algorithms They all depend on the use of trap-door functions A trap-door function is a one-way function with a secret exit - e.g. product of two large numbers; easy to multiply, very hard (infeasible) to factorize. RSA: The first practical algorithm (Rivest, Shamir and Adelman 1978) and still the most frequently used. Key length is variable, 512-2048 bits. Speed 1-7 kbytes/sec. (350 MHz PII processor) Elliptic curve: A recently-developed method, shorter keys and faster. Asymmetric algorithms are ~1000 x slower and are therefore not practical for bulk encryption, but their other properties make them ideal for key distribution and for authentication uses.

10 Digital signatures Requirement: –To authenticate stored document files as well as messages –To protect against forgery –To prevent the signer from repudiating a signed document (denying their responsibility) Encryption of a document in a secret key constitutes a signature -impossible for others to perform without knowledge of the key -strong authentication of document -strong protection against forgery -weak against repudiation (signer could claim key was compromised)

11 Secure digest functions - Encrypted text of document makes an impractically long signature -so we encrypt a secure digest instead -A secure digest function computes a fixed-length hash H(M) that characterizes the document M -H(M) should be: -fast to compute -hard to invert - hard to compute M given H(M) -hard to defeat in any variant of the Birthday Attack - MD5: Developed by Rivest (1992). Computes a 128-bit digest. Speed 1740 kbytes/sec.  SHA: (1995) based on Rivest's MD4 but made more secure by producing a 160-bit digest, speed 750 kbytes/second  Any symmetric encryption algorithm can be used in CBC (cipher block chaining) mode. The last block in the chain is H(M) - *

12 Digital signatures with public keys M H(M) 128 bits h E(K pri, h) {h} Kpri M signed doc M {h} Kpri D(K pub,{h}) h' h = h'?authentic:forged h H(doc) Verifying

13 MACs: Low-cost signatures with a shared secret key MAC: Message Authentication Code h M signed doc M K H(M+K) h M K h' H(M+K) h = h'?authentic:forged Signer and verifier share a secret key K

14 Performance of encryption and secure digest algorithm Key size/hash size (bits) Extrapolated speed (kbytes/sec.) PRB optimized speed (kbytes/s) TEA128700- DES563507746 Triple-DES 1121202842 IDEA1287004469 RSA 512 7- RSA2048 1- MD5128174062425 SHA 16075025162 PRB = Preneel, Rijmen and Bosselaers [Preneel 1998] Algorithm Public key Secret key Diges t speeds are for a Pentium II processor at 330 MHZ *

15 Case study: Needham-Schroeder Protocol In early distributed systems (1974-84) it was difficult to protect the servers –E.g. against masquerading attacks on a file server –because there was no mechanism for authenticating the origins of requests –public-key cryptography was not yet available or practical computers too slow for trap-door calculations RSA algorithm not available until 1978 Needham and Schroeder therefore developed an authentication and key-distribution protocol for use in a local network –An early example of the care required to design a safe security protocol –Introduced several design ideas including the use of nonces. *

16 Case study: Kerberos authentication and key distribution service  Secures communication with servers on a local network –Developed at MIT in the 1980s to provide security across a large campus network > 5000 users –based on Needham - Schroeder protocol  Standardized and now included in many operating systems –Internet RFC 1510, OSF DCE –BSD UNIX, Linux, Windows 2000, NT, XP, etc. –Available from MIT  Kerberos server creates a shared secret key for any required server and sends it (encrypted) to the user's computer  User's password is the initial secret shared with Kerberos *

17 Case study: The Secure Socket Layer (SSL)  Key distribution and secure channels for internet commerce –Hybrid protocol; depends on public-key cryptography –Extended and adopted as an Internet standard with the name Transport Level Security (TLS) –Provides the security in all web servers and browsers and in secure versions of Telnet, FTP and other network applications  Design requirements –Secure communication without prior negotation or help from 3rd parties –Free choice of crypto algorithms by client and server –communication in each direction can be authenticated, encrypted or both

18 Summary  It is essential to protect the resources, communication channels and interfaces of distributed systems and applications against attacks.  This is achieved by the use of access control mechanisms and secure channels.  Public-key and secret-key cryptography provide the basis for authentication and for secure communication.  Kerberos and SSL are widely-used system components that support secure and authenticated communication. *

Download ppt "SECURITY Chapter 7.3 – 7.5 Presentation by Deepthi Reddy."

Similar presentations

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas

Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas
Security 2 Outline Various Attacks to Computer Security Cryptography Authentication & Key Distribution Access Control Logic of Authentication.

Security 2 Outline Various Attacks to Computer Security Cryptography Authentication & Key Distribution Access Control Logic of Authentication.
First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown and edited by Archana Chidanandan Cryptographic Tools.

First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown and edited by Archana Chidanandan Cryptographic Tools.
Hash functions a hash function produces a fingerprint of some file/message/data h = H(M)  condenses a variable-length message M  to a fixed-sized fingerprint.

Hash functions a hash function produces a fingerprint of some file/message/data h = H(M)  condenses a variable-length message M  to a fixed-sized fingerprint.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Cryptography Basic (cont)

Cryptography Basic (cont)
Copyright © George Coulouris, Jean Dollimore, Tim Kindberg 2001 This material is made available for private study and for direct.

Copyright © George Coulouris, Jean Dollimore, Tim Kindberg This material is made available for private study and for direct.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Cryptographic Technologies

Cryptographic Technologies
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.

Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
Case Study On Distributed Systems Security by Merv Wagner.

Case Study On Distributed Systems Security by Merv Wagner.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Similar presentations

Ads by Google