Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cryptography1 Syrian Virtual University MWS/MWT Internet & Web Security S2 Dr. Moutasem Shafa’amry

Published byDamian Washington Modified over 8 years ago

Similar presentations

Presentation on theme: "Cryptography1 Syrian Virtual University MWS/MWT Internet & Web Security S2 Dr. Moutasem Shafa’amry"— Presentation transcript:

1 Cryptography1 Syrian Virtual University MWS/MWT Internet & Web Security S2 Dr. Moutasem Shafa’amry t_mshafaamri@svuonline.org

2 Cryptography2 Syllabus Course Syllabus –أخلاقيات استخدام الانترنت والقوانين المتعلقة بها –مقدمة في أمن المعلومات مفاهيم ومصطلحات التعمية المتناظرة وغير المتناظرة Cryptography التوقيع الرقمي Digital Signature الشهادات الرقمية Digital Certificate –المشاكل الأمنية في بروتوكولات الانترنت: HTTP, SMTP FTP –برتوكولات الحماية SSL, TLS, HTTPS, PGP واستخداماتها في تطبيقات الوب –أنواع الهجوم على الوب: Cross-Site Request Forgery (CSRF)

3 Cryptography3 Secrecy Ciphers Stream & Bloc ciphers Secret Key Cryptography Key Exchange Public Key Cryptography Digital Signatures Applications Security What does it say?

4 Why Cryptography? Network information needs to be communicated through insecure channel. Stored information may be accessed without proper authorization. Cryptography is a systematic way to make that harder. Cryptography4

5 Common Security Requirements C onfidentiality :Secrecy(encryption) I ntegrity (signature/encryption) AVAILABILITY CIA (Conf., Integrity, Availability) –Authenticity(signature/encryption) –Non-repudiation (signature) Cryptography5

6 What Cryptography can do? Encryption: only the authorized party can understand the encrypted message. Signature: allow people to verify the authenticity of the message. Cryptography6

7 Classical Cryptography Shift Cipher –(a special case used by Caesar) Substitution Cipher –Affine Cipher –Vigenere Cipher –Hill Cipher Permutation Cipher Cryptography7

8 Crypto-analysis Ciphertext-only attack Known plaintext attack Chosen plaintext attack Adaptive Chosen plaintext attack Cryptography8

9 Crypto-analysis Shift Cipher: English histogram Substitution Cipher: histogram again Affine Cipher: histogram Vigenere Cipher: more complicated stat Hill Cipher: Known plaintext attack Permutation Cipher: histogram + semantics Cryptography9

10 10 C onfidentiality (Secrecy) Scenario: Alice wants to send a message ( plaintext p ) to Bob. The communication channel is insecure and can be eavesdropped by Trudy. If Alice and Bob have previously agreed on an encryption scheme (cipher), the message can be sent encrypted (ciphertext c) Issues: What is a good cipher? What is the complexity of encrypting/decrypting? What is the size of the ciphertext, relative to the plaintext? If Alice and Bob have never interacted before, how can they agree on a cipher?

11 11 Traditional Cryptography Ciphers were already studied in ancient times Caesar’s cipher: replace a with d replace b with e... replace z with c A more general monoalphabetic substitution cipher maps each letter to some other letter.

12 12 Breaking Traditional Cryptography Armed with simple statistcal knowledge, Trudy can easily break a mono-alphabetic substitution cipher –most frequent letters in English: e, t, o, a, n, i,... –most frequent digrams: th, in, er, re, an,... –most frequent trigrams: the, ing, and, ion,... The first description of the frequency analysis attack appears in a book written in the 9th century by the Arab philosopher al-Kindi

13 Cryptography13 Example (S. Singh, The Code Book, 1999) Ciphertext PCQ VMJYPD LBYK LYSO KBXBJXWXV BXV ZCJPO EYPD KBXBJYUXJ LBJOO KCPK. CP LBO LBCMKXPV XPV IYJKL PYDBL, QBOP KBO BXV OPVOV LBO LXRO CI SX'XJMI, KBO JCKO XPV EYKKOV LBO DJCMPV ZOICJO BYS, KXUYPD: 'DJOXL EYPD, ICJ X LBCMKXPV XPV CPO PYDBLK Y BXNO ZOOP JOACMPLYPD LC UCM LBO IXZROK CI FXKL XDOK XPV LBO RODOPVK CI XPAYOPL EYPDK. SXU Y SXEO KC ZCRV XK LC AJXNO X IXNCMJ CI UCMJ SXGOKLU?' OFYRCDMO, LXROK IJCS LBO LBCMKXPV XPV CPO PYDBLK Any Guesses???

14 14 Frequency Analysis Identyfying comon letters, digrams and trigrams... PCQ VMJYPD LBYK LYSO KBXBJXWXV BXV ZCJPO EYPD KBXBJYUXJ LBJOO KCPK. CP LBO LBCMKXPV XPV IYJKL PYDBL, QBOP KBO BXV OPVOV LBO LXRO CI SX'XJMI, KBO JCKO XPV EYKKOV LBO DJCMPV ZOICJO BYS, KXUYPD: 'DJOXL EYPD, X LBCMKXPV XPV CPO PYDBLK Y BXNO ZOOP JOACMPLYPD LC UCM LBO IXZROK CI FXKL XDOK XPV LBO RODOPVK CI XPAYOPL EYPDK. SXU Y SXEO KC ZCRV XK LC AJXNO X IXNCMJ CI UCMJ SXGOKLU?' OFYRCDMO, LXROK IJCS LBO LBCMKXPV XPV CPO PYDBLK First guess: LBO is THE

15 15 Frequency Analysis Assuming LBO represents THE we replace L with T, B with H, and O with E and get PCQ VMJYPD TH YK TYSE KHXHJXWXV HXV ZCJPE EYPD KHXHJYUXJ THJEE KCPK. CP THE THCMKXPV XPV IYJKT PYDHT, QHEP KHO HXV EPVEV THE LXRE CI SX'XJMI, KHE JCKE XPV EYKKOV THE DJCMPV ZEICJE HYS, KXUYPD: 'DJEXT EYPD, ICJ X LHCMKXPV XPV CPE PYDHLK Y HXNE ZEEP JEACMPTYPD TC UCM THE IXZREK CI FXKL XDEK XPV THE REDEPVK CI XPAYEPT EYPDK. SXU Y SXEE KC ZCRV XK TC AJXNE X IXNCMJ CI UCMJ SXGEKTU?' EFYRCDME, TXREK IJCS THE LHCMKXPV XPV CPE PYDBTK More guesses…?

16 16 Code Plaintext Now during this time Shahrazad had borne King Shahriyar three sons. On the thousand and first night, when she had ended the tale of Ma'aruf, she rose and kissed the ground before him, saying: 'Great King, for a thousand and one nights I have been recounting to you the fables of past ages and the legends of ancient kings. May I make so bold as to crave a favour of your majesty?’ E pilogue, Tales from the Thousand and One Nights X Z A V O I D B Y G E R S P C F H J K L M N Q T U W A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

17 Frequency of Letter Occurrence Cryptography17

18 18 Secret-Key Ciphers A secret-key cipher uses a key to encrypt and decrypt Caesar’s generalized cypher uses modular addition of each character (viewed as an integer) with the key: c i = p i + k mod m p i = c i -k mod m A more secure scheme is to use modular exponentiation to encrypt blocks of characters (viewed as integers): c [i,j] = p [i,j] k mod m where m is a large prime.

19 19 Secret-Key Ciphers made more secure Unlike modular addition, modular exponentiation is considered computationally infeasible (exponential) to invert. Thus, even if Trudy guesses a pair:(c [i,j],p [i,j] ), (for example, she knows the plaintext starts with the words “Dear Bob”) she still cannot compute the key k. Alice and Bob need to share only key k. Bob decrypts using Euler’s Theorem from number theory: p [i,j] = c [i,j] d mod m where d can be easily computed from k and m using Euclid’s gcd algorithm.

20 Block Cipher Divide input bit stream into n-bit sections, encrypt only that section, no dependency/history between sections Cryptography20 In a good block cipher, each output bit is a function of all n input bits and all k key bits

21 Encryption Mode (ECB) Cryptography21 Electronic Code Book (ECB) mode for block ciphers of a long digital sequence Vulnerable to replay attacks: if an attacker thinks block C 2 corresponds to $ amount, then substitute another C k Attacker can also build a codebook of pairs

22 Encryption Mode (CBC) Cryptography22 Cipher Block Chaining (CBC) mode for block ciphers Inhibits replay attacks and codebook building: identical input plaintext P i =P k won’t result in same output code due to memory-based chaining IV = Initialization Vector – use only once

23 23 How to Establish a Shared Key? What if Alice and Bob have never met and did not agree on a key? The Diffie-Hellman key exchange protocol (1976) allows strangers to establish a secret shared key while communicating over an insecure channel

24 24 The Diffie-Hellman key exchange Alice picks her secret “ half-key” x (a large integer) and two large primes m and g. She sends to Bob: (n, g, g x mod m) Even if Trudy intercepts (n, g, g x mod m), she cannot figure out x because modular logarithms are hard to compute. Bob picks his secret half-key y and sends to Alice: (g y mod m) Again, Trudy cannot figure out y. The shared key is: g xy mod m –Bob computes it as (g x mod m)y mod m –Alice computes it as (g y mod m)x mod m

25 25 Algorithmic Issues (How to do it Fast) How can we efficiently compute modular exponents for large integers? NOTE: It is not efficient to compute q = g x mod m in the obvious way: p = g x q = a mod m

26 26 Repeated Squaring Algorithm represent x in binary: x b-1 x b-2... x 1` x 0 repeat b-1 times g = g 2 mod m This yields p 0 = g mod m p 1 = g 2 mod m p 2 = g 4 mod m … p b-1 = g 2 b-1 mod m for i = 0 to b-1 q = qx i p i mod m The number of arithmetic operations performed is proportional to log x

27 Cryptography27 The Woman-in-the-Middle Attack Trudy can fool Alice and Bob to share a secret key with her How?

28 28 Public Key Ciphers: how to A pair of keys is used (e,d) Key e is made public and is used to encrypt Key d is kept private and is used to decrypt RSA, by Rivest, Shamir, Adleman (1978) is the most popular pubkic key cipher –select a pair of large primes, p and q –let e = pq be the public key –define  (e ) = (p-1)(q-1) –let d be the private key, where 3dmod  (e) = 1 –d is the inverse of 3 mod  (e ) –encrypt x with c = x 3 mod e –decrypt c with x = c d mod e –we have x = x 3d mod e

29 29 Public Key Ciphers: Conclusions RSA is considered secure because the only known way to find d from e is to factor e into p and q, a problem believed to be computationally hard NOTE: The RSA patent expired in September 2000

30 30 Digital Signatures Alice sends a message to Bob encrypting it with Bob’s public key. Bob decrypts the message using his private key. How can Bob determine that the message received was indeed sent by Alice? After all, Trudy also knows Bob’s public key.

31 31 Digital Signatures Alice can provide a digital signature for the message: s = x d mod e If Bob receives both x and s, he computes: –y = s 3 mod e = x d3 mod e = x Thus, if y = x, Bob knows that Alice indeed sent x, since she is the only person who can compute s from x. Also, Alice cannot cheat and deny to have sent message x (nonrepudiation). Using digital signatures, Alice and Bob can authenticate each other and prevent Trudy’s woman-in-the-middle attacks Validating a signed message requires knowledge of the other party’s public key.

32 32 Internet Security Recall that validating a signature requires knowledge of the other party’s public key How do we know other people’s public keys? Certification Authorities (e.g., Verisign) provide certificates that bind identities to public keys A certificate is a pair (id, key) signed by the CA A user needs to know only the public key of the CA

33 33 Internet Security Some secret-key ciphers (triple DES, IDEA, BLOWFISH) are much faster than RSA To communicate securely, a two-phase protocol is adopted: –a shared secret key k is established using RSA –data is transfered between the parties using a secret-key cipher and the shared key k Examples: –SSH (secure shell) for secure host login –SSL (secure socket layer) for secure Web access (https), which uses an additional certification phase

Download ppt "Cryptography1 Syrian Virtual University MWS/MWT Internet & Web Security S2 Dr. Moutasem Shafa’amry"

Similar presentations

Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security – Additional material.

Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security – Additional material.
Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.
Fubswrjudskb Frxuvh qxpehu:4003-482 / 4005-705 Lqvwuxfwru:Lyrqd Ehcdnryd Wrgdb’v Wrslfv: 1.Orjlvwlfv: -Fodvv olvw -Vboodexv 2. Wkh Pdwk 3. Zkdw lv Fubswrjudskb.

Fubswrjudskb Frxuvh qxpehu: / Lqvwuxfwru:Lyrqd Ehcdnryd Wrgdb’v Wrslfv: 1.Orjlvwlfv: -Fodvv olvw -Vboodexv 2. Wkh Pdwk 3. Zkdw lv Fubswrjudskb.
1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.

1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.
Presentation Title Your company information. Cryptography2 Syllabus Course Syllabus –أخلاقيات استخدام الانترنت والقوانين المتعلقة بها –مقدمة في أمن المعلومات.

Presentation Title Your company information. Cryptography2 Syllabus Course Syllabus –أخلاقيات استخدام الانترنت والقوانين المتعلقة بها –مقدمة في أمن المعلومات.
1 CS 854 – Hot Topics in Computer and Communications Security Fall 2006 Introduction to Cryptography and Security.

1 CS 854 – Hot Topics in Computer and Communications Security Fall 2006 Introduction to Cryptography and Security.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
6/11/2015 1:55 AMCryptography1 ciphertext encrypt plaintext.

6/11/2015 1:55 AMCryptography1 ciphertext encrypt plaintext.
Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.

Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
20-751 ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.

ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
Numerical Algorithms Chapter 10

Numerical Algorithms Chapter 10
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Security PART VII.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.
WS 2006-07 Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.

WS Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.

Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.
Numerical Algorithms Chapter 10

Numerical Algorithms Chapter 10

Similar presentations

Ads by Google