Presentation is loading. Please wait.

Presentation is loading. Please wait.

Public / Private Key Example Dan Fleck CS 469: Security Engineering Coming up: Today 11.

Published byChristian Justin Robinson Modified over 8 years ago

Similar presentations

Presentation on theme: "Public / Private Key Example Dan Fleck CS 469: Security Engineering Coming up: Today 11."— Presentation transcript:

1 Public / Private Key Example Dan Fleck CS 469: Security Engineering Coming up: Today 11

2 Today Hands-on exploring OpenSSL Install OpenSSL Generate a Public / Private keypair Send a “confidential” message to someone else in class Send an “authenticated” message to someone else in class Coming up: Install OpenSSL 22

3 Install OpenSSL Windows Users: http://www.openssl.org/related/binaries.html Mac OSX: Use MacPorts or Brew to install Linux: Use your package manager if you don’t already have it Coming up: Generating a Public/Private KeyPair 33

4 Generating a Public/Private KeyPair Generates the keypair into a PEM formatted file openssl genrsa -out fleck.pem 1024 Get the public key out: openssl rsa –in fleck.pem –pubout > fleck.pub You can see your private key if interested by: openssl rsa -in fleck.pem Coming up: Encrypt a file with your public key 44

5 Encrypt a file with your public key Encrypt dan.txt into an encrypted file: dan.enc: openssl rsautl -encrypt -pubin -inkey mykey.pub -in dan.txt -out dan.enc Now this file can be read only with the correct PRIVATE key. openssl rsautl -decrypt -inkey mykey.pem -in enc.txt -out plan.txt Did this preserve confidentiality or authenticity of the file? Coming up: Sign a file with your private key 55

6 Sign a file with your private key Sign the file: openssl rsautl -sign -inkey mykey.pem -in dan.txt -out dan.sig Now anyone with your public key can verify that it was signed: openssl rsautl -verify -inkey mykey.pub -pubin -in dan.sig In reality we hash the file and only sign the hash: openssl dgst -sha256 dan.txt > hash What are the remaining steps to send it? What are the user’s step to verify the authenticity of the message? Coming up: Sending a signed file 66

7 Sending a signed file Send the original plaintext file Send the signature Send the signature algorithm (sha256 in our case) Send your public key (typically this isn’t emailed, it’s posted into a public location) (e.g. http://pgp.mit.edu/ )http://pgp.mit.edu/ Receiver verification of the file Retrieve the hash from the signature file (openssl –verify…) Compute the hash yourself on the original file (openssl dgst …) Ensure the two are the same Coming up: Lessons 77

8 Lessons Public / Private key pairs can be used for signing any type of file for authenticity They can also be used for privacy through encryption End of presentation 88

Download ppt "Public / Private Key Example Dan Fleck CS 469: Security Engineering Coming up: Today 11."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.

MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.
Network Security: Lab#2 J. H. Wang Apr. 28, 2011.

Network Security: Lab#2 J. H. Wang Apr. 28, 2011.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas

Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
CS 105 – Introduction to the World Wide Web  HTTP Request*  Domain Name Translation  Routing  HTTP Response*  Privacy and Cryptography  Adapted.

CS 105 – Introduction to the World Wide Web  HTTP Request*  Domain Name Translation  Routing  HTTP Response*  Privacy and Cryptography  Adapted.
Tony BrettOUCS Course Code ZAB 9 February 2004 E-Mail Security – Encryption and Digital Signatures Tony Brett Oxford University Computing Services February.

Tony BrettOUCS Course Code ZAB 9 February Security – Encryption and Digital Signatures Tony Brett Oxford University Computing Services February.
Electronic mail security -- Pretty Good Privacy.

Electronic mail security -- Pretty Good Privacy.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
Information Security. Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised.

Information Security. Information Security Requirements Confidentiality: Protection from disclosure to unauthorised persons Access control: Unauthorised.
Homework #5 Solutions Brian A. LaMacchia Portions © 2002-2006, Brian A. LaMacchia. This material is provided without.

Homework #5 Solutions Brian A. LaMacchia Portions © , Brian A. LaMacchia. This material is provided without.
Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.

Overview of Digital Signatures Introduction To Networks and Communications (CS 555) Presented by Bharath Kongara.
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.

INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.
Asymmetric encryption. Asymmetric encryption, often called public key encryption, allows Alice to send Bob an encrypted message without a shared secret.

Asymmetric encryption. Asymmetric encryption, often called "public key" encryption, allows Alice to send Bob an encrypted message without a shared secret.
Lecture 9: Email Security via PGP CS 436/636/736 Spring 2012 Nitesh Saxena.

Lecture 9: Security via PGP CS 436/636/736 Spring 2012 Nitesh Saxena.
Sorting Out Digital Certificates Bill blog.codingoutloud.com ··· Boston Azure ··· 13·Dec·2012 ···

Sorting Out Digital Certificates Bill blog.codingoutloud.com ··· Boston Azure ··· 13·Dec·2012 ···

Similar presentations

Ads by Google