David Evans CS200: Computer Science University of Virginia Computer Science Class 36: Public-Key Cryptography If you want.

Slides:



Advertisements
Similar presentations
IS 302: Information Security and Trust Week 4: Asymmetric Encryption
Advertisements

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
Digital Signatures. Anononymity and the Internet.
Cryptography in World War II Jefferson Institute for Lifelong Learning at UVa Spring 2006 David Evans Class 4: Modern Cryptography
Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.
ECOMMERCE TECHNOLOGY SUMMER 2002 COPYRIGHT © 2002 MICHAEL I. SHAMOS Cryptographic Security.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Cryptographic Technologies
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
1 CPSC156: The Internet Co-Evolution of Technology and Society Lectures 19,20, and 21: April 5, 10, and 12, 2007 Cryptographic Primitives.
Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.
Topic 11: Key Distribution and Agreement 1 Information Security CS 526 Topic 11: Key Distribution & Agreement, Secure Communication.
8: Network Security8-1 Symmetric key cryptography symmetric key crypto: Bob and Alice share know same (symmetric) key: K r e.g., key is knowing substitution.
Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,
Computer Science Public Key Management Lecture 5.
Digital Signature Xiaoyan Guo/ Xiaohang Luo/
Introduction to Public Key Cryptography
Public Key Model 8. Cryptography part 2.
David Evans CS150: Computer Science University of Virginia Computer Science Class 36: Public Key Crypto.
1 Fluency with Information Technology Lawrence Snyder Chapter 17 Privacy & Digital Security Encryption.
Chapter 12 Cryptography (slides edited by Erin Chambers)
CS5204 – Fall Cryptographic Security Presenter: Hamid Al-Hamadi October 13, 2009.
Page 1 Secure Communication Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.
How HTTPS Works J. David Giese. Hyper Text Transfer Protocol BrowserHTTP Server GET / HTTP/1.1 HOST: edge-effect.github.io HEADERS BODY HTTP/ OK.
Lecture 11: Key Distribution
Lecture 19 Page 1 CS 111 Online Symmetric Cryptosystems C = E(K,P) P = D(K,C) E() and D() are not necessarily the same operations.
CS110: Computers and the Internet Encryption and Certificates.
1 Security and Internet Commerce Chapter Security in Transaction Processing Systems Security is essential in many transaction processing applications.
Cryptography, Authentication and Digital Signatures
Public-Key Cryptography CS110 Fall Conventional Encryption.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
Security. Asymmetric Cryptosystems Need a hard problem (like symmetric cryptosystems) With a trap door: if you know a secret, the hard problem becomes.
Midterm Review Cryptography & Network Security
CS526: Information Security Prof. Sam Wagstaff September 16, 2003 Cryptography Basics.
4 th lecture.  Message to be encrypted: HELLO  Key: XMCKL H E L L O message 7 (H) 4 (E) 11 (L) 11 (L) 14 (O) message + 23 (X) 12 (M) 2 (C) 10 (K) 11.
Cryptography Wei Wu. Internet Threat Model Client Network Not trusted!!
ITIS 1210 Introduction to Web-Based Information Systems Chapter 50 Cryptography, Privacy, and Digital Certificates.
Cryptography and Network Security (CS435) Part Eight (Key Management)
1 Public-Key Cryptography and Message Authentication.
Computer and Network Security Rabie A. Ramadan Lecture 6.
Cryptography and Network Security Chapter 9 - Public-Key Cryptography
1 Cryptography NOTES. 2 Secret Key Cryptography Single key used to encrypt and decrypt. Key must be known by both parties. Assuming we live in a hostile.
David Evans CS588: Security and Privacy University of Virginia Computer Science Lecture 14: Public Key Infrastructure.
Cryptography (2) University of Palestine Eng. Wisam Zaqoot April 2010 ITSS 4201 Internet Insurance and Information Hiding.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Symmetric Cryptography, Asymmetric Cryptography, and Digital Signatures.
Chapter 3 (B) – Key Management; Other Public Key Cryptosystems.
CS 4244: Internet Programming Security 1.0. Introduction Client identification and cookies Basic Authentication Digest Authentication Secure HTTP.
1 Network Security Basics. 2 Network Security Foundations: r what is security? r cryptography r authentication r message integrity r key distribution.
Security Many secure IT systems are like a house with a locked front door but with a side window open -somebody.
Cryptography 1 Crypto Cryptography 2 Crypto  Cryptology  The art and science of making and breaking “secret codes”  Cryptography  making “secret.
Public Key Algorithms Lesson Introduction ●Modular arithmetic ●RSA ●Diffie-Hellman.
Encryption CS110: Computer Science and the Internet.
Electronic Commerce School of Library and Information Science PGP and cryptography I. What is encryption? Cryptographic systems II. What is PGP? How does.
Digital Signatures and Digital Certificates Monil Adhikari.
Key Management Network Systems Security Mort Anvari.
Lecture 11 Overview. Digital Signature Properties CS 450/650 Lecture 11: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.
Lecture 9 Overview. Digital Signature Properties CS 450/650 Lecture 9: Digital Signatures 2 Unforgeable: Only the signer can produce his/her signature.
David Evans CS588: Security and Privacy University of Virginia Computer Science Lecture 10: Certificates and Hashes.
Digital Signatures.
Secure Sockets Layer (SSL)
Public-key Cryptography
Lecture 10: Network Security.
Class 36: Public-Key Cryptography
Presentation transcript:

David Evans CS200: Computer Science University of Virginia Computer Science Class 36: Public-Key Cryptography If you want a guarantee, buy a toaster. Clint Eastwood (The Rookie, 1990)

16 April 2004CS 200 Spring Last Time How to store securely –Store the hash of the password One-way, collision resistant hashing function (e.g., md5) –Check the hash of the entered password matches the stored hash The password is transmitted over the Internet

16 April 2004CS 200 Spring Sending Passwords Encrypt User Server The Internet

16 April 2004CS 200 Spring Encrypt Decrypt Plaintext Ciphertext Plaintext User Server C = Encrypt K (P) P = Decrypt K (C) KK The Internet

16 April 2004CS 200 Spring From PS4: Lorenz Cipher

16 April 2004CS 200 Spring Modern Symmetric Ciphers A billion billion is a large number, but it's not that large a number.Whitfield Diffie Same idea but: –Use digital logic instead of mechanical rotors –Larger keys (random bits, not rotor alignments) PS4 = 5 3 ; Lorenz  5 12 < 10 9 Modern  128 bits > –Encrypt blocks of letters at a time

16 April 2004CS 200 Spring Modern Ciphers AES (Rijndael) successor to DES selected bit keys, encrypt 128-bit blocks Brute force attack (around times harder than Lorenz) –Try 1 Trillion keys per second –Would take years to try all keys! –If that’s not enough, can use 256-bit key No known techniques that do better than brute force search

16 April 2004CS 200 Spring Encrypt Decrypt Plaintext Ciphertext Plaintext User Server KK The Internet How do User and Server agree on K (without sending it over the Internet)?

16 April 2004CS 200 Spring Key Agreement Demo (Animated version at end of slides.)

16 April 2004CS 200 Spring Asymmetric Cryptosystems Need a hard problem (like symmetric cryptosystems) With a trap door: if you know a secret, the hard problem becomes easy

16 April 2004CS 200 Spring One-Way Functions Easy to compute, hard to invert Trap-door one way function: –D (E (M)) = M –E and D are easy to compute. –Revealing E doesn’t reveal an easy way to compute D. –Hence, anyone who knows E can encrypt, but only someone who knows D can decrypt

16 April 2004CS 200 Spring RSA [Rivest, Shamir, Adelman 78] One-way function: multiplication is easy, factoring is hard Trap-door: number theory (Euler and Fermat)

16 April 2004CS 200 Spring Security of RSA n is public, but not p and q where n = pq How much work is factoring n ? n ~200 digits – would take quintillions of years Number Field Sieve (fastest known factoring algorithm) is: O(e ((ln (n)) 1/3 (ln (ln (n))) 2/3 ) The movie Sneakers is about what happens if someone discovers a O(n k ) factoring algorithm.

16 April 2004CS 200 Spring Asymmetric Cryptosystems Encryption and Decryption are done with different keys Keep one of the keys secret, reveal the other E KRA (E KUA (M)) = M Alice’s Public Key: KUA Alice’s Private Key: KRA Only KRA can decrypt a message encrypted using KUA.

16 April 2004CS 200 Spring Public-Key Applications: Privacy Alice encrypts message to Bob using Bob’s Private Key Only Bob knows Bob’s Private Key  only Bob can decrypt message Encrypt Decrypt Plaintext Ciphertext Plaintext Alice Bob Bob’s Public Key Bob’s Private Key

16 April 2004CS 200 Spring Signatures Bob knows it was from Alice, since only Alice knows Alice’s Private Key Non-repudiation: Alice can’t deny signing message (except by claiming her key was stolen!) Integrity: Bob can’t change message (doesn’t know Alice’s Private Key) Encrypt Decrypt Plaintext Signed Message Plaintext Alice Bob Alice’s Private Key Alice’s Public Key

16 April 2004CS 200 Spring Encrypt Decrypt Plaintext Ciphertext Plaintext User Server KU S KR S The Internet Public Key Private Key How does User know the public key to use?

16 April 2004CS 200 Spring Key Management

16 April 2004CS 200 Spring Approach 1: Meet Secretly User and Server Operator meet secretly and swap public keys –If you can do that, might as well agree on a secret (symmetric key) instead –Doesn’t work for Internet transactions

16 April 2004CS 200 Spring Approach 2: Public Announcement Publish public keys in a public forum –Append to messages –Post on web site –New York Time classifieds Easy for rogue to pretend to be someone else –Forge , alter web site, lie to New York Times

16 April 2004CS 200 Spring Approach 3: Public Directory Trusted authority maintains directory mapping names to public keys Entities register public keys with authority in some secure way Authority publishes directory –Print using watermarked paper, special fonts, etc. –Allow secure electronic access Depends on secure distribution of directory’s key

16 April 2004CS 200 Spring Approach 4: Certificates VeriSign UserServer KU S C S = E KR VeriSign [“Server”, KU S ] CSCS Request $$$$ E KUVeriSign (C S ) = [“Server”, KU S ] Knows KR S

16 April 2004CS 200 Spring SSL (Secure Sockets Layer) Browser Server Hello KR CA [Server Identity, KU S ] Check Certificate using KU CA Pick random K KU S [K] Find K using KR S Secure channel using K Note: This is slightly simplified from the actual SSL protocol. This version is vulnerable to a person-in- the-middle attack!

16 April 2004CS 200 Spring Data encrypted using secret key exchanged using some public key associated with some certificate.

16 April 2004CS 200 Spring

16 April 2004CS 200 Spring

16 April 2004CS 200 Spring

16 April 2004CS 200 Spring How do you make your web site password form encrypt its input?

16 April 2004CS 200 Spring Charge Exam 2 due Monday Next week: –Why Sneakers is also about solving the Cracker Barrel puzzle in O(n k ) –(Not necessary to see Sneakers for next week’s classes)

16 April 2004CS 200 Spring Animated version of Asymmetric Cryptography Demo

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi!

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi! Alice’s Padlock Alice’s Padlock Key

16 April 2004CS 200 Spring Padlocked Boxes Alice Alice’s Padlock Key Shady Sammy’s Slimy Shipping Service

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi! Bob Bob’s Padlock Bob’s Padlock Key Alice’s Padlock Key

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi! Bob Bob’s Padlock Key Alice’s Padlock Key

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi! Bob Bob’s Padlock Key Alice’s Padlock Key

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi! Bob Bob’s Padlock Key

16 April 2004CS 200 Spring Padlocked Boxes Alice Hi! Bob Bob’s Padlock Key Hi!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.