Presentation is loading. Please wait.

Presentation is loading. Please wait.

SOA Seminar1 Seminar on Service Oriented Architecture RSA.

Published byMaria Rebecca Jacobs Modified over 8 years ago

Similar presentations

Presentation on theme: "SOA Seminar1 Seminar on Service Oriented Architecture RSA."— Presentation transcript:

1 SOA Seminar1 Seminar on Service Oriented Architecture RSA

2 SOA Seminar2 Topics Introduce RSA and a toy example using small numbers. This is from Introduction to Algorithms by Cormen, Leiserson and Rivest Describe an interesting cryptographic protocol and its limitations. This is from Applied Cryptography by Bruce Schneier. Show how RSA cryptography can be done in Java. See the Java Cryptograhy API.

3 SOA Seminar3 Privacy: to send encrypted messages over an insecure channel. Authentication: To digitally sign messages. RSA was not the first public key approach. Public key cryptography was first introduced by Diffie and Hellman in 1976. RSA was developed by Rivest, Shamir, and Aldeman in 1977. It’s probably safe to call public key cryptography revolutionary. Purpose of RSA

4 SOA Seminar4 The Cast of Characters Eve - tries to view messages she should not be viewing. Mallory - tries to manipulate messages and be disruptive. Bob and Alice - try to communicate over insecure channels.

5 SOA Seminar5 1.Select at random two large prime numbers p and q. These numbers would normally be about 500 digits in length. 2.Compute n by the equation n = p X q. 3.Compute  (n) = (p –1) X (q –1) 4.Select a small odd integer e that is relatively prime to  (n) The RSA Key Generation (1)

6 SOA Seminar6 5. Compute d as the multiplicative inverse of e modulo  (n). A theorem in number theory asserts that d exists and is uniquely defined. 6. Publish the pair P = (e,n) as the RSA public key. 7. Keep secret the pair S = (d,n) as the RSA secret key. The RSA Key Generation (2)

7 SOA Seminar7 8. To encrypt a message M compute C = M e (mod n) 9. To decrypt a message C compute M = C d (mod n) RSA Encryption and Decryption

8 SOA Seminar8 Toy Example: Key Selection(1) 1.Select at random two large prime numbers p and q. These numbers would normally be about 500 digits in length. p = 3 q = 11 2.Compute n by the equation n = p X q. n = 33 3. Compute  (n) = (p –1) X (q –1)  (n) = (2) X (10) = 20

9 SOA Seminar9 Toy Example: Key Selection(2) 4. Select a small odd integer e that is relatively prime to  (n) p = 3 q = 11 n = 33  (n) = 20 e = 3

10 SOA Seminar10 Toy Example: Key Selection(3) 5. Compute d as the multiplicative inverse of e, modulo  (n). A theorem in number theory asserts that d exists and is uniquely defined (since e and  (n) are relatively prime). We need a d so that ed mod  = 1 Let’s try 1. 3 X 1 mod 20 = 3 mod 20 = 3. Nope. p = 3 q = 11 n = 33  (n) = 20 e = 3

11 SOA Seminar11 Toy Example: Key Selection(4) We need a d so that ed mod  = 1 Let’s try 2. 3 X 2 mod 20 = 6 mod 20 = 6. Nope. Let’s try 7. 3 X 7 mod 20 = 21 mod 20 = 1. We found it! This approach is too slow. A fast approach exists. p = 3 q = 11 n = 33  (n) = 20 e = 3

12 SOA Seminar12 Toy Example: Publish The Public Key 6. Publish the pair P = (e,n) as the RSA public key. “Hey everyone, my key pair is 3 and 33” 7. Keep secret the pair S = (d,n) as the RSA secret key. “I’m not telling anyone about 7 and 33!!” p = 3 q = 11 n = 33  (n) = 20 e = 3 d = 7

13 SOA Seminar13 Toy Example: Message encoding phase e = 3 n = 33Bob’s public keys are Alice wants to send the letter ‘d’ to Bob. Suppose that we have a public code where ‘a’ = 0 ‘b’ = 1 ‘c’ = 2 ‘d’ = 3 and so on… Alice’s software knows that 8. To encrypt a message M compute C = M e (mod n) = 3 3 mod 33 = 27 mod 33 = 27

14 SOA Seminar14 Toy Example: Message decoding phase d = 7 n = 33Bob’s private keys are Bob receives a 27 from Alice: 9. To decrypt a message C compute M = C d (mod n) = 27 7 mod 33 = 10460353203 mod 33 = 3 (which is ‘d’)

15 SOA Seminar15 An Example - Secure Voting We want to think about: Business Requirements Cryptographic protocols Threat models

16 SOA Seminar16 Goals Of Secure Voting Only Authorized Voters Can Vote No one can vote more than once No one can determine for whom anyone else voted No one can duplicate anyone else’s vote No one can change anyone else’s vote without being discovered Every voter can make sure that his vote has been taken into account in the final tabulation.

17 SOA Seminar17 First Attempt Each voter encrypts his vote with the public key of a Central Tabulating Facility (CTF) Each voter send his vote in to the CTF The CTF decrypts the votes, tabulates them, and makes the results public What are some problems with this protocol?

18 SOA Seminar18 Second Attempt Each voter signs his vote with his private key Each voter encrypts his signed vote with the CTF’s public key Each voter send his vote to the CTF The CTF decrypts the votes, checks the signature, tabulates the votes and makes the results public What are some problems with this protocol?

19 How do we do RSA in Java? SOA Seminar19

20 RSA In Java(1) How do I create RSA keys? Use the Biginteger class and do your own calculations or Use Java’s keytool: keytool -genkey -alias mjm -keyalg RSA -keystore mjmkeystore SOA Seminar20

21 RSA In Java(2) How do I read the RSA keys from a keystore? String keyFileName = "coolkeys"; String alias = "mjm"; char[] passWord = "sesame".toCharArray(); FileInputStream fis = new FileInputStream(keyFileName); KeyStore keyStore = KeyStore.getInstance("JKS"); System.out.println("Load key store with file name and password"); keyStore.load(fis, passWord); SOA Seminar21

22 RSA In Java(3) How do I decrypt encrypted data with the private key? RSAPrivateKey RSAKey = (RSAPrivateKey)keyStore.getKey(alias,passWord); Cipher RSACipher = Cipher.getInstance("RSA/ECB/PKCS1Padding"); RSACipher.init(Cipher.DECRYPT_MODE, RSAKey); byte decryptedKeyBytes[] = RSACipher.doFinal(encryptedBlowFishKey); SOA Seminar22

23 RSA In Java(4) How do I generate a certificate? Use the keytool and the keystore: keytool -export -alias mjm -keystore mjmkeystore –file cool.cer SOA Seminar23

24 RSA In Java(5) How do I read the public key from the certificate? CertificateFactory certFactory = CertificateFactory.getInstance("X.509"); FileInputStream fis = new FileInputStream("cool.cer"); Certificate cert = certFactory.generateCertificate(fis); fis.close(); PublicKey pub = cert.getPublicKey(); SOA Seminar24

25 RSA In Java(6) How do I encrypt with the public key? Cipher cipherPub = Cipher.getInstance("RSA/ECB/PKCS1Padding"); cipherPub.init(Cipher.ENCRYPT_MODE, pub); byte encryptedBlowFish[] = cipherPub.doFinal(blowFishKeyBytes); SOA Seminar25

Download ppt "SOA Seminar1 Seminar on Service Oriented Architecture RSA."

Similar presentations

An Introduction to Pairing Based Cryptography Dustin Moody October 31, 2008.

An Introduction to Pairing Based Cryptography Dustin Moody October 31, 2008.
Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.

Requirements for a Secure Voting System  Only authorized voters can vote  No one can vote more than once  No one can determine for whom anyone else.
Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it.
1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.

1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.
Public Key Encryption Algorithm

Public Key Encryption Algorithm
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 29 Cryptography and Network.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 29 Cryptography and Network.
95-712 OOP/Java1 Public Key Crytography From: Introduction to Algorithms Cormen, Leiserson and Rivest.

OOP/Java1 Public Key Crytography From: Introduction to Algorithms Cormen, Leiserson and Rivest.
Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.

Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Public Key Crytography1 From: Introduction to Algorithms Cormen, Leiserson and Rivest.

Public Key Crytography1 From: Introduction to Algorithms Cormen, Leiserson and Rivest.
20-751 ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.

ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
95-702 Distributed Systems1 Lecture 12: RSA. 95-702 Distributed Systems2 Plan for today: Introduce RSA and a toy example using small numbers. This is.

Distributed Systems1 Lecture 12: RSA Distributed Systems2 Plan for today: Introduce RSA and a toy example using small numbers. This is.
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.

Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
1 Lecture #10 Public Key Algorithms HAIT Summer 2005 Shimrit Tzur-David.

1 Lecture #10 Public Key Algorithms HAIT Summer 2005 Shimrit Tzur-David.
WS 2006-07 Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.

WS Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.
Theory I Algorithm Design and Analysis (9 – Randomized algorithms) Prof. Dr. Th. Ottmann.

Theory I Algorithm Design and Analysis (9 – Randomized algorithms) Prof. Dr. Th. Ottmann.
WS 2006-07 Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.

WS Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.
Public Key Algorithms 4/17/2017 M. Chatterjee.

Public Key Algorithms 4/17/2017 M. Chatterjee.
Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,

Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,

Similar presentations

Ads by Google