Presentation is loading. Please wait.

Presentation is loading. Please wait.

Encryption and Security Tools for IA Management Nick Hornick COSC 481 Spring 2007.

Published bySpencer Snow Modified over 8 years ago

Similar presentations

Presentation on theme: "Encryption and Security Tools for IA Management Nick Hornick COSC 481 Spring 2007."— Presentation transcript:

1 Encryption and Security Tools for IA Management Nick Hornick COSC 481 Spring 2007

2 Overview Symmetric/Asymmetric Key Digital Signatures Certificates SSL Protocol Commonly Used Certificates VNC Tunneling PGP/GnuPG Conclusion

3 Symmetric Encryption “Private” Key “Private” Key Same key for encryption and decryption Same key for encryption and decryption Strengths: Efficient Strengths: Efficient Weakness: Parties involved Weakness: Parties involved

4 Symmetric Encryption Cont’d

5 Asymmetric Encryption “Public” Key Encryption “Public” Key Encryption Based on Key Pair Based on Key Pair 2 Keys 2 Keys Public Public Private Private Strength: Keys are related but not equal Strength: Keys are related but not equal Weakness: Computation time Weakness: Computation time

6 Asymmetric Key cont’d Many public keys, One private key Many public keys, One private key One way Encryption/Decryption One way Encryption/Decryption A User’s Private Key A User’s Public Key(s)

7 Asymmetric Key cont’d

8 Digital Signatures A electronic signature that validates data integrity A electronic signature that validates data integrity One way hashing algorithm One way hashing algorithm Strength: Data validation Strength: Data validation Weakness: Doesn’t validate the sender Weakness: Doesn’t validate the sender

9 Digital Signatures cont’d

10 Certificates An electronic document used to identify an entity An electronic document used to identify an entity Can identify the entity’s name, public key, date of issuance, and date of revocation Can identify the entity’s name, public key, date of issuance, and date of revocation Issued by Certificate Authority in public domain Issued by Certificate Authority in public domain

11 Secure Socket Layer Netscape vs. Microsoft TLS Netscape vs. Microsoft TLS Typically used on a client/server network Typically used on a client/server network Two Parts: Two Parts: Handshake Handshake Bulk-Data Transfer Bulk-Data Transfer

12 SSL Handshake Consists of four parts: Consists of four parts: Message Exchange Message Exchange Public-Key Computations Public-Key Computations Random-Number Generation Random-Number Generation Handshake Authentication Handshake Authentication

13 Commonly Used Certificates Client SSL Client SSL Server SSL Server SSL S/MIME S/MIME CA Certificates CA Certificates

14 VNC Tunneling through SSH VNC - Virtual Network Computing VNC - Virtual Network Computing Unsecured – data transmitted in plain text Unsecured – data transmitted in plain text SSH – Secure Shell SSH – Secure Shell Enables strong security with VNC capability Enables strong security with VNC capability

15 PGP and GnuPG Based on public key architecture Based on public key architecture Handled by multiple OS Handled by multiple OS Encrypted messages sent with email software Encrypted messages sent with email software

16 Conclusion Symmetric/Asymmetric systems Symmetric/Asymmetric systems Digital Signatures Digital Signatures Certificates Certificates SSL SSL VNC Tunneling VNC Tunneling PGP/GnuPG PGP/GnuPG

Download ppt "Encryption and Security Tools for IA Management Nick Hornick COSC 481 Spring 2007."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Presented by Fengmei Zou Date: Feb. 10, 2000 The Secure Sockets Layer (SSL) Protocol.

Presented by Fengmei Zou Date: Feb. 10, 2000 The Secure Sockets Layer (SSL) Protocol.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
Slides by Kent Seamons and Tim van der Horst Last Updated: Nov 8, 2013.

Slides by Kent Seamons and Tim van der Horst Last Updated: Nov 8, 2013.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.

Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.
Introduction to Cryptography

Introduction to Cryptography
Lesson 12 Cryptography for E-Commerce. Approaches to Network Security Separate Security Protocol--SSL Application-Specific Security--SHTTP Security with.

Lesson 12 Cryptography for E-Commerce. Approaches to Network Security Separate Security Protocol--SSL Application-Specific Security--SHTTP Security with.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.
1 Encryption What is EncryptionWhat is Encryption Types of EncryptionTypes of Encryption.

1 Encryption What is EncryptionWhat is Encryption Types of EncryptionTypes of Encryption.
Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.

Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Chapter 29 Internet Security

Chapter 29 Internet Security
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Chapter Extension 23 SSL/TLS and //https © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.

Chapter Extension 23 SSL/TLS and //https © 2008 Pearson Prentice Hall, Experiencing MIS, David Kroenke.
TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

TCP/IP Protocol Suite 1 Chapter 28 Upon completion you will be able to: Security Differentiate between two categories of cryptography schemes Understand.

Similar presentations

Ads by Google