Presentation is loading. Please wait.

Presentation is loading. Please wait.

Classical Ciphers – I Terminology CSCI284 Spring 2004 GWU Shift Cipher

Published byAnabel Shaw Modified over 5 years ago

Similar presentations

Presentation on theme: "Classical Ciphers – I Terminology CSCI284 Spring 2004 GWU Shift Cipher"— Presentation transcript:

1 Classical Ciphers – I Terminology CSCI284 Spring 2004 GWU Shift Cipher
Number Theory: rings Classical Ciphers – I CSCI284 Spring 2004 GWU

2 CS284/Spring04/GWU/Vora/Classical Ciphers
From Schneier Some terminology A sender encrypts a plaintext message to get ciphertext which is sent to the receiver who decrypts it to obtain the plaintext. e(P) = C d(C) = P d(e(P)) = P; de = I  e one-to-one For the application of secret communication between two parties, it should not be possible for an eavesdropper to decrypt the message. i.e d should be easy for the (legitimate) receiver, not for anyone else. 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

3 Some terminology - contd.
From Schneier: Some terminology - contd. Cipher: is the cryptographical algorithm/mathematical function used to encrypt A restricted cipher is one whose security depends on keeping the algorithm secret. Inadequate, because doing so does not provide a systematic way of simulated attack/vulnerability analysis by external experts - which typically improves security . 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

4 Some terminology - contd.
From Schneier: Some terminology - contd. A key is used as a parameter in some ciphers. The security of ciphers that use keys is based on keeping the key(s), and not the cipher, secret. eK1(P) = C; dK2(C) = P Keyspace: set of all possible keys. Cryptosystem: algorithm + all ciphertexts + all plaintexts + all keys 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

5 Formal definition: cryptosystem
From Stinson Formal definition: cryptosystem A cryptosystem consists of: P set of all plaintext C set of all ciphertext K set of all keys E set of encryption rules, eK: P  C D set of decryption rules dK : C  P dK eK(x) = x dK eK invertible and inverses of each other 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

6 CS284/Spring04/GWU/Vora/Classical Ciphers
Typical Scenario Alice and Bob randomly choose a key, K  K when they are unobserved or communicating on a secure channel If Alice wants to send Bob a message, x1x2x3x4…xn She sends: y1y2y3y4…yn Where yi = eK(xi) xi is a symbol from the alphabet 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

7 Encryption is an invertible function
Need inversion to be somewhat easier than a lookup table, because both Alice and Bob would need the entire lookup table 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

8 CS284/Spring04/GWU/Vora/Classical Ciphers
One possibility Alice and Bob agree on two time zones: say Pacific time and Eastern time. Encryption means taking a time from the Eastern to the Pacific zone; decryption is vice versa. Encryption of 4 is 4-3 = 1 Decryption of 1 is 1+3 = 4 If you don’t know what the chosen time zones are, the encryption protects the data 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

9 CS284/Spring04/GWU/Vora/Classical Ciphers
Shift Cipher P = C = K = Zm eK(x) = (x+K) mod m dK(y) = (y-K) mod m e3(2) = (2+3) mod 4 = m = 12 time in UK given time on US east coast: e5(3) = 8 mod 12 time on US east coast given time in UK: d5(1) = 8 mod 12 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

10 CS284/Spring04/GWU/Vora/Classical Ciphers
Shift Cipher Don’t need entire lookup table, only the value 5 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

11 CS284/Spring04/GWU/Vora/Classical Ciphers
Zm Definition: a  b (mod m)  m divides a-b Zm is the “ring” of integers modulo m: 0, 1, 2, …m-1 with normal addition and multiplication, performed modulo m We define a mod m to be the unique remainder of a when divided by m, i.e. a mod m  Zm 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

12 Properties of Zm (definition of a ring)
Closed under addition and multiplication If a, b  Zm then a+b, ab  Zm Addition and multiplication are commutative and associative If a, b  Zm then a+b = b+a ab = ba (a+b)+c = a +(b+c) and (ab)c = a(bc) 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

13 Properties of Zm – contd.
Additive and multiplicative identities in Zm Additive identity is 0 mod m Multiplicative identity is 1 mod m Distributive property holds For a,b,c  Zm (a+b)c = ac + bc and a(b+c) = ab + ac 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

14 Properties of Zm – contd.
Additive inverse? A number y such that x + y = x for all x in Zm Multiplicative inverse? A number y such that x*y = 1 for all x in Zm 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

15 Shift cipher on English alphabet
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z Key = k (add 10, so A goes to 10, i.e. k) ABCDEFGHIJKLMNOPQRSTUVWXYZ klmnopqrstuvwxyzabcdefghij 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

16 CS284/Spring04/GWU/Vora/Classical Ciphers
Do in class 1.1 from text 7503 mod 81 -7503 mod 81 81 mod 7503 -81 mod 7503 1.2 from text Suppose a, m > 0 and a  0 (mod m) Prove that (-a) mod m = m – (a mod m) 1.5 from text. Decrypt (encrypted with a shift cipher): beeakfydjxuqyhyjiqryhtyjiqfbqduyjiikfuhcqd 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

17 Some terminology - Cryptanalysis
From Schneier Some terminology - Cryptanalysis Cryptanalysis is an (usually vulnerability) analysis of a cipher. Loss of key through means other than cryptanalysis (storage of key in an insecure fashion, for example) is a compromise. An attempt at cryptanalysis is an attack Kerckhoff’s assumption is that security resides entirely in the key, i.e. cipher not restricted in any way. This assumption is useful for external/open vulnerability analysis of different ciphers and for determining their security. 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

18 Cryptanalysis - types of attacks
From Schneier Cryptanalysis - types of attacks Known-plaintext: m and c known When a known message/expected message is encrypted, as in file headers in known file-types (jpeg, tiff) Chosen-plaintext: m chosen by attacker Attacker manages to make naïve encrypter encrypt a chosen message Adaptive-chosen-plaintext: m chosen by attacker as attack proceeds Chosen-key: k chosen 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

19 Cryptanalysis - types of attacks – contd.
From Schneier Cryptanalysis - types of attacks – contd. Ciphertext-only: c known Any eavesdropping/wire tapping/message interception Chosen-ciphertext: c chosen by attacker (as when the attacker has access to the decryption, for example DVD players for watermarking, or decrypting of a message encrypted with a public key) Rubber-hose (Physical threat to key-holder) 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

20 Caesar cipher; key = 3 or D
ABCDEFGHIJKLMNOPQRSTUVWXYZ defghijklmnopqrstuvwxyzabc E(A) =d; Key = 3 (or Key = d) E(M) = M3 mod 26 D(c) = c-3 mod 26 EKey(symbol) = symbolKey mod alphabet size Dkey(symbol) = symbol - Key mod alphabet size 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

21 Shift cipher - cryptanalysis
Deciphering exactly one symbol in the ciphertext is enough to break the cipher. Serious weakness. Can decipher by targeting specific statistical properties of the language of the message – for example, single-lettered words in english can only be “a” or “I” Can decipher easily by brute-force, need to try only 26 keys. 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

22 Cryptanalysis of Shift Cipher
On a shift cipher encrypted message, alphabet of size n, determine the Average case complexity (n-1)/2 and Worst-case complexity (n-1) Of a brute force attack 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

23 Shift cipher – weaknesses and strengths
Computationally efficient to encrypt and decrypt No storage requirements Ciphertext not longer than plaintext Weaknesses: Vulnerable to brute force: a given ciphertext can correspond to only 26 messages (or messages equal to the length of the alphabet) Even more vulnerable when the language has statistical properties, because some keys will be quickly apparent as unlikely/impossible given ciphertext 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

24 Shift cipher - Lessons learnt
Need cipher that takes more keys than length of language alphabet, so brute force is more difficult Key should not be determinable from decrypting a single symbol How about two variables in the key, not 1? 2/21/2019 CS284/Spring04/GWU/Vora/Classical Ciphers

Download ppt "Classical Ciphers – I Terminology CSCI284 Spring 2004 GWU Shift Cipher"

Similar presentations

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.
Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.

CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
Fubswrjudskb Frxuvh qxpehu:4003-482 / 4005-705 Lqvwuxfwru:Lyrqd Ehcdnryd Wrgdb’v Wrslfv: 1.Orjlvwlfv: -Fodvv olvw -Vboodexv 2. Wkh Pdwk 3. Zkdw lv Fubswrjudskb.

Fubswrjudskb Frxuvh qxpehu: / Lqvwuxfwru:Lyrqd Ehcdnryd Wrgdb’v Wrslfv: 1.Orjlvwlfv: -Fodvv olvw -Vboodexv 2. Wkh Pdwk 3. Zkdw lv Fubswrjudskb.
Lecture 2.1: Private Key Cryptography -- I CS 436/636/736 Spring 2013 Nitesh Saxena.

Lecture 2.1: Private Key Cryptography -- I CS 436/636/736 Spring 2013 Nitesh Saxena.
22C:19 Discrete Structures Integers and Modular Arithmetic

22C:19 Discrete Structures Integers and Modular Arithmetic
22C:19 Discrete Math Integers and Modular Arithmetic Fall 2010 Sukumar Ghosh.

22C:19 Discrete Math Integers and Modular Arithmetic Fall 2010 Sukumar Ghosh.
Session 4 Asymmetric ciphers.

Session 4 Asymmetric ciphers.
20-751 ECOMMERCE TECHNOLOGY SUMMER 2002 COPYRIGHT © 2002 MICHAEL I. SHAMOS Cryptographic Security.

ECOMMERCE TECHNOLOGY SUMMER 2002 COPYRIGHT © 2002 MICHAEL I. SHAMOS Cryptographic Security.
20-751 ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.

ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.
CS526Topic 2: Classical Cryptography1 Information Security CS 526 Topic 2 Cryptography: Terminology & Classic Ciphers.

CS526Topic 2: Classical Cryptography1 Information Security CS 526 Topic 2 Cryptography: Terminology & Classic Ciphers.
Cryptographic Algorithms Course information General Concepts Introductory examples Terminology Classical cryptography Cryptanalysis.

Cryptographic Algorithms Course information General Concepts Introductory examples Terminology Classical cryptography Cryptanalysis.
L1.1. An Introduction to Classical Cryptosystems Rocky K. C. Chang, February 2013.

L1.1. An Introduction to Classical Cryptosystems Rocky K. C. Chang, February 2013.
Encryption. Introduction Computer security is the prevention of or protection against –access to information by unauthorized recipients –intentional but.

Encryption. Introduction Computer security is the prevention of or protection against –access to information by unauthorized recipients –intentional but.
1 Introduction to Codes, Ciphers, and Cryptography Michael A. Karls Ball State University.

1 Introduction to Codes, Ciphers, and Cryptography Michael A. Karls Ball State University.
Lecture 19 Page 1 CS 111 Online Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 On-Line MS Program Operating.

Lecture 19 Page 1 CS 111 Online Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 On-Line MS Program Operating.
Cryptography Week-6.

Cryptography Week-6.
Chapter 2 Basic Encryption and Decryption. csci5233 computer security & integrity 2 Encryption / Decryption encrypted transmission AB plaintext ciphertext.

Chapter 2 Basic Encryption and Decryption. csci5233 computer security & integrity 2 Encryption / Decryption encrypted transmission AB plaintext ciphertext.
Chapter 1 Introduction Cryptography-Principles and Practice Harbin Institute of Technology School of Computer Science and Technology Zhijun Li

Chapter 1 Introduction Cryptography-Principles and Practice Harbin Institute of Technology School of Computer Science and Technology Zhijun Li

Similar presentations

Ads by Google