Presentation is loading. Please wait.

Presentation is loading. Please wait.

CDK: Chapter 7 TvS: Chapter 9

Published byGlenna Sutedja Modified over 5 years ago

Similar presentations

Presentation on theme: "CDK: Chapter 7 TvS: Chapter 9"— Presentation transcript:

1 CDK: Chapter 7 TvS: Chapter 9
Lecture 18: Security CDK: Chapter 7 TvS: Chapter 9

2 Security in 1 machine Within 1 machine, the OS is responsible for
Verifying users’ identities Checking access rights to shared objects Not too difficult! But a network brings new problems: Different machines – identity mapping Network weaknesses …. 4-Apr-19 COMP Lecture 18

3 Security Problems of Network
Messages can be: Read => loss of secrecy/privacy Altered Created containing forged information Copied and replayed Can also have denial of service attacks 4-Apr-19 COMP Lecture 18

4 Cryptography All the problems with messages find solutions based on
The inclusion (and checking) of extra information (e.g. sequence nos.) and Encryption Using some algorithm, plaintext is converted to encrypted text 4-Apr-19 COMP Lecture 18

5 Secure Channels How to make client-server communication secure?
1. Authentication of the communicating parties. We may need to ensure message integrity, confidentiality, etc. 2. Authorization. Is the client authorized to have that request carried out? Relates to controlling access to the resources (granting access rights). A secure channel (Voydock and Kent, 1983) protects senders and receivers against interception, modification and fabrication of messages. 4-Apr-19 COMP Lecture 18

6 Properties of Secure Channels
A secure channel connects two processes and: Ensures each process knows reliably the identity of the principal on whose behalf the other process is acting Each message includes a physical or logical time stamp to prevent replay or reordering 4-Apr-19 COMP Lecture 18

7 Digital Signatures Need an electronic version of a signature to authenticate a message Unlike paper signatures, we need to stop a signature being attached to other messages by cutting and pasting! So a signature will include the message or a secure digest derived from the signed message. 4-Apr-19 COMP Lecture 18

8 Secure digests A digest is also called a secure hash function.
Need to be sure that, given the digest value, the receiver cannot invent another message which yields the same digest value! 4-Apr-19 COMP Lecture 18

9 Uses of signatures There are two aspects:
Authentication – receiver knows that the message is from the signer, because it is assumed impossible to forge a signature Non-repudiation – the sender can’t deny sending the message 4-Apr-19 COMP Lecture 18

10 Keys in Cryptography Two kinds:
Shared secret keys – the major problem is how to establish a shared secret key between principals who never meet! Public/private key pairs – every one has such a pair; everyone knows all the public keys, only the principal knows the private. Need other key to decrypt message. 4-Apr-19 COMP Lecture 18

11 Public key encryption Requires 100 – 1000 times as much processing power as secret-key algorithms Rely on the “impossibility” of deriving the private key from the public one 4-Apr-19 COMP Lecture 18

12 Pragmatics Better not to rely on secrecy of encryption algorithms – in practice clients and servers need to know, or even negotiate, these – rely only on keys Bigger keys take longer to crack – but it is often just a matter of time, and the timescale gets shorter as attackers get more powerful computers 4-Apr-19 COMP Lecture 18

13 Sending a confidential message
A -> B: Message encrypted with B’s public key Only B can decrypt OR (more practically) A -> B: 1-off session key, K, encrypted with B’s public key A -> B: Message encrypted with K 4-Apr-19 COMP Lecture 18

14 Digital Signature with Public Keys
A -> B: A’s identity, and the message encrypted with A’s private key B can decrypt using A’s public key – and the fact that this works proves that A encrypted it – as only A knows that key. To keep the above confidential, A could encrypt the whole with B’s public key! 4-Apr-19 COMP Lecture 18

15 Key distribution Need a way to get the public keys
This needs to be secure – e.g. if an enemy intercepts the request for a key, it can reply with one it invented On an intranet, we can design a simple protocol for an authentication server 4-Apr-19 COMP Lecture 18

16 Digital Certificates In the wider world, we need to be able to be sure that servers (and clients) are who they claim to be (and give their public keys). A certificate is an unforgeable document issued by a more trustworthy source Thus a certification chain is established Revocation – hard, use expiry date 4-Apr-19 COMP Lecture 18

17 Needham-Schroeder Authentication Protocol
Designed for use with an authentication server, S, which has secret keys for all principals How to get two processes, A and B, communicating securely without revealing secret keys to each other Used in Kerberos (within Intranets) 4-Apr-19 COMP Lecture 18

18 Cryptography notations
KA Alice’s secret key KB Bob’s secret key KAB Secret key shared between Alice and Bob KApriv Alice’s private key (known only to Alice) KApub Alice’s public key (published by Alice for all to read) { M } K Message encrypted with key [ ]K signed with key 4-Apr-19 COMP Lecture 18

19 The Needham–Schroeder secret-key authentication protocol (7.14 in CDK)
Header Message Notes 1. A->S: A requests S to supply a key for communication A, B, NA with B. S returns a message encrypted in A’s secret key, 2. S->A: {NA , B, KAB, containing a newly generated key KAB and a {KAB, A}KB}KA ‘ticket’ encrypted in B’s secret key. The nonce NA demonstrates that the message was sent in response to the preceding one. A believes that S sent the message because only S knows A’s secret key. 3. A->B: {KAB, A}KB A sends the ‘ticket’ to B. {NB}KAB B decrypts the ticket and uses the new key KAB to 4. B->A: encrypt another nonce NB. A demonstrates to B that it was the sender of the 5. A->B: {NB - 1}KAB previous message by returning an agreed transformation of NB. 4-Apr-19 COMP Lecture 18

20 The same also from TvS (Fig 9.17)
4-Apr-19 COMP Lecture 18

21 Summary Whole 3rd year course on using Cryptography in Networks ….
This lecture has only scratched the surface – read Chapter 7 of CDK or Chapter 9 of TvS if you are interested 4-Apr-19 COMP Lecture 18

Download ppt "CDK: Chapter 7 TvS: Chapter 9"

Similar presentations

AUTHENTICATION AND KEY DISTRIBUTION

AUTHENTICATION AND KEY DISTRIBUTION
Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)
Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
Last Class: The Problem BobAlice Eve Private Message Eavesdropping.

Last Class: The Problem BobAlice Eve Private Message Eavesdropping.
CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.

CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.

Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Security 2 Distributed Systems Lecture# 15. Overview Cryptography Symmetric Assymeteric Digital Signature Secure Digest Functions Authentication.

Security 2 Distributed Systems Lecture# 15. Overview Cryptography Symmetric Assymeteric Digital Signature Secure Digest Functions Authentication.
1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.
1 Authentication Protocols Celia Li Computer Science and Engineering York University.

1 Authentication Protocols Celia Li Computer Science and Engineering York University.
Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.
Chapter 31 Network Security

Chapter 31 Network Security
31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
Computer Security Tran, Van Hoai Department of Systems & Networking Faculty of Computer Science & Engineering HCMC University of Technology.

Computer Security Tran, Van Hoai Department of Systems & Networking Faculty of Computer Science & Engineering HCMC University of Technology.
Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.

Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.
Cryptography, Authentication and Digital Signatures

Cryptography, Authentication and Digital Signatures
Chapter 21 Distributed System Security Copyright © 2008.

Chapter 21 Distributed System Security Copyright © 2008.
Advanced Database Course (ESED5204) Eng. Hanan Alyazji University of Palestine Software Engineering Department.

Advanced Database Course (ESED5204) Eng. Hanan Alyazji University of Palestine Software Engineering Department.

Similar presentations

Ads by Google