Presentation is loading. Please wait.

Presentation is loading. Please wait.

Key Distribution Reference: Pfleeger, Charles P., Security in Computing, 2nd Edition, Prentice Hall, 1996. 4/18/2019 Ref: Pfleeger96, Ch.4.

Published byShinta Sugiarto Modified over 5 years ago

Similar presentations

Presentation on theme: "Key Distribution Reference: Pfleeger, Charles P., Security in Computing, 2nd Edition, Prentice Hall, 1996. 4/18/2019 Ref: Pfleeger96, Ch.4."— Presentation transcript:

1 Key Distribution Reference: Pfleeger, Charles P., Security in Computing, 2nd Edition, Prentice Hall, 1996. 4/18/2019 Ref: Pfleeger96, Ch.4

2 Symmetric Key Exchange Without Server
Assume that two users have a copy of a symmetric encryption key K. For a small number of messages, K may be used for encryption. A new key may be generated (Knew) and K can be used to encrypt Knew, which can be sent to the receiver. 4/18/2019 Ref: Pfleeger96, Ch.4

3 A Problem with Symmetric Key Exchange Without Server
Each pair of users need to share a key that is unique. If there are n pairs, then n(n+1)/2 keys are needed. 4/18/2019 Ref: Pfleeger96, Ch.4

4 Symmetric Key Exchange with Server
Two users request a key from a central key distribution service. The number of keys required is reduced, but the flexibility is also reduced. The key distribution service could also become a bottleneck. 4/18/2019 Ref: Pfleeger96, Ch.4

5 Asymmetric Key Distribution Without Server
Asymmetric (public) encryption reduces the need for individual keys. The vulnerability of the central distribution service is also reduced. Although the messages could be directly encrypted using the public keys, the algorithms tend to be less efficient than symmetric ones. 4/18/2019 Ref: Pfleeger96, Ch.4

6 Asymmetric Key Distribution Without Server (p.2)
Public key authentication could be used to deliver a secret key for efficient symmetric encryption. A generates a secret symmetric key for communications with B--Ks A then encrypts Ks with A’s secret key. A then uses B’s public key to send the encrypted key to A. A then authenticates Ks by decrypting it with A’s public key. 4/18/2019 Ref: Pfleeger96, Ch.4

7 Asymmetric Key Distribution Without Server (p.3)
To verify the key, each side can also send a test message. A random number could be generated, encrypted and sent. The other side could decrypted the number, add one, and then encrypt it and send it back. Finally a distribution center could provide the public keys, in the first place. 4/18/2019 Ref: Pfleeger96, Ch.4

8 Asymmetric Key Exchange with Server
A requests B’s public key from the key distribution center. The distribution center uses its secret key (for authentication) to encrypt B’s public key and identifier and sends it to A. A decrypts the key using the distribution center’s public key and the result is authenticated. 4/18/2019 Ref: Pfleeger96, Ch.4

9 Asymmetric Key Exchange with Server (p.2)
Now A sends can send his identity and a reference encrypted with B’s public key. B communicates with the key distribution center to receive A’s public key. B then encrypts his A’s reference and her own reference for authentication. A then sends a message and B’s reference. 4/18/2019 Ref: Pfleeger96, Ch.4

Download ppt "Key Distribution Reference: Pfleeger, Charles P., Security in Computing, 2nd Edition, Prentice Hall, 1996. 4/18/2019 Ref: Pfleeger96, Ch.4."

Similar presentations

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Asymmetric encryption. Asymmetric encryption, often called public key encryption, allows Alice to send Bob an encrypted message without a shared secret.

Asymmetric encryption. Asymmetric encryption, often called "public key" encryption, allows Alice to send Bob an encrypted message without a shared secret.
Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.

Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.
Network and Communications Network Security Department of Computer Science Virginia Commonwealth University.

Network and Communications Network Security Department of Computer Science Virginia Commonwealth University.
Symmetric versus Asymmetric Cryptography. Why is it worth presenting cryptography? Top concern in security Fundamental knowledge in computer security.

Symmetric versus Asymmetric Cryptography. Why is it worth presenting cryptography? Top concern in security Fundamental knowledge in computer security.
10. Key Management. Contents Key Management  Public-key distribution  Secret-key distribution via public-key cryptography.

10. Key Management. Contents Key Management  Public-key distribution  Secret-key distribution via public-key cryptography.
Digital Envelopes, Secure Socket Layer and Digital Certificates By: Anthony and James.

Digital Envelopes, Secure Socket Layer and Digital Certificates By: Anthony and James.
1 Kerberos – Private Key System Ahmad Ibrahim. History Cerberus, the hound of Hades, (Kerberos in Greek) Developed at MIT in the mid 1980s Available as.

1 Kerberos – Private Key System Ahmad Ibrahim. History Cerberus, the hound of Hades, (Kerberos in Greek) Developed at MIT in the mid 1980s Available as.
Secure Messenger Protocol using AES (Rijndael) Sang won, Lee 2001807

Secure Messenger Protocol using AES (Rijndael) Sang won, Lee
Fall 2006CS 395: Computer Security1 Key Management.

Fall 2006CS 395: Computer Security1 Key Management.
Paper On Cryptography CS300 Technical Paper Review Avinash Chambhare Abdus Samad.

Paper On Cryptography CS300 Technical Paper Review Avinash Chambhare Abdus Samad.
CST 312 Pablo Breuer.  First published public-key algorithm  A number of commercial products employ this key exchange technique  Purpose is to enable.

CST 312 Pablo Breuer.  First published public-key algorithm  A number of commercial products employ this key exchange technique  Purpose is to enable.
Security. Cryptography (1) Intruders and eavesdroppers in communication.

Security. Cryptography (1) Intruders and eavesdroppers in communication.
SECURITY. Security Threats, Policies, and Mechanisms There are four types of security threats to consider 1. Interception 2 Interruption 3. Modification.

SECURITY. Security Threats, Policies, and Mechanisms There are four types of security threats to consider 1. Interception 2 Interruption 3. Modification.
1 Example security systems n Kerberos n Secure shell.

1 Example security systems n Kerberos n Secure shell.
Fourth Edition by William Stallings Lecture slides by Lawrie Brown

Fourth Edition by William Stallings Lecture slides by Lawrie Brown
Cryptography and Network Security Chapter 14 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 14 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
@Yuan Xue 285: Network Security CS 285 Network Security Digital Signature Yuan Xue Fall 2012.

@Yuan Xue 285: Network Security CS 285 Network Security Digital Signature Yuan Xue Fall 2012.
Network Security Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography (confidentiality) 8.3 Message integrity 8.4 End-point authentication.

Network Security Chapter 8 roadmap 8.1 What is network security? 8.2 Principles of cryptography (confidentiality) 8.3 Message integrity 8.4 End-point authentication.
 Introduction  History  What is Digital Signature  Why Digital Signature  Basic Requirements  How the Technology Works  Approaches.

 Introduction  History  What is Digital Signature  Why Digital Signature  Basic Requirements  How the Technology Works  Approaches.

Similar presentations

Ads by Google