Presentation is loading. Please wait.

Presentation is loading. Please wait.

NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication.

Published byAubrie Reed Modified over 9 years ago

Similar presentations

Presentation on theme: "NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication."— Presentation transcript:

1 NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication - is this who they claim to be? Cryptography offers genuinely secure solutions to these problems We'll look briefly at four main components

2 NSRC Workshop 1. Hashes (one-way encryption) clear text Munging a document (of any size) gives a short, fixed-length hash or message digest Fixed-length message digest hashing function

3 NSRC Workshop Examples of Hash algorithms MD5 - 128 bits of output SHA1 - 160 bits RIPEMD-160 - 160 bits SHA256 - 256 bits

4 NSRC Workshop Properties of Cryptographic Hashes Running the same hash algorithm on the same document always gives the same result It is infeasible to modify the document whilst keeping the hash the same - or even to find any other document with the same hash Hence a powerful check of integrity Important: MD5 is now BROKEN! – all it takes is 3 days and 200 playstation3's * – SHA1 not yet, but has known weaknesses * Google for "MD5 considered harmful today"

5 NSRC Workshop Quick Exercise On your PC: cat /etc/mailcap Compare the result on your neighbour's PC Are they exactly the same? Can you be sure? Now do: sha1sum /etc/mailcap Is your neighbour the same now? Edit the file (joe /etc/mailcap) and change just one character Do again: sha1sum /etc/mailcap

6 NSRC Workshop 2. Symmetric Cipher (private key cipher) clear text clear text cipher text KK The same key is used to encrypt the document before sending and to decrypt it once it is received ?

7 NSRC Workshop Examples of Symmetric Ciphers DES - 56 bit key length 3DES - effective key length 112 bits RC4 (Arcfour) - 128 bits AES (Advanced Encryption Standard) - 128 to 256 bit key length Blowfish - 128 bits, optimized for fast operation on 32-bit microprocessors

8 NSRC Workshop Properties of Symmetric Ciphers Provides confidentiality: infeasible to decrypt data without knowing the secret key K Provides integrity: a small change to the ciphertext will cause it to decrypt to garbage Provides authenticity: if I can decrypt the data with my key K, I know it must have been encrypted by someone who knows K Fast to encrypt and decrypt, suitable for large volumes of data

9 NSRC Workshop Attacks on Symmetric Ciphers Good ciphers resist attacks on the algorithm; brute- force attack is directly related to the key length. Current recommendation is a key length of 90+ bits, for data protection of 20 years.* Relies entirely on secrecy of the key. How can you distribute it securely to your peer without it being intercepted by an attacker? Use a hash to convert a passphrase into a value suitable for a key (passphrase easier to remember) *See http://www.keylength.com/ for a collection of recommendations

10 NSRC Workshop 3. Diffie-Hellman key exchange Two parties agree on the same key - but a sniffer cannot derive it f(r1) f(r2) f(r1r2) random r1 random r2 ?

11 NSRC Workshop Properties of Diffie-Hellman One of the first asymmetric cryptosystems - from 1976 Used for generating temporary keys ("session keys") which are discarded after use A sniffer who sees all the traffic still cannot work out what key has been agreed upon Security depends on the number of bits, and on truly random numbers being chosen (reasonable minimum: "DH group 2", 1024 bits)

12 NSRC Workshop Does Diffie-Hellman solve the key distribution problem? Unfortunately not :-( An active attacker can intercept traffic and perform key exchange with either or both sides: a man-in-the-middle attack In short: you don't know who you're talking to

13 NSRC Workshop 4. Public key cipher clear text clear text k 1 (public key) k 2 (private key) cipher text One key is used to encrypt the document, a different key is used to decrypt it. This is a big deal!

14 NSRC Workshop Properties of Public Key Ciphers The keys are mathematically related Easy to convert private key into public key Infeasible to convert public key into private key You can safely post your public key anywhere!! (That's why it's called "public") Can provide confidentiality: encrypt with public key, decrypt with private key Can provide authenticity: encrypt with private key, decrypt with public key

15 NSRC Workshop Properties of Public Key Ciphers Mathematical attacks, not just brute force 512-bit RSA broken 1024-bit RSA may be insecure against highly- resourced opponents 2048-bit is recommended for good security MUCH slower than symmetric ciphers (like, 1000 or 10,000 times slower) Hence are combined with symmetric ciphers to build a practical system

16 NSRC Workshop Example application: gpg gpg lets you: generate a public/private key pair encrypt messages with any public key, and/or sign messages with your private key Used for sending encrypted E-mail, verifying integrity of software packages, etc

17 NSRC Workshop Use for authentication If you have my public key, I can prove to you that I own the corresponding private key (without sending it to you) My public key is therefore a form of identity Similarly, you can prove your identity to me Solves the man-in-the-middle problem, as long as we both know each other's public keys If not, we can use a third party - a Certificate Authority - to confirm identity of key owner

18 NSRC Workshop Example: ssh with private key auth A simple way to get rid of passwords entirely! Generate an ssh key pair (just once) Keep the private key safe - encrypt it with a passphrase Install the public key on each server you want to login to When you login, you use the passphrase to decrypt ("unlock") your private key locally - it never gets sent to the remote system

19 NSRC Workshop Proving identities with ssh keys Server's public key ~/.ssh/known_hosts User's public key ~/.ssh/authorized_keys User's private key (+public) ~/.ssh/id_rsa ~/.ssh/id_rsa.pub Server's private key (+public) /etc/ssh/ssh_host_rsa_key /etc/ssh_host_rsa_key.pub CLIENTSERVER (ssh has become popular partly because it doesn't use certificates)

20 NSRC Workshop Man-in-the-middle and ssh How does the server know it's really me? Because my public key is in ~/.ssh/authorized_keys How did it get there? Trusted person put it there How do I know the server is really them? The server's public key is in ~/.ssh/known_hosts How does it get there? I could do it manually. If not, ssh prompts me to install it the first time I connect This works fine, as long as a man-in-the-middle attack is not taking place at the time!

21 NSRC Workshop Exercise Create ssh public/private key pair (RSA, 2048 bits) Copy the public key onto your Unix server PC Use your private key to login without password

22 NSRC Workshop Discussion What are the pros and cons of this approach, compared to passwords?

23 NSRC Workshop WARNING! This is the most basic introduction to crypto DON'T try to write your own cryptographic tools - there are many pitfalls Look at what happened with WEP DO use widely-used and reviewed tools: they are written by people who understand the maths and the possible weaknesses

24 NSRC Workshop And don't forget the human element

Download ppt "NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication."

Similar presentations

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
DNSSEC Cryptography Review DNSSEC Tutorial February 21, 2011 Hong Kong Will.i.am Hervey Allen.

DNSSEC Cryptography Review DNSSEC Tutorial February 21, 2011 Hong Kong Will.i.am Hervey Allen.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
1 Counter-measures Threat Monitoring Cryptography as a security tool Encryption Digital Signature Key distribution.

1 Counter-measures Threat Monitoring Cryptography as a security tool Encryption Digital Signature Key distribution.
Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas

Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Cryptographic Technologies

Cryptographic Technologies
Chap 3: Key exchange protocols In most systems, we distinguish the short term keys from the long term ones: –A short term key (session key) is used to.

Chap 3: Key exchange protocols In most systems, we distinguish the short term keys from the long term ones: –A short term key (session key) is used to.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
03 December 2003 Public Key Infrastructure and Authentication Mark Norman DCOCE Oxford University Computing Services.

03 December 2003 Public Key Infrastructure and Authentication Mark Norman DCOCE Oxford University Computing Services.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
TrustPort Public Key Infrastructure. WWW.TRUSTPORT.COM Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.

TrustPort Public Key Infrastructure. Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.
Diffie-Hellman Key Exchange

Diffie-Hellman Key Exchange
Computer Science CSC 774Dr. Peng Ning1 CSC 774 Advanced Network Security Topic 2. Review of Cryptographic Techniques.

Computer Science CSC 774Dr. Peng Ning1 CSC 774 Advanced Network Security Topic 2. Review of Cryptographic Techniques.
Lecture 4 Cryptographic Tools (cont) modified from slides of Lawrie Brown.

Lecture 4 Cryptographic Tools (cont) modified from slides of Lawrie Brown.
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Similar presentations

Ads by Google