Presentation is loading. Please wait.

Presentation is loading. Please wait.

MAT 302: Algebraic Cryptography LECTURE 1 Jan 7, 2013.

Published byCaitlin Kelley Modified over 9 years ago

Similar presentations

Presentation on theme: "MAT 302: Algebraic Cryptography LECTURE 1 Jan 7, 2013."— Presentation transcript:

1 MAT 302: Algebraic Cryptography LECTURE 1 Jan 7, 2013

2 MAT 302: Cryptography from Euclid to Zero-Knowledge Proofs LECTURE 1 Jan 7, 2013

3 Administrivia (see course info sheet) InstructorVinod Vaikuntanathan Location & Hours M 1-2pm, CC 2150 W 12-2pm, DV 3093 (Tut: F 4-5pm, IB 200) Teaching Asst 3073 CCT Building first.last@utoronto.ca (Office hours: M 2-3pm & by appt.) Sergey Gorbunov

4 Administrivia (see course info sheet) Website: http://www.cs.toronto.edu/~vinodv/COURSES/MAT302-S13 Required: J. Hoffstein, J. Pipher and J. Silverman, An Introduction to Mathematical Cryptography, Springer, 1st Ed. available at the bookstore and online from UofT libraries Pre-Requisites (Check often!) Textbook MAT 223 Linear Algebra I MAT 224 Linear Algebra II MAT 301 Groups and Symmetries

5 Administrivia (see course info sheet) Grading: 5 Problem Sets + Midterm + Final Problem Sets35% Typically, due in two weeks Due in the beginning of class on Mondays! Late submission (Wed): -50% Midterm20% Tentative: Wed, Feb 27 (right after the reading week) Final40% TBD Class Participation 5% Ask (many!) questions during class and attend tutorials

6 … now, on to the course …

7 Euclid (~ 300 BC) Wrote the “Elements” Euclidean algorithm to find the greatest common divisor of two numbers – one of the earliest non-trivial algorithms!

8 I. Secret-key Cryptography

9 A Classical Cryptographic Goal: Secure Communication DWWDFN DW GDZQ ATTACK AT DAWN Solution: Encrypt the message!Decrypt the ciphertext!

10 A Classical Cryptographic Goal: Secure Communication DWWDFN DW GDZQ ATTACK AT DAWN Three Characters: 1) A sender, 2) A receiver and 3) An eavesdropper (adversary)

11 Lesson: Asymmetry of Information The sender and receiver must know something that the adversary doesn’t. This is called a cryptographic key

12 The Scytale Device Secret key: Circumference of the cylinder Ciphertext: KTMIOILMDLONKRIIRGNOHGWT

13 The Scytale Device EASY TO BREAK! Can you recover the message in TSCRHNITIOPESTHXIAET

14 The Caesar Cipher Julius Ceasar (100-44 BC) Message: ATTACK AT DAWN

15 The Caesar Cipher Julius Ceasar (100-44 BC) Message: ATTACK AT DAWN Secret key: A random number from {1,…,26}, say 3

16 The Caesar Cipher Julius Ceasar (100-44 BC) Message: ATTACK AT DAWN Key: + 3 Ciphertext: ↓↓↓↓↓↓ ↓↓ ↓↓↓↓ DWWDFN DW GDZQ Encryption Secret key: A random number from {1,…,26}, say 3

17 The Caesar Cipher Julius Ceasar (100-44 BC) Ciphertext: DWWDFN DW GDZQ Key: - 3 Message: ↓↓↓↓↓↓ ↓↓ ↓↓↓↓ ATTACK AT DAWN DWWDFN DW GDZQ Decryption Secret key: A random number from {1,…,26}, say 3

18 The Caesar Cipher ALSO EASY TO BREAK! Can you recover the message in IXEVZUMXGVNE

19 Secret-key Encryption Scheme All these are examples of secret-key (also called symmetric-key) encryption Sender and Receiver use the same key VigenereEnigma BROKEN

20 Other Early Secret-key Encryption Schemes VigenereEnigma (1900-1950) (Polyalphabetic Substitution) (Unknown Method) BROKEN

21 Lesson 2: Kerckhoff’s Principle Security of a Cryptographic Algorithm should rely ONLY on the secrecy of the KEYS, and NOT on the secrecy of the METHOD used. “Do not rely on security through obscurity”

22 A Mathematical Theory of Secrecy Perfect Secrecy and the One-time Pad Claude Shannon (late 1940s) THE GOOD : Unbreakable regardless of the power of the adv. THE BAD : Impractical! Needs very, very long shared keys. THE UGLY: length of key ≥ total length of all messages you ever want to send

23 Modern Secret-key Encryption Schemes Horst Feistel (early 1970s) Data Encryption Standard (DES) Now superceded by the Advanced Encryption Standard (AES) (1970s)

24 Secret-key Encryption Scheme All these are examples of secret-key (also called symmetric-key) encryption Sender and Receiver use the same key Problem: How did they come up with the shared key to begin with?!

25 II. Public-key Cryptography

26 Public-Key (Asymmetric) Cryptography Symmetric Encryption needs prior setup! Let’s agree on a key: 110011001 OK

27 Public-Key (Asymmetric) Cryptography Symmetric Encryption just doesn’t scale! (A slice of) the internet graph

28 Public-Key (Asymmetric) Cryptography Bob encrypts to Alice using her Public Key… Alice’s Public Key Alice’s Secret Key *&%&(!%^(! Hello!

29 Public-Key (Asymmetric) Cryptography Alice decrypts using her Secret Key… Alice’s Public Key Alice’s Secret Key *&%&(!%^(! Hello!

30 Two Potent Ingredients Computational Complexity Theory (the hardness of computational problems) Number Theory + Computational Number Theory

31 Number-theoretic Problems 1) Multiply two 10-digit numbers 2) Factor a 20-digit number (which is a product of two 10-digit primes) 1048909867 X 6475990033 ???? 60427556959701033511 One of these is easy and the other hard. Which is which?

32 Number-theoretic Problems In Cryptography: 1000-digit numbers 92837509823057026092739864502365006106500103650816350183 40185301836508163051605150610635061037501630561035601865 01650610356016501650613561065109650163501013901010010108 37565691991304975669919375701939000105013501063501305610 50163056103560165016056105016501650165016501650157610560 15610650165019650165016050100075019010010099975801938657 99292856568920028575689930030576629900007766555726455678 29565482957292075222075292856590020926585582598651514143 16475889957611895990572689678294554422295756839562859726 58265882592579798613596900103506096013650601603560816506 10561065010386569919396668926455929920909029874645121275 46581911956799104579500572659560097568295788299589259929 59278591583758712957001873647091359001357986192591919346 91659165999125961956012509009165961925969696916259691625 96916259619256916259162568919356891932985682876828224728

33 Number-theoretic Problems number of digits n time t(n) multiplication t(n) ≈ n 2 factoring t(n) ≈ 2 n exponential-time polynomial-time

34 Public-key Crypto from Number Theory Merkle, Hellman and Diffie (1976)Shamir, Rivest and Adleman (1978) Discrete Logarithms Factoring Diffie-Hellman Key Exchange RSA Encryption Scheme

35 RSA Encryption RSA: The first and the most popular public-key encryption (Let n be a product of two large primes, e is a public key and d is the secret key) Enc(m) = m e (mod n) Dec(c) = c d (mod n)

36 Lots more Number Theory Fermat’s Little Theorem Chinese Remainder Theorem Quadratic Reciprocity

37 Lots more Algorithms Euclid’s GCD algorithm: Efficient Algorithms for Exponentiation: Algorithms to Compute Discrete Logarithms: Primality Testing: How to tell if a number is prime? Factoring: How to factor a number into its prime factors?

38 Lots more Algorithms Euclid’s GCD algorithm: Efficient Algorithms for Exponentiation: Algorithms to Compute Discrete Logarithms: Primality Testing: How to tell if a number is prime? Factoring: How to factor a number into its prime factors? Polynomial time Exponential time

39 New Cryptographic Goals: Zero Knowledge I know the proof of the Reimann hypothesis That’s nonsense! Prove it to me I don’t want to, because you’ll plagiarize it!!! Can Charlie convince Alice that RH is true, without giving Alice the slightest hint of how he proved RH? Applications: Secure Identification Protocols (e.g., in an ATM)

40 New Cryptographic Goals: Homomorphic Encryption Can you compute on encrypted data? Many applications: Electronic Voting (how to add encrypted votes) Secure “Cloud Computing”

41 New Math: Elliptic Curves Weierstrass Equation: y 2 = x 3 + ax + b

42 Exercise for this week: Watch Prof. Ronald Rivest’s lecture on “The Growth of Cryptography” (see the course webpage for the link)

43 Welcome to MAT 302! Looking forward to an exciting semester!

Download ppt "MAT 302: Algebraic Cryptography LECTURE 1 Jan 7, 2013."

Similar presentations

Number Theory Algorithms and Cryptography Algorithms Prepared by John Reif, Ph.D. Analysis of Algorithms.

Number Theory Algorithms and Cryptography Algorithms Prepared by John Reif, Ph.D. Analysis of Algorithms.
1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.

1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.
22C:19 Discrete Structures Integers and Modular Arithmetic

22C:19 Discrete Structures Integers and Modular Arithmetic
Discrete Methods in Mathematical Informatics Lecture 2: Elliptic Curve Cryptography 16 th October 2012 Vorapong Suppakitpaisarn

Discrete Methods in Mathematical Informatics Lecture 2: Elliptic Curve Cryptography 16 th October 2012 Vorapong Suppakitpaisarn
What is Elliptic Curve Cryptography?

What is Elliptic Curve Cryptography?
22C:19 Discrete Math Integers and Modular Arithmetic Fall 2010 Sukumar Ghosh.

22C:19 Discrete Math Integers and Modular Arithmetic Fall 2010 Sukumar Ghosh.
15-251 Great Theoretical Ideas in Computer Science.

Great Theoretical Ideas in Computer Science.
UMass Lowell Computer Science 91.503 Analysis of Algorithms Prof. Karen Daniels Spring, 2009 Tuesday, 28 April Number-Theoretic Algorithms Chapter 31.

UMass Lowell Computer Science Analysis of Algorithms Prof. Karen Daniels Spring, 2009 Tuesday, 28 April Number-Theoretic Algorithms Chapter 31.
UMass Lowell Computer Science 91.503 Analysis of Algorithms Prof. Karen Daniels Fall, 2002 Tuesday, 26 November Number-Theoretic Algorithms Chapter 31.

UMass Lowell Computer Science Analysis of Algorithms Prof. Karen Daniels Fall, 2002 Tuesday, 26 November Number-Theoretic Algorithms Chapter 31.
Introduction to Modern Cryptography Lecture 5 Number Theory: 1. Quadratic residues. 2. The discrete log problem. Intro to Public Key Cryptography Diffie.

Introduction to Modern Cryptography Lecture 5 Number Theory: 1. Quadratic residues. 2. The discrete log problem. Intro to Public Key Cryptography Diffie.
Cryptography Lecture 11: Oct 12. Cryptography AliceBob Cryptography is the study of methods for sending and receiving secret messages. adversary Goal:

Cryptography Lecture 11: Oct 12. Cryptography AliceBob Cryptography is the study of methods for sending and receiving secret messages. adversary Goal:
CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.
Introduction to Modern Cryptography Instructor: Amos Fiat Strongly based on presentation and class by Benny Chor School of Computer Science Tel- Aviv Univ.

Introduction to Modern Cryptography Instructor: Amos Fiat Strongly based on presentation and class by Benny Chor School of Computer Science Tel- Aviv Univ.
CRYPTOGRAPHY WHAT IS IT GOOD FOR? Andrej Bogdanov Chinese University of Hong Kong CMSC 5719 | 6 Feb 2012.

CRYPTOGRAPHY WHAT IS IT GOOD FOR? Andrej Bogdanov Chinese University of Hong Kong CMSC 5719 | 6 Feb 2012.
Public Encryption: RSA

Public Encryption: RSA
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Security PART VII.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.
Theory I Algorithm Design and Analysis (9 – Randomized algorithms) Prof. Dr. Th. Ottmann.

Theory I Algorithm Design and Analysis (9 – Randomized algorithms) Prof. Dr. Th. Ottmann.
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Similar presentations

Ads by Google