Presentation is loading. Please wait.

Presentation is loading. Please wait.

Feb 18, 2003Mårten Trolin1 Previous lecture Block ciphers Modes of operations First assignment Hash functions.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Feb 18, 2003Mårten Trolin1 Previous lecture Block ciphers Modes of operations First assignment Hash functions."— Presentation transcript:

1 Feb 18, 2003Mårten Trolin1 Previous lecture Block ciphers Modes of operations First assignment Hash functions

2 Feb 18, 2003Mårten Trolin2 This lecture More on hash functions Digital signatures Message Authentication Codes Padding

3 Feb 18, 2003Mårten Trolin3 Homepage for the course Reminder – there is a homepage for the course at http://www.nada.kth.se/~marten/AC/2003 with a mirror at http://students.mii.lu.lv/user/AC/2003 This page contains the latest information on the course All lectures can be downloaded from this page

4 Feb 18, 2003Mårten Trolin4 Hash functions A hash function is a function f:{0,1}*  {0,1} n. –Example: Check sums in communication protocols –Indices in databases One-way –Given x, unfeasible to compute an v such that H(v) = x Collision-free –Unfeasible to find v 1 and v 2 such that v 1  v 2 and H(v 1 ) = H(v 2 )

5 Feb 18, 2003Mårten Trolin5 Digital signatures Used to ensure authenticity. A digital signatures binds a document to a person. A person produces a digital signature using his private key The signature can be verified using the public key.

6 Feb 18, 2003Mårten Trolin6 How to sign a document d Compute the hash of d, v = H(d). Perform a private key operation on v. The result is a digital signature. What happens if the hash function is not collision free?

7 Feb 18, 2003Mårten Trolin7 Use of a digital signature Signature generation Private key Document Signature Signature verification Public key Document OK / not OK SignerVerifier

8 Feb 18, 2003Mårten Trolin8 Message Authentication Codes Digital signatures requires public/private keys The same functionality can be achived with symmetric keys –Called MAC – Message Authentication Code –Signer and verifier uses the same key Question: What are the advantages compared to digital signatures? What are the disadvantages?

9 Feb 18, 2003Mårten Trolin9 Two simple MACs Let E key, D key be a symmetric cipher, and let H be a hash function. Let m be the message to MAC and let k be the symmetric key. First proposition: Compute a hash of the document and encrypt it –E k (H(m)) Second proposition: Concatinate the message and the key and compute the hash –H(m  k)

10 Feb 18, 2003Mårten Trolin10 Use of a MAC MAC generation Symmetric key Document MAC MAC verification Symmetric key Document OK / not OK SignerVerifier

11 Feb 18, 2003Mårten Trolin11 Difference between MAC and digital signature If you can verify a MAC, you can also create it To prove the validity of a MAC to a third party, you need to reveal the key. Computing a MAC is (usually) must faster than computing a digital signature –Important for devices with low computing power

12 Feb 18, 2003Mårten Trolin12 Padding In public key cryptography, an adversary can try to encrypt until he finds the correct message –This is a real problem when the number of possible messages is low. (Yes/no, four-digit PIN code, etc.) –Often encrypting a low number is dangerous. –Without padding, the same clear text encrypts into the same cipher text each time. Padding adds random data to the clear text before encryption

13 Feb 18, 2003Mårten Trolin13 Padding, cont. (Artificial) example: We want to encrypt ”yes” or ”no” using a system for n bits. –”Yes” is encoded by 10 –”No” is encoded by 01 –Pad by adding (say) n – 3 random bits: Yes is encoded by 1b 2 b 3 …b n – 2 10 No is encoded by 1b 2 b 3 …b n – 2 01 To use test-encryption you need to try all 2 n – 3 combinations.

14 Feb 18, 2003Mårten Trolin14 Standards for padding Standards – important for interchange RSA Laboratories has defined several standards for public key cryptography called PKCS PKCS#1 describes how to encrypt and sign using RSA

Download ppt "Feb 18, 2003Mårten Trolin1 Previous lecture Block ciphers Modes of operations First assignment Hash functions."

Similar presentations

MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.

MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.
Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.

Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.
Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.
1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.

1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.
Feb 12, 2002Mårten Trolin1 Applied Cryptography Main goal –Give some practical experience on cryptographic technics used today. –Show how to use existing.

Feb 12, 2002Mårten Trolin1 Applied Cryptography Main goal –Give some practical experience on cryptographic technics used today. –Show how to use existing.
Authentication and Digital Signatures CSCI 5857: Encoding and Encryption.

Authentication and Digital Signatures CSCI 5857: Encoding and Encryption.
Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.

Mar 19, 2002Mårten Trolin1 This lecture On the assignment Certificates and key management SSL/TLS –Introduction –Phases –Commands.
Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.

Apr 2, 2002Mårten Trolin1 Previous lecture On the assignment Certificates and key management –Obtaining a certificate –Verifying a certificate –Certificate.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 29 Cryptography and Network.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 29 Cryptography and Network.
Apr 9, 2002Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication The second assignment.

Apr 9, 2002Mårten Trolin1 Previous lecture TLS details –Phases Handshake Securing messages –What the messages contain –Authentication The second assignment.
Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
Mar 11, 2003Mårten Trolin1 Previous lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Mar 11, 2003Mårten Trolin1 Previous lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.
CNS2010handout 10 :: digital signatures1 computer and network security matt barrie.

CNS2010handout 10 :: digital signatures1 computer and network security matt barrie.
CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.
Cryptography Basic (cont)

Cryptography Basic (cont)
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Mar 4, 2003Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities.

Similar presentations

Ads by Google