Presentation is loading. Please wait.

Presentation is loading. Please wait.

CMSC 414 Computer (and Network) Security Lecture 9 Jonathan Katz.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "CMSC 414 Computer (and Network) Security Lecture 9 Jonathan Katz."— Presentation transcript:

1 CMSC 414 Computer (and Network) Security Lecture 9 Jonathan Katz

2 Digital signatures

3 RSA signatures I  “Textbook RSA” –Why textbook RSA is completely insecure! (Two attacks)

4 RSA signatures for real  Hash functions… –Collision-resistance Birthday attacks –“Scrambling”  How to fix RSA signatures –Why does this work? –Is it actually secure?

5 Hash functions  SHA-1 –Proposed NIST standard –160-bit output  MD5 –Developed by Rivest (RSA) –128-bit output

6 DSA/DSS signatures  “Digital signature standard”  Security based on discrete logarithms –No (complete) proof of security  Royalty-free  Overall, neither RSA nor DSS has the advantage –Depends (in part) on relative strengths of assumptions

7 Signing long messages?  How…? –Hash-and-sign –Only need to assume that hash function is collision-resistant

8 Non-repudiation  Digital signatures achieve non-repudiation –In contrast to private-key case!  Is this a good or a bad thing? –Sometimes you want deniability (e.g., no trace that you logged in) –Legal ramifications – do you really know what you are signing?

9 A few words about PKI  Certification authorities; certificates –Single point of failure?  Certificate chains  More on this later…

10 “Why crypto fails”  Two examples of bad crypto: –Replay of “ok” message from bank to ATM –PIN on ATM card was authenticated, but account number on ATM card was not…

11 “Why crypto fails”  Lack of information about previous failures  Most frauds not caused by “bad” crypto, but by bad implementation/management –There is plenty of bad crypto, too!  “Social engineering” attacks  Importance of threat model (i.e., security policy) –Threat model may change…  Dispute resolution

Download ppt "CMSC 414 Computer (and Network) Security Lecture 9 Jonathan Katz."

Similar presentations

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it.
Computer and Network Security Mini Lecture by Milica Barjaktarovic.

Computer and Network Security Mini Lecture by Milica Barjaktarovic.
Cryptography and Network Security Chapter 13 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 13 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.

1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.
1 Chapter 13 – Digital Signatures & Authentication Protocols Fourth Edition by William Stallings Lecture slides by Lawrie Brown (modified by Prof. M. Singhal,

1 Chapter 13 – Digital Signatures & Authentication Protocols Fourth Edition by William Stallings Lecture slides by Lawrie Brown (modified by Prof. M. Singhal,
CMSC 414 Computer and Network Security Lecture 10 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 10 Jonathan Katz.
CS 425 / ECE 428 Distributed Systems Fall 2014 Indranil Gupta (Indy) Lecture 24B: Security All slides © IG.

CS 425 / ECE 428 Distributed Systems Fall 2014 Indranil Gupta (Indy) Lecture 24B: Security All slides © IG.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Web Security for Network and System Administrators1 Chapter 4 Encryption.

Web Security for Network and System Administrators1 Chapter 4 Encryption.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 6 Wenbing Zhao Department of Electrical and Computer Engineering.
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.
G22.3250-001 Robert Grimm New York University Using Encryption for Authentication in Computer Networks.

G Robert Grimm New York University Using Encryption for Authentication in Computer Networks.
CNS2010handout 10 :: digital signatures1 computer and network security matt barrie.

CNS2010handout 10 :: digital signatures1 computer and network security matt barrie.
CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.
CMSC 456 Introduction to Cryptography

CMSC 456 Introduction to Cryptography
CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 7 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 15 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 15 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

Similar presentations

Ads by Google