Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)"— Presentation transcript:

1 Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4) Section 13.3 inserted into Ch. 9 slides

2 Invitation to Computer Science, C++ Version, Fourth Edition 2 Step 3: Committing to an Online Purchase Must provide security for transmission of sensitive information  Encryption: Encoding data to be transmitted into a scrambled form using a scheme agreed upon between the sender and the receiver  Authentication: Verifying the identify of the receiver of your message

3 Invitation to Computer Science, C++ Version, Fourth Edition 3 Information Security Information security  Data protection, whether on disk or transmitted across a network  Authentication: Prevents access by hackers  Encryption: Makes data meaningless if hackers do get it

4 Invitation to Computer Science, C++ Version, Fourth Edition 4 Encryption Overview Cryptography  The science of “secret writing” Plaintext  A message that is not encoded Ciphertext  An encrypted message

5 Invitation to Computer Science, C++ Version, Fourth Edition 5 Encryption Overview (continued) Process of encryption and decryption  Plaintext is encrypted before it is sent  Ciphertext is decrypted back to plaintext when it is received A symmetric encryption algorithm  Requires a secret key known to both the sender and receiver Sender encrypts the plaintext using the key Receiver decrypts the message using the key

6 Invitation to Computer Science, C++ Version, Fourth Edition 6 Encryption Overview (continued) Asymmetric encryption algorithm  Also called public key encryption algorithm  The key for encryption and the key for decryption are different Person A makes an encryption key public Anyone can encrypt a message using the public key and send it to A Only A has the decryption key and can decrypt the message

7 Invitation to Computer Science, C++ Version, Fourth Edition 7 Simple Encryption Algorithms: Caesar Cipher Caesar cipher  Also called a shift cipher  Each character in the message is shifted to another character some fixed distance farther along in the alphabet  Stream cipher: Encodes one character at a time  Substitution cipher: A single letter of plaintext generates a single letter of ciphertext

8 Invitation to Computer Science, C++ Version, Fourth Edition 8 Block Cipher A group or block of plaintext letters gets encoded into a block of ciphertext, but not by substituting one at a time for each character Each plaintext character in the block contributes to more than one ciphertext character

9 Invitation to Computer Science, C++ Version, Fourth Edition 9 Block Cipher (continued) One ciphertext character is created as a result of more than one plaintext letter Diffusion (scattering) of the plaintext within the ciphertext

10 Invitation to Computer Science, C++ Version, Fourth Edition 10 DES Stands for Data Encryption Standard Designed to protect electronic information A block cipher Blocks: 64 bits long Key: 64-bit binary key (only 56 bits are used)

11 Invitation to Computer Science, C++ Version, Fourth Edition 11 DES (continued) Every substitution, reduction, expansion, and permutation is determined by a well-known set of tables The same algorithm serves as the decryption algorithm

12 Invitation to Computer Science, C++ Version, Fourth Edition 12 Figure 13.11 The DES Encryption Algorithm

13 Invitation to Computer Science, C++ Version, Fourth Edition 13 DES (continued) Triple DES  Improves the security of DES  Requires two 56-bit keys  Runs the DES algorithm three times AES (Advanced Encryption Standard)  Uses successive rounds of computations that mix up the data and the key  Key length: 128, 192, or 256 bits

14 Invitation to Computer Science, C++ Version, Fourth Edition 14 Public-Key Systems RSA  Most common public key encryption algorithm  Based on results from number theory  If n is a large number, it is extremely difficult to find the prime factors for n  RSA is often used in the initial stage of communication between client and server

15 Invitation to Computer Science, C++ Version, Fourth Edition 15 Figure 13.12 An SSL Session

16 Invitation to Computer Science, C++ Version, Fourth Edition 16 Summary (continued) Main parts of information security: Encryption and authentication Types of encryption algorithms  Symmetric encryption algorithms  Asymmetric encryption algorithms (or public key encryption algorithms) Encryption algorithms: Caesar cipher, block cipher, DES, Triple DES, AES, RSA

Download ppt "Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)"

Similar presentations

Chapter 3 Public Key Cryptography and Message authentication.

Chapter 3 Public Key Cryptography and Message authentication.
Relations, Functions, and Matrices Mathematical Structures for Computer Science Chapter 4 Copyright © 2006 W.H. Freeman & Co.MSCS SlidesThe Mighty Mod.

Relations, Functions, and Matrices Mathematical Structures for Computer Science Chapter 4 Copyright © 2006 W.H. Freeman & Co.MSCS SlidesThe Mighty Mod.
Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
Computer Science 101 Data Encryption And Computer Networks.

Computer Science 101 Data Encryption And Computer Networks.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, Java Version, Third Edition.

Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, Java Version, Third Edition.
CC3.12 Erdal KOSE Privacy & Digital Security Encryption.

CC3.12 Erdal KOSE Privacy & Digital Security Encryption.
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
Cryptographic Technologies

Cryptographic Technologies
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Security PART VII.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
Lecture 23 Symmetric Encryption

Lecture 23 Symmetric Encryption
8: Network Security8-1 Symmetric key cryptography symmetric key crypto: Bob and Alice share know same (symmetric) key: K r e.g., key is knowing substitution.

8: Network Security8-1 Symmetric key cryptography symmetric key crypto: Bob and Alice share know same (symmetric) key: K r e.g., key is knowing substitution.
Computer Science Lecture 22, page 1 Security in Distributed Systems Introduction Cryptography Authentication Key exchange Readings: Tannenbaum, chapter.

Computer Science Lecture 22, page 1 Security in Distributed Systems Introduction Cryptography Authentication Key exchange Readings: Tannenbaum, chapter.
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Similar presentations

Ads by Google