Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security. Cryptography Why Cryptography Symmetric Encryption – Key exchange Public-Key Cryptography – Key exchange – Certification.

Published byRhoda Caldwell Modified over 8 years ago

Similar presentations

Presentation on theme: "Security. Cryptography Why Cryptography Symmetric Encryption – Key exchange Public-Key Cryptography – Key exchange – Certification."— Presentation transcript:

1 Security

2 Cryptography Why Cryptography Symmetric Encryption – Key exchange Public-Key Cryptography – Key exchange – Certification

3 Why Cryptography General Security Goal - Confidentiality - Message Integrity - End-point Authentication - Operational security

4 Potentially Threats Eaves dropping Modification, insertions, deletion Masquerade Playback Man-in-a-middle-attack DoS (ie. SYN-flooding)

5 Cryptography - general To send messages over a network, which is unable to understand for a third part General technique: – Plain text – Encode (algorithm + key) – Cipher text (send over the network) – Decode (algorithm + key) – Plain text

6 Cryptography - coding Old days simple letter transformation e.g. c for an a and d for a b and so on i.e. ape -> crg To day – Symmetric key – Public-private keys

7 How to break encryption Force brute – Try combinations Ciphertext-only attack – try all/dictionary Known-plaintext Attack – know few word in text Chosen-plaintext Attack – know one full text

8 Cryptography - Symmetric Using the same key to encode and decode Which goal are fulfilled ? -Confidentiality -Authentication -Integrity -Operational security -Confidentiality – yes - Authentication - yes - Integrity - yes - Operational security - no

9 Cryptography - Symmetric Implementations: – DES (Data Encryption Standard) most known (round 4 min) today modified to triple DES key length 64bit (3*64 bit) – Other IDEA, RC5 to day even 128 bit (round 100trillion year)

10 Cryptography - Symmetric Key exchange: – Problem to exchange the key - we can not send it with a mail - then it would not be secret any longer – Using a Key Distribution Center (KDC) - I have an agreement with the KDC and with this an secret key. - So have all I communicate with.

11 Cryptography - Symmetric Windows use Symmetric key in an implementation called Kerberos: – All like KDC but you get grant (a key) to a resource for a certain time (all called a ticket)

12 Cryptography Asymmetric Using the different keys to encode and decode You always have a pair of keys a public key and a private key If you encode with a public key – you must decode with a private key If you encode with a private key – you must decode with a public key

13 Cryptography Asymmetric Which goal are fulfilled from A to B (B public Key) ? -Confidentiality -Authentication -Integrity -Operational security -Confidentiality – yes -Authentication - no - Integrity - no - Operational security - no

14 Cryptography Asymmetric Which goal are fulfilled from A to B (A private Key) ? -Confidentiality -Authentication -Integrity -Operational security -Confidentiality – no - Authentication - yes - Integrity - yes - Operational Security - no

15 Cryptography Asymmetric Can we fulfilled both -Confidentiality and -Authentication -Integrity ? YES – encode with A private key and then with B public key i.e. twice

16 Cryptography Asymmetric Implementations: – RSA – most known key length recommended 1024bit / soon becoming 2048bit – (768 bit brute force within days (2010))

17 Cryptography Asymmetric Key exchange: – Problem to exchange the key - public key are public to everyone - But do we believe the sender of the key – Using Certification - I believe in some Certification Authorities e.g. VeriSign, Thrust, (in DK TDC) - get the public key from one of those trusted third part companies.

18 Cryptography Asymmetric To fulfilled the goal you must encode 2 times (A private and B public) A more easy way is to create a Message Digest (MD) a sort of a checksum And this ‘checksum’ are encoded with A’s private key (Digital Signature). Then the whole message + the MD are encoded with B’s public key

19 Cryptography Asymmetric For authentication – Message Authentication Code (MAC) Both sides – shared secret (s) Send m + H(m+s) Check m+s hached == H(m+s) – Fill with Nonsens

20 Cryptography Mixed Using asymmetric keys to exchange a symmetric key for rest of this session. This increase the speed of encryption and decryption.

Download ppt "Security. Cryptography Why Cryptography Symmetric Encryption – Key exchange Public-Key Cryptography – Key exchange – Certification."

Similar presentations

Conventional Encryption: Algorithms

Conventional Encryption: Algorithms
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Sri Lanka Institute of Information Technology

Sri Lanka Institute of Information Technology
Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.

Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.
Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
CC3.12 Erdal KOSE Privacy & Digital Security Encryption.

CC3.12 Erdal KOSE Privacy & Digital Security Encryption.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.

Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Cryptographic Technologies

Cryptographic Technologies
Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Information Security of Embedded Systems 3.2.2010: Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
Security Module – Part 1 Spring 2006 V.T. Raja, Ph.D., Oregon State University.

Security Module – Part 1 Spring 2006 V.T. Raja, Ph.D., Oregon State University.
Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,

Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,
1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.

1 CS 194: Distributed Systems Security Scott Shenker and Ion Stoica Computer Science Division Department of Electrical Engineering and Computer Sciences.
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)

Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)

Similar presentations

Ads by Google