Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 The development of Public Key Cryptography a personal view Ralph C. Merkle Georgia Tech College of Computing.

Published byEdgar Armstrong Modified over 8 years ago

Similar presentations

Presentation on theme: "1 The development of Public Key Cryptography a personal view Ralph C. Merkle Georgia Tech College of Computing."— Presentation transcript:

1 1 The development of Public Key Cryptography a personal view Ralph C. Merkle Georgia Tech College of Computing

2 2 No terminology No understanding of problem Talking with people about the problem now called public key distribution produced confusion Fall 1974

3 3 Undergraduate at Berkeley Enrolled in CS 244, “Computer Security Engineering,” Lance Hoffman Required to submit two project proposals —One was data compression. —The other….

4 4 Fall 1974 One way functions could protect passwords even if system security were completely compromised But encryption keys, once compromised, required establishing new keys Could new keys (between e.g. a terminal and the system) be established over normal channels?

5 5 Fall 1974 This is the public key distribution problem. First thought: this must be impossible, let’s prove that it can’t be done Easy to prove that PKD is impossible if either communicant is fully deterministic and I/O is monitored.

6 6 Fall 1974 AB E PKD impossible if A or B is deterministic

7 7 Fall 1974 AB E But what if A and B both have random number generators? XZHEIA ADKFJK DK3IOF … KDWWO RWE3LV ZPOELF …

8 8 Fall 1974 AB E How do A and B differ from E? XZHEIA ADKFJK DK3IOF … KDWWO RWE3LV ZPOELF …

9 9 Fall 1974 Failed to prove PKD impossible if random numbers are provided Switched gears – how to do it Aha! A and B might generate the same random number by chance!

10 10 Fall 1974 AB E By chance, A and B might generate the same number XZHEIA ADKFJK DK3IOF … KDWWO RWE3LV ADKFJK …

11 11 Fall 1974 If A and B select N random numbers from a space of N 2 possible numbers, there is a good probability of a collision. So just keep picking random numbers until a collision occurs, which it will with high probability if A and B keep generating random numbers

12 12 Fall 1974 But how to detect a collision? Have A apply a one way function F to each random number r i, and send F(r i ) to B B applies the same one way function to his random numbers and looks for a collision. When B finds a collision, A and B are in possession of a common key

13 13 Fall 1974 The enemy, E, saw ~N values F(r i ) go from A to B, and saw one value F(r common ) returned from B to A. Total effort by both A and B was about N. Total effort by E to analyze r common will be about N 2.

14 14 Fall 1974 This was the method as first conceived, and best illustrates the development of the idea The method as published is different, using “puzzles” to minimize both A and B’s storage requirements (which in the simple method are ~N)

15 15 Puzzles Puzzles are created by selecting a random key from one of N possibilities, then encrypting a random puzzle id, a random cryptographic key, and some redundant information. A puzzle is broken by exhaustively searching the space of N possible keys

16 16 Puzzles A creates N puzzles and sends them to B B randomly selects one puzzle, discarding all the others B spends ~N effort to crack the chosen puzzle B sends the puzzle ID back to A

17 17 Puzzles AB E ID, Key … ID

18 18 Idea meets people New ideas are typically rejected, and so it was with this strange key distribution problem and CS 244: after repeated rejection I dropped the course But kept working on the idea.

19 19 Idea meets people Among others, I explained the puzzles method to Peter Blatman who, as it happened, knew Whit Diffie.

20 20 Idea meets people “I was convinced you couldn't do it [PKD] and I persuaded Blatman you couldn't do it. But I went back to thinking about the problem. And so I think Merkle plays a very critical role.” —Whitfield Diffie, circa 1974/1975

21 21 Idea meets people Sounding out faculty members at Berkeley produced mostly negative results (i.e., “No, I couldn’t supervise a thesis in this area because ”) Bob Fabry, however, read my draft paper and said “Publish, win fame and fortune!” So I submitted to CACM in August 1975

22 22 Idea meets people The response from CACM: “Enclosed is a referee report by an experienced cryptography expert on your manuscript…” “I am sorry to have to inform you that the paper is not in the main stream of present cryptography thinking and I would not recommend that it be published…”

23 23 Linking up February 7 th 1976: “About 3 days ago, a copy of your working paper, Multiuser Cryptographic Techniques, fell into my hands.” And the rest is history

24 24 Some thoughts on nanotechnology

25 25 Crypto and nano Today’s crypto systems must resist attack by tomorrow’s computers Nanotechnology explores the limits of what we can make Future computers will likely benefit decisively from nanotechnology

26 26 Arranging atoms Flexibility Precision Cost

27 27 Richard Feynman,1959 There’s plenty of room at the bottom http://www.zyvex.com/nanotech/feynman.html

28 28 1980’s, 1990’s First STM By Binnig and Rohrer Experiment and theory

29 29 President Clinton, 2000 “Imagine the possibilities: materials with ten times the strength of steel and only a small fraction of the weight -- shrinking all the information housed at the Library of Congress into a device the size of a sugar cube -- detecting cancerous tumors when they are only a few cells in size.” The National Nanotechnology Initiative

30 30 Arrangements of atoms. Today The goal

31 31 The goal.

32 32 Core molecular manufacturing capabilities Today Products Many routes

33 33 A powerful method: positional assembly

34 34 Experimental Controlling the Dynamics of a Single Atom in Lateral Atom Manipulation Joseph A. Stroscio and Robert J. Celotta, Science, Vol 306, Issue 5694, 242-247, 8 October 2004 http://www.nist.gov/public_affairs/releases/hiphopatoms.htm A 40-nanometer-wide NIST logo made with cobalt atoms on a copper surface

35 35 H. J. Lee and W. Ho, SCIENCE 286, p. 1719, NOVEMBER 1999 Experimental

36 36 Experimental Mechanical vertical manipulation of selected single atoms by soft nanoindentation using near contact atomic force microscopy, Noriaki Oyabu, Oscar Custance, Insook Yi, Yasuhiro Sugawara, Seizo Morita1, Phys. Rev. Lett. 90(2 May 2003):176102.

37 37 Theoretical

38 38 Hydrocarbon machines

39 39 Molecular machines

40 40 Molecular robotics

41 41 PropertyDiamond’s valueComments Chemical reactivityExtremely low Hardness (kg/mm2)9000CBN: 4500 SiC: 4000 Thermal conductivity (W/cm-K)20Ag: 4.3 Cu: 4.0 Tensile strength (pascals)3.5 x 10 9 (natural)10 11 (theoretical) Compressive strength (pascals)10 11 (natural)5 x 10 11 (theoretical) Band gap (ev)5.5Si: 1.1 GaAs: 1.4 Resistivity (W-cm)10 16 (natural) Density (gm/cm3)3.51 Thermal Expansion Coeff (K-1)0.8 x 10 -6 SiO2: 0.5 x 10 -6 Refractive index2.41 @ 590 nmGlass: 1.4 - 1.8 Coeff. of Friction0.05 (dry)Teflon: 0.05 Source: Crystallume Diamond physical properties What to make

42 42 Making diamond today Illustration courtesy of P1 Diamond Inc.

43 43 Hydrogen abstraction tool

44 44 Adding carbon Theoretical Analysis of Diamond Mechanosynthesis. Part II. C2 Mediated Growth of Diamond C(110) Surface via Si/Ge-Triadamantane Dimer Placement Tools, J. Comp. Theor. Nanosci. 1(March 2004). David J. Mann, Jingping Peng, Robert A. Freitas Jr., Ralph C. Merkle, In press.

45 45 Other molecular tools

46 46 Self replication A redwood tree (sequoia sempervirens) 112 meters tall Redwood National Park http://www.zyvex.com/nanotech/selfRep.html

47 47 Kinematic Self-Replicating Machines (Landes Bioscience, 2004)Landes Bioscience Reviews the voluminous theoretical and experimental literature about physical self- replicating systems. Self replication www.molecularassembler.com/KSRM.htm

48 48 Exponential assembly

49 49 Convergent assembly

50 50 Convergent assembly Making big things http://www.zyvex.com/nanotech/convergent.html Illustration courtesy of Eric Drexler

51 51 Today: potatoes, lumber, wheat, etc. are all about a dollar per kilogram. Tomorrow: almost any product will be about a dollar per kilogram or less. (Design costs, licensing costs, etc. not included) Economics Manufacturing costs per kilogram will be low

52 52 The impact of a new manufacturing technology depends on what you make Impact

53 53 We’ll have more computing power in the volume of a sugar cube than the sum total of all the computer power that exists in the world today More than 10 21 bits in the same volume Almost a billion Pentiums in parallel Powerful Computers Impact

54 54 High density memory Impact

55 55 Core molecular manufacturing capabilities Today Products Overview

56 56 Correct scientific answer: I don’t know Trends in computer hardware suggestive Beyond typical 3-5 year planning horizon Depends on what we do Babbage’s computer designed in 1830’s How long?

57 57 Nanotechnology offers... possibilities for health, wealth, and capabilities beyond most past imaginings. K. Eric Drexler

Download ppt "1 The development of Public Key Cryptography a personal view Ralph C. Merkle Georgia Tech College of Computing."

Similar presentations

1 Whither Nanotechnology Ralph C. Merkle Xerox PARC www.merkle.com.

1 Whither Nanotechnology Ralph C. Merkle Xerox PARC
CSC 774 Advanced Network Security

CSC 774 Advanced Network Security
Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.
Class 25: Security through Complexity? Karsten Nohl cs302: Theory of Computation University of Virginia, Computer Science PS6 is due today. Lorenz cipher.

Class 25: Security through Complexity? Karsten Nohl cs302: Theory of Computation University of Virginia, Computer Science PS6 is due today. Lorenz cipher.
Intermediate and long term objectives in nanotechnologynanotechnology Ralph C. Merkle Xerox PARC www.merkle.com.

Intermediate and long term objectives in nanotechnologynanotechnology Ralph C. Merkle Xerox PARC
The Literature Review in 3 Key Steps

The Literature Review in 3 Key Steps
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
15-251 Great Theoretical Ideas in Computer Science.

Great Theoretical Ideas in Computer Science.
Introduction to Cryptography and Security Mechanisms: Unit 5 Theoretical v Practical Security Dr Keith Martin McCrea 34901784 443099

Introduction to Cryptography and Security Mechanisms: Unit 5 Theoretical v Practical Security Dr Keith Martin McCrea
Molecular Nanotechnology By Kavitha, Boppana. Presentation Overview  Molecular Manufacturing  Positional Assembly  Self Replication  Visual Images.

Molecular Nanotechnology By Kavitha, Boppana. Presentation Overview  Molecular Manufacturing  Positional Assembly  Self Replication  Visual Images.
CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.
Zyvex 1 Molecular Nanotechnology www.zyvex.com/nano www.zyvex.com/nano Ralph C. Merkle Principal Fellow, Zyvex www.merkle.com.

Zyvex 1 Molecular Nanotechnology Ralph C. Merkle Principal Fellow, Zyvex
CSCD 555 Research Methods for Computer Science

CSCD 555 Research Methods for Computer Science
Psychology 366 Research Project Jen St.Onge Kenny Building, Room #3506 Website:

Psychology 366 Research Project Jen St.Onge Kenny Building, Room #3506 Website:
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.
Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.
By: Mike Neumiller & Brian Yarbrough

By: Mike Neumiller & Brian Yarbrough
ELE 523E COMPUTATIONAL NANOELECTRONICS W1: Introduction, 8/9/2014 FALL 2014 Mustafa Altun Electronics & Communication Engineering Istanbul Technical University.

ELE 523E COMPUTATIONAL NANOELECTRONICS W1: Introduction, 8/9/2014 FALL 2014 Mustafa Altun Electronics & Communication Engineering Istanbul Technical University.
Tonga Institute of Higher Education Design and Analysis of Algorithms IT 254 Lecture 9: Cryptography.

Tonga Institute of Higher Education Design and Analysis of Algorithms IT 254 Lecture 9: Cryptography.
Lecture 11: Key Distribution

Lecture 11: Key Distribution

Similar presentations

Ads by Google