Presentation is loading. Please wait.

Presentation is loading. Please wait.

Facilities for Secure Communication The Internet is insecure The Internet is a shared collection of networks. Unfortunately, that makes it insecure An.

Published byRafe Roberts Modified over 8 years ago

Similar presentations

Presentation on theme: "Facilities for Secure Communication The Internet is insecure The Internet is a shared collection of networks. Unfortunately, that makes it insecure An."— Presentation transcript:

1

2 Facilities for Secure Communication

3 The Internet is insecure The Internet is a shared collection of networks. Unfortunately, that makes it insecure An example: Cable modems use TV wiring to deliver high-speed Internet services to customers Groups of customers share the same bandwidth  anybody in the group can eavesdrop to any body else’s communication

4 Issues in Internet Security Privacy: messages should be read only by the sender and the intended destination; Ex1. If you send your credit card number, you would like to know that only the receiver can read the message. Ex2. If you send digital merchandise, like an e- ticket, you would like that only the party that paid for it could use it. Authenticity: be sure who the communicating party is: Ex1. Who is the sender of an e-mail? Ex2. Is this web page really set up by Columbia?

5 Issues in Internet security (cont.) Data integrity: a message should arrive at the destination exactly as it was sent Ex: one can steal merchandise simply by changing the delivery address Solution: encryption

6 Encryption methods Have a code for each symbol; The communicating parties share the code Ex: p stands for w, o for a, and t for r. What does pot stand for? Widely used starting with ancient Rome Problem: easy to break if computers are used to break the code.

7 Secret key cryptography Secret key: Based on the previous idea, but uses sophisticated mathematical procedures to encrypted and to decrypt; If M is a message, and K is a secret key then: M=decrypt(K,encrypt(M)) Advantage: encrypt, decrypt are (relatively) efficient functions

8 Secret Key Cryptography (cont.) Alice Bob @1!3 & Spring arrived!! @1!3 & Spring arrived !!

9 Problems with secret key cryptography Deployment: all communicating parties have to know the key. How can they take hold of it? Obviously, not by sending an message via the Internet. Large number of keys: a dedicated key is needed for each set of communicating parties; Cannot be used for signing: when receiving an encrypted message one cannot be sure who is the sender---might be anybody who knows the secret key

10 A Breakthrough: Public Key Cryptography Discovered in the ’70s by Diffie and Hellman A person (principal) has two keys: A private key, that he keeps secret A public key, that anybody may know Property: a message encrypted with one of the keys can be decrypted with the other;

11 Encrypting with public/private keys To achieve privacy: If A wants to send a message to B that only B can read, A encrypts the message with B’s public key: A sends M’=encrypt(pub B,M) B: decrypt(priv B,M’) To prove authenticity (signing): If A wants to send to B a message and wants to prove that it is authentic: A encrypts the message with its private key: A sends M’=encrypt(priv A,M) B decrypts the message with A’s public key: B recovers M=decrypt(pub A,M’) How about data integrity?

12 Public Key Cryptography (cont.) Sending an authentic message. Alice Bob @1!3 & Spring arrived !! @1!3 & Spring arrived!! secretpublic

13 Public Key Cryptography (cont.) Sending a confidential message Alice #1$% secretpublic #1$% Indeed! Alice’s public key

14 Public key cryptography Advantages: Provide for privacy, authenticity and integrity May be used to distribute secret keys; The price to pay: Encryption and decryption takes considerably longer to perform than for secret key cryptography.

15 But… No method (public or secret cryptography) guarantees absolute security: If a third party uses enough computers, enough time it will be able to break the code; However, the time required to break the code is (believed to be) sufficiently long as to make the network reasonably secure.

Download ppt "Facilities for Secure Communication The Internet is insecure The Internet is a shared collection of networks. Unfortunately, that makes it insecure An."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Public Key Cryptography Nick Feamster CS 6262 Spring 2009.

Public Key Cryptography Nick Feamster CS 6262 Spring 2009.
1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Public Key Cryptography INFSCI 1075: Network Security – Spring 2013 Amir Masoumzadeh.

Public Key Cryptography INFSCI 1075: Network Security – Spring 2013 Amir Masoumzadeh.
Off-the-Record Communication, or, Why Not To Use PGP

Off-the-Record Communication, or, Why Not To Use PGP
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Last Class: The Problem BobAlice Eve Private Message Eavesdropping.

Last Class: The Problem BobAlice Eve Private Message Eavesdropping.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Secure Sockets Layer. SSL SSL is a communications protocol layer which can be placed between TCP/IP and HTTP It intercepts web traffic and provides security.

Secure Sockets Layer. SSL SSL is a communications protocol layer which can be placed between TCP/IP and HTTP It intercepts web traffic and provides security.
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.

Public-key Cryptography Montclair State University CMPT 109 J.W. Benham Spring, 1998.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Data Security 101 Part 1: PKI and SSL. Reading First, read the VeriSign case, –page 294-297 Second, read section 5.3 –pages 268-279 Finally, briefly skim.

Data Security 101 Part 1: PKI and SSL. Reading First, read the VeriSign case, –page Second, read section 5.3 –pages Finally, briefly skim.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Internet: A Network of Networks. Spring 2002Computer Networks Applications Disparate Network Technologies Different goals: Speed, cost, distance; Different.

Internet: A Network of Networks. Spring 2002Computer Networks Applications Disparate Network Technologies Different goals: Speed, cost, distance; Different.
WS 2006-07 Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.

WS Algorithmentheorie 03 – Randomized Algorithms (Public Key Cryptosystems) Prof. Dr. Th. Ottmann.

Similar presentations

Ads by Google