Presentation is loading. Please wait.

Presentation is loading. Please wait.

Exam 1 Review CS461/ECE422 Fall 2010. Exam guidelines A single page of supplementary notes is allowed  8.5x11. Both sides. Write as small as you like.

Published byGavin Murphy Modified over 8 years ago

Similar presentations

Presentation on theme: "Exam 1 Review CS461/ECE422 Fall 2010. Exam guidelines A single page of supplementary notes is allowed  8.5x11. Both sides. Write as small as you like."— Presentation transcript:

1 Exam 1 Review CS461/ECE422 Fall 2010

2 Exam guidelines A single page of supplementary notes is allowed  8.5x11. Both sides. Write as small as you like. Closed book No calculator Students should show work on the exam. They can use supplementary sheets of paper if they run out of room. Students can use scratch paper if desired.

3 Exam logistics Exam will be given during normal lecture time in 1310 DCL You will be given 50 minutes to complete the exam.

4 Topics Introductory definitions Security Policies Risk Analysis Historical Cryptography Symmetric Cryptography Public or Asymmetric Cryptography Key Management Authentication

5 Risk Analysis Understand  Assets  Vulnerabilities  Threats  Risk Qualitative vs Quantitative Analysis  Quantitative identifies absolute numbers for risk probability and asset value, so can calculate risk exposure, risk leverage  Qualitative uses relative rankings instead of absolute numbers

6 Security Policy Defines what needs to be done, not how  How is the mechanism or control Organizational or natural language policies  Read and identify components in an organizational policy or standard Hierarchy of policy languages from natural language to formal specifications to configurations

7 Historical Ciphers Transposition  Rail cipher/N-columnar transposition Substitution  Caesar, Vigenere, book, one-time pad, enigma Language-based statistical attacks  Character frequency analysis  N-gram frequency analysis

8 Symmetric Encryption Block vs stream encryption  P = b0, b1,.. bn  E(P,k) = E(b0, k0) || E(b1, k1) ||....  If all ki's are equal and sizeof(bi) generally > 1, E(P,k) is a block cipher DES  Feistel network  Combination of p-boxes and s-boxes  56 bit key and 64 bit block

9 Symmetric Encryption AES  Iterative encryption  Multiple key sizes: 128, 192, 256  Block size: 128  1 S box and various permutations

10 Block Encryption Modes Described in text and section 7.2.2 of the Handbook of Applied Cryptography http://www.cacr.math.uwaterloo.ca/hac/about/ch ap7.pdf http://www.cacr.math.uwaterloo.ca/hac/about/ch ap7.pdf Electronic Codebook (ECB) Cipher Block Chaining (CBC) Output Feedback (OFB) Counter Cipher Feedback (CFB)

11 11 Mode ? EkEk EkEk P i-1 PiPi P i+1 C i-1 CiCi C i+1 R i-1

12 12 Mode ?  init. vector m1m1 DES c1c1  m2m2 c2c2 sent … … …

13 13 Mode ? k Ek(r)Ek(r) r … E …  mimi cici

14 14 Mode ? EkEk EkEk P i-1 PiPi P i+1 C i-1 CiCi C i+1 EkEk Ctr i-1 Ctr i Ctr i+1

15 15 Other key generation techniques Physical randomness Linear Feedback Shift Registers Nonlinear Feedback Shift Registers

16 Multiple Encryptions Double Encryption doesn't gain much  Meet-in-the-middle Both decrypt and encrypt with test key Save both and check against the other for middle values as you check new keys

17 Public/Asymmetric Encryption Two keys  One key public, eases some bootstrap issues Based on “hard problems”  RSA – factoring composites of large primes  Diffie Hellman – computing discrete logarithms Know equations for RSA and DH  What values are public and what are private

18 Cryptographic hashes Difference from regular checksums Keyed and keyless  When is each appropriate Brute force attack  Find another message with the same hash value Birthday attack Standard algorithms  SHA, MD5, block ciphers in CBC mode HMAC to make keyless hash keyed

19 Key Management Long lived vs session keys Randomness and pseudo random Basic key distribution  Trusted third party, public key  Kerberos slides in deck, but hidden Certificates  Hierarchical and web of trust Digital signatures  Several reasons why it is bad to encrypt first

20 Key management Key storage Key recovery Key escrow  Should be integrated in to the user's crypto system, authenticated to access escrow system, time bounded message access on unescrow  ESS/Clipper example

21 Authentication Establish ID  What you know  What you have  What you are  Where you are Spent a lot of time on passwords  On line vs off line attacks  Salt  Anderson's formula Challenge Response Biometrics

22 Good luck!

Download ppt "Exam 1 Review CS461/ECE422 Fall 2010. Exam guidelines A single page of supplementary notes is allowed  8.5x11. Both sides. Write as small as you like."

Similar presentations

Chapter 3 Public Key Cryptography and Message authentication.

Chapter 3 Public Key Cryptography and Message authentication.
“Advanced Encryption Standard” & “Modes of Operation”

“Advanced Encryption Standard” & “Modes of Operation”
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Digital Kommunikationselektroink TNE027 Lecture 6 (Cryptography) 1 Cryptography Algorithms Symmetric and Asymmetric Cryptography Algorithms Data Stream.

Digital Kommunikationselektroink TNE027 Lecture 6 (Cryptography) 1 Cryptography Algorithms Symmetric and Asymmetric Cryptography Algorithms Data Stream.
1 ITNS and CERIAS CISSP Luncheon Series: Cryptography Presented by Addam Schroll, CISSP.

1 ITNS and CERIAS CISSP Luncheon Series: Cryptography Presented by Addam Schroll, CISSP.
Symmetric Encryption Example: DES Weichao Wang. 2 Overview of the DES A block cipher: – encrypts blocks of 64 bits using a 64 bit key – outputs 64 bits.

Symmetric Encryption Example: DES Weichao Wang. 2 Overview of the DES A block cipher: – encrypts blocks of 64 bits using a 64 bit key – outputs 64 bits.
Brief Overview of Cryptography. 2 Outline  cryptographic primitives – symmetric key ciphers block ciphers stream ciphers – asymmetric key ciphers – cryptographic.

Brief Overview of Cryptography. 2 Outline  cryptographic primitives – symmetric key ciphers block ciphers stream ciphers – asymmetric key ciphers – cryptographic.
Network Security Chapter 8. Cryptography Introduction to Cryptography Substitution Ciphers Transposition Ciphers One-Time Pads Two Fundamental Cryptographic.

Network Security Chapter 8. Cryptography Introduction to Cryptography Substitution Ciphers Transposition Ciphers One-Time Pads Two Fundamental Cryptographic.
Web Security for Network and System Administrators1 Chapter 4 Encryption.

Web Security for Network and System Administrators1 Chapter 4 Encryption.
CMSC 456 Introduction to Cryptography

CMSC 456 Introduction to Cryptography
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
1 Overview of the DES A block cipher: –encrypts blocks of 64 bits using a 64 bit key –outputs 64 bits of ciphertext A product cipher –basic unit is the.

1 Overview of the DES A block cipher: –encrypts blocks of 64 bits using a 64 bit key –outputs 64 bits of ciphertext A product cipher –basic unit is the.
Cryptographic Technologies

Cryptographic Technologies
Modes of Operation CS 795. Electronic Code Book (ECB) Each block of the message is encrypted with the same secret key Problems: If two identical blocks.

Modes of Operation CS 795. Electronic Code Book (ECB) Each block of the message is encrypted with the same secret key Problems: If two identical blocks.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Security PART VII.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.

Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.
15-441 Computer Networking Lecture 21: Security and Cryptography Thanks to various folks from 15-441, semester’s past and others.

Computer Networking Lecture 21: Security and Cryptography Thanks to various folks from , semester’s past and others.

Similar presentations

Ads by Google