Chapter 20 Symmetric Encryption and Message Confidentiality.

Slides:



Advertisements
Similar presentations
DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.
Advertisements

“Advanced Encryption Standard” & “Modes of Operation”
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.
Cryptography and Network Security Chapter 3
Block Ciphers and the Data Encryption Standard
Cryptography and Network Security
Rachana Y. Patil 1 Data Encryption Standard (DES) (DES)
Web Security for Network and System Administrators1 Chapter 4 Encryption.
1 Pertemuan 06 Kriptografi tradisional Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
ICS 454: Principles of Cryptography
Cryptography and Network Security Chapter 5. Chapter 5 –Advanced Encryption Standard "It seems very simple." "It is very simple. But if you don't know.
Cryptography and Network Security Chapter 5 Fourth Edition by William Stallings.
Lecture 23 Symmetric Encryption
Dr. Lo’ai Tawalbeh 2007 Chapter 5: Advanced Encryption Standard (AES) Dr. Lo’ai Tawalbeh New York Institute of Technology (NYIT) Jordan’s Campus.
Chapter 13: Electronic Commerce and Information Security Invitation to Computer Science, C++ Version, Fourth Edition SP09: Contains security section (13.4)
Network Security Chapter
Encryption Schemes Second Pass Brice Toth 21 November 2001.
Symmetric Encryption and Message Confidentiality
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
Data Encryption Standard (DES). Symmetric Cryptography  C = E(P,K)  P = D(C,K)  Requirements  Given C, the only way to obtain P should be with  the.
IT 221: Classical and Modern Encryption Techniques Lecture 2: Classical and Modern Encryption Techniques For Educational Purposes Only Revised: September.
Lecture 3: Cryptographic Tools modified from slides of Lawrie Brown.
Chapter 12 Cryptography (slides edited by Erin Chambers)
Dr. Khalid A. Kaabneh Amman Arab University
Network Security Lecture 14 Presented by: Dr. Munam Ali Shah.
Chapter 20 Symmetric Encryption and Message Confidentiality.
TE/CS 536 Network Security Spring 2006 – Lectures 6&7 Secret Key Cryptography.
1 Chapter 2-1 Conventional Encryption Message Confidentiality.
Network Security Lecture 11 Presented by: Dr. Munam Ali Shah.
Cryptography and Network Security
30.1 Chapter 30 Cryptography Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
Lecture slides prepared for “Computer Security: Principles and Practice”, 3/e, by William Stallings and Lawrie Brown, Chapter 2 “Cryptographic Tools”.
Cryptography Chapter 7 Part 2 Pages 781 to 812. Symmetric Cryptography Secret Key Figure 7-10 on page 782 Key distribution problem – Secure courier Many.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 2 – Cryptographic.
Data Encryption Standard (DES) © 2000 Gregory Kesden.
Dr. Reuven Aviv, Nov 2008 Conventional Encryption 1 Conventional Encryption & Message Confidentiality Acknowledgements for slides Henric Johnson Blekinge.
Stream Ciphers and Block Ciphers A stream cipher is one that encrypts a digital data stream one bit or one byte at a time. Examples of classical stream.
1 University of Palestine Information Security Principles ITGD 2202 Ms. Eman Alajrami 2 nd Semester
Lecture 23 Symmetric Encryption
Fifth Edition by William Stallings
Symmetric Encryption Lesson Introduction ●Block cipher primitives ●DES ●AES ●Encrypting large message ●Message integrity.
Chapter 2 Symmetric Encryption.
DATA & COMPUTER SECURITY (CSNB414) MODULE 3 MODERN SYMMETRIC ENCRYPTION.
Module :MA3036NI Symmetric Encryption -3 Lecture Week 4.
Block Ciphers and the Data Encryption Standard. Modern Block Ciphers  One of the most widely used types of cryptographic algorithms  Used in symmetric.
CST 312 Pablo Breuer. A block of plaintext is treated as a whole and used to produce a ciphertext block of equal length Typically a block size of 64 or.
@Yuan Xue CS 285 Network Security Block Cipher Principle Fall 2012 Yuan Xue.
1 CPCS425: Information Security (Topic 5) Topic 5  Symmetrical Cryptography  Understand the principles of modern symmetric (conventional) cryptography.
Lecture 4 Data Encryption Standard (DES) Dr. Nermin Hamza
Unit -1.
Block Ciphers and the Data Encryption Standard (DES)
ADVANCED ENCRYPTION STANDARDADVANCED ENCRYPTION STANDARD
Chapter -2 Block Ciphers and the Data Encryption Standard
Chapter -3 ADVANCED ENCRYPTION STANDARD & BLOCK CIPHER OPERATION
SYMMETRIC ENCRYPTION.
Advanced Encryption Standard
Elect. Codebook, Cipher Block Chaining
Presentation transcript:

Chapter 20 Symmetric Encryption and Message Confidentiality

Symmetric Encryption Also referred to as: o Conventional encryption o Secret-key or single-key encryption Only alternative before public-key encryption in 1970’s o Still most widely used alternative Has five ingredients: o Plaintext o Encryption algorithm o Secret key o Ciphertext o Decryption algorithm

Cryptography Classified along three independent dimensions: The type of operations used for transforming plaintext to ciphertext Substitution – each element in the plaintext is mapped into another element Transposition – elements in plaintext are rearranged The number of keys used Sender and receiver use same key – symmetric Sender and receiver each use a different key - asymmetric The way in which the plaintext is processed Block cipher – processes input one block of elements at a time Stream cipher – processes the input elements continuously

Computationally Secure Encryption Schemes Encryption is computationally secure if: o Cost of breaking cipher exceeds value of information o Time required to break cipher exceeds the useful lifetime of the information Usually very difficult to estimate the amount of effort required to break Can estimate time/cost of a brute-force attack

Block Cipher Structure Symmetric block cipher consists of: o A sequence of rounds o With substitutions and permutations controlled by key Parameters and design features: Block size Key size Number of rounds Subkey generation algorithm Round function Fast software encryption/ decryption Ease of analysis

Most widely used encryption scheme Adopted in 1977 by National Bureau of Standards (Now NIST) FIPS PUB 46 Algorithm is referred to as the Data Encryption Algorithm (DEA) Minor variation of the Feistel network

Table 20.2 AES S-Boxes

On encryption left rotate each row of State by 0,1,2,3 bytes respectively Decryption does reverse To move individual bytes from one column to another and spread bytes over columns

Mix Columns and Add Key Mix columns o Operates on each column individually o Mapping each byte to a new value that is a function of all four bytes in the column o Use of equations over finite fields o To provide good mixing of bytes in column Add round key o Simply XOR State with bits of expanded key o Security from complexity of round key expansion and other stages of AES

Stream Ciphers Processes input elements continuously Key input to a pseudorandom bit generator Produces stream of random like numbers Unpredictable without knowing input key XOR keystream output with plaintext bytes

Table 20.4 Block Cipher Modes of Operation

Electronic Codebook (ECB) Simplest mode Plaintext is handled b bits at a time and each block is encrypted using the same key “Codebook” because have unique ciphertext value for each plaintext block o Not secure for long messages since repeated plaintext is seen in repeated ciphertext To overcome security deficiencies you need a technique where the same plaintext block, if repeated, produces different ciphertext blocks

Key Distribution The means of delivering a key to two parties that wish to exchange data without allowing others to see the key Two parties (A and B) can achieve this by: 1 A key could be selected by A and physically delivered to B 2 A third party could select the key and physically deliver it to A and B 3 If A and B have previously and recently used a key, one party could transmit the new key to the other, encrypted using the old key 4 If A and B each have an encrypted connection to a third party C, C could deliver a key on the encrypted links to A and B

Summary Stream ciphers and RC4 o Stream cipher structure o The RC4 algorithm Cipher block modes of operation o Electronic codebook mode o Cipher block chaining mode o Cipher feedback mode o Counter mode Location of symmetric encryption devices Key distribution Symmetric encryption principles o Cryptography o Cryptanalysis o Feistel cipher structure Data encryption standard o Data encryption standard o Triple DES Advanced encryption standard o Overview of the algorithm o Algorithm details