Presentation is loading. Please wait.

Presentation is loading. Please wait.

ENGR 101 Compression and Encryption. Todays Lecture  Encryption  Symmetric Ciphers  Public Key Cryptography  Hashing.

Published byMarshall Marshall Modified over 8 years ago

Similar presentations

Presentation on theme: "ENGR 101 Compression and Encryption. Todays Lecture  Encryption  Symmetric Ciphers  Public Key Cryptography  Hashing."— Presentation transcript:

1 ENGR 101 Compression and Encryption

2 Todays Lecture  Encryption  Symmetric Ciphers  Public Key Cryptography  Hashing

3 2 Motivating stories  http://thehill.com/policy/cybersecurity/275291-panama- papers-a-win-for-encryption-backers http://thehill.com/policy/cybersecurity/275291-panama- papers-a-win-for-encryption-backers  http://www.engadget.com/2016/03/23/fbi-asks-cellebrite-to- help-crack-iphone/ http://www.engadget.com/2016/03/23/fbi-asks-cellebrite-to- help-crack-iphone/

4 Encryption  We start with plain text. Something you can read.  We apply a mathematical algorithm to the plain text.  The algorithm is the cipher.  The plain text is turned in to cipher text.  Almost all ciphers were kept secret until recently.  Creating a secure cipher is HARD.

5 Symmetric Cipher  Same key is used to both encrypt and decrypt

6 Keys  To create cipher text and turn it back to plain text we apply a key to the cipher.  The security of the cipher text rests with the key.  This is a critical point. If someone gets your key, your data is compromised.  This type of key is called a shared key.  This type of cipher system is efficient for large amounts of data.  This is asymmetric cipher.

7 Examples of Symmetric Ciphers  DES- 56 bit key length, designed by IBM and the NSA  3DES- effective key length 112 bits  AES(Advanced Encryption Standard) - 128to 256bit key length  Blowfish- 128 bits, optimized for fast operatio non 32-bit microprocessors  IDEA- 128 bits, patented (requires a license for commercial use)

8 Features of Symmetric Ciphers  Fast to encrypt and decrypt, suitable for large volumes of data  A well-designed cipher is only subject to brute-force attack; the strength is therefore directly related to the key length.  Current recommendation is a key length of around 128bits, for data protection around20-30years.  See http://www.keylength.com/ for a good and fun discussion.  Problem - how do you distribute the keys?

9 Public Key Cryptography  We generate a cipher key pair. One key is the private key, the other is the public key.  The private key remains secret and should be protected.  The public key is freely distributable. It is related mathematically to the private key, but you cannot (easily) reverse engineer the private key from the public key.  Use the public keyt o encrypt data.  Only someone with the private key can decrypt.

10 Public Key Cryptography  One key is used to encrypt the document, a different key is used to decrypt it.

11 Public Key Features  Symmetric ciphers (one private key) are much more efficient.  Public Key Cryptography requires larger keys (3248 bits for data protection around 20-30 years)  Public Key Infrastructure (PKI) and Certification Authorities (CAs) used to distribute public keys  Used in many security protocols: SSL, TLS, SSH,etc  Examples include: RSA,ElGamal, Pallier, …

12 Hybrid Systems  Symmetric Ciphers are faster and the keys can be shorter so, we do this:  Generate a one-time shared key.  Encrypt the key using a public key.  Send it to the other side, decrypt the one- time key.  Start transmitting data using the symmetric cipher.

13 Hybrid Systems  Use a symmetric cipher with a random key (the "session key"). Use a public key cipher to encrypt the session key and send it along with the encrypted document.

14 One Way Hashing Functions  A mathematical function that generates a fixed length result regardless of the amount of datayou pass through it. Generally very fast.  You cannot generate the original data from the fixed- length result.  Hopefully you cannot find two sets of data that produce the same fixed-length result. If you do this is called a collision.

15 Hashing  Hashing the document gives a short fixed length message digest(checksum). Not possible to go back from the digest to the original document.

16 Hashing Function Examples  Unix crypt() function, based on DES, 56 bits (not secure)  MD5(Message Digest 5) - 128 bit hash (deprecated)  SHA1(Secure Hash Algorithm) - 160bits  SHA-256 SHA-512– both part of SHA2 family  SHA3– currently under development

17 What Use is This  You can run many megabytes of data through a hashing function, but only have to check 160* bits of information. A compact and unique document signature.  You can generate a password hash for your password.  Then when someone logs on, hash the password they give you and compare it to your list of hashed passwords.  If someone gets your password hash, they still must know your password to logon as you.  Used in digital signatures

18 Summary Encryption  Symmetric Ciphers  Public Key Cryptography  Hashing

Download ppt "ENGR 101 Compression and Encryption. Todays Lecture  Encryption  Symmetric Ciphers  Public Key Cryptography  Hashing."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Network Security: Lab#2 J. H. Wang Apr. 28, 2011.

Network Security: Lab#2 J. H. Wang Apr. 28, 2011.
DNSSEC Cryptography Review DNSSEC Tutorial February 21, 2011 Hong Kong Will.i.am Hervey Allen.

DNSSEC Cryptography Review DNSSEC Tutorial February 21, 2011 Hong Kong Will.i.am Hervey Allen.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.

CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication.

NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication.
Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.

Grid Security Infrastructure Tutorial Von Welch Distributed Systems Laboratory U. Of Chicago and Argonne National Laboratory.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Services and Security through Cryptography ccTLD Workshop November 27, 2007 Amman, Jordan Hervey Allen.

Services and Security through Cryptography ccTLD Workshop November 27, 2007 Amman, Jordan Hervey Allen.
Security through Cryptography PacNOG 6 Hervey Allen.

Security through Cryptography PacNOG 6 Hervey Allen.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas

Lesson Title: Introduction to Cryptography Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas
Cryptography Basic (cont)

Cryptography Basic (cont)
Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.

Secure Hashing and DSS Sultan Almuhammadi ICS 454 Principles of Cryptography.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Similar presentations

Ads by Google