Presentation is loading. Please wait.

Presentation is loading. Please wait.

@Yuan Xue CS 285 Network Security Key Distribution and Management Yuan Xue Fall 2012.

Published byErnest Tate Modified over 8 years ago

Similar presentations

Presentation on theme: "@Yuan Xue CS 285 Network Security Key Distribution and Management Yuan Xue Fall 2012."— Presentation transcript:

1 @Yuan Xue (yuan.xue@vanderbilt.edu) CS 285 Network Security Key Distribution and Management Yuan Xue Fall 2012

2 @Yuan Xue (yuan.xue@vanderbilt.edu) Overview Secret Key Distribution Introduction Using key distribution center (KDC) Decentralized Using public-key Public Key Management Public-key Announcement Publicly Available Directory Public-key Certificate Web of Trust (GnuPG)

3 @Yuan Xue (yuan.xue@vanderbilt.edu) Secret Key Distribution Message Encryption Secret key encryption vs. public key encryption  Both encryption algorithms can provide confidentiality  Secret Key Encryption is more efficient and faster To use secret key encryption  Communicating peers must share the same key  The key must be protected from access by others Key Distribution

4 @Yuan Xue (yuan.xue@vanderbilt.edu) Key Hierarchy A secret key becomes insecure when used for a long time, since more ciphertext encrypted using this key is available to the attacker, making it easies to derive the key. Keys that are used to encrypt the data need to be renewed frequently Solution – Key Hierarchy Session key – encrypt data, renewed each session Master key – distribute session keys, renewed infrequently using non- cryptographic approach

5 @Yuan Xue (yuan.xue@vanderbilt.edu) Secret Key Distribution Now the questions are What are master keys?  secret key or public key? Who should share master keys?  who needs to be trusted a priori? How to get session keys from master keys?  key distribution protocol

6 @Yuan Xue (yuan.xue@vanderbilt.edu) Secret Key Distribution Approaches Three approaches Via key distribution center (KDC)  KDC needs to share a secret key with each of the communication parties Decentralized  The communication parties need to share a master key Via public key  The communication parties need to have the public keys of each other Using public key encryption Using Diffie-Hellman key exchange

7 @Yuan Xue (yuan.xue@vanderbilt.edu) Key Distribution based on KDC Initially A and B both trust KDC KU A -- shared secret key between A and KDC KU B -- shared secret key between B and KDC Goal A and B trust each other A and B share a secret key K S KDC AB KU A, KU B KU A KU B KDC AB KU A, KU B K S, KU A K S, KU B

8 @Yuan Xue (yuan.xue@vanderbilt.edu) Overview Secret Key Distribution Introduction Using key distribution center (KDC) Decentralized Using public-key Public Key Management Public-key Announcement Publicly Available Directory Public-key Certificate Web of Trust (GnuPG)

9 @Yuan Xue (yuan.xue@vanderbilt.edu) KDC-based Key Distribution Protocol Ticket to B Nonce  guarantee the reply (the secret key) from KDC is fresh Match the KDC reply with the request, in case A issued multiple requests to KDC The Needham–Schroeder Symmetric Key Protocol Any math func, e.g., N+1 Vulnerable to Replay attack

10 @Yuan Xue (yuan.xue@vanderbilt.edu) Decentralized Key Distribution Initially A and B trust each other A and B share a master secret key K m Goal A and B share a session secret key K S AB KmKm KmKm AB K S, K m

11 @Yuan Xue (yuan.xue@vanderbilt.edu) Decentralized Key Distribution

12 @Yuan Xue (yuan.xue@vanderbilt.edu) Secret Key Distribution Approaches Three approaches Via key distribution center (KDC)  KDC needs to share a secret key with each of the communication parties Decentralized  The communication parties need to share a master key Via public key  The communication parties need to have the public keys of each other Using public key encryption Using Diffie-Hellman key exchange

13 @Yuan Xue (yuan.xue@vanderbilt.edu) Secret Key Distribution Via Public Key Using public key encryption RSA Algorithm Using Diffie-Hellman key exchange

14 @Yuan Xue (yuan.xue@vanderbilt.edu) Simple Secret Key Distribution Problem: Man-in-the-middle-attack

15 @Yuan Xue (yuan.xue@vanderbilt.edu) Man-in-the-middle Attack A D B KU A ||ID A KU D ||ID A E[KU D, K s ] E[KU A, K s ] Key Issue: Binding between public key and the ID. Solution: public key management Provides authenticated association between the public key and the ID

16 @Yuan Xue (yuan.xue@vanderbilt.edu) Public Key Management Distribution of Public Key Public-key Announcement Publicly Available Directory Public-key Certificate (focus) Others  Fingerprint (GnuPG)  Web of Trust (covered in HW2 and the class on GnuPG)

17 @Yuan Xue (yuan.xue@vanderbilt.edu) Public Announcement No Authentication Key Issue: Binding ID Public key

18 @Yuan Xue (yuan.xue@vanderbilt.edu) Publicly Available Directory Directory [ID, public key] A securely registers its public key In person Secure communication The entire directory is published periodically B can access the directory via secure authenticated communication

19 @Yuan Xue (yuan.xue@vanderbilt.edu) Public-Key Certificate Certificate C A = E[KR auth, T||ID A ||KU A ]

20 @Yuan Xue (yuan.xue@vanderbilt.edu) Put into practice Let’s take a look at a real certificate How to generate OpenSSL http://www.madboa.com/ge ek/openssl/

21 @Yuan Xue (yuan.xue@vanderbilt.edu) AB I want to talk to you Certificate E(KU bob,S) Now – Use Public key to distribute secret key No assurance that the key is fresh

22 @Yuan Xue (yuan.xue@vanderbilt.edu) K = Hash (S, R Alice, R Bob ) Nonce Pre-master Secret K = Hash (S, R Alice, R Bob ) Secret Key AB I want to talk to you, R Alice Certificate, R Bob E(KU bob,S) Solution from SSL Nonce

23 @Yuan Xue (yuan.xue@vanderbilt.edu) a is a primitive root of prime number p then a mod p, a 2 mod p, …, a p-1 mod p are distinct and consist of the integers from 1 through p-1 For any b and a primitive root a of p, unique exponent I can be found such that b = a i mod p (0<=i <= p-1) Diffie-Hellman Key Exchange

24 @Yuan Xue (yuan.xue@vanderbilt.edu) More on D-H Key Exchange Basic Version -- Anonymous Diffie-Hellman: no authentication, vulnerable to man-in-the- middle attacks Fixed Diffie-Hellman: based on public parameter in server’s CA; fixed secret key Ephemeral Diffie-Hellman: one time secret key; most secure D-H options

25 @Yuan Xue (yuan.xue@vanderbilt.edu) In A Nutshell KDC-based Decentralized Secret Key Distribution Message Encryption Message Authentication Public-key-based RSA, Diffie-Hellman Public-key-based RSA, Diffie-Hellman Announcement Directory Certificate Public-key management Session Keys Public Keys Decentralized (Web of Trust) Decentralized (Web of Trust)

Download ppt "@Yuan Xue CS 285 Network Security Key Distribution and Management Yuan Xue Fall 2012."

Similar presentations

Chapter 10 Real world security protocols

Chapter 10 Real world security protocols
CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.

CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.
AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)

AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)
Authentication & Kerberos

Authentication & Kerberos
1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.

1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.
1 Chapter 13 – Digital Signatures & Authentication Protocols Fourth Edition by William Stallings Lecture slides by Lawrie Brown (modified by Prof. M. Singhal,

1 Chapter 13 – Digital Signatures & Authentication Protocols Fourth Edition by William Stallings Lecture slides by Lawrie Brown (modified by Prof. M. Singhal,
 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.
CS555Spring 2012/Topic 161 Cryptography CS 555 Topic 16: Key Management and The Need for Public Key Cryptography.

CS555Spring 2012/Topic 161 Cryptography CS 555 Topic 16: Key Management and The Need for Public Key Cryptography.
Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.
1 Key Establishment Symmetric key problem: How do two entities establish shared secret key in the first place? Solutions: Deffie-Hellman trusted key distribution.

1 Key Establishment Symmetric key problem: How do two entities establish shared secret key in the first place? Solutions: Deffie-Hellman trusted key distribution.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 30 Message Security, User Authentication, and Key Management.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 Chapter 30 Message Security, User Authentication, and Key Management.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.

Kemal AkkayaWireless & Network Security 1 Department of Computer Science Southern Illinois University Carbondale CS 591 – Wireless & Network Security Lecture.
EEC 688/788 Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
CMSC 414 Computer and Network Security Lecture 18 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 18 Jonathan Katz.
1 Key Establishment Symmetric key problem: How do two entities establish shared secret key over network? Solution: trusted key distribution center (KDC)

1 Key Establishment Symmetric key problem: How do two entities establish shared secret key over network? Solution: trusted key distribution center (KDC)
Slide 1 Vitaly Shmatikov CS 378 Key Establishment Pitfalls.

Slide 1 Vitaly Shmatikov CS 378 Key Establishment Pitfalls.
CMSC 414 Computer and Network Security Lecture 23 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 23 Jonathan Katz.

Similar presentations

Ads by Google