Presentation is loading. Please wait.

Presentation is loading. Please wait.

Outline Desirable characteristics of ciphers Stream and block ciphers

Published byKristian Rodgers Modified over 6 years ago

Similar presentations

Presentation on theme: "Outline Desirable characteristics of ciphers Stream and block ciphers"— Presentation transcript:

1 More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

2 Outline Desirable characteristics of ciphers Stream and block ciphers
Cryptographic modes Uses of cryptography Symmetric and asymmetric cryptography Digital signatures

3 Desirable Characteristics of Ciphers
Well matched to requirements of application Amount of secrecy required should match labor to achieve it Freedom from complexity The more complex algorithms or key choices are, the worse

4 More Characteristics Simplicity of implementation
Seemingly more important for hand ciphering But relates to probability of errors in computer implementations Errors should not propagate

5 Yet More Characteristics
Ciphertext size should be same as plaintext size Encryption should maximize confusion Relation between plaintext and ciphertext should be complex Encryption should maximize diffusion Plaintext information should be distributed throughout ciphertext

6 Stream and Block Ciphers
Stream ciphers convert one symbol of plaintext immediately into one symbol of ciphertext Block ciphers work on a given sized chunk of data at a time

7 Stream Ciphers Key fsnarT f fs n f s fsna r fsn a fsnar T z S r q m e
Of course, actual cipher used could be arbitrarily complex fsnarT f fs n f s fsna r fsn a fsnar T z S r q m e S qS ermzqS rmzqS zqS mzqS Plaintext Ciphertext Encryption

8 Advantages of Stream Ciphers
Speed of encryption and decryption Each symbol encrypted as soon as it’s available Low error propagation Errors affect only the symbol where the error occurred Depending on cryptographic mode

9 Disadvantages of Stream Ciphers
Low diffusion Each symbol separately encrypted Each ciphertext symbol only contains information about one plaintext symbol Susceptible to insertions and modifications Not good match for many common uses of cryptography Some disadvantages can be mitigated by use of proper cryptographic mode

10 Sample Stream Cipher: RC4
Creates a changing key stream Supposedly unpredictable XOR the next byte of the key stream with the next byte of text to encrypt XOR ciphertext byte with same key stream byte to decrypt Alter your key stream as you go along

11 Creating an RC4 Key Fill an 256 byte array with 0-255
Choose a key of bytes Fill a second array with the key Size of array depends on the key Use a simple operation based on the key to swap around bytes in the first array That produces the key stream you’ll use Swap two array bytes each time you encrypt

12 Characteristics of RC4 Around 10x faster than DES
Significant cryptographic weakness in its initial key stream Fixable by dropping the first few hundred of the keys Easy to use it wrong Key reuse is a serious problem

13 Block Ciphers Key T r a n s f e r $ 1 0 T s r f $ a e 1 n r 0 T s r
Plaintext Ciphertext Encryption

14 Advantages of Block Ciphers
Good diffusion Easier to make a set of encrypted characters depend on each other Immunity to insertions Encrypted text arrives in known lengths Most common Internet crypto done with block ciphers

15 Disadvantages of Block Ciphers
Slower Need to wait for block of data before encryption/decryption starts Worse error propagation Errors affect entire blocks

16 Cryptographic Modes Let’s say you have a bunch of data to encrypt
Using the same cipher and key How do you encrypt the entire set of data? Given block ciphers have limited block size And stream ciphers just keep going

17 The Basic Situation Dor72m/ Sv&`>oo Xl3lu*m $100.00 sS^0’sq sS^0’sq $550.00 2ci;aE9 sS^0’sq sS^0’sq $100.00 #rdL04, $225.00 Let’s say our block cipher has a block size of 7 characters and we use the same key for all Now let’s encrypt There’s something odd here . . . Is this good? Why did it happen?

18 Another Problem With This Approach
What if these are transmissions representing deposits into bank accounts? Insertion Attack! Xl3lu*m #rdL04, Sv&`>oo sS^0’sq Dor72m/ 2ci;aE9 sS^0’sq Dor72m/ 2ci;aE9 $550.00 350 450 5000 8900 8800 1579 1029 479 2725 2500 10 What if account belongs to him? So far, so good . . .

19 What Caused the Problems?
Each block of data was independently encrypted With the same key So two blocks with identical plaintext encrypt to the same ciphertext Not usually a good thing We used the wrong cryptographic mode Electronic Codebook (ECB) Mode

20 Cryptographic Modes A cryptographic mode is a way of applying a particular cipher Block or stream The same cipher can be used in different modes But other things are altered a bit A cryptographic mode is a combination of cipher, key, and feedback Plus some simple operations

21 So What Mode Should We Have Used?
Cipher Block Chaining (CBC) mode might be better Ties together a group of related encrypted blocks Hides that two blocks are identical Foils insertion attacks

22 Cipher Block Chaining Mode
Adds feedback into encryption process The encrypted version of the previous block is used to encrypt this block For block X+1, XOR the plaintext with the ciphertext of block X Then encrypt the result Each block’s encryption depends on all previous blocks’ contents Decryption is similar

23 What About the First Block?
If we send the same first block in two messages with the same key, Won’t it be encrypted the same way? Might easily happen with message headers or standardized file formats CBC as described would encrypt the first block of the same message sent twice the same way both times

24 Initialization Vectors
A technique used with CBC And other crypto modes Abbreviated IV Ensures that encryption results are always unique Even for duplicate message using the same key XOR a random string with the first block plaintext  IV Then do CBC for subsequent blocks

25 Encrypting With An IV First block of message Second block of message 1
1 Initialization vector Use previous msg for CBC 1 XOR IV and message Apply CBC 1 1 1 1 Encrypt msg and send IV plus message Encrypt and send second block of msg No need to also send 1st block again

26 How To Decrypt With Initialization Vectors?
First block received decrypts to P = plaintext  IV plaintext = P  IV No problem if receiver knows IV Typically, IV is sent in the message Subsequent blocks use standard CBC So can be decrypted that way

27 An Example of IV Decryption
Encrypted data And XOR with the plaintext IV Initialization vector IP header The message probably contains multiple encrypted blocks 1 1 1 1 1 1 Now decrypt the message

28 For Subsequent Blocks Use previous ciphertext block instead of IV
And XOR with the previous ciphertext block 1 1 1 1 1 Now decrypt the message

29 Some Important Crypto Modes
Electronic codebook mode (ECB) Cipher block chaining mode (CBC) Cipher-feedback mode (CFB) and Output-feedback mode (OFB) Both convert block to stream cipher

Download ppt "Outline Desirable characteristics of ciphers Stream and block ciphers"

Similar presentations

ECE454/CS594 Computer and Network Security

ECE454/CS594 Computer and Network Security
“Advanced Encryption Standard” & “Modes of Operation”

“Advanced Encryption Standard” & “Modes of Operation”
Encipherment Using Modern Symmetric-Key Ciphers. 8.2 Objectives ❏ To show how modern standard ciphers, such as DES or AES, can be used to encipher long.

Encipherment Using Modern Symmetric-Key Ciphers. 8.2 Objectives ❏ To show how modern standard ciphers, such as DES or AES, can be used to encipher long.
Modern Symmetric-Key Ciphers

Modern Symmetric-Key Ciphers
Modern Symmetric-Key Ciphers

Modern Symmetric-Key Ciphers
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
Making “Good” Encryption Algorithms

Making “Good” Encryption Algorithms
Cryptography and Network Security Chapter 6. Chapter 6 – Block Cipher Operation Many savages at the present day regard their names as vital parts of themselves,

Cryptography and Network Security Chapter 6. Chapter 6 – Block Cipher Operation Many savages at the present day regard their names as vital parts of themselves,
Cryptography1 CPSC 3730 Cryptography Chapter 6 Triple DES, Block Cipher Modes of Operation.

Cryptography1 CPSC 3730 Cryptography Chapter 6 Triple DES, Block Cipher Modes of Operation.
Modes of Operation CS 795. Electronic Code Book (ECB) Each block of the message is encrypted with the same secret key Problems: If two identical blocks.

Modes of Operation CS 795. Electronic Code Book (ECB) Each block of the message is encrypted with the same secret key Problems: If two identical blocks.
McGraw-Hill©The McGraw-Hill Companies, Inc., 2004 1 Security PART VII.

McGraw-Hill©The McGraw-Hill Companies, Inc., Security PART VII.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 5 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 5 Wenbing Zhao Department of Electrical and Computer Engineering.
Lecture 23 Symmetric Encryption

Lecture 23 Symmetric Encryption
CS470, A.SelcukModes of Operation1 Encrypting with Block Ciphers CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukModes of Operation1 Encrypting with Block Ciphers CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Block Cipher Transmission Modes CSCI 5857: Encoding and Encryption.

Block Cipher Transmission Modes CSCI 5857: Encoding and Encryption.
Modes of Operation. Topics  Overview of Modes of Operation  EBC, CBC, CFB, OFB, CTR  Notes and Remarks on each modes.

Modes of Operation. Topics  Overview of Modes of Operation  EBC, CBC, CFB, OFB, CTR  Notes and Remarks on each modes.
Cryptography and Network Security Chapter 6. Multiple Encryption & DES  clear a replacement for DES was needed theoretical attacks that can break it.

Cryptography and Network Security Chapter 6. Multiple Encryption & DES  clear a replacement for DES was needed theoretical attacks that can break it.
Lecture 4: Using Block Ciphers

Lecture 4: Using Block Ciphers
Lecture 4 Page 1 CS 136, Fall 2014 More on Cryptography CS 136 Computer Security Peter Reiher October 14, 2014.

Lecture 4 Page 1 CS 136, Fall 2014 More on Cryptography CS 136 Computer Security Peter Reiher October 14, 2014.
Lecture 4 Page 1 CS 136, Fall 2012 More on Cryptography CS 136 Computer Security Peter Reiher October 9, 2012.

Lecture 4 Page 1 CS 136, Fall 2012 More on Cryptography CS 136 Computer Security Peter Reiher October 9, 2012.

Similar presentations

Ads by Google