Presentation is loading. Please wait.

Presentation is loading. Please wait.

CAS CS 538 Cryptography.

Published byBenedict Carr Modified over 5 years ago

Similar presentations

Presentation on theme: "CAS CS 538 Cryptography."— Presentation transcript:

1 CAS CS 538 Cryptography

2 Administrativia

3 General info Instructor: Course page:
Gene Itkis Course page: Also found from the CS dept. courses page 11/22/2018 Gene Itkis, CS538 Crypto

4 General Info Prerequisite: CS 332 or consent of instructor
Relation to CS458 Overlap exists, but approach is different Here (cs538) much more formal & rigorous Homeworks pen & paper ~weekly 11/22/2018 Gene Itkis, CS538 Crypto

5 WEB page Info sources Office hours: M 12-1pm, W 2:30-4:30pm
Office hours: M 12-1pm, W 2:30-4:30pm – mailing list: csmail –a cs538 For personal mail remember: there are many of you, 1 of me. So please do not take it personally in case of delays. Do not hesitate to call or stop by, esp. in case of delays! 11/22/2018 Gene Itkis, CS538 Crypto

6 Collaboration NO!!! Discussing concepts and ideas, as well as system features is OK (encouraged!!!) Always give credit when using someone else’s work See web page for more details 11/22/2018 Gene Itkis, CS538 Crypto

7 Grading Approximately: 70% - homeworks 30% - final No midterm!
11/22/2018 Gene Itkis, CS538 Crypto

8 End of Administrativia
Questions? End of Administrativia

9 Topics Perfect security: Shannon's lower bound & the Vernam cipher (one-time pad) Pseudorandom generators (a.k.a. stream ciphers): definition, discrete log problem, and Blum-Micali construction Indistinguishability-based definition and composability theorem for pseudorandom generators Integer factorization, Chinese remainder theorem, and Blum-Blum-Shub pseudorandom generator Intuition and first examples of public-key encryption: RSA, Rabin. Definition of security. Encrypting long messages with RSA, Blum-Goldwasser and PKCS #1 Brief history. Diffie-Hellman key agreement, decisional Diffie-Hellman assumption, and ElGamal encryption Introduction to one-way and trapdoor functions, hardcore bits, Goldreich-Levin construction. Definition of digital signatures. Signature schemes and hash functions. Merkle trees. Random oracle model. Full-domain hash RSA and Rabin Symmetric ciphers and message authentication codes Zero-Knowledge proofs Secret sharing Multiparty computation 11/22/2018 Gene Itkis, CS538 Crypto

10 Topics (coarse grain) Perfect Info-Theoretic Security
Pseudo-Randomness (definitions and constructions) Generators & Functions Computational Security – definitions & constructions Encryption, Signatures One-Way & Trap-Door functions (integrated above) Hashing: collision-resistance, random oracle Extra: ZKP, multi-party computation 11/22/2018 Gene Itkis, CS538 Crypto

11 How (and why) Rigorous: formal definitions and proofs
Often the defined goals will look impossible to achieve, but we’ll prove that our constructions satisfy such strong definitions (under some reasonable assumptions) Explicit: precise formal assumptions Unified: theoretical and applied together Though focus is more on theory, this theory is directly relevant to applications Background reviewed in the book’s Appendices Big-O, number-theoretic algorithms, reductions, complexity 11/22/2018 Gene Itkis, CS538 Crypto

12 “Generic Template” Functional definition Security definition
“modules” and “interfaces” Security definition Possibly many for the functional definition Construction Typically many Security proof For a <construction – security definition> pair 11/22/2018 Gene Itkis, CS538 Crypto

13 Information-Theoretic Security: Perfect secrecy & One-Time Pad
Let’s dive in! 11/22/2018 Gene Itkis, CS538 Crypto

Download ppt "CAS CS 538 Cryptography."

Similar presentations

PUBLIC KEY CRYPTOSYSTEMS Symmetric Cryptosystems 6/05/2014 | pag. 2.

PUBLIC KEY CRYPTOSYSTEMS Symmetric Cryptosystems 6/05/2014 | pag. 2.
Course summary COS 433: Crptography -Spring 2010 Boaz Barak.

Course summary COS 433: Crptography -Spring 2010 Boaz Barak.
Intro 1 Introduction Intro 2 Good Guys and Bad Guys  Alice and Bob are the good guys  Trudy is the bad guy  Trudy is our generic “intruder”

Intro 1 Introduction Intro 2 Good Guys and Bad Guys  Alice and Bob are the good guys  Trudy is the bad guy  Trudy is our generic “intruder”
Mid-term Review Network Security. Gene Itkis: CS558 Network Security2 Secure channel SSL SSL (and many others: incl. IPSEC) Shared key establishing Trusted.

Mid-term Review Network Security. Gene Itkis: CS558 Network Security2 Secure channel SSL SSL (and many others: incl. IPSEC) Shared key establishing Trusted.
CAS CS 591 i1 (CS 458-658) Network Security Administrativia.

CAS CS 591 i1 (CS ) Network Security Administrativia.
CMSC 456 Introduction to Cryptography

CMSC 456 Introduction to Cryptography
CAS CS 558 Network Security. Administrativia 6/14/2015Gene Itkis, CS558: Computer Network Security3 General info Instructor: Gene Itkis itkis+cs558 cs.bu.eduitkis+cs558.

CAS CS 558 Network Security. Administrativia 6/14/2015Gene Itkis, CS558: Computer Network Security3 General info Instructor: Gene Itkis itkis+cs558 cs.bu.eduitkis+cs558.
Network Security Review. Secure channel Communication security Confidentiality Message Traffic Authentication Integrity How to achieve? Establish shared.

Network Security Review. Secure channel Communication security Confidentiality Message Traffic Authentication Integrity How to achieve? Establish shared.
CAS CS 330 Algorithms Administrativia 6/15/2015Gene Itkis, CS330 Algorithms3 General info Instructor: Gene Itkis

CAS CS 330 Algorithms Administrativia 6/15/2015Gene Itkis, CS330 Algorithms3 General info Instructor: Gene Itkis
CAS CS 235 Algebraic Algorithms Administrativia.

CAS CS 235 Algebraic Algorithms Administrativia.
Introduction to Modern Cryptography Instructor: Amos Fiat Strongly based on presentation and class by Benny Chor School of Computer Science Tel- Aviv Univ.

Introduction to Modern Cryptography Instructor: Amos Fiat Strongly based on presentation and class by Benny Chor School of Computer Science Tel- Aviv Univ.
CAS CS113 Intro to CS II w/Intensive C++ Data Structures in C++

CAS CS113 Intro to CS II w/Intensive C++ Data Structures in C++
Introduction to Modern Cryptography Lecture 7 1.RSA Public Key CryptoSystem 2.One way Trapdoor Functions.

Introduction to Modern Cryptography Lecture 7 1.RSA Public Key CryptoSystem 2.One way Trapdoor Functions.
Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.
CS555Spring 2012/Topic 41 Cryptography CS 555 Topic 4: Computational Approach to Cryptography.

CS555Spring 2012/Topic 41 Cryptography CS 555 Topic 4: Computational Approach to Cryptography.
Computer Security CS 426 Lecture 3

Computer Security CS 426 Lecture 3
1 CSE 5351: Introduction to Cryptography Ten H. Lai Spring 2015 MW 3:55-5:15 PM, CL133.

1 CSE 5351: Introduction to Cryptography Ten H. Lai Spring 2015 MW 3:55-5:15 PM, CL133.
XMSS - A Practical Forward Secure Signature Scheme based on Minimal Security Assumptions J. Buchmann, E. Dahmen, A. Hülsing 02.12.2011 | TU Darmstadt |

XMSS - A Practical Forward Secure Signature Scheme based on Minimal Security Assumptions J. Buchmann, E. Dahmen, A. Hülsing | TU Darmstadt |
Dan Boneh Stream ciphers The One Time Pad Online Cryptography Course Dan Boneh.

Dan Boneh Stream ciphers The One Time Pad Online Cryptography Course Dan Boneh.
Lecture 1: Introduction CS 6903: Modern Cryptography Spring 2009 Nitesh Saxena Polytechnic Institute of NYU.

Lecture 1: Introduction CS 6903: Modern Cryptography Spring 2009 Nitesh Saxena Polytechnic Institute of NYU.

Similar presentations

Ads by Google