Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cryptographic Protocols

Published byKarin Becker Modified over 6 years ago

Similar presentations

Presentation on theme: "Cryptographic Protocols"— Presentation transcript:

1 Cryptographic Protocols
By: Kirti Chawla

2 Set of rules that ensure that source, transit
Introduction Needs & Necessity Standard Protocols An Example Looking Back Set of rules that ensure that source, transit and destination exchanges and retains information in secure way.

3 Information is not confined We need to exchange information
Introduction Needs & Necessity Standard Protocols An Example Looking Back Information is not confined We need to exchange information Standard means of exchanging information

4 Key exchange protocols
Introduction Needs & Necessity Standard Protocols An Example Looking Back Categories Examples Secret sharing Key exchange protocols Identity Authentication protocols Presence of Secret Zero-knowledge proofs Channel Subliminal channel Group Secrets Secure multiparty computation

5 Key exchange protocols
Introduction Needs & Necessity Standard Protocols An Example Looking Back Sender Receiver A key that should be kept secret It is required to be shared Should be valid for a session only

6 Authentication protocols
Introduction Needs & Necessity Standard Protocols An Example Looking Back Home Mobile You need to access resource that are displaced You need to prove your identity without physical relocation Should be time-bound access to resources

7 Prove possession of secret but don’t divulge it
Zero knowledge proofs Introduction Needs & Necessity Standard Protocols An Example Looking Back A Q User Challenger/System Prove possession of secret but don’t divulge it A basic element called trust is there, although however minimum Access to resource based upon this proof

8 Secret has to go under the eyes of Scrutinizer
Subliminal channel Introduction Needs & Necessity Standard Protocols An Example Looking Back Scrutinizer Sender Receiver Secret has to go under the eyes of Scrutinizer The message should appear “innocuous” to Scrutinizer Sender and receiver know the scheme to get secret

9 Secure multiparty computation
Introduction Needs & Necessity Standard Protocols An Example Looking Back Sender Receiver Each member has secret that should not be shared All know the combined result No member can stop or delay any information that’s circulating

10 Security Protocols Kerberos IPSec SSL/HTTPS Introduction
Needs & Necessity Standard Protocols An Example Looking Back Security Protocols Kerberos IPSec SSL/HTTPS

11 IPSec Introduction Needs & Necessity Standard Protocols An Example Looking Back A set of rules for protecting data at IP layer. It supports both authentication and security of data-packets originating from IP based network. Transport IP-Header Payload Tunnel IP-Header IP-Header Payload

12 Transport with AH header
Authentication Introduction Needs & Necessity Standard Protocols An Example Looking Back IPSec supports authentication by non-repudiation of payload and/or complete packet. The header is called AH or Authentication Header. Transport with AH header IP-header AH-header Payload Tunnel with AH header IP-Header AH-header IP-header Payload

13 Transport with ESP header
Security Introduction Needs & Necessity Standard Protocols An Example Looking Back IPSec supports security by encrypting of payload and/or complete packet. The header is called ESP or Encapsulated Security Payload. Transport with ESP header IP-header ESP-header Payload Tunnel with ESP header IP-Header ESP-header IP-header Payload

14 Security Associations
Introduction Needs & Necessity Standard Protocols An Example Looking Back Security Association is collection of facts that allows two parties to maintain a secure session. All security associations contain certain parameters and destination address. Security Association Database Authentication & security algorithms used Keys used for both algorithms Lifetime of key Lifetime of SA Sensitivity level Structure of SA

15 How it works ? Authentication Introduction Needs & Necessity
Standard Protocols An Example Looking Back Authentication Public Network Security Public Network

16 Kerberos Introduction Needs & Necessity Standard Protocols An Example Looking Back It’s authentication protocol, which allows controlled and legitimate usage of resources by it’s users.

17 Components Introduction
Needs & Necessity Standard Protocols An Example Looking Back A User who wishes to use some resources on network A Key Distribution Center that gives user a session key, when he logs in. An Authentication Server which authenticates user. A Ticket Granting Server which allows usage of multiple resources on network.

18 … 1 2 N How it works ? Introduction Needs & Necessity
Standard Protocols An Example Looking Back User AS KDC 1 2 N TGS

19 Realms Introduction Needs & Necessity Standard Protocols An Example
Looking Back KDC Network 2 Network 1 TGS TGS AS AS AS User Network 3 Network N TGS AS TGS

20 SSL/HTTPS Introduction Needs & Necessity Standard Protocols An Example Looking Back It’s a session or application level protocol to ensure security. SSL is Secure Socket Layer and HTTPS is Secure Hyper Text Transfer Protocol.

21 Components Introduction Needs & Necessity Standard Protocols
An Example Looking Back A User who wishes to use some resources or communicate with other user. A User or Server who wishes to communicate (to provide some service) with above user needs to prove his identity. A Hacker

22 How it works ? Introduction Needs & Necessity Standard Protocols
An Example Looking Back Hello Cert Prove MAC User Server Hacker

23 A user needs to carry information on the go from incumbent system.
Introduction Needs & Necessity Standard Protocols An Example Looking Back A user needs to carry information on the go from incumbent system. Information needs to be authenticated before it leaves incumbent system. A component in system provides mechanism of authenticating information after scrutiny based upon following measures: 1. Ask information bearer of the source of information. 2. Scrutinize based upon information at hand and their persistent knowledge.

24 How it works ? 2 User 3 Policy Implementer 1 Authenticating component
Introduction Needs & Necessity Standard Protocols An Example Looking Back 2 User Policy Implementer 3 1 Authenticating component

25 Are you familiar with the protocol in previous slide ?
Introduction Needs & Necessity Standard Protocols An Example Looking Back Are you familiar with the protocol in previous slide ?

Download ppt "Cryptographic Protocols"

Similar presentations

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.

IP Security have considered some application specific security mechanisms –eg. S/MIME, PGP, Kerberos, SSL/HTTPS however there are security concerns that.
Internet Protocol Security (IP Sec)

Internet Protocol Security (IP Sec)
Secure Mobile IP Communication

Secure Mobile IP Communication
Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.

Spring 2012: CS419 Computer Security Vinod Ganapathy SSL, etc.
CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Internet Security CSCE 813 IPsec

Internet Security CSCE 813 IPsec
CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication E-Mail Security E-Mail Security Secure Sockets Layer Secure.

CHAPTER 8: SECURITY IN COMPUTER NETWORKS Encryption Encryption Authentication Authentication Security Security Secure Sockets Layer Secure.
IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.

IPSec: Authentication Header, Encapsulating Security Payload Protocols CSCI 5931 Web Security Edward Murphy.
Security at the Network Layer: IPSec

Security at the Network Layer: IPSec
Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.

Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.
Cryptography and Network Security Chapter 16 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Chapter 16 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.

Crypto – chapter 16 - noack Introduction to network stcurity Chapter 16 - Stallings.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 30 Internet Security.
Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.

Encapsulation Security Payload Protocol Lan Vu. OUTLINE 1.Introduction and terms 2.ESP Overview 3.ESP Packet Format 4.ESP Fields 5.ESP Modes 6.ESP packet.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
K. Salah1 Security Protocols in the Internet IPSec.

K. Salah1 Security Protocols in the Internet IPSec.
What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.

What is in Presentation What is IPsec Why is IPsec Important IPsec Protocols IPsec Architecture How to Implement IPsec in linux.
Protocol Basics. IPSec Provides two modes of protection –Tunnel Mode –Transport Mode Authentication and Integrity Confidentiality Replay Protection.

Protocol Basics. IPSec Provides two modes of protection –Tunnel Mode –Transport Mode Authentication and Integrity Confidentiality Replay Protection.
SYSTEM ADMINISTRATION Chapter 13 Security Protocols.

SYSTEM ADMINISTRATION Chapter 13 Security Protocols.
32.1 Chapter 32 Security in the Internet: IPSec, SSL/TLS, PGP, VPN, and Firewalls Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.

32.1 Chapter 32 Security in the Internet: IPSec, SSL/TLS, PGP, VPN, and Firewalls Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction.

Similar presentations

Ads by Google