Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS/ECE 478 Network Security Dr. Attila Altay Yavuz

Published byFelipe Navarrete Gil Modified over 6 years ago

Similar presentations

Presentation on theme: "CS/ECE 478 Network Security Dr. Attila Altay Yavuz"— Presentation transcript:

1 CS/ECE 478 Network Security Dr. Attila Altay Yavuz
Basics Credit: Prof. Dr. Peng Ning Dr. Attila Altay Yavuz

2 System, Threat and Security Models
Threat model and attack model need to be clarified before any security mechanism is developed System Model Entities, organization, capabilities Threat model Assumptions about potential attackers Describes the attacker’s capabilities Security model Assumptions about the attacks Describe how attacks are launched

3 Encryption/Decryption
plaintext ciphertext plaintext encryption decryption key key Plaintext: a message in its original form Ciphertext: a message in the transformed, unrecognized form Encryption: the process that transforms a plaintext into a ciphertext Decryption: the process that transforms a ciphertext to the corresponding plaintext Key: the value used to control encryption/decryption.

4 Ciphertext Only Attacks
Ex.: attacker can intercept encrypted communications, nothing else when is this realistic? Breaking the cipher: analyze patterns in the ciphertext provides clues about the encryption method/key Sniffer on WiFi network Modern ciphers are secure againt this, but: The incorrect use of cipher can be weakness

5 Known Plaintext Attacks
Ex.: attacker intercepts encrypted text, but also has access to some of the corresponding plaintext (definite advantage) When is this realistic? Makes some codes (e.g., mono-alphabetic ciphers) very easy to break Not very rare that abandoned PCs are compromised by attacker Old plaintext  new ones

6 Chosen Plaintext Attacks
Ex.: attacker can choose any plaintext desired, and intercept the corresponding ciphertext Allows targeted code breaking (choose exactly the messages that will reveal the most about the cipher Very realistic attack, past and today: Gardening by British forces to Enigma Public key crypto, send message to a server, will return you the corresponding ciphertext! Trusted Platform Module (TPM)

7 Chosen Ciphertext Attacks
Ex.: attacker can present any ciphertext desired to the cipher, and get the corresponding plaintext When is this realistic? Isn’t this the goal of cryptanalysis??? A very strong notion of security, IND-CCA experiment

8 Perfectly Secure Ciphers
Ciphertext does not reveal any information about which plaintexts are more likely to have produced it i.e., the cipher is robust against chosen ciphertext attacks and Plaintext does not reveal any information about which ciphertexts are more likely to be produced i.e, the cipher is robust against chosen plaintext attacks

9 Computationally Secure Ciphers
The cost of breaking the cipher quickly exceeds the value of the encrypted information and/or The time required to break the cipher exceeds the useful lifetime of the information Under the assumption there is not a faster / cheaper way to break the cipher, waiting to be discovered

10 Secret Keys vs. Secret Algorithms
Security by obscurity We can achieve better security if we keep the algorithms secret Hard to keep secret if used widely Reverse engineering, social engineering Publish the algorithms Security of the algorithms depends on the secrecy of the keys Less unknown vulnerability if all the smart (good) people in the world are examine the algorithms

11 Secret Keys v.s. Secret Algorithms (Cont’d)
Kerckhoffs's principle Commercial world Published Wide review, trust Military Keep algorithms secret Avoid giving enemy good ideas Military has access to the public domain knowledge anyway. BUT?

12 A Perfectly Secure Cipher: One-Time Pads
According to a theorem by Shannon, a perfectly secure cipher requires: a key length at least as long as the message to be encrypted the key can only be used once (i.e., for each message we need a new key) Very limited use due to need to negotiate and distribute long, random keys for every message

13 OTP… (Cont’d) Idea generate a random bit string (the key) as long as the plaintext, and share with the other communicating party encryption: XOR this key with plaintext to get ciphertext decrypt: XOR same key with ciphertext to get plaintext plaintext ciphertext Key

14  = =  OTP… (Cont’d) Why can’t the key be reused?
plaintext = = key (pad) ciphertext if C = P  K, then K = C  P Why can’t the key be reused?

15 Types of Cryptography Number/type of keys
Hash functions: no secret key (sometimes) Secret key cryptography: one key Public key cryptography: two keys - public, private The way in which the plaintext is processed Stream cipher: encrypt input message one symbol at a time Block cipher: divide input message into blocks of symbols, and processes the blocks in sequence May require padding

16 Hash Algorithms Also known as
Message of arbitrary length A fixed-length short message Hash H Also known as Message digests One-way transformations One-way functions Hash functions Length of H(m) much shorter then length of m Usually fixed lengths: 160 or 256 bits

17 Secret Key Cryptography
plaintext ciphertext plaintext encryption decryption key Same key key Same key is used for encryption and decryption Also known as symmetric cryptography

18 Secret Key Cryptography (Cont’d)
Basic technique Product cipher: Multiple applications of interleaved substitutions and permutations plaintext S P S P S ciphertext break key

19 Secret Key Cryptography (Cont’d)
Ciphertext approximately the same length as plaintext Examples Stream Cipher: RC6 Block Cipher: DES, AES

20 Applications of Secret Key Cryptography
Secure Storage on insecure media Authentication Challenge-response To prove the other party knows the secret key Integrity check (and authentication) Message Authentication Code (MAC) Highly fast and secure Transmitting over an insecure channel Challenge: How to share the key?

21 Public Key Cryptography (PKC)
plaintext ciphertext plaintext encryption decryption Public key Private key A public/private key pair is used Public key can be publicly known Private key is kept secret by the owner of the key Much slower than secret key cryptography Also known as asymmetric cryptography

22 Applications of PKC-Hash
Primary application Generate/verify digital signatures H(m) Message m Signature Sig(H(m)) H Sign Private key Message m H(m) H Verify Yes/No Signature Sig(H(m)) Public key

23 Applications of Public Key Cryptography
Digital signatures Sign hash H(m) with the private key Authorship, Integrity Non-repudiation: can’t do with secret key cryptography Key exchange and Distribution Establish a common session key between two parties. Particularly for encrypting long messages Pervasively distribute many keys One to many message encryption

Download ppt "CS/ECE 478 Network Security Dr. Attila Altay Yavuz"

Similar presentations

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.

CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.
Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.

Session 5 Hash functions and digital signatures. Contents Hash functions – Definition – Requirements – Construction – Security – Applications 2/44.
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
CS1001 Lecture 24. Overview Encryption Encryption Artificial Intelligence Artificial Intelligence Homework 4 Homework 4.

CS1001 Lecture 24. Overview Encryption Encryption Artificial Intelligence Artificial Intelligence Homework 4 Homework 4.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
The School of Electrical Engineering and Computer Science (EECS) CS/ECE Network Security Dr. Attila Altay Yavuz Topic 5 Essential Public Key Crypto Methods.

The School of Electrical Engineering and Computer Science (EECS) CS/ECE Network Security Dr. Attila Altay Yavuz Topic 5 Essential Public Key Crypto Methods.
CS526Topic 2: Classical Cryptography1 Information Security CS 526 Topic 2 Cryptography: Terminology & Classic Ciphers.

CS526Topic 2: Classical Cryptography1 Information Security CS 526 Topic 2 Cryptography: Terminology & Classic Ciphers.
Computer Security CS 426 Lecture 3

Computer Security CS 426 Lecture 3
Computer Science CSC 774Dr. Peng Ning1 CSC 774 Advanced Network Security Topic 2. Review of Cryptographic Techniques.

Computer Science CSC 774Dr. Peng Ning1 CSC 774 Advanced Network Security Topic 2. Review of Cryptographic Techniques.
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
The School of Electrical Engineering and Computer Science (EECS) CS/ECE Network Security Dr. Attila Altay Yavuz Basics Credit: Prof. Dr. Peng Ning Network.

The School of Electrical Engineering and Computer Science (EECS) CS/ECE Network Security Dr. Attila Altay Yavuz Basics Credit: Prof. Dr. Peng Ning Network.
Cryptography, Authentication and Digital Signatures

Cryptography, Authentication and Digital Signatures
CS526: Information Security Prof. Sam Wagstaff September 16, 2003 Cryptography Basics.

CS526: Information Security Prof. Sam Wagstaff September 16, 2003 Cryptography Basics.
Module 3 – Cryptography Cryptography basics Ciphers Symmetric Key Algorithms Public Key Algorithms Message Digests Digital Signatures.

Module 3 – Cryptography Cryptography basics Ciphers Symmetric Key Algorithms Public Key Algorithms Message Digests Digital Signatures.
Cryptography Wei Wu. Internet Threat Model Client Network Not trusted!!

Cryptography Wei Wu. Internet Threat Model Client Network Not trusted!!
Lecture 2: Introduction to Cryptography

Lecture 2: Introduction to Cryptography
Cryptography 1 Crypto Cryptography 2 Crypto  Cryptology  The art and science of making and breaking “secret codes”  Cryptography  making “secret.

Cryptography 1 Crypto Cryptography 2 Crypto  Cryptology  The art and science of making and breaking “secret codes”  Cryptography  making “secret.

Similar presentations

Ads by Google