Presentation is loading. Please wait.

Presentation is loading. Please wait.

Secure Diffie-Hellman Algorithm

Published byΛευίς Παχής Modified over 5 years ago

Similar presentations

Presentation on theme: "Secure Diffie-Hellman Algorithm"— Presentation transcript:

1 Secure Diffie-Hellman Algorithm
Nawroz University College of Engineering Dept. of Computer and Communication Secure Diffie-Hellman Algorithm By: Assist. Lect. Alnawar J. Mohammed Assist. Lect. Zahraa D. Abdulhadi

2 Introduction Nowadays, data security and privacy are a prevalent issue. Researchers are trying to do their best to find out the perfect way to secure the data efficiently. One of these solutions is encrypting the data using cryptography algorithms. Cryptography: is the science of converting the readable information into unreadable or hidden, and only the authorized persons or machines can retrieve or obtain the original texts.

3 Types of Cryptography It is divided into two major types (symmetric and asymmetric) regarding their keys. Symmetric cryptosystems No. of Keys Used CRYPTOGRAPHY Asymmetric cryptosystems Symmetric cryptosystems require the users to have the same key to be used for encryption and decryption process Asymmetric cryptosystems require the users to have two different keys (encryption key and decryption key).

4 Symmetric-Key Cryptography

5 ASymmetric-Key Cryptography

6 The Need for a Key Distribution Protocol
Symmetric key should be changed from time to time to make it more secure and unbreakable to prevent other users from obtaining the plain text. Therefore, the security of any symmetric cryptography system depends on key exchange protocol used by the system. Key exchange protocol is the way of distributing the keys in a secure manner among the users. Diffie-Hellman protocol is one of the key exchange protocols.

7 Traditional Diffie-Hellman Method
p g 𝑅 1 = 𝑔 𝑥 mod p 𝑅 2 = 𝑔 𝑦 mod p Diffie-Hellman key exchange protocol was brought in 1976 by Whitfield Diffie and Martin Hellman [2], this protocol is widely used for secure key exchange. The process of this protocol supposes that Alice and Bob have different private keys and they have to agree upon two relatively prime numbers p, g then each of them uses the obtained information to calculate the public keys. After that they share their public keys between each other and use it with the private one, p and g to get the same shared key. As a result, both of Alice and Bob obtained the shared key without sending their private keys through the channel [3]. 𝑲= (𝑹 𝟐 ) 𝒙 mod p 𝑲= (𝑹 𝟏 ) 𝒚 mod p 𝑲=( 𝒈) 𝒙𝒚 mod p Where, The first number, p, is a prime number. The second number, g, is a random number.

8 Example Two Internet users, Alice and Bob wish to have a secure conversation. - They decide to use the Diffie-Hellman protocol

9 Example Alice and Bob get public numbers P = 23, g = 7

10 Diffie-Hellman Key Exchange -Weakness
In this paper, we will explain the problem of Man-In-The-Middle (MITM) attack in Diffie-Hellman protocol. The MITM attack is a form of eavesdropping where the communication between two users is monitored and modified by an unauthorized party. The attacker actively eavesdrops by intercepting the public-key message exchange and retransmit the message while replacing the requested key with his own

11 Man-In-The-Middle (MITM) attack
As a result, Eve can attack the communication channels and record the messages that would be sent from Alice to Bob, and later Eve sends a copy of the messages to Bob. This will make Bob feels that those messages coming from Alice. Eve might send the message back to Alice, who would trust that it came from Bob

12 PROPOSED WORK This paper proposes improvements which can help preventing MITM attack. These can verify and secure the communications between Alice and Bob. The first step in this improvement is to choose a secret value (C) Known by only Alice and Bob. The value of (C) will be imported from the Key Distribution Center (KDC). The value of (C) will be added on both sides (Alice and Bob) to make the improvements on the calculations of the final secret key.

13 At first, each person, like Alice and Bob, establishes a shared secret key with the KDC.

14 Import the value of (C) from KDC

15 The Modified Diffie-Hellman Method
p g C : is the New secret value Known by only Alice and Bob 𝑅 1 = 𝑔 𝑥∗𝑐 mod p 𝑅 2 = 𝑔 𝑦∗𝑐 mod p 𝑔 𝑥𝑦 = 𝑐 2 (𝑅 2 ) 𝑥∗𝑐 = 𝑐 2 𝑔 𝑥𝑦 𝑐 2 𝑔 𝑥𝑦 = 𝑐 2 (𝑅 1 ) 𝑦∗𝑐 = 𝑐 2 𝑔 𝑥𝑦 𝑐 2 6 6 𝑘 𝑎𝑏 = 𝑔 𝑥𝑦 mod p 6 6 𝑘 𝑎𝑏 = 𝑔 𝑥𝑦 mod p

16 They also get the secret value of C from the KDC
Example Alice and Bob get public numbers P = , g = 7 They also get the secret value of C from the KDC C = 2

17

Download ppt "Secure Diffie-Hellman Algorithm"

Similar presentations

The Diffie-Hellman Algorithm

The Diffie-Hellman Algorithm
Diffie-Hellman Diffie-Hellman is a public key distribution scheme First public-key type scheme, proposed in 1976.

Diffie-Hellman Diffie-Hellman is a public key distribution scheme First public-key type scheme, proposed in 1976.
Public Key Cryptography Nick Feamster CS 6262 Spring 2009.

Public Key Cryptography Nick Feamster CS 6262 Spring 2009.
1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)
CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.

CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.
Public Key Algorithms …….. RAIT M. Chatterjee.

Public Key Algorithms …….. RAIT M. Chatterjee.
Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.

Cryptography1 CPSC 3730 Cryptography Chapter 10 Key Management.
Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering.
EEC 688/788 Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 7 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
1 Pertemuan 08 Public Key Cryptography Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 08 Public Key Cryptography Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
8: Network Security8-1 Symmetric key cryptography symmetric key crypto: Bob and Alice share know same (symmetric) key: K r e.g., key is knowing substitution.

8: Network Security8-1 Symmetric key cryptography symmetric key crypto: Bob and Alice share know same (symmetric) key: K r e.g., key is knowing substitution.
Cryptography and Network Security Chapter 10. Chapter 10 – Key Management; Other Public Key Cryptosystems No Singhalese, whether man or woman, would venture.

Cryptography and Network Security Chapter 10. Chapter 10 – Key Management; Other Public Key Cryptosystems No Singhalese, whether man or woman, would venture.
Public-Key Cryptography and RSA CSE 651: Introduction to Network Security.

Public-Key Cryptography and RSA CSE 651: Introduction to Network Security.
Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.
Encryption. Introduction Computer security is the prevention of or protection against –access to information by unauthorized recipients –intentional but.

Encryption. Introduction Computer security is the prevention of or protection against –access to information by unauthorized recipients –intentional but.
Computer Science Public Key Management Lecture 5.

Computer Science Public Key Management Lecture 5.
Public Key Model 8. Cryptography part 2.

Public Key Model 8. Cryptography part 2.
Page 1 Secure Communication Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.

Page 1 Secure Communication Paul Krzyzanowski Distributed Systems Except as otherwise noted, the content of this presentation.

Similar presentations

Ads by Google