Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS 682 - Network Security Lecture 2 Prof. Katz. 9/7/2000Lecture 2 - Data Encryption2 DES – Data Encryption Standard Private key. Encrypts by series of.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "CS 682 - Network Security Lecture 2 Prof. Katz. 9/7/2000Lecture 2 - Data Encryption2 DES – Data Encryption Standard Private key. Encrypts by series of."— Presentation transcript:

1 CS 682 - Network Security Lecture 2 Prof. Katz

2 9/7/2000Lecture 2 - Data Encryption2 DES – Data Encryption Standard Private key. Encrypts by series of substitution and transpositions. Worldwide standard for more than 20 years. Has a history of controversy. Designed by IBM (Lucipher) with later help (interference?) from NSA. No longer considered secure for highly sensitive applications. Replacement standard (AES) currently in process of development.

3 9/7/2000Lecture 2 - Data Encryption3 DES - Overview

4 9/7/2000Lecture 2 - Data Encryption4 DES – Each iteration.

5 9/7/2000Lecture 2 - Data Encryption5 DES – Computation of F(R i-1,K i )

6 9/7/2000Lecture 2 - Data Encryption6 Computation of F: Expansion function E: maps bit string of length 32 to bit string of length 48. Permutes bits in a fixed way and duplicates certain bits Key schedule: each round uses a 48 bit key obtained by performing permutations, shifts, and discarding bits from the original 56 bit key. Fixed algorithm for each round resulting 48 bit string broken into 8 6-bit strings

7 9/7/2000Lecture 2 - Data Encryption7 S-boxes: S1 Is the table entry from

8 Plain text Initial permutation (IP) Round-1 (key K 1 ) Round-16 (key K 16 ) swap IP inverse Cipher text Rounds 2-15

9 IP inverse Cipher text IP Round-1 (K 16 ) = Since encrypt decrypt

10 9/7/2000Lecture 2 - Data Encryption10 DES – Electronic Code Book Mode

11 9/7/2000Lecture 2 - Data Encryption11 DES – Cipher block chaining mode

12 9/7/2000Lecture 2 - Data Encryption12 DES Security S-Box design not well understood (secret). Has survived some recent sophisticated attacks (differential cryptanalysis). Key is too short (thanks to NSA!). Hence is vulnerable to brute force attack. 1998 distributed attack took 3 months. $1,000,000 machine will crack DES in 35 minutes – 1997 estimate. 10,000 – 2.5 days. In 1999 EFF achieved 245 billion keys per second rate to crack in 22 hours.

13 9/7/2000Lecture 2 - Data Encryption13 Double DES Double DES is almost as easy to break as single DES!

14 9/7/2000Lecture 2 - Data Encryption14 Triple DES Triple DES (2 keys) requires 2 112 search. Is reasonably secure. 3 keys requires 2 168.

15 9/7/2000Lecture 2 - Data Encryption15 Other Private Key Cryptosystems IDEA Twofish Blowfish RC4, RC5, RC6 Rijndael Serpent MARS Feal

16 Message Authentication

17 9/7/2000Lecture 2 - Data Encryption17 Message Authentication We must be able to certify that a message is from a particular person We must be sure that the message has not been tampered with

18 9/7/2000Lecture 2 - Data Encryption18 Methods Conventional Encryption Message Authentication Code One-way Hash Using Conventional Encryption Using Public-Key Encryption Using Secret Value

19 9/7/2000Lecture 2 - Data Encryption19 Conventional Encryption Modification of the cyphertext should produce unintelligible results in the plaintext.

20 9/7/2000Lecture 2 - Data Encryption20 One-Way Hash (using encryption) 1. The message is sent through a hashing function H(M) 2. The result is encrypted: C = E(K, H(M) 3. C is appended to the message: N = M||C 4. N is sent to the recipient 5. C is extracted from N: N -> M & C 6. C is decoded: H(M 1 ) = D(K, C) 7. The recipient puts the message through the hashing function: H(M 2 ) 8. If H(M 1 ) = H(M 2 ) the message is authentic

21 9/7/2000Lecture 2 - Data Encryption21 One-Way hash (Public Key) Same as encryption but encryption Key is private key and decryption key is public key

22 9/7/2000Lecture 2 - Data Encryption22 One-Way Hash (secret value) Secret Value (S) is concatenated onto M: N=S||M N is put through the hash function: H(N) The result is append to M: C = M||H(N) C is sent to the recipient H(N 1 ) is extracted from C Secret Value (S) is concatenated onto M: N=S||M N is put through the hash function: H(N 2 ) If H(N 1 ) = H(N 2 ), the message is authentic.

Download ppt "CS 682 - Network Security Lecture 2 Prof. Katz. 9/7/2000Lecture 2 - Data Encryption2 DES – Data Encryption Standard Private key. Encrypts by series of."

Similar presentations

The Data Encryption Standard - see Susan Landau’s paper: “Standing the test of time: the data encryption standard.” DES - adopted in 1977 as a standard.

The Data Encryption Standard - see Susan Landau’s paper: “Standing the test of time: the data encryption standard.” DES - adopted in 1977 as a standard.
Origins  clear a replacement for DES was needed Key size is too small Key size is too small The variants are just patches The variants are just patches.

Origins  clear a replacement for DES was needed Key size is too small Key size is too small The variants are just patches The variants are just patches.
Conventional Encryption: Algorithms

Conventional Encryption: Algorithms
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.

1 CIS 5371 Cryptography 5b. Pseudorandom Objects in Practice Block Ciphers.
Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.

Computer Science CSC 474By Dr. Peng Ning1 CSC 474 Information Systems Security Topic 2.1 Introduction to Cryptography.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.

CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
Cryptography and Network Security Chapter 3

Cryptography and Network Security Chapter 3
Symmetric Encryption Example: DES Weichao Wang. 2 Overview of the DES A block cipher: – encrypts blocks of 64 bits using a 64 bit key – outputs 64 bits.

Symmetric Encryption Example: DES Weichao Wang. 2 Overview of the DES A block cipher: – encrypts blocks of 64 bits using a 64 bit key – outputs 64 bits.
Web Security for Network and System Administrators1 Chapter 4 Encryption.

Web Security for Network and System Administrators1 Chapter 4 Encryption.
CMSC 414 Computer (and Network) Security Lecture 5 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 5 Jonathan Katz.
Advanced Encryption Standard(AES) Presented by: Venkata Marella Slide #9-1.

Advanced Encryption Standard(AES) Presented by: Venkata Marella Slide #9-1.
DES 1 Data Encryption Standard DES 2 Data Encryption Standard  DES developed in 1970’s  Based on IBM Lucifer cipher  U.S. government standard  DES.

DES 1 Data Encryption Standard DES 2 Data Encryption Standard  DES developed in 1970’s  Based on IBM Lucifer cipher  U.S. government standard  DES.
1 Overview of the DES A block cipher: –encrypts blocks of 64 bits using a 64 bit key –outputs 64 bits of ciphertext A product cipher –basic unit is the.

1 Overview of the DES A block cipher: –encrypts blocks of 64 bits using a 64 bit key –outputs 64 bits of ciphertext A product cipher –basic unit is the.
CSE331: Introduction to Networks and Security Lecture 18 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 18 Fall 2002.
1 CS 255 Lecture 4 Attacks on Block Ciphers Brent Waters.

1 CS 255 Lecture 4 Attacks on Block Ciphers Brent Waters.
Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.

Introduction to Symmetric Block Cipher Jing Deng Based on Prof. Rick Han’s Lecture Slides Dr. Andreas Steffen’s Security Tutorial.
15-441 Computer Networking Lecture 21: Security and Cryptography Thanks to various folks from 15-441, semester’s past and others.

Computer Networking Lecture 21: Security and Cryptography Thanks to various folks from , semester’s past and others.
Lecture 23 Symmetric Encryption

Lecture 23 Symmetric Encryption
Lecture 2.2: Private Key Cryptography II CS 436/636/736 Spring 2012 Nitesh Saxena.

Lecture 2.2: Private Key Cryptography II CS 436/636/736 Spring 2012 Nitesh Saxena.

Similar presentations

Ads by Google