Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lecture 19 Page 1 CS 111 Online Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 On-Line MS Program Operating.

Published byAron Cummings Modified over 9 years ago

Similar presentations

Presentation on theme: "Lecture 19 Page 1 CS 111 Online Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 On-Line MS Program Operating."— Presentation transcript:

1 Lecture 19 Page 1 CS 111 Online Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 On-Line MS Program Operating Systems Peter Reiher

2 Lecture 19 Page 2 CS 111 Online Outline Basic concepts in computer security Design principles for security Important security tools for operating systems Access control Cryptography and operating systems Authentication and operating systems Protecting operating system resources

3 Lecture 19 Page 3 CS 111 Online Cryptography Much of computer security is about keeping secrets One method of doing so is to make it hard for others to read the secrets While (usually) making it simple for authorized parties to read them That’s what cryptography is all about

4 Lecture 19 Page 4 CS 111 Online What Is Encryption? Encryption is the process of hiding information in plain sight Transform the secret data into something else Even if the attacker can see the transformed data, he can’t understand the underlying secret Usually, someone you want to understand it can

5 Lecture 19 Page 5 CS 111 Online Cryptography Terminology Typically described in terms of sending a message – Though it’s used for many other purposes The sender is S The receiver is R Encryption is the process of making message unreadable/unalterable by anyone but R Decryption is the process of making the encrypted message readable by R A system performing these transformations is a cryptosystem – Rules for transformation sometimes called a cipher

6 Lecture 19 Page 6 CS 111 Online Plaintext and Ciphertext Plaintext is the original form of the message (often referred to as P) Transfer $100 to my savings account Ciphertext is the encrypted form of the message (often referred to as C) Sqzmredq #099 sn lx rzuhmfr zbbntms

7 Lecture 19 Page 7 CS 111 Online Cryptographic Keys Most cryptographic algorithms use a key to perform encryption and decryption – Referred to as K The key is a secret Without the key, decryption is hard With the key, decryption is easy Reduces the secrecy problem from your (long) message to the (short) key – But there’s still a secret

8 Lecture 19 Page 8 CS 111 Online More Terminology The encryption algorithm is referred to as E() C = E(K,P) The decryption algorithm is referred to as D() The decryption algorithm also has a key The combination of the two algorithms are often called a cryptosystem

9 Lecture 19 Page 9 CS 111 Online Symmetric and Asymmetric Cryptosystems Symmetric cryptosystems use the same keys for E and D : P = D(K, C) – Expanding, P = D(K, E(K,P)) Asymmetric cryptosystems use different keys for E and D: C = E(K E,P) P = D(K D,C) – Expanding, P = D(K D, E(K E,P))

10 Lecture 19 Page 10 CS 111 Online Desirable Characteristics of Keyed Cryptosystems If you change only the key, a given plaintext encrypts to a different ciphertext Same applies to decryption Changes in the key ideally should cause unpredictable changes in the ciphertext Decryption should be hard without knowing the key The less a given key is used, the better (in security terms)

11 Lecture 19 Page 11 CS 111 Online Cryptography and Operating Systems What does cryptography have to offer operating systems? Which hard security problems in operating systems can we solve with cryptography? Where doesn’t it help? We won’t talk much about this issue, but think about it, in the context of overall OS security issues.

12 Lecture 19 Page 12 CS 111 Online Cryptography and Secrecy Pretty obvious Only those knowing the proper keys can decrypt the message – Thus preserving secrecy Used cleverly, it can provide other forms of secrecy Clear where we’d use this for distributed systems Where does it make sense in a single machine?

13 Lecture 19 Page 13 CS 111 Online Cryptography and Authentication How can I prove to you that I created a piece of data? What if I give you the data in encrypted form? – Using a key only you and I know Then only you or I could have created it – Unless one of us told someone else the key... – Or one of us is trying to screw the other

14 Lecture 19 Page 14 CS 111 Online Cryptography and Integrity Changing one bit of a piece of ciphertext completely garbles it – For many forms of cryptography If a checksum is part of encrypted data, that’s detectable If you don’t need secrecy, can get the same effect – By encrypting only the checksum

Download ppt "Lecture 19 Page 1 CS 111 Online Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 On-Line MS Program Operating."

Similar presentations

Chapter 3 Public Key Cryptography and Message authentication.

Chapter 3 Public Key Cryptography and Message authentication.
Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.
Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.

Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.
CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.

CS 6262 Spring 02 - Lecture #7 (Tuesday, 1/29/2002) Introduction to Cryptography.
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
20-751 ECOMMERCE TECHNOLOGY SUMMER 2002 COPYRIGHT © 2002 MICHAEL I. SHAMOS Cryptographic Security.

ECOMMERCE TECHNOLOGY SUMMER 2002 COPYRIGHT © 2002 MICHAEL I. SHAMOS Cryptographic Security.
20-751 ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.

ECOMMERCE TECHNOLOGY FALL 2003 COPYRIGHT © 2003 MICHAEL I. SHAMOS Cryptography.
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.
CS426Fall 2010/Lecture 21 Computer Security CS 426 Lecture 2 Cryptography: Terminology & Classic Ciphers.

CS426Fall 2010/Lecture 21 Computer Security CS 426 Lecture 2 Cryptography: Terminology & Classic Ciphers.
Cryptography Dan Fleck CS 469: Security Engineering These slides are modified with permission from Bill Young (Univ of Texas) Coming up: Cryptography 11.

Cryptography Dan Fleck CS 469: Security Engineering These slides are modified with permission from Bill Young (Univ of Texas) Coming up: Cryptography 11.
Encryption. Introduction Computer security is the prevention of or protection against –access to information by unauthorized recipients –intentional but.

Encryption. Introduction Computer security is the prevention of or protection against –access to information by unauthorized recipients –intentional but.
1 Cryptography Basics. 2 Cryptography Basic terminologies Symmetric key encryption Asymmetric key encryption Public Key Infrastructure Digital Certificates.

1 Cryptography Basics. 2 Cryptography Basic terminologies Symmetric key encryption Asymmetric key encryption Public Key Infrastructure Digital Certificates.
Tonga Institute of Higher Education Design and Analysis of Algorithms IT 254 Lecture 9: Cryptography.

Tonga Institute of Higher Education Design and Analysis of Algorithms IT 254 Lecture 9: Cryptography.
Lecture 18 Page 1 CS 111 Spring 2015 Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 Operating Systems.

Lecture 18 Page 1 CS 111 Spring 2015 Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 Operating Systems.
Lecture 18 Page 1 CS 111 Online Design Principles for Secure Systems Economy Complete mediation Open design Separation of privileges Least privilege Least.

Lecture 18 Page 1 CS 111 Online Design Principles for Secure Systems Economy Complete mediation Open design Separation of privileges Least privilege Least.
Lecture 29 Page 1 Advanced Network Security Privacy in Networking Advanced Network Security Peter Reiher August, 2014.

Lecture 29 Page 1 Advanced Network Security Privacy in Networking Advanced Network Security Peter Reiher August, 2014.
Lecture 19 Page 1 CS 111 Online Symmetric Cryptosystems C = E(K,P) P = D(K,C) E() and D() are not necessarily the same operations.

Lecture 19 Page 1 CS 111 Online Symmetric Cryptosystems C = E(K,P) P = D(K,C) E() and D() are not necessarily the same operations.
Chapter 2 – Elementary Cryptography  Concepts of encryption  Cryptanalysis  Symmetric (secret key) Encryption (DES & AES)(DES & AES)  Asymmetric (public.

Chapter 2 – Elementary Cryptography  Concepts of encryption  Cryptanalysis  Symmetric (secret key) Encryption (DES & AES)(DES & AES)  Asymmetric (public.
Cryptography  Why Cryptography  Symmetric Encryption  Key exchange  Public-Key Cryptography  Key exchange  Certification.

Cryptography  Why Cryptography  Symmetric Encryption  Key exchange  Public-Key Cryptography  Key exchange  Certification.
569 Semantic Web. Dr. J. Lu University of windsor, Project Presentation Encrypted Web service application Encrypted E-mail Web Application Presented by:

569 Semantic Web. Dr. J. Lu University of windsor, Project Presentation Encrypted Web service application Encrypted Web Application Presented by:

Similar presentations

Ads by Google