Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Cryptography Cryptography is a collection of mathematical techniques to ensure confidentiality of information Cryptography is a collection of mathematical.

Published byCandace Sutton Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Cryptography Cryptography is a collection of mathematical techniques to ensure confidentiality of information Cryptography is a collection of mathematical."— Presentation transcript:

1 1 Cryptography Cryptography is a collection of mathematical techniques to ensure confidentiality of information Cryptography is a collection of mathematical techniques to ensure confidentiality of information Encryption and Decryption Encryption and Decryption The process of scrambling a message with the help of a key is called Encryption The process of scrambling a message with the help of a key is called Encryption The process of unscrambling a message using an appropriate key is called decryption The process of unscrambling a message using an appropriate key is called decryption Keys are numbers or characters that are randomly generated Keys are numbers or characters that are randomly generated Symmetric and Asymmetric cryptography Symmetric and Asymmetric cryptography Symmetric - same keys are used for encryption and decryption Symmetric - same keys are used for encryption and decryption Asymmetric or Public Key Cryptography – a pair of public key and private key is used for encryption and decryption Asymmetric or Public Key Cryptography – a pair of public key and private key is used for encryption and decryption Pretty Good Privacy (PGP) – a popular cryptographic system Pretty Good Privacy (PGP) – a popular cryptographic system

2 2 Digital/Electronic Signatures An electronic signature means any letters numbers, symbols, images, characters or any combination thereof in electronic form applied to an electronic document An electronic signature means any letters numbers, symbols, images, characters or any combination thereof in electronic form applied to an electronic document Uses public key cryptography Uses public key cryptography Ensures authenticity, integrity and non- repudiation Ensures authenticity, integrity and non- repudiation  Authenticity means the message is from a particular source/individual  Integrity means the message has not been altered  Non-repudiation means that the execution of the digital signature cannot be denied Electronic signature vs. hand written signature Electronic signature vs. hand written signature

3 3 Digital Certificates Establish whether or not a public key belongs to the purported owner Establish whether or not a public key belongs to the purported owner Comprises of a public key, certification information (name, ID etc.) and electronic signatures of a certification authority Comprises of a public key, certification information (name, ID etc.) and electronic signatures of a certification authority x.509 standard format x.509 standard format

4 4 Name:Jonathan Marshall Public Key:023917918729087395045273927 Date Issue:January 15, 2003 Date Expiry: January 15, 2005 Serial Number:2345872364 We certify that the above information is true. Dues Certification Authority Inc.

5 5 Certification Authority (CA) A trusted public/private body that attests the association of a particular individual with his/her corresponding public key A trusted public/private body that attests the association of a particular individual with his/her corresponding public key Signs digital certificates with its private key Signs digital certificates with its private key Hierarchy of CA’s Hierarchy of CA’s Can issue different types of digital certificates attaching different levels of trust Can issue different types of digital certificates attaching different levels of trust

6 6 Hash Function & Message Digest Hash function is a one-way mathematical function applied to a message Hash function is a one-way mathematical function applied to a message Result of the hash function is unique to each message called Message Digest Result of the hash function is unique to each message called Message Digest A message digest is a single large number typically between 128 and 256 bits in length A message digest is a single large number typically between 128 and 256 bits in length

7 7 Original Message Scrambled Message Public Key receiver Internet Scrambled+Signed Message Original Message Private Key receiver The Process of Sending Messages Using Public Key Cryptography How Digital Signature Technology Works? Sender Receiver Message Digest signed with the Private Key of sender Public Key sender to reveal Message Digest Hash

8 8 Steps Involved in Digital Signature Process 1. Hash function is applied to the original message in order to find the message digest 2. Public Key of the receiver is used to encrypt the message 3. A digital signature is attached to the scrambled message by signing the message digest with Private Key of the sender 4. The encrypted message, the digital signature and the hash function are sent to the receiver 5. Public Key of the sender is used by the receiver to reveal the message digest and, thus, to confirm identity/authenticity of the sender 6. Receiver uses his/her Private Key to decrypt the message 7. Receiver applies hash function to the received original message and computes the message digest – if this message digest matches with the one received from the sender, it confirms that the message has not been altered during transmission

9 9 Public Key Infrastructure (PKI) A structured system that provides key management facilities, storage and management facilities of digital certificates and involves a certification authority A structured system that provides key management facilities, storage and management facilities of digital certificates and involves a certification authority Application of PKI Application of PKI  Online contracts  E-Banking – electronic payment systems such as electronic checks, credit card based systems, electronic cash, micro payment systems

10 10 Key Length A cryptographic key is represented as a string of binary digits – 0’s & 1’s inside a computer A cryptographic key is represented as a string of binary digits – 0’s & 1’s inside a computer If a key is 1 bit in length it means two possible keys, that is, 0 and 1. If a key is 2 bits in length it means four possible key values, 00,01,10 and 11 If a key is 1 bit in length it means two possible keys, that is, 0 and 1. If a key is 2 bits in length it means four possible key values, 00,01,10 and 11 Key having 3 bits length can have values - 000,001,010,011,100,101,110,111 Key having 3 bits length can have values - 000,001,010,011,100,101,110,111 Number of keys = 2 (number f bits) Number of keys = 2 (number f bits)

11 11 Symmetric Key Algorithms DES (Data Encryption Standard) – 56 bits DES (Data Encryption Standard) – 56 bits IDEA (International Data Encryption Algorithm (IDEA) – 128 bits IDEA (International Data Encryption Algorithm (IDEA) – 128 bits RC2 – (block cipher) 1-2048 bits RC2 – (block cipher) 1-2048 bits RC4 (stream cipher) – 1-2048 bits RC4 (stream cipher) – 1-2048 bits Rinjdael – 128-256 bits Rinjdael – 128-256 bits

12 12 Attacks on Symmetric Key Algorithms Key Search Attacks Key Search Attacks Cryptanalysis Cryptanalysis System-based Attacks System-based Attacks

13 13 Attacks on Symmetric Key Algorithms… Key Search (Brute Force) Attacks – attempt to decrypt the message with every possible key Key Search (Brute Force) Attacks – attempt to decrypt the message with every possible key  The greater the key length, the more difficult it is to identify the key  If there were a computer that could search a billion keys per second, and if you had a billion of these computers, it would still take 10783 billion years to search all possible 128 bit keys

14 14 Attacks on Symmetric Key Algorithms… Cryptanalysis – encryption algorithms can be defeated by using a combination of sophisticated mathematics and computing power so that many encrypted messages can be deciphered without knowing the key Cryptanalysis – encryption algorithms can be defeated by using a combination of sophisticated mathematics and computing power so that many encrypted messages can be deciphered without knowing the key System-Based Attacks – attack the cryptographic system that uses the cryptographic algorithm without actually attacking the algorithm itself System-Based Attacks – attack the cryptographic system that uses the cryptographic algorithm without actually attacking the algorithm itself

15 15 Public Key Algorithms DSS – Digital Signature Standard based on DSA (Digital Standard Algorithm) – key length is between 512-1024 bits DSS – Digital Signature Standard based on DSA (Digital Standard Algorithm) – key length is between 512-1024 bits RSA RSA  developed in 1977 by three professors at MIT  provides basis of existing digital signature technology  key may be of any length depending on the system Elliptic Curves Elliptic Curves

16 16 Attacks on Public Key Algorithms Key Search Attacks – these attacks attempt to derive a private key from its corresponding public key with the use of a large factoring number Key Search Attacks – these attacks attempt to derive a private key from its corresponding public key with the use of a large factoring number Analytical Attacks – uses some fundamental flaw in the mathematical problem on which the encryption system is based Analytical Attacks – uses some fundamental flaw in the mathematical problem on which the encryption system is based

Download ppt "1 Cryptography Cryptography is a collection of mathematical techniques to ensure confidentiality of information Cryptography is a collection of mathematical."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Chapter 11: Cryptography

Chapter 11: Cryptography
Pretty Good Privacy (PGP). How PGP works PGP uses both public-key cryptography and symmetric key cryptography, and includes a system which binds the public.

Pretty Good Privacy (PGP). How PGP works PGP uses both public-key cryptography and symmetric key cryptography, and includes a system which binds the public.
6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC513-01 Instructor:Professor Anvari Student ID:106845 Name:Xin Wen Date:11/25/00.

6/1/20151 Digital Signature and Public Key Infrastructure Course:COSC Instructor:Professor Anvari Student ID: Name:Xin Wen Date:11/25/00.
Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.

Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Cryptography Basic (cont)

Cryptography Basic (cont)
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.

Symmetric Key Distribution Protocol with Hybrid Crypto Systems Tony Nguyen.
Cryptographic Technologies

Cryptographic Technologies
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.

Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.
Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.

Introduction to Public Key Infrastructure (PKI) Office of Information Security The University of Texas at Brownsville & Texas Southmost College.
Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.

Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
Controller of Certifying Authorities PKI Technology - Role of CCA Assistant Controller (Technology) Controller of Certifying Authorities Ministry of Communications.

Controller of Certifying Authorities PKI Technology - Role of CCA Assistant Controller (Technology) Controller of Certifying Authorities Ministry of Communications.

Similar presentations

Ads by Google