Presentation is loading. Please wait.

Presentation is loading. Please wait.

Symmetric Encryption Prof. Ravi Sandhu.

Published byJada Richards Modified over 10 years ago

Similar presentations

Presentation on theme: "Symmetric Encryption Prof. Ravi Sandhu."— Presentation transcript:

1 Symmetric Encryption Prof. Ravi Sandhu

2 SECRET KEY CRYPTOSYSTEM
INSECURE CHANNEL Plain- text Plain- text Ciphertext Encryption Algorithm E Decryption Algorithm D A B Secret Key shared by A and B K K SECURE CHANNEL

3 SECRET KEY CRYPTOSYSTEM
confidentiality depends only on secrecy of the key size of key is critical secret key systems do not scale well with N parties we need to generate and distribute N*(N-1)/2 keys A and B can be people or computers

4 MASTER KEYS AND SESSION KEYS
long-term or master keys prolonged use increases exposure session keys short-term keys communicated by means of long-term secret keys public key technology

5 CRYPTANALYSIS ciphertext only known plaintext chosen plaintext
cryptanalyst only knows ciphertext known plaintext cryptanalyst knows some plaintext-ciphertext pairs chosen plaintext chosen ciphertext

6 KNOWN PLAINTEXT ATTACK
40 bit key requires 239  5 * 1011 trials on average (exportable from USA) trials/second time required 1 20,000 years years days minutes seconds

7 KNOWN PLAINTEXT ATTACK
56 bit key requires 255  3.6 * 10^16 trials on average (DES) trials/second time required years years years year hours

8 KNOWN PLAINTEXT ATTACK
80 bit key requires 279  6 * 1023 trials on average (SKIPJACK) trials/second time required years years years years years

9 KNOWN PLAINTEXT ATTACK
128 bit key requires 2127  2 * 1038 trials on average (IDEA) trials/second time required years years years years years

10 DICTIONARY ATTACKS if keys are poorly chosen known plaintext attacks can be very simple often the user’s password is the key in a dictionary attack the cryptanalyst tries passwords from a dictionary, rather than all possible keys for a 20,000 word dictionary, 1 trial/second will crack a poor password in less than 3 hours

11 CURRENT GENERATION SECRET KEY CRYPTOSYSTEMS
64 bit data block size DES: 56 bit key Triple DES: 112 bit key Triple DES: 168 bit key Skipjack: 80 bit key IDEA: 128 bit key RC2: variable size key: 1 byte to 128 bytes many others

12 DOUBLE DES Intermediate Ciphertext Plain- text Cipher- text E E K1 K2
effective key size is only 57 bits due to meet-in-the-middle attack

13 TRIPLE DES Cipher- text Plain- text E D E K1 K2 K1
effective key size is 112 bits due to meet-in-the-middle attack

14 PERFECT SECRECY VERNAM ONE-TIME PAD
Plain- text Ciphertext Plain- text Ci + + Mi Mi A B AB Secret Key Ki Ki SECURE CHANNEL

15 PERFECT SECRECY VERNAM ONE-TIME PAD
known plaintext reveals the portion of the key that has been used, but does not reveal anything about the future bits of the key has been used can be approximated

16 ADVANCED ENCRYPTION STANDARD
New Advanced Encryption Standard under development by NIST must support key-block combinations of , , may support other combinations selection of Rijndaehl algorithm announced in 2000 will be in place in a couple of years

17 ELECTRONIC CODE BOOK (ECB) MODE
64 bit Data block 56 bit key 56 bit key D E 64 bit Data block OK for small messages identical data blocks will be identically encrypted

18 CIPHER BLOCK CHAINING (CBC) MODE
64 bit Data block + 64 bit previous ciphertext block 56 bit key 56 bit key D E  is the exclusive OR operation 64 bit previous ciphertext block + 64 bit Data block

19 CIPHER BLOCK CHAINING (CBC) MODE
Needs an Initialization Vector (IV) to serve as the first feedback block IV need not be secret or random Integrity of the IV is important, otherwise first data block can be arbitrarily changed. IV should be changed from message to message, or first block of every message should be distinct

Download ppt "Symmetric Encryption Prof. Ravi Sandhu."

Similar presentations

TWO STEP EQUATIONS 1. SOLVE FOR X 2. DO THE ADDITION STEP FIRST

TWO STEP EQUATIONS 1. SOLVE FOR X 2. DO THE ADDITION STEP FIRST
CLASSICAL ENCRYPTION TECHNIQUES

CLASSICAL ENCRYPTION TECHNIQUES
6.1.2 Overview DES is a block cipher, as shown in Figure 6.1.

6.1.2 Overview DES is a block cipher, as shown in Figure 6.1.
Cryptography Ch-1 prepared by: Diwan.

Cryptography Ch-1 prepared by: Diwan.
Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
ISA 662 Internet Security Protocols Kerberos Prof. Ravi Sandhu.

ISA 662 Internet Security Protocols Kerberos Prof. Ravi Sandhu.
ISA 662 IKE Key management for IPSEC Prof. Ravi Sandhu.

ISA 662 IKE Key management for IPSEC Prof. Ravi Sandhu.
Symmetric Message Authentication Codes Prof. Ravi Sandhu.

Symmetric Message Authentication Codes Prof. Ravi Sandhu.
Asymmetric Encryption Prof. Ravi Sandhu. 2 © Ravi Sandhu PUBLIC KEY ENCRYPTION Encryption Algorithm E Decryption Algorithm D Plain- text Plain- text Ciphertext.

Asymmetric Encryption Prof. Ravi Sandhu. 2 © Ravi Sandhu PUBLIC KEY ENCRYPTION Encryption Algorithm E Decryption Algorithm D Plain- text Plain- text Ciphertext.
PKI Introduction Ravi Sandhu 2 © Ravi Sandhu 2002 CRYPTOGRAPHIC TECHNOLOGY PROS AND CONS SECRET KEY SYMMETRIC KEY Faster Not scalable No digital signatures.

PKI Introduction Ravi Sandhu 2 © Ravi Sandhu 2002 CRYPTOGRAPHIC TECHNOLOGY PROS AND CONS SECRET KEY SYMMETRIC KEY Faster Not scalable No digital signatures.
Properties Use, share, or modify this drill on mathematic properties. There is too much material for a single class, so you’ll have to select for your.

Properties Use, share, or modify this drill on mathematic properties. There is too much material for a single class, so you’ll have to select for your.
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13

Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Title Subtitle.

Title Subtitle.
0 - 0.

0 - 0.
FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.

FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.
Addition Facts 1 - 20.

Addition Facts
Cryptography encryption authentication digital signatures

Cryptography encryption authentication digital signatures
1 Pretty Good Privacy (PGP) Security for Electronic Email.

1 Pretty Good Privacy (PGP) Security for Electronic .
DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.

DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.

Similar presentations

Ads by Google