Presentation is loading. Please wait.

Presentation is loading. Please wait.

Encryption.

Published byLandon Fagan Modified over 11 years ago

Similar presentations

Presentation on theme: "Encryption."— Presentation transcript:

1 Encryption

2 TOPICS Objectives RC4 DES 3DES AES

3 Objectives To understand the process of encryption and strong encryption algorithms.

4 Key Encryption Process

5 Block Ciphers vs Stream Cipher
Block ciphers – ie. DES, 3DES, AES Message is broken into blocks, each of which is then encrypted Operate with a fixed transformation on large blocks of plaintext data Stream ciphers – ie. RC4 Process the message bit by bit (as a stream) Operate with a time-varying transformation on individual plaintext digits

6 Confusion vs Diffusion
Confusion: to make the relation between the plaintext and the ciphertext as complex as possibe Caesar ciphers have poor confusion Polyalphabetic substitutions and Vernam cipher have good confusion Diffusion: to spread the influence of the individual plaintext characters over as much of the ciphertext as possible, therefore hiding Substitution ciphers Transposition ciphers

7 Encryption Algorithm Characteristics
Name Cipher Type Key Size Common Use RC4 Stream 64,128 up to 256 bits WEP,WPA (TKIP),SSL/TLS DES Block 64-bit (56-bit key + 8 Parity bits) SSH, IPSec 3DES Three-Key Mode: 192-bit (168-bit key + 24 Parity bits) Two-Key Mode: 128-bit (112-bit key + 16 Parity bits) SSL/TLS,SSH, IPSec AES 128,192,256-bits 802.11i-CCMP, SSH,PGP

8 Client Authentication SSL

9 RC4 RC4 was designed by Ron Rivest of RSA Security in 1987, it is officially termed “Rivest Cipher 4”. RC4 algorithm is capable of key lengths of up to 256 bits and is typically implemented in 64 bits, 128 bits and 256 bits. RC4 is used in WEP, TKIP, Secure Sockets Layer (SSL) , (TLS) Transport Layer Security

10 RC4 Key-Scheduling Alg.

11 RC4 – PRGA, Pseudo Random Generation Algorithm

12 RC4 Test Vector

13 Cryptographic nonce

14 Data Encryption Standard (DES)
Most widely-used secret-key encryption method Originally developed by IBM in 1970s, later adopted by U.S. government in 1977 Encrypts 64-bit plaintext using a 56-bit key Relatively inexpensive to implement in hardware and widely available Largest users: financial transactions, PIN code generation, etc.

15 DES Algorithm 64-bit plaintext is divided into two halves. left half and right half, 32 bits each. 16 rounds. This example shows one half.

16

17 Feistel Function Expansion Key Mixing Substitution Permutation

18 Feistel Function (Expansion)

19 Key Schedule

20 DES Cracking Time!

21 3DES Encryption Process
Plaintext Key 1 Key 2 Key 3 Ciphertext

22 Advanced Encryption Standard AES ENCRYPTION
Rijndael is the selected (NIST competition) algorithm for AES (advanced encryption standard). Now standardized as FIPS-197 It is a block cipher algorithm, operating on blocks of data. It needs a secret key, which is another block of data.

23 AES ENCRYPTION Performs encryption and the inverse operation, decryption (using the same secret key). It reads an entire block of data, processes it in rounds and then outputs the encrypted (or decrypted) data. Each round is a sequence of four inner transformations. The AES standard specifies 128-bit data blocks and 128-bit, 192-bit or 256-bit secret keys. The algorithm consists of four stages that make up a round which is iterated 10 times for a 128-bit length key, 12 times for a 192-bit key, and 14 times for a 256-bit key. The first stage "SubBytes" transformation is a non-linear byte substitution for each byte of the block. The second stage "ShiftRows" transformation cyclically shifts (permutes) the bytes within the block. The third stage "MixColumns" transformation groups 4-bytes together forming 4-term polynomials and multiplies the polynomials with a fixed polynomial mod (x^4+1). The fourth stage "AddRoundKey" transformation adds the round key with the block of data.

24 AES Algorithm – Encryption
encryption algorithm structure of a generic round PLAINTEXT SECRET KEY INPUT DATA ROUND KEY 0 ROUND 0 SUBBYTES ROUND KEY 1 ROUND 1 SHIFTROWS KEY SCHEDULE MIXCOLUMNS ROUND KEY 9 ROUND 9 ROUND KEY ADDROUNDKEY ROUND KEY 10 ROUND 10 OUTPUT DATA ENCRYPTED DATA

25 AES Algorithm – Encryption A little closer look
1. Perform a byte by byte substitution 2. Perform a row by row shift operation 3. Perform a column by column transformation 4. Perform a XOR with a round key No of rounds = 10 for 128 bits 12 for 192 bits 14 for 256 bits

26 AES Advanced Encryption Standard 1. The SubByte Step

27 AES Advanced Encryption Standard 2. The ShiftRow Step

28 AES Advanced Encryption Standard 3. The MixColumns Step

29 multiplication operation

30 AES The AddRoundKey step

31 Some facts about AES AES keys (128bits) possible keys
340,000,000,000,000,000,000,000,000,000,000,000,000 possible keys Suitable for a wide variety of platforms - ranging from smart cards to servers Much simpler, faster and more secure (than it’s predecessor 3DES ) e+38

32 AES ‘built-into’ products
Navastream Crypto Phones PGP Mobile for the TREO 650 Nokia’s solutions for mobile VPN client – AES 256

33 AES Cracking - 2006 Assumptions
3 GHz dedicated processor 1 clock cycle per key generation 2^128 keys / 3E9 processes per second = 1.13E29 seconds 3.6E21 years, 3.6 Zy (Zetta years) 3.6 Sextillion years

34 AES Cracking - Future 1 Week Decryption 5.6E32 Hz Processor, 560 MHz
Clock Cycles per Key Generation 1 4 8 16 0.5 38.8 155.3 310.7 621.3 77.7 1242.6 1.5 116.5 466.0 932.0 1863.9 2 2485.3 Processor Speed Doubling Rate (Years)

35 Conclusion DES has been found to be vulnerable to brute-force attacks.
3DES, an encryption algorithm with three successive 56-bit keys, makes it a stronger solution but is much slower than DES. AES is currently still considered free from successful cryptanalytic attacks.

Download ppt "Encryption."

Similar presentations

CLASSICAL ENCRYPTION TECHNIQUES

CLASSICAL ENCRYPTION TECHNIQUES
6.1.2 Overview DES is a block cipher, as shown in Figure 6.1.

6.1.2 Overview DES is a block cipher, as shown in Figure 6.1.
Symmetric Encryption Prof. Ravi Sandhu.

Symmetric Encryption Prof. Ravi Sandhu.
CWSP Guide to Wireless Security Wireless Security Models.

CWSP Guide to Wireless Security Wireless Security Models.
DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.

DES The Data Encryption Standard (DES) is a classic symmetric block cipher algorithm. DES was developed in the 1970’s as a US government standard The block.
Block Cipher Modes of Operation and Stream Ciphers

Block Cipher Modes of Operation and Stream Ciphers
ECE454/CS594 Computer and Network Security

ECE454/CS594 Computer and Network Security
Lect. 8 : Advanced Encryption Standard

Lect. 8 : Advanced Encryption Standard
Security – Keys, Digital Signatures and Certificates I

Security – Keys, Digital Signatures and Certificates I
Conventional Encryption Techniques BY:-H.M.Patel

Conventional Encryption Techniques BY:-H.M.Patel
This work is supported by the National Science Foundation under Grant Number DUE-0302909. Any opinions, findings and conclusions or recommendations expressed.

This work is supported by the National Science Foundation under Grant Number DUE Any opinions, findings and conclusions or recommendations expressed.
Network Security Essentials Chapter 2

Network Security Essentials Chapter 2
International Data Encryption Algorithm

International Data Encryption Algorithm
L8. Reviews Rocky K. C. Chang, May 2011. Foci of this course 2 Rocky K. C. Chang  Understand the 3 fundamental cryptographic functions and how they are.

L8. Reviews Rocky K. C. Chang, May Foci of this course 2 Rocky K. C. Chang  Understand the 3 fundamental cryptographic functions and how they are.
The Data Encryption Standard - see Susan Landau’s paper: “Standing the test of time: the data encryption standard.” DES - adopted in 1977 as a standard.

The Data Encryption Standard - see Susan Landau’s paper: “Standing the test of time: the data encryption standard.” DES - adopted in 1977 as a standard.
From Crypto-Theory to Crypto-Practice 1 CHAPTER 14: From Crypto-Theory to Crypto-Practice SHIFT REGISTERS The first practical approach to ONE-TIME PAD.

From Crypto-Theory to Crypto-Practice 1 CHAPTER 14: From Crypto-Theory to Crypto-Practice SHIFT REGISTERS The first practical approach to ONE-TIME PAD.
“Advanced Encryption Standard” & “Modes of Operation”

“Advanced Encryption Standard” & “Modes of Operation”
Chap. 5: Advanced Encryption Standard (AES) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.

Chap. 5: Advanced Encryption Standard (AES) Jen-Chang Liu, 2005 Adapted from lecture slides by Lawrie Brown.
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
1 Lecture 3: Secret Key Cryptography Outline concepts DES IDEA AES.

1 Lecture 3: Secret Key Cryptography Outline concepts DES IDEA AES.

Similar presentations

Ads by Google