Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cryptography and the Web Lincoln Stein Whitehead Institute/MIT Center for Genome Research.

Published byGeorgia Parrish Modified over 9 years ago

Similar presentations

Presentation on theme: "Cryptography and the Web Lincoln Stein Whitehead Institute/MIT Center for Genome Research."— Presentation transcript:

1 Cryptography and the Web Lincoln Stein Whitehead Institute/MIT Center for Genome Research

2 Cryptography u The art of secret message writing. u Creating texts that can only be read by authorized individuals only.

3 Simple Cryptography   Plaintext Key Ciphertext

4 Caesar Cipher ABCDEFGHIJKLMNOPQRSTUVWXYZ NOPQRSTUVWXYZABCDEFGHIJKLM THE GOTHS COMETH rotate 13 positions FUR TAFUE PAYRFU Plaintext Key Ciphertext 13

5 ABCDEFGHIJKLMNOPQRSTUVWXYZ BCDEFGHIJKLMNOPQRSTUVWXYZA CDEFGHIJKLMNOPQRSTUVWXYZAB DEFGHIJKLMNOPQRSTUVWXYZABC EFGHIJKLMNOPQRSTUVWXYZABCD FGHIJKLMNOPQRSTUVWXYZABCDE GHIJKLMNOPQRSTUVWXYZABCDEF HIJKLMNOPQRSTUVWXYZABCD... Rotating Key Cipher SOUND THE RETREAT DEADFED VSUPC XKG UEWWEX plaintext key ciphertext

6 General Principles u Longer keys make better ciphers u Random keys make better ciphers u Good ciphers produce “random” ciphertext u Best keys are used once and thrown away

7 Symmetric (Private Key) Cryptography 8 u Examples: DES, RC4, RC5, IDEA, Skipjack u Advantages: fast, ciphertext secure u Disadvantages: must distribute key in advance, key must not be divulged

8 DES: Data Encryption Standard u Widely published & used - federal standard u Complex series of bit substitutions, permutations and recombinations u Basic DES: 56-bit keys –Crackable in about a day using specialized hardware u Triple DES: effective 112-bit key –Uncrackable by known techniques

9 Asymmetric (Public Key) Cryptography 8 8 u Examples: RSA, Diffie-Hellman, ElGamal u Advantages: public key widely distributable, does digital signatures u Disadvantages: slow, key distribution

10 RSA u Algorithm patented by RSA Data Security u Uses special properties of modular arithmetic –C = P e (mod n) –P = C d (mod n) –e, d, and n all hundreds of digits long and derived from a pair of large prime numbers u Keys lengths from 512 to 1024 bits

11 Public Key Encryption: The Frills FrillTechnique Fast encryption/decryptionDigital envelopes Authentication of senderDigital signature Verification of message integrityMessage digests Safe distribution of public keysCertifying authorities

12 Digital Envelopes 88

13 Digital Signatures 88

14 Message Digests

15 Certifying Authorities

16 Hierarchy of Trust

17 Secure, Verifiable Transmission 8

18 Public Key Cryptography on the Web u Secure Socket Layer (SSL) –Netscape Communications Corporation u Secure HTTP (SHTTP) –Commerce Net

19 SSL and SHTTP, similarities u RSA public key cryptography u MD5 message digests u Variety of private key systems –Strong cryptography for use in U.S. –Weakened cryptography for export.

20 SSL and SHTTP, differences Physical Layer Network interface Internet Transport Application SSL HTTP TELNETNNTP FTP SHTTP

21 Using SSL

22 Signed Certificate

23 Applying for a Server Certificate

24 Filling out Certificate Request

25 URLs u SSL Protocol –http://home.netscape.com/newsref/std/SSL.html u SHTTP Protocol –http://www.eit.com/projects/s-http/ u Verisign –http://www.verisign.com/ u RSA Data Security –http://www.rsa.com/

Download ppt "Cryptography and the Web Lincoln Stein Whitehead Institute/MIT Center for Genome Research."

Similar presentations

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Cryptography and Network Security

Cryptography and Network Security
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.

An Introduction to Secure Sockets Layer (SSL). Overview Types of encryption SSL History Design Goals Protocol Problems Competing Technologies.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
Web Security CS-431. HTTP Authentication Protect web content from those who don’t have a “need to know” Require users to authenticate using a userid/password.

Web Security CS-431. HTTP Authentication Protect web content from those who don’t have a “need to know” Require users to authenticate using a userid/password.
Network Security Chapter 8. Cryptography Introduction to Cryptography Substitution Ciphers Transposition Ciphers One-Time Pads Two Fundamental Cryptographic.

Network Security Chapter 8. Cryptography Introduction to Cryptography Substitution Ciphers Transposition Ciphers One-Time Pads Two Fundamental Cryptographic.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.

Chapter 9: Using and Managing Keys Security+ Guide to Network Security Fundamentals Second Edition.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Cryptographic Techniques Instructor: Jerry Gao Ph.D. San Jose State University URL: May,

Cryptographic Techniques Instructor: Jerry Gao Ph.D. San Jose State University URL: May,
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Cryptographic Technologies

Cryptographic Technologies
Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Mar 5, 2002Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.

Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.

Similar presentations

Ads by Google