Presentation is loading. Please wait.

Presentation is loading. Please wait.

COMP 424 Lecture 04 Advanced Encryption Techniques (DES, AES, RSA)

Published bySpencer Young Modified over 9 years ago

Similar presentations

Presentation on theme: "COMP 424 Lecture 04 Advanced Encryption Techniques (DES, AES, RSA)"— Presentation transcript:

1 COMP 424 Lecture 04 Advanced Encryption Techniques (DES, AES, RSA)

2 Secret Key Systems ● A message M, encrypted with key K is denoted as [M] K. ● Decryption is done with the same key and denoted: [[M] K ] K = M. ● The basic disadvantage to these systems is a problem of combinatorics.

3 Public Key Systems ● A message M, from A to B is encrypted with B's public key and decrypted with B's private key. – Anyone and everyone can know B's public key. ● The encrypted message is denoted: [M] KBpub. ● The decryption is denoted: [[M] KBpub ] KBpriv = M. ● What the advantages and disadvantages?

4 Can Provide Authentication ● Reverse the use of the keys (encrypt with private and decrypt with public) and you can now authenticate who sent the message. ● [[M] KBpriv ] KBpub = M – If B is the only person who holds the key Kbpriv then only B could have been the person to have encrypted M.

5 Increasing Confiedentiality ● A message from A to B could be encrypted as: [[M] KApriv ] KBpub = M ● Decryption: [[M] KBpriv ] KApub = M ● Where: [[[[M] KApriv ] KBpub ] KBpriv ] KApub = M ● Wouldn't such a system be neat... ● (Not all asymmetric key cryptosystems have the propery: [[M] KBpriv ] KBpub = M

6 Rivest-Shamir-Adelman (MIT 1977) ● Based on mathematical number theory. ● Relies on the underlying Number Theory of difficulty of determining multiplicative factors (prime numbers). ● Large numbers are extremely difficult to factor. ● Will this always be true? (probably not) – Moore's law (possibly) – Quantum / non-deterministic computing (probably)

7 RSA Basic property ● Given two (related) keys, e and d the basics of the RSA cryptosystem is: – P = E(e, D(d, P)) = D(d, E(e, P)) ● That is to say that if we encrypt with e we can decrypt with d and if we encrypt with d we can decrypt with e. ● Math: and ● Because the exponentiation of P is performed mod n it is difficult to factor to recover plaintext

8 RSA details – Select two large prime numbers p and q about 100 digits in length – Compute n = pq and psi=(p-1)(q-1) – Choose an integer E between 3 and psi which has no common factors with psi – Select an integer D, such that DE differs from 1 by a multiple of psi – Make E and n public but keep p, q, D and psi private.

9 Some Problems ● Compromised keys can be used for masquerading and disclosure attacks ● Key distribution can be complex ● Not scalable in large systems ● Many secret (symmetric) key systems are weak compared to PKI (Public Key Infrastructure) approaches.

10 DES Overview – Early 1970s (1972 died, 1974, 1976 adopted) – Targeted for public cryptography – Efficient and unbreakable – Easy to understand – Publishable – Availability – Economical – Exportable

11 DES (IBM's lucifer) ● Combination of – Substitution – Transposition ● 16 cycles of each ● Processes plain text in blocks of 64 bits (56data bits plus 8 checking bits) ● Uses only standard arithmetic and logic – (RSA uses 500 and 1000 bit arithmetic operations.)

12 Unbreakable?? ● Since 1976 (biven Moore's law) computers have increased in speed 2 18 fold. (262,144 times) ● DES 56-bit is no longer considered secure. ● Solutions? – Use keys longer than 56bits? – Well... no. The DES algorithm is fixed at 56 bits. The nature of the algorithm requires it.

13 Double DES ● Use two keys k1 and k2 and perform the encryption E(k 2,E(k 1,P)) ● Should be doubly strong just as two locks are harder to pick than one right? ● Wrong. Because of the nature of the DES algorithm the work required to crack the encryption increases from 2 56 to just 2 57. ● Not worth the effort.

14 Triple DES (3DES) ● A simple trick solves the problem... ● C = E(k 1,D(k 2,E(k 1,P)))

15 Differential Cryptanalysis ● Biham and Shamir, 1990 ● A method that investigates the change in cryptographic strength when a change is made to the encryption algorithm – Almost any change made to the DES algorithm weakens it. – Is DES optimal then? Possibly but the point is moot...

16 Breaking DES ● 1997: 3,500 machines where used to infer a DES key. It required four months to do so. ● 1998: special hardware (DES cracker) was construced at a cost of $100,000 and could find a DES key in just four days. ● So its still rather secure because the resources to break it are still rather expensive. But it is certainly on the verge of being obsolete. ● 3DES is still pretty good. 2 112 bits effectively.

17 Future... ● AES: Rijndael

Download ppt "COMP 424 Lecture 04 Advanced Encryption Techniques (DES, AES, RSA)"

Similar presentations

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.

Using Cryptography to Secure Information. Overview Introduction to Cryptography Using Symmetric Encryption Using Hash Functions Using Public Key Encryption.
IS 302: Information Security and Trust Week 4: Asymmetric Encryption

IS 302: Information Security and Trust Week 4: Asymmetric Encryption
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (4) Information Security.
CSE331: Introduction to Networks and Security Lecture 19 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 19 Fall 2002.
Public Key Encryption Algorithm

Public Key Encryption Algorithm
First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown and edited by Archana Chidanandan Cryptographic Tools.

First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown and edited by Archana Chidanandan Cryptographic Tools.
Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:

Dr Alejandra Flores-Mosri Message Authentication Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
1 Lecture #10 Public Key Algorithms HAIT Summer 2005 Shimrit Tzur-David.

1 Lecture #10 Public Key Algorithms HAIT Summer 2005 Shimrit Tzur-David.
Cryptography1 CPSC 3730 Cryptography Chapter 9 Public Key Cryptography and RSA.

Cryptography1 CPSC 3730 Cryptography Chapter 9 Public Key Cryptography and RSA.
CS 682 - Network Security Lecture 2 Prof. Katz. 9/7/2000Lecture 2 - Data Encryption2 DES – Data Encryption Standard Private key. Encrypts by series of.

CS Network Security Lecture 2 Prof. Katz. 9/7/2000Lecture 2 - Data Encryption2 DES – Data Encryption Standard Private key. Encrypts by series of.
Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.
Lecture 2.2: Private Key Cryptography II CS 436/636/736 Spring 2012 Nitesh Saxena.

Lecture 2.2: Private Key Cryptography II CS 436/636/736 Spring 2012 Nitesh Saxena.
What is Cryptography? Definition: The science or study of the techniques of secret writing, esp. code and cipher systems, methods, and the like Google.

What is Cryptography? Definition: The science or study of the techniques of secret writing, esp. code and cipher systems, methods, and the like Google.
Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,

Public Key Cryptography RSA Diffie Hellman Key Management Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College,
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.

Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.
Introduction to Public Key Cryptography

Introduction to Public Key Cryptography
Public Key Model 8. Cryptography part 2.

Public Key Model 8. Cryptography part 2.

Similar presentations

Ads by Google