Download presentation
Presentation is loading. Please wait.
Published byGilbert Turner Modified over 8 years ago
1
Public-Key encryption structure First publicly proposed by Diffie and Hellman in 1976First publicly proposed by Diffie and Hellman in 1976 Based on mathematical functions rather than on simple operations on bit patternsBased on mathematical functions rather than on simple operations on bit patterns Is asymmetric, involving the use of two separate keysIs asymmetric, involving the use of two separate keys Public-key encryption is more secure from cryptanalysis than conventional encryption Public-key encryption is a general-purpose technique that has made conventional encryption obsolete There is a feeling that key distribution is trivial when using public-key encryption, compared to the rather cumbersome handshaking involved with key distribution centers for conventional encryption Misconceptions:
3
Applications for public-key cryptosystems Public-key systems are characterized by the use of a cryptographic type of algorithm with two keys, one held private and one available publiclyPublic-key systems are characterized by the use of a cryptographic type of algorithm with two keys, one held private and one available publicly Depending on the application, the sender uses either the sender’s private key, the receiver’s public key, or both to perform some type of cryptographic functionDepending on the application, the sender uses either the sender’s private key, the receiver’s public key, or both to perform some type of cryptographic function The use of public-key cryptosystems can be classified into three categories: Encryption/decryption The sender encrypts a message with the recipient’s public key Digital signature The sender “signs” a message with its private key Key exchange Two sides cooperate to exchange a session key
4
Table 3.2 applications for public-key cryptosystems
7
Diffie-Hellman Key Exchange First published public-key algorithmFirst published public-key algorithm A number of commercial products employ this key exchange techniqueA number of commercial products employ this key exchange technique Purpose of the algorithm is to enable two users to exchange a secret key securely that then can be used for subsequent encryption of messagesPurpose of the algorithm is to enable two users to exchange a secret key securely that then can be used for subsequent encryption of messages The algorithm itself is limited to the exchange of the keysThe algorithm itself is limited to the exchange of the keys Depends for its effectiveness on the difficulty of computing discrete logarithmsDepends for its effectiveness on the difficulty of computing discrete logarithms
10
Digital Signature standard (DSS) FIPS PUB 186FIPS PUB 186 Makes use of the SHA-1 and presents a new digital signature technique, the Digital Signature Algorithm (DSA)Makes use of the SHA-1 and presents a new digital signature technique, the Digital Signature Algorithm (DSA) Originally proposed in 1991 and revised in 1993 and again in 1996Originally proposed in 1991 and revised in 1993 and again in 1996 Uses an algorithm that is designed to provide only the digital signature functionUses an algorithm that is designed to provide only the digital signature function Unlike RSA, it cannot be used for encryption or key exchangeUnlike RSA, it cannot be used for encryption or key exchange
11
Elliptic-curve cryptology (ECC) Technique is based on the use of a mathematical construct known as the elliptic curveTechnique is based on the use of a mathematical construct known as the elliptic curve Principal attraction of ECC compared to RSA is that it appears to offer equal security for a far smaller bit size, thereby reducing processing overheadPrincipal attraction of ECC compared to RSA is that it appears to offer equal security for a far smaller bit size, thereby reducing processing overhead The confidence level in ECC is not yet as high as that in RSAThe confidence level in ECC is not yet as high as that in RSA
12
Summary Approaches to message authenticationApproaches to message authentication Authentication using conventional encryptionAuthentication using conventional encryption Message authentication without message encryptionMessage authentication without message encryption Secure hash functionsSecure hash functions Hash function requirementsHash function requirements Security of hash functionsSecurity of hash functions Simple hash functionsSimple hash functions The SHA secure hash function SHA-3The SHA secure hash function SHA-3 Digital signaturesDigital signatures Message authentication codesMessage authentication codes HMAC MACs based on block ciphers Public-key cryptography principlesPublic-key cryptography principles Public-key encryption structure Applications for public-key cryptosystems Requirements for public-key cryptography Public-key cryptography algorithmsPublic-key cryptography algorithms The RSA public-key encryption algorithm Diffie-Hellman key exchange Other public-key cryptography algorithms
Similar presentations
© 2024 SlidePlayer.com. Inc.
All rights reserved.