Untitled

Questions and Answers

What is the primary function of the S-boxes within the DES algorithm?

• To handle the permutation of bits before the final output
• To perform a linear transformation of the input bits
• To manage the key schedule by generating subkeys for each round
• To introduce non-linearity, contributing significantly to the algorithm's security (correct)

The DES key schedule uses all 64 bits of the input key directly in each round to maximize security.

False (B)

In the context of AES, what overarching security goal do both the substitution and permutation phases contribute to?

avalanche effect

AES is structured as a substitution-permutation network, where each round consists of a key addition phase, a substitution phase and a ______ phase.

permutation

Match the AES key sizes with the corresponding number of rounds:

128 bits = 10 rounds 192 bits = 12 rounds 256 bits = 14 rounds

Which mode of operation for DES is considered the simplest to implement but is also susceptible to deletion and insertion attacks?

ECB mode (D)

In the DES algorithm, how are the row and column numbers determined for selecting a value within an S-box?

Row determined by bits 1 and 6, column by bits 2, 3, 4, and 5 (A)

What is the block size in bits for the AES standard?

128

In a Feistel cipher, what is a key advantage regarding the round function F?

F can be any function, and the cipher remains invertible. (B)

In 2-key Triple DES, the effective key length is 168 bits, providing the same level of security as 3-key Triple DES.

False (B)

What are the three main considerations to obtain a secure cipher when using the Feistel structure, besides the function F?

key generation, number of rounds, round function

In the encryption process of a Feistel cipher, the right half of the current round, $R_i$, is computed as $L_{i-1}$ ______ $F(k_i, R_{i-1})$.

⊕

Match the following DES operations with their descriptions:

Initial Permutation = Rearranges the bits of the plaintext block before the first round. Expansion Permutation = Expands the 32-bit right half to 48 bits. Round Key Addition = XORs the expanded right half with a 48-bit round key. Final Permutation = The inverse of the initial permutation, applied after the 16th round.

In DES, what is the purpose of the expansion permutation within the function F?

To increase the diffusion of the cipher, ensuring small changes propagate widely. (C)

Why is a 56-bit key length considered insufficient for modern applications?

Because computational power has increased, making brute-force attacks feasible. (A)

The same code for the function F can be used for both encryption and decryption in a Feistel cipher.

True (A)

Which mode of operation turns a block cipher into a stream cipher, benefiting from the bit flip property?

OFB (Output Feedback) mode (B)

In ECB mode, if two plaintext blocks are identical, their corresponding ciphertext blocks will also be identical, making it deterministic.

True (A)

In CBC mode encryption, what mathematical operation combines the previous ciphertext block with the current plaintext block before encryption?

XOR

In OFB mode, the keystream is generated by encrypting the ______ and then iteratively encrypting the output from the previous encryption.

IV

What is a significant vulnerability associated with ECB mode encryption?

Susceptibility to replay attacks (A)

A single bit error during the transmission of ciphertext in CBC mode will only affect the decryption of a single bit in the corresponding plaintext. In CBC mode, just one block will be decrypted incorrectly.

False (B)

In OFB mode, if the same Initialization Vector (IV) is used with the same key, what is the primary security risk?

Keystream reuse

Match the following modes of operation with their primary characteristics:

ECB = Deterministic encryption; identical plaintext blocks result in identical ciphertext blocks. CBC = Employs an initialization vector and chaining; a bit error affects one block and a bit in the subsequent block. OFB = Turns a block cipher into a stream cipher by generating a keystream independent of the plaintext. CFB = Turns a block cipher into a stream cipher by feeding back the ciphertext into the encryption process.

Flashcards

Feistel Cipher

A type of cipher where the round function is invertible regardless of the function F used.

Invertibility of Round Function F

In Feistel ciphers, the round function doesn't need to be invertible for decryption to work.

DES (Data Encryption Standard)

A Feistel cipher variant with a 64-bit block size, a 56-bit key, and 16 rounds.

Triple DES (3DES)

Using the DES cipher three times in sequence to improve security.

3 Key 3DES

A 3DES variant using three different keys resulting in key length of 168 bits.

2 Key 3DES

Applies DES three times but uses only two unique keys, resulting in key length of 112 bits.

Initial Permutation (DES)

The first step in DES, rearranges the order of the input bits.

Expansion Permutation (F Function)

An expansion permutation is applied to expand the right half of the block from 32 bits to 48 bits.

DES Splitting

Part of the DES algorithm where the 48-bit value is divided into 8 groups of 6 bits each.

DES S-boxes

In DES, these are look-up tables that substitute 6-bit inputs for 4-bit outputs, introducing non-linearity.

DES P-Box

In DES, a permutation applied to the output of the S-boxes to diffuse the effect of each S-box across multiple bits.

DES Key Schedule

The process in DES that generates the round keys from the initial 56-bit key.

AES SP-Network

A block cipher design that uses substitution and permutation in rounds, rather than the Feistel structure.

Avalanche Effect

Aims to spread the influence of each input bit to many output bits throughout the rounds in a cipher.

AES Key Sizes

The sizes (in bits) of the key AES can support.

ECB Mode

One of the original DES modes, it is easy to implement but vulnerable to insertion and deletion attacks.

ECB Vulnerabilities

If $m_i = m_j$ then $C_i = C_j$ (same inputs are mapped to the same output). Stereotyped beginnings and endings of messages are common.

CBC Encryption

The first ciphertext block is derived from the encryption of the XOR of the IV and the first plaintext block: $C_1 = E_k(IV "), and subsequent blocks use the previous ciphertext.

OFB Keystream Generation

Generates the keystream by encrypting the IV and then iteratively encrypting the output of the previous encryption.

CFB Keystream Generation

The keystream depends on the previous ciphertext blocks. $Y_i = m_i \oplus C_{i-1}$

Study Notes

• Feistel ciphers have an interesting property, their round function can be inverted regardless of the function choice in box F.

Encryption

• L(i) = R(i-1)
• R(i) = L(i-1) XOR F(k(i), R(i-1))

Decryption

• R(i) = L(i-1)
• L(i-1) = R(i) XOR F(k(i), L(i))
• A round key is generated every round.
• Any function F can be chosen and still achieve the same effect.
• The same code is used for encryption and decryption.
• A secure cipher needs proper round key generation, the right number of rounds, and a solid function F.

Properties of DES

• DES is a variant of the Feistel design.
• It has 16 rounds (r = 16).
• Its block length is 64 bits.
• Key length is 56 bits.
• Round keys k(i) are each 48 bits.
• With only 56 bits, its key length is insufficient for modern applications, hence the common use of triple DES.

Triple DES (3DES)

• Employs 3 keys: K1, K2, K3.
• Key length: 56 + 56 + 56 = 168 bits.
• Another version of 3DES uses only 2 keys.

2-key 3DES

• Uses keys K1, K2.
• Key length is 112 bits.
• Is less secure than 3 key DES, and can be broken.

DES Operation

• It operates on 64 bits of plaintext.
• Begins with an initial permutation.
• Blocks split into left and right halves.
• 16 identical rounds.
• Half blocks are joined back together.
• Ends with a final inverse operation.
• Key schedule provides 16 round keys of 48 bits using selection from the main 56-bit key.

Function F

• A round consists of 6 stages.

Expansion Permutation

• Expands and permutes 32 bits to 48 bits.

Round Key Addition

• The 48-bit output is XOR'd with the round key (4 bit).

Splitting

• Splits the value into 8 lots of 6-bit values.

S-Boxes

• Each 6-bit value goes into a different S-box to produce a 4-bit result.
• S-boxes are the non-linear part of DES.
• Each S-box has a lookup table with 4 rows and 16 columns.
• Bits 1 and 6 generate the row number, bits 2, 3, 4, and 5 specify the column number.

P-Box

• Combines 8 lots of 4 bit outputs into a 32-bit value.
• This is permuted to form the output of function F.

DES Key Schedule

• Takes a 64-bit key, acting as a 56-bit key with 8 parity bits (error detection).
• Parity bits are in positions 8, 16, 24, 32, 40, 48, 56, 64, ensuring each key byte has bits set as one.

AES

• AES is a block cipher that does not rely on the Feistel cipher, instead using a substitution-permutation network.
• Block ciphers consist of rounds, each containing a key addition, a substitution, and a permutation phase.
• The permutation phase aims to maximize diffusion.
• Substitution introduces non-linearity.
• Uses avalanche effect.

Rijndael

• This algorithm can operate on block sizes of 128, 192, or 256 bits.
• AES standard fixed the block at 128 bits.
• AES supports key sizes of bits 128, 192, or 256.
• Each of these sizes have a different number of rounds specified.

US Federal Standard

• Released 4 recommended ways of using DES for data encryption.
• Simple to use, but insertion alters the plaintext.
• One bit error in the ciphertext means one whole block error in the decrypted plaintext.

CBC Mode

• Probably the best of the original operation modes.
• One bit error in the ciphertext gives an error in the corresponding plaintext, but also a one bit error in the next decrypted plaintext block.

OFB Mode

• This mode turns a block cipher into a stream cipher.
• This mode doesn't provide data integrity.
• It has bit flip property.
• A one-bit flip of the ciphertext will generate a one-bit error in the plaintext.

CFB Mode

• Turns a block cipher into a stream cipher.
• A single bit error in the ciphertext propagates, just as in CBC mode.

ECB Mode

• Simplest way to use a blockcipher.
• The encrypted data is divided into blocks of bits (n-bits).
• The last block is padded if needed.

ECB Problems

• If two input blocks are equal, they're mapped them to the same output blocks.
• Message beginnings and endings are often stereotyped.
• Blocks can be deleted from the message.
• Encrypted blocks are used in a replay attack.
• ECB mode is deterministic.

CBC (Cipher Block Chaining)

• Counters the problems with ECB mode.
• Adds context of each ciphertext block.

Encryption

• c(0) = E(k)(m(i) XOR c(i)), for 1 < i < l
• Output is IV || c1, c2,...

Decryption

• m(i) = d(k)(c(i)) XOR c(i-1), for 1 < i < l

ECB vs. CBC

• A single bit error in the ciphertext results in a whole block decrypted wrongly, whilist in CBC mode the error will also affect a single bit of the next block.
• An IV is required.

OFB (Output Feedback) Mode

• It enables a block cipher to be used as a stream cipher.
• It uses the block cipher to create the keystream, n bits at a time, where n is the block size.
• The plaintext is divided into blocks, that are m bits long.

Encryption

• c(i) = Y(i) XOR m(i)

Decryption

• Performed similarly.

CFB (Cipher Feedback) Mode

• The keystream output is produced by encryption of the ciphertext.

CTR (Counter) Mode

• Combines the advantages of ECB mode, but without the disadvantages.
• It requires a public IV, or counter, which is chosen differently for each message encrypted under the fixed key k.

Encryption

• c(i) = m(i) XOR E(k)(IV + i)
• n = bit representation of i

Stream vs Block Cipher

Definition

• Stream Cipher: Encrypts data one bit or byte at a time in a continuous stream.
• Block Cipher: Encrypts data in fixed-size blocks (64-bit, 128-bit) at a time.

Working Mechanism

• Stream Cipher: Converts plaintext into ciphertext bit by bit (or byte by byte) using a keystream.
• Block Cipher: Divides plaintext into fixed-size blocks and encrypts each block separately, using the same key.

Examples

• Stream Cipher: RC4
• Block Cipher: AES, DES, 3DES

Vulnerability

• Stream Ciphers: More vulnerable to attacks if the same key stream is used multiple times