Basic Encryption and Decryption

Questions and Answers

Which of the following best describes the function of cryptographic algorithms in the context of data security?

• They primarily focus on securing physical storage devices.
• They are used to transform data to ensure information and network security. (correct)
• They facilitate the decryption of previously secured communications without a key.
• They manage access control lists within operating systems.

How do two-key cryptographic algorithms differ from single-key cryptographic algorithms?

• Two-key algorithms employ different, but related, keys for encryption and decryption, whereas single-key algorithms use only one key. (correct)
• Two-key algorithms use the same key for both encryption and decryption, adding an extra layer of security.
• Single-key algorithms use public and private keys, whereas two-key algorithms use only one key.
• Single-key algorithms split the key into two parts, distributed between sender and receiver for enhanced security.

In the context of cryptography, what is the primary difference between 'encryption' and 'decryption'?

• Encryption involves creating a cryptographic key, while decryption involves destroying it.
• Encryption is used for securing network communications, while decryption applies to data storage.
• Encryption converts plaintext to ciphertext, while decryption restores the plaintext from ciphertext. (correct)
• Encryption restores the original message from ciphertext; decryption converts plaintext to ciphertext.

What is the main goal of cryptanalysis?

To decipher messages without prior knowledge of the encryption details. (D)

Why is a cryptographic hash function considered a 'one-way' algorithm?

It cannot be reversed to reveal the original data. (D)

What are the two key requirements for the secure use of conventional (symmetric) encryption?

A strong encryption algorithm and secure management of the secret key. (D)

Which characteristic is NOT typically associated with a secure cryptographic hash algorithm?

Reversibility, allowing the original data to be recovered from the hash. (A)

What is the primary objective of a brute-force attack on an encrypted system?

To recover the encryption key. (B)

In the context of encryption scheme security, what does it mean for an encryption scheme to be 'computationally secure'?

The cost or time to break the cipher exceeds the value or useful lifetime of the encrypted information. (D)

What is a key property of 'strong encryption'?

Compromising the encrypted data is impractically difficult for unauthorized entities. (D)

In cryptography, what is the difference between 'encoding' and 'enciphering'?

Encoding translates entire words or phrases, whereas enciphering translates letters or symbols individually. (D)

What is a major disadvantage of the Caesar cipher?

It is vulnerable to frequency analysis and has a limited number of possible keys. (A)

What is the mathematical operation used to encrypt a message using the Caesar Cipher algorithm?

Addition of the key to the numerical equivalent of each letter, modulo 26. (D)

What is the result of applying a Caesar cipher with a key of 3 to the letter 'x'?

a (A)

In cryptanalysis, why is frequency analysis effective against simple substitution ciphers?

Certain letters in any language occur more frequently than others. (A)

Why does a key phrase substitution generally have the same strength as previous simple substitution ciphers?

It still uses a monoalphabetic substitution. (C)

Which property must a key phrase have for substitution ciphers?

It must contain unique letters to avoid redundancy in the substitution. (A)

Why are certain numbers omitted when picking a key for a multiplicative cipher?

They are not relatively prime to the size of the alphabet, so one can not guarentee that the cipher wil produce a set of residue letters. (E)

What is one weakness of monoalphabetic ciphers?

Their frequency distributions reflect the underlying alphabet. (A)

What makes Polyalphabetic Substitution Ciphers more secure?

That they lack distrubtion. (B)

Cryptography is a branch of mathematics dealing with data transformation.

True (A)

Cryptographic algorithms are exclusively used in visual data processing.

False (B)

Cryptography secures data storage, transmission, and interaction between parties.

True (A)

Keyless cryptographic algorithms use keys during transformations.

False (B)

A cryptographic hash function is a keyless algorithm.

True (A)

Single-key algorithms use two distinct keys: a private and a public key.

False (B)

In two-key algorithms, the keys used are unrelated to each other.

False (B)

Plaintext refers to the encrypted message.

False (B)

Ciphertext is the original message.

False (B)

Encryption converts ciphertext back into plaintext.

False (B)

Decryption is also called Enciphering.

False (B)

Cryptology includes both cryptography and cryptanalysis.

True (A)

A one-way hash algorithm can be reversed to find the original data.

False (B)

Hashing is mainly for encrypting data for secure transmission.

False (B)

Symmetric encryption uses two different keys for encryption and decryption.

False (B)

In a brute-force attack, the attacker needs knowledge of the algorithm.

False (B)

The goal of attacking an encryption system is often to recover the key.

True (A)

A Substitution technique replaces plaintext bits with ciphertext bits.

True (A)

The Caesar cipher involves moving each letter in the alphabet one place further down.

False (B)

Stream ciphers process data in blocks.

False (B)

Flashcards

Cryptography

A branch of mathematics dealing with the transformation of data.

Cryptographic algorithms

Algorithms used in information and network security.

Keyless Cryptography

Does not use keys during cryptographic transformations.

Single-key encryption

uses a single key for encryption and decryption

Secret Key

Uses a key that is shared between the sender and receiver.

Two-key encryption

Uses two different but related keys for encryption/decryption.

Plaintext

The original message before encryption.

Ciphertext

The coded message after encryption.

Encryption

The process of converting plaintext to ciphertext.

Decryption

Restoring plaintext from ciphertext.

Cryptography

Study of encryption and decryption schemes.

Cryptographic System

A scheme for encryption and decryption.

Cryptanalysis

Deciphering without enciphering knowledge.

Cryptology

The areas of cryptography and cryptanalysis.

Cryptographic Hash Function

Most basic type of cryptographic algorithm.

Hash Algorithm

A one-way algorithm.

Brute-force attack

Attacker tries every possible key.

Cryptanalysis attack

Attack based on algorithm flaws and known plaintext.

Plaintext

The original message before encryption.

Ciphertext

The coded message.

Keyless

Do not use any keys during cryptographic transformations.

Single-key

The result of a transformation is a function of the input data and a single key, known as a secret key.

Two-key

At various stages of the calculation, two different but related keys are used, referred to as a private key and a public key.

Strong Encryption

refers to encryption schemes that make it impractically difficult for unauthorized persons or systems to gain access to plaintext that has been encrypted

recover the key

The objective of attacking an encryption system is to recover the key rather than recovering the plaintext.

Study Notes

### Basic Encryption and Decryption
- Cryptography is a branch of mathematics dealing with data transformation.
- Cryptographic algorithms are used in information and network security.
- Cryptography is essential for secure data storage, transmission and interaction.

### Cryptographic Algorithms
- These can be keyless, single-key, or two-key.
- Keyless algorithms do not use keys during cryptographic transformations such as Cryptographic Hash Functions.
- Single-key algorithms use a single key, known as a secret key.
- Two-key algorithms use two different but related keys: a private key and a public key.
- This chapter covers single-key algorithms, such as symmetric or conventional encryption.

### Definitions in Cryptography
- Encryption encodes a message to make its meaning not obvious.
- Plaintext is the original message.
- Ciphertext is the coded message.
- Encryption is converting plaintext to ciphertext, also called enciphering.
- Decryption restores plaintext from ciphertext, also called deciphering.
- Cryptography is the study of encryption schemes.
- A cryptographic system (or cipher) is a scheme for encryption and decryption.
- Cryptanalysis uses techniques for deciphering a message without knowledge of the enciphering details.
- A person practicing cryptanalysis is called a cryptanalyst.
- Cryptology includes the areas of cryptography and cryptanalysis.

### Cryptographic Hash Function
- Cryptographic Hash Functions are basic cryptographic algorithm that is one-way.
- Hash algorithms create a unique "digital fingerprint," called hashing.
- A digest (or message digest/hash) represents the contents of the data.
- Hashing algorithms do NOT create ciphertext that can later be decrypted.
- Hashing is "one-way", where the contents can't be used to reveal the original data.
- Hashing is used for comparison purposes.
- A secure hash that is created from a set of data cannot be reversed.
- A secure hashing algorithm is fixed size, unique, original, and secure.

### Simplified Symmetric Encryption Model
- There are two requirements for secure conventional encryption: a strong encryption algorithm and having the sender and receiver obtain copies of the secret key in a secure fashion, keeping it secure.

### Cryptographic Systems
- Cryptographic Systems can be characterized along three independent dimensions: the type of operations used for transforming plaintext to ciphertext, the number of keys used, and the way in which the plaintext is processed
- The type of operations used for transforming plaintext to ciphertext are substitution, transposition, and product.
- Number of Keys can be symmetric (i.e., single-key, secret-key, conventional encryption ) or asymmetric encryption (i.e. two-key, or public-key encryption).
- The way Plaintext is processed can be via block cipher (processes the input one block of elements at a time, producing an output block for each input block) or stream cipher (processes the input elements continuously, producing output one element at a time, as it goes along).

### Cryptanalysis and Brute-Force Attack
- The objective of attacking an encryption system is to recover the key rather than recovering the plaintext with two general approaches: Cryptanalysis or Brute-force attack.
- Cryptanalysis relies on the nature of the algorithm plus some knowledge of the characteristics of the plaintext.
- The brute-force attack tries every possible key on a piece of ciphertext until an intelligible translation into plaintext is obtained with half of all possible keys being tried to achieve success.

### Types of Attacks
- Ciphertext Only Attack requires the Cryptanalyst to know the Encryption algorithm and Ciphertext.
- Known Plaintext Attack requires the Cryptanalyst to know the Encryption algorithm, Ciphertext and there’s One or more plaintext-ciphertext pairs formed with the secret key.
- Chosen Plaintext Attack requires the Cryptanalyst to know the Encryption algorithm, Ciphertext and possesses a Plaintext message, together with its corresponding ciphertext generated with the secret key
- Chosen Ciphertext Attack requires the Cryptanalyst to know the Encryption algorithm, Ciphertext and requires a Ciphertext chosen with it's corresponding decrypted plaintext generated with the secret key
- Chosen Text Attack requires the Cryptanalyst to know the Encryption algorithm, Ciphertext and possesses a Plaintext message together with its corresponding ciphertext generated with the secret key, plus having a Ciphertext chosen by cryptanalyst together with its corresponding decrypted plaintext generated with the secret key

### Encryption Scheme Security
- Unconditionally secure encryption can't be decrypted even if an opponent has lots of time.
- Computationally secure encryption means the cost of breaking the cipher exceeds the value of the encrypted information and the time required to break the cipher exceeds the useful lifetime of the information.

### Brute-Force Attack Details
- The brute-force attack involves trying every possible key of ciphertext into plaintext to try to get a intelligible message.
- Half of all possible keys must be tried to achieve success.
- Some degree knowledge about the expected plaintext, and some means of automatically distinguishing plaintext from garble may supplement this attack.

### Strong Encryption
- Strong Encryption makes it difficult for persons or systems to gain access to plaintext that has been encrypted and there are several properties that increase algorithm strength: appropriate choice of cryptographic algorithm, sufficiently long key lengths, choice of protocols, engineered implementation and absense of hidden flaws

### Encryption Algorithm Types
- Encoding translates entire words or phrases to other words or phrases.
- Enciphering translates letters or symbols individually.
- Encryption is the group of term that covers both encoding and enciphering.
- Symmetric Encryption uses the same key for encryption and decryption, following C = E(P, K) for encryption and P = D (E(P,K), K) for decryption.
- Asymmetric Encryption uses different keys for encryption and decryption, following  C = E (P, KE) for encryption and P = D (E (P, KE), KD) for decryption.

### Substitution Technique
- The Substitution Technique replaces letters of plaintext with other letters or by numbers or symbols.
- If the plaintext is viewed as a sequence of bits, it substitutes plaintext bit patterns with ciphertext bit patterns.

### Caesar Cipher
- Caesar Cipher is a substitution cipher and replaces each letter with the letter standing three places further down the alphabet, wrapping around so the letter following Z is A.
- Benefit: easy to remember.
- Disadvantage: easy to predict pattern of encryption.

### Caesar Cipher Algorithm
- Letters can be defined as numbers, starting with A assigned to 0.
- The shift may be of any amount, so the general Caesar algorithm is: "C = E(k, p ) = (p + k ) mod 26". "k" takes a value in the range of 1 to 25.
- The decryption algorithm is: "p = D(k, C ) = (C − k ) mod 26".

### Caesar Cipher - Decryption
- Decryption can be performed by following "p = D(k, C ) = (C − k ) mod 26"

### Brute-Force Cryptanalysis of the Caesar Cipher
- Has only 25 possible ciphers being that maps A to B,C,...,Z.
- This cipher could be simply tried to search until an intelligible translation into plaintext is obtained.
- Cipher Analysis is a given ciphertext where one has to just try all shifts of letters and do be need to recognize when have plaintext,
- This can be used to break ciphertext.

### Monoalphabetic Cipher
- With only 25 possible keys, the Caesar cipher isn't secure.
- Substitution achieves dramatic key space increase, like permutations of the alphabet.
- The permutation of a finite set S is an ordered sequence of all elements of that set, with each element appearing exactly once.
- If there are n! permutations of a set of n elements then it follows with n, there are over twenty six factorial possible keys.
- This approach is referred to as a monoalphabetic substitution cipher because a single cipher alphabet is used per message which always uses the same letter of the alphabet for the ciphertext letter.

### Cryptanalysis Based on Relative Frequencies
- Arabic author Qalqashandi wrote down a technique to solve ciphers which is used today.
- The line of attack is based on characteristics of the plaintext.
- The ciphertext letters are written down and counted to get the frequency of each symbol.
- The average frequency of each letter of language has plaintext which can be written out.
- Ciphertext can thus be solved.

### Key Phrase Substitution
- A Key Phrase, which is a keyword, is a simple substitution cipher, monoalphabetic cipher that mixes the letters using key phrase to generate the cipher alphabet.
- The plaintext retaining word divisions happens with each letter substituted by the letter in given key phrase.
- Key Phrase must contain unique letters and its redundancies removed before encrypting.
- Key phrase substitutions the same strength as the previous simple substitution ciphers.

### Key Phrase/Matrix Substitution
- To strengthen a key phrase substitution, apply a matrix to help identify which columns and rows will be used for its remaining sets of letters which fill order in said rows below.

### Multiplicative Ciphers
- In these ciphers, encryption uses f(a) = a*k mod n, where k and n are relatively prime so the letters of the alphabet produced a complete set of residues.
- If k and n are not relatively prime, several plaintext will encrypt to the same ciphertext letter and not all letter will appear in the ciphertext alphabet and e.g. if k = 12 and n =26.
- Decryption requires the ciphertext number to be multiplied by the multiplicative inverse of the key mod 26.
- Only 1, 3, 5, 7, 9, 11, 15, 17, 19, 21, 23, and 25 have multiplicative inverses mod26
- Here you can identify the numbers and Multiplicative inverses in this scenario:
    - 1=>1, 3=>9, 5=>21, 7=>15, 9=>3, 11=>19, 15=>7 , 17=>23, 19=>11, 21=>5, 23=>17, 25=>25

### Caesar Cipher Analysis
- Weaknesses: Blank translates to itself, English has relatively few short words, known short words can be subbed, repetition of patterns exposed.

### Polyalphabetic Substitution Ciphers
- They flatten the the frequency of the cypher alphabet where E1 (T) = a and E2 (T) = b and E1 (X) = a and E2 (X) = b.
- They combine two distributions by using two separate encryption alphabets.
- The first applies to all characters in odd positions while the second applies to even positions.