Cryptography Basics and Symmetric Ciphers

Questions and Answers

What is the original message to be encrypted called?

Plaintext

What is the process of converting plaintext into ciphertext called?

Enciphering or encryption

What is the term for the encrypted message?

Ciphertext

What is the term for the key that is used for both encryption and decryption?

Secret key

What is the term for the process of recovering plaintext from ciphertext?

Deciphering or decryption

The decryption algorithm is the reverse of the encryption algorithm.

True (A)

A cipher is also referred to as a cryptographic system.

True (A)

Cryptanalysis is the study of attacks against cryptographic systems.

True (A)

Cryptology is the science of studying ciphers.

False (B)

What are the two inputs for an encryption algorithm?

A plaintext and a secret key

The key used in a symmetric cipher is the same for both encryption and decryption.

True (A)

What is the difference between a block cipher and a stream cipher?

A block cipher encrypts a block of plaintext at a time, while a stream cipher encrypts data one bit or one byte at a time.

An asymmetric cipher uses the same key for both encryption and decryption.

False (B)

The key used in symmetric encryption is often referred to as a symmetric key.

True (A)

All classical encryption algorithms are symmetric.

True (A)

What is the objective of Cryptanalysis?

To recover the plaintext of a ciphertext or, more typically, to recover the secret key.

What does Kerkhoff's principle state?

The adversary knows all details about a cryptosystem except the secret key.

What are the two general approaches to attacking a conventional encryption scheme?

Brute-force attack and non-brute-force attack (cryptanalytic attack)

In a brute-force attack, what is the attacker trying to do?

They are trying every possible key on a piece of ciphertext until an intelligible translation into plaintext is obtained.

On average, it takes trying half of all possible keys in a brute-force attack to be successful.

True (A)

If a brute-force or cryptanalytic attack is successful, the impact is only for the current intercepted message.

False (B)

Cryptanalytic attacks can be classified by the amount of information available to the attacker.

True (A)

Which of these is NOT a type of cryptanalytic attack?

Brute-force attack (B)

The ciphertext-only attack is the most difficult to defend against because the attacker has the most information.

False (B)

The ciphertext-only attack is completely insecure if it cannot resist ciphertext-only attacks.

True (A)

What is the goal of the known-plaintext attack?

To determine the plaintext of a new ciphertext or the secret key used for encryption.

The known-plaintext attack is closely related to what is called a probable-word attack.

True (A)

In a chosen-plaintext attack, the attacker can choose the plaintext and observe the resulting ciphertext.

True (A)

In a chosen-ciphertext attack, the attacker can choose any ciphertext to obtain its plaintext by having it decrypted.

True (A)

Classical encryption techniques are no longer relevant in modern cryptography.

False (B)

What is the goal of studying classical encryption techniques?

To introduce basic concepts & terminology of encryption and to prepare us for studying modern cryptography.

Older versions of RSA encryption were susceptible to chosen-ciphertext attacks.

True (A)

In a chosen-ciphertext attack, the attacker chooses the ciphertext to analyze.

True (A)

Flashcards

Plaintext

The original message to be encrypted.

Ciphertext

The encrypted message.

Enciphering/Encryption

The process of converting plaintext to ciphertext.

Encryption Algorithm

A tool that performs encryption, using a key.

Decryption

The process of recovering plaintext from ciphertext.

Decryption Algorithm

A tool that performs decryption, using a key.

Secret Key

The same key used for encryption and decryption.

Symmetric Cipher

Same key used for encryption and decryption.

Block Cipher

Encrypts a block of plaintext at once.

Stream Cipher

Encrypts data one bit or byte at a time.

Asymmetric Cipher

Different keys used for encryption and decryption.

Cipher/Cryptographic System

A scheme or method used for encryption and decryption.

Cryptography

The science of studying ciphers.

Cryptanalysis

The science of studying attacks against cryptographic systems.

Cryptology

The study of cryptography plus cryptanalysis.

Symmetric Encryption

Sender and receiver share a common key for encryption and decryption.

Brute-Force attack

Trying every possible key to decrypt a message.

Cryptanalytic attack

Attacking encryption by exploiting weaknesses in the algorithm.

Ciphertext-only attack

Attack using only the ciphertext to find the key.

Known-plaintext attack

Attack using known plaintext-ciphertext pairs to find the key.

Chosen-plaintext attack

Attacker chooses plaintext and gets the corresponding ciphertext.

Chosen-ciphertext attack

Attacker chooses ciphertext and gets the corresponding decrypted plaintext.

Study Notes

Symmetric Cipher Model

• A secret key is shared by the sender and recipient.
• Plaintext is inputted into the encryption algorithm (e.g., DES).
• Ciphertext is transmitted.
• Ciphertext is inputted into the decryption algorithm (reverse of encryption).
• Plaintext is output.

Basic Terminology

• Plaintext: The original message to be encrypted.
• Ciphertext: The encrypted message.
• Enciphering/Encryption: The process of converting plaintext into ciphertext.
• Encryption Algorithm: Performs the encryption process, taking plaintext and a secret key as input.

Deciphering/Decryption

• Decryption Algorithm: Recovers plaintext from ciphertext, using the ciphertext and the secret key as input.

Cryptography & Cryptanalysis

• Cipher/Cryptographic System: A scheme for encryption and decryption.
• Cryptography: The science of studying ciphers.
• Cryptanalysis: The science of studying attacks against cryptographic systems.
• Cryptology: The combination of cryptography and cryptanalysis.

Ciphers

• Symmetric Cipher: Uses the same key for encryption and decryption.
• Block Cipher: Encrypts a block of plaintext at a time (typically 64 or 128 bits).
• Stream Cipher: Encrypts data one bit or one byte at a time.
• Asymmetric Cipher: Uses different keys for encryption and decryption.

Symmetric Encryption

• Also known as conventional, secret-key, or single-key encryption.
• Sender and recipient share a common key.
• All classical encryption algorithms are symmetric.
• The only type of cipher prior to the invention of asymmetric-key ciphers in the 1970s.
• Widely used.

Symmetric Encryption (Mathematical)

• Y = E(X) or Y = E(K, X)
• X = D(Y) or X = D(K, Y)
  • X = plaintext
  • Y = ciphertext
  • K = secret key
  • E = encryption algorithm
  • D = decryption algorithm
• Both E and D are known to the public.

Cryptanalysis

• Objective: To recover the plaintext of a ciphertext or, more commonly, the secret key.
• Kerkhoff's Principle: The adversary knows all details about a cryptosystem except the secret key.
• Brute-Force Attack: Tries every possible key until a successful decryption of the ciphertext is achieved. (This approach is computationally intensive and time-consuming, particularly with increasingly strong encryption keys)
• Non-Brute-Force Attack (Cryptanalytic Attack): Exploits the nature of the encryption algorithm to guess the secret key.

Steps of a Block Cipher (Example)

• Step 1: Get Text: Obtain the plaintext to be encrypted.
• Step 2: Convert to Binary: Convert the plaintext into its binary representation.
• Step 3: Break into 64 bit blocks: Divide the binary data into fixed-size blocks (typically 64 bits).
• Padding: Data may need to be padded according to the specific cipher to handle plaintext that doesn't neatly divide into the appropriate block size.

Ciphertext-Only Attack

• The attacker only has access to the ciphertext.
• This is generally considered the easiest attack to defend against due to the limited information available.
• An encryption scheme is considered insecure if it cannot withstand a ciphertext-only attack.

Known-Plaintext Attack

• The attacker has access to the plaintext and its corresponding ciphertext.
• The attacker uses this information to analyze the encryption scheme and potentially derive the secret key.
• A common cryptanalytic attack used in block ciphers.

Chosen-Plaintext Attack

• The attacker can choose plaintext messages to be encrypted.
• The attacker then analyzes the resulting ciphertexts to derive information about the secret key or the encryption technique employed.

Chosen-Ciphertext Attack

• The attacker chooses ciphertext messages and receives the corresponding decrypted plaintexts.
• This technique allows the attacker to infer information about the secret key used in the encryption system.

Classical Encryption Techniques

• These encryption techniques provide a foundation and introduction to basic concepts and terminology essential for understanding the processes behind modern cryptography.