Cryptography Chapter 4-1

Questions and Answers

What is a main feature of the asymmetric cryptography RSA?

It requires both parties to share the private key.

It uses identical keys for encryption and decryption.

It relies on the security of large integers. (correct)

It only allows for fixed key sizes.

What is the first step in the RSA algorithm?

Decryption message

Key generation (correct)

Public key exchange

Integrity check

What is a potential problem with key distribution in asymmetric encryption?

Asymmetric encryption does not support digital signatures.

Public keys may be compromised or incorrectly verified. (correct)

Users can only have one key pair.

Keys are too large for transmission.

Why is RSA considered a widely used algorithm?

It is based on well-understood mathematical problems.

In RSA, how often should the keys be renewed?

Only when the private key is compromised.

Which of the following best describes a digital signature in the context of asymmetric cryptography?

A way to verify the authenticity of a message.

What type of attacks does asymmetric encryption, like RSA, aim to protect against?

Man-in-the-middle and eavesdropping attacks.

What is one major advantage of asymmetric cryptography over symmetric cryptography?

It eliminates the need for secret key distribution.

Which property of asymmetric encryption allows for the verification of message integrity and authenticity?

Digital signatures

How does RSA encryption work in terms of key functionality?

Public key encrypts messages that can be decrypted only by the private key.

What is a common vulnerability associated with eavesdropping attacks in asymmetric encryption systems?

The public key can be intercepted and used maliciously.

What is the primary function of a digital signature in asymmetric cryptography?

It ensures that the message comes from a verified sender.

What is the primary challenge addressed by asymmetric cryptography regarding key distribution?

The difficulty of securely transmitting private keys.

What is a primary benefit of using digital signatures in asymmetric cryptography?

They provide verification of the sender's identity and message integrity.

In the context of asymmetric cryptography, what is the purpose of the public key?

To encrypt messages sent to the owner of the private key.

What is a common attack that targets the security of transmitted messages in asymmetric cryptography?

Man-in-the-middle attack.

What is the primary algorithm used in asymmetric cryptography that relies on large prime numbers?

RSA Algorithm.

Which of the following statements about RSA encryption is true?

The security of RSA is based on the difficulty of factoring large integers.

What must be true about the keys in asymmetric cryptography for secure communication?

The private key must be kept secret while the public key is distributable.

What characteristic distinguishes asymmetric cryptography from symmetric cryptography?

It uses a pair of keys for encryption and decryption.

Which aspect of asymmetric cryptography significantly contributes to its use in secure communications?

The public availability of the encryption keys.

Which of the following algorithms is primarily used for creating digital signatures?

RSA

Which of the following best describes a method to prevent eavesdropping in communications?

Using public key infrastructures for key exchange

Which property of asymmetric encryption helps in verifying the sender's identity?

Digital signatures created with a private key

What is a characteristic feature of RSA encryption?

Relies on the difficulty of factoring large prime numbers

What ensures the authenticity of the sender in an email using TLS security?

Certificates issued by trusted authorities

What is often used to establish a secure connection over the web?

Public key infrastructure for SSL certificates

Which type of algorithm is generally faster for encrypting large amounts of data?

Symmetric encryption algorithms

What is a characteristic feature of asymmetric key cryptography?

It involves a pair of mathematically linked keys.

Which statement best describes the role of the public key in asymmetric encryption?

It is shared publicly to allow anyone to encrypt messages.

What is the main reason a third party is involved in public key encryption?

To verify the authenticity of public keys.

What is the primary purpose of digital signatures in the context of public key cryptography?

To authenticate the sender's identity.

What is a critical drawback of asymmetric key encryption compared to symmetric encryption?

It is generally slower and requires more computational power.

Which of the following statements is true about the keys used in public key encryption?

Each recipient possesses a unique private key for decryption.

Digital certificates are used to verify the authenticity of public keys in cryptographic systems.

True

Key generation in cryptography is important for creating secure keys that are difficult to guess.

True

Cryptographic protocols aim to enhance the security of data during transmission.

True

Public key cryptography typically relies on a shared secret that is known only to the sender and recipient.

False

Knowing the Public key allows you to unlock information encrypted with the Private key.

False

Every entity can generate a key pair and release its private key.

False

The RSA algorithm is one of the first successful systems based on public key cryptography.

True

Asymmetric cryptography uses a single key for both encryption and decryption.

False

The presence of a small lock icon in a web browser indicates that the website is using an SSL certificate.

True

Diffie-Hellman Key Exchange is a symmetric encryption algorithm.

False

Email encryption services primarily utilize SSL to secure emails.

False

Asymmetric encryption like RSA is commonly used to ensure secure communication over public networks.

True

DSA stands for Digital Signature Algorithm, which is a method used for creating digital signatures.

True

The primary function of an SSL certificate is to enhance the loading speed of a website.

False

TLS security is primarily used in Virtual Private Networks (VPNs) to secure data transmission.

True

The RSA algorithm is a method used solely in symmetric cryptography.

False

Digital signatures are primarily used in symmetric cryptography to verify message authenticity.

False

Hashing is used to transform data into a fixed-size string of characters, regardless of its original size.

True

The main objective of cryptography is to make information readable to anyone with access to it.

False

The principle of asymmetric cryptography involves the use of mathematical algorithms like the RSA algorithm.

True

In asymmetric cryptography, the public key must be kept secret to ensure security.

False

The RSA algorithm can be used to encrypt large amounts of data efficiently.

False

The keys in asymmetric cryptography consist of a public key and a personal key.

False

Only the holder of the private key can decrypt a message that has been encrypted with the corresponding public key.

True

Public keys can be safely shared with anyone to facilitate encryption.

True

In asymmetric cryptography, both parties must have the same private key to communicate securely.

False

The process of transforming a message into ciphertext uses the listener's public key.

False

Key distribution problems are effectively resolved by symmetric cryptography.

False

Symmetric key cryptography allows for key exchange without any difficulties.

False

Study Notes

Course Information

• Course title: Cryptography (Classic & Modern)
• Instructor: Dr. Ahmed AlMokhtar Ben Hmida
• Institution: King Khalid University (KKU), KSA

List of Topics

• Review of number theory, Probability and Statistics (Ch1 Maths): 4 hours
• Security functions of cryptography (Intro & Ch2 Classical): 8 hours
• Symmetric cryptography (Ch3): 8 hours
• Public key cryptography (Ch4): 8 hours
• Key generation, Management, Exchange and distribution (Ch5): 8 hours
• Digital certificate (Ch6): 2 hours
• Hash functions (Ch6): 4 hours
• Digital signature (Ch7): 4 hours
• Collision resistance (Ch7): 2 hours
• Common Cryptographic Protocols and standards (Ch8): 4 hours
• Types of cryptographic attacks (Ch9): 4 hours

Course Map

• Introduction to Cryptography
  • Definition
  • Main objectives
  • Characteristics of a cryptosystem
• Symmetric Cryotpgraphy
  • Definition/property/principle
  • Study of the DES algorithm
• Asymmetric Cryotpgraphy
  • Definition/property/principle
  • Study of the RSA algorithm
• Digital signature
• Hashing

Chapter 4-1: Asymmetric Cryptography, Public Key, RSA

• Asymmetric Cryptography: History & Principle
• RSA Algorithm (Formalism)
• RSA Algorithm EXAMPLES

Encryption Algorithms

• Symmetric Encryption
  • Data Encryption Standard (DES)
  • Advanced Encryption Standard (AES)
  • Triple DES (3DES)
  • Blowfish
  • Twofish
  • IDEA
  • RC4 (Rivest Cipher 4)
• Asymmetric Encryption
  • Rivest-Shamir-Adleman (RSA)
  • Elliptic Curve (ECC)
  • Diffie-Hellman
  • ElGamal
  • Digital Signature Algorithm (DSA)
• Hash Functions
  • Secure Hash Algorithm (SHA)
  • MD5
  • RIPEMD
  • Whirlpool
  • BLAKE2

Asymmetric Cryptography, Public Key Encryption and Signatures

• Asymmetric Cryptography, Public key technique was originally invented to solve the key distribution problem and provide authenticity.
• It provides many advantages over symmetric systems, primarily by not requiring prior knowledge between communicating parties.
• Digital signatures are used to ensure the legitimacy of digital data like electronic transfers and orders.
• This technology facilitates e-commerce and digital society.

Public Key Encryption

• Public key encryption allows for secure internet communication by using a public key for encryption and a private key for decryption.
• The private key is kept secret, while the public key is shared.
• This ensures only the intended recipient can decrypt the message.
• Used in applications like sensitive data transmission (passwords, credit cards).

History of Public Key Encryption

• Whitfield Diffie, Ralph Merkle, and Martin Hellman are credited with pioneering the concept of public key cryptography in 1976.
• It was an important advancement in protecting data.

Properties of Public Key Encryption

• Encryption and decryption use separate keys, differing from symmetric encryption.
• Each recipient has a uniquely distinct private decryption key.
• Public keys are made public for sender authentication.
• Verification of a public keys legitimacy is typically done through reliable third parties.
• The complex encryption scheme makes decryption virtually impossible for attackers without the relevant private key.
• The public and private keys are mathematically linked, yet the private key cannot be derived from the public key.

Public Key Cryptography Algorithms

• RSA (Rivest-Shamir-Adleman)
• ElGamal
• DSA (Digital Signature Algorithm)
• ECC (Elliptic Curve Cryptography)
• Diffie-Hellman Key Exchange

Applications

• Web traffic security (HTTPS) uses SSL/TLS certificates to protect online transactions and ensure secure communication.
• Email Encryption (TLS) protects email communication from unauthorized access.
• VPNs use asymmetric encryption to secure communications for remote workers.

Asymmetric Cryptography, Notation & Principle

• Asymmetric cryptography solves key distribution issues and introduces public and private keys for secure communication (key pairs).
• It is based on an asymmetric scheme using a public and private key pair for secure data processing.

Asymmetric Cryptography, Public Key Encryption and Sigsartentie key

• Each communication party requires their own public and private key.
• Public keys can be distributed publicly, allowing anyone to encrypt messages.
• Only the holder of the corresponding private key can decrypt the message.

Asymmetric Cryptography, Public Key Encryption and Signatures

• Public key cryptography uses two mathematically linked keys—a public key and a private key—ensuring that anyone can encrypt a message using the public key but only the holder of the corresponding private key can decrypt it.

Asymmetric Cryptography, BASICS: Public Key, Private Key

• Uses a pair of keys for encryption
• Public key for encryption
• Private key for decryption
• Messages encoded using public key can only be decoded by the private key.

RSA Algorithm

• Developed by Rivest, Shamir & Adleman at MIT in 1977 and published in 1978.
• One of the most common asymmetric encryption algorithms.
• Relies on the difficulty of factoring large integers for security.

Working RSA

• RSA algorithm involves three main steps: key generation, encryption, and decryption.

RSA Key Generation

• Key creation is the sender's responsibility.
• Keys are reusable.
• Key renewal occurs if the private key is compromised or as a precaution after a set duration.
• Involves choosing distinct prime numbers p and q.
• Calculates n as the product of p and q.
• Calculate mathematical functions to determine e (encryption exponent) and d (decryption exponent).
• Public key : K(pub) = (n,e)
• Private key : K(pri) = (n,d)

Encryption Message

• M < n
• C =M^e mod(n)

Decryption Message

• M = C^d mod(n)

Hacking the RSA

• Breaking RSA encryption typically requires factoring large prime numbers.
• A brute-force approach is infeasible due to the sheer number of possible keys.
• Standard dictionary attacks are not applicable.

RSA Steps ‘OVERALL’

• Select two integers p and q (prime numbers).
• Calculate n = p * q.
• Calculate (n)=(p−1)(q−1)(n) = (p-1)(q-1)(n)=(p−1)(q−1).
• Choose e such that gcd(ϕ(n)\phi(n)ϕ(n),e) = 1 and 1<e<ϕ(n)\phi(n)ϕ(n).
• Calculate d, the modular multiplicative inverse of e modulo ϕ(n)\phi(n)ϕ(n).
• Public key = (n,e), Private key = (n,d).
• To encrypt M, C = M^e mod n.
• To decrypt C, M = C^d mod n.

Example1 for RSA

• Specific RSA example calculation.

Example2 for RSA

Illustrative RSA example using small prime numbers.

Example3 for RSA

• Calculation example using specific prime numbers.

Example4 for RSA

• Explanation of how to derive the public and private keys for RSA algorithm.

RSA Example 5

Illustrates calculating RSA keys with given prime numbers.

RSA Example 6

• Another example illustrating RSA key generation with given prime numbers.

Example of RSA Encryption and Decryption

• Specific implementation example of encrypting and decrypting a message using RSA algorithm.

Description

Test your knowledge on the key concepts of Cryptography from Chapters 1 to 9. This quiz covers topics including number theory, symmetric and asymmetric cryptography, and various cryptographic protocols and attacks. Enhance your understanding of cryptographic principles and their applications.