Encryption Fundamentals

Questions and Answers

What does encryption do to plaintexts?

• Conceals them without any keys
• Transforms them into ciphertexts using a key (correct)
• Keeps them unchanged for secure transmission
• Transforms them into vulnerably readable forms

What type of encryption uses the same key for both encryption and decryption?

• Asymmetric encryption
• Hashing
• Symmetric encryption (correct)
• Public key encryption

In the equation c ← E(k, p), what does 'c' represent?

• The plaintext before encryption
• The resulting ciphertext after encryption (correct)
• The key used for encryption
• The decryption process

What is true about decryption in this context?

Decryption is deterministic (C)

What is the main concern for Alice when sending a message to Bob?

Securing the message against an attacker (A)

Which aspect of security does encryption specifically address?

The confidentiality of messages (A)

Why is encryption typically randomized?

To provide additional security against pattern attacks (B)

What role does the key play in encryption?

It allows the transformation of plaintext into ciphertext (A)

What is the approximate probability of sampling either 00000000 or 10011101 from a byte?

0.0078 (B)

Which of the following methods can be used to test random inputs?

Check the number of 1s and 0s (C)

What is a major issue with relying solely on statistical tests for cryptographic security?

Statistical tests can be misleading. (B)

Where is the Pseudorandom Generator (PRG) accessible in Linux systems?

/dev/urandom (D)

Why must system calls related to PRG be handled with caution?

They can fail silently. (B)

What is a key requirement for symmetric encryption regarding keys and messages?

Keys must have the same size as the messages. (B)

What principle opposes the idea of keeping encryption systems secret?

Kerckhoffs’s Principle (B)

Why is keeping encryption method details secret considered a poor strategy?

It prevents scrutiny and improvement of the method. (B)

What does Kerckhoffs’s Principle suggest about public knowledge of cryptographic systems?

It encourages better designs due to scrutiny. (C)

What is a critical warning advised regarding personal cryptographic systems?

Never use your own crypto due to high risk of mistakes. (B)

What is the principle behind utilizing public knowledge in cryptography?

It fosters collaborative security and peer review. (D)

What misconception might lead an individual to believe in the security of a poorly designed encryption system?

That public exposure will weaken security. (D)

Which statement reflects the essence of Kerckhoffs’s Principle?

The key itself is the only secret in a cryptosystem. (D)

What is the primary method for generating keys in symmetric cryptography?

Derived using a Key Derivation Function (D)

Why are asymmetric keys typically much larger than symmetric keys?

They need to provide the same level of security with fewer bits (D)

What is the purpose of key wrapping in cryptography?

To encrypt long-term keys before storage (C)

What type of hardware is ideal for storing cryptographic keys securely?

Hardware Security Modules (HSMs) (A)

Which statement about key generation in asymmetric cryptography is true?

A private key holder generates both keys and only publishes the public key (C)

What is often considered the most sensitive material a secure system holds?

Keys (D)

Which of the following methods provides high security for key storage?

Wrap keys with a HW-protected master key (C)

What is a characteristic of RSA keys used in asymmetric cryptography?

Take roughly 4096-bits for 128-bit security (C)

What is a common size for keys in cryptographic systems?

128 bits (A)

What is the estimated age of the universe in nanoseconds?

Around 288 (B)

What does n-bit security imply regarding the strength of a key?

It cannot provide more than n-bit security. (A)

What is the best attack to break a scheme with n-bits of security?

2n steps (C)

When considering security measures, what does a brute-force attack do?

Attempts every possible key until the correct one is found. (B)

Why cannot l-bit keys provide more than n-bit security?

n-bit keys limit the maximum security achievable. (B)

Which event is less likely to occur based on the content provided?

Guessing a 2128 size key at the first try. (B)

What represents a significant challenge in perceiving very large numbers?

They are not easy to visualize or comprehend. (B)

What is a defining characteristic of block ciphers?

They output ciphertext blocks of a fixed size. (C)

What process does 3DES employ for encryption?

It applies DES three times with three independent keys. (D)

Which component of AES is responsible for rearranging the rows of the state array?

ShiftRows (D)

What is the main security reason for using the SubBytes transformation in AES?

To provide resistance to linear cryptanalysis. (A)

What is a common issue when using block ciphers to encrypt messages directly?

The blocks may be vulnerable to message reordering. (D)

What was one of the criteria for selecting AES as the standard block cipher?

Performance and resistance to cryptanalysis. (B)

In AES, what is the purpose of the MixColumns operation?

To obscure the relationship between the input and output. (B)

What is unique about the key length options in AES?

Key lengths include 128, 192, and 256 bits. (D)

How is the encryption process structured in AES?

Through a series of rounds with distinct transformations. (B)

What does the term 'invertible' imply regarding block ciphers?

The decryption process can perfectly reverse the encryption. (B)

What is the primary function of the AddRoundKey step in AES?

To modify the state based on the round key. (C)

What does the key $ ext{k}$ represent in the encryption function $E(k, p)$?

A user-defined secret key (C)

Which of the following best describes the output of the Encrypt function?

A ciphertext block of fixed size $B$. (C)

What aspect of block ciphers does the term 'deterministic algorithms' refer to?

The algorithms consistently produce the same output for the same input. (B)

Flashcards

Encryption

Encryption transforms plaintext into ciphertext using a key. Plaintext (p) is the original message, ciphertext (c) is the encrypted message, and the key (k) is used for both encryption and decryption.

Decryption

The process of transforming ciphertext back into plaintext using the key, also known as unlocking the message.

Plaintext

The original message before encryption

Ciphertext

The encrypted message that only the intended recipient can understand.

Key

A secret piece of information that is used to encrypt and decrypt messages.

Symmetric encryption

The process of using the same key for both encryption and decryption.

Attacker (The devil)

An attacker who tries to intercept or decrypt messages.

Alice and Bob

Alice wants to send a message to Bob securely. She uses encryption to ensure that only Bob can understand the message.

Kerckhoffs's Principle

The principle that the security of a cryptosystem should not rely on keeping the algorithm secret, but rather on keeping the key secret.

Security Through Obscurity

The practice of relying on secrecy of implementation as a security measure. This is generally considered a bad security practice.

Security through Obscurity

The practice of relying on secrecy of implementation as a security measure. This is generally considered a bad security practice.

Why is security through obscurity a bad practice?

Security through obscurity is a bad practice because it relies on the secrecy of the implementation, which can be compromised. A better approach is to rely on strong cryptography that is openly analyzed and scrutinized by the community.

Never use your own crypto

In cryptographic systems, it is generally discouraged to create your own encryption algorithms. This is because it is very easy to make mistakes in cryptography, and it's very hard to find those mistakes.

What is a Pseudo Random Generator (PRG)?

A Pseudo Random Generator (PRG) generates a sequence of bits that appear random but are actually determined by a seed value. They are useful for generating keys and other cryptographic material.

How is PRG accessed in Linux?

A PRG in Linux systems is accessible through the /dev/urandom file. The file is mapped to the PRG allowing access from any process.

What are statistical tests used for?

Statistical tests analyze sequences of bits to see if they meet certain statistical properties, like balanced distribution of 0s and 1s. These tests are not enough to guarantee security.

Why are statistical tests not sufficient for cryptographic security?

Even if a sequence of bits passes statistical tests, it can still be insecure for cryptographic purposes. An attacker can use specific patterns or weaknesses in the PRG to predict future bits.

What should you be careful about when accessing /dev/urandom?

Always double-check system calls that access the /dev/urandom file. Make sure they are successful to avoid introducing vulnerabilities in your program.

Key Derivation Function (KDF)

A function that generates a strong encryption key from a less secure input like a password.

Hardware Security Module (HSM)

A type of secure hardware used to store and generate cryptographic keys. It is designed to protect sensitive data from unauthorized access, even if the host system is compromised.

Key Wrapping

A process that involves encrypting a long-term encryption key using another key, often referred to as a wrapping key.

Keys are sensitive

Keys are often the most crucial elements in a secure system, as they are used to protect sensitive information.

Password-based Encryption (PBE)

A method of encrypting data using a unique key that is specifically generated for the user. It is typically used for storing data securely on a device.

Master Key stored in Trusted Hardware

A secure storage mechanism where master keys are protected within tamper-resistant hardware, increasing the overall security of the system.

Smartcard

A cryptographic token that is small and portable, often used for storing authentication credentials and digital signatures.

Cryptographic Token

A type of secure crypto-token that is designed to store and protect cryptographic keys, used for digital signatures, identity verification, and other security tasks.

Security

A measure of the difficulty of breaking a cryptographic system.

n-bit security

The computational effort required for the most efficient attack to succeed.

Lower bound on work

The minimum number of steps needed to break a cryptographic system using the best known attack.

Brute-force attack

A method of trying every possible key until the correct one is found.

Why n-bit keys cannot give more than n-bit security

A key with n-bits cannot provide more than n-bit security because the best possible attack would only need to try 2^n possible keys.

Number of steps in the best attack

The number of attempts an attacker needs to make to break the encryption.

Brute-force attack (explain)

The most direct way to break a cryptosystem. Involves trying all possible keys until the correct one is found.

Key size and security

The number of bits in a key determines its security. An n-bit key means there are 2^n possible combinations.

What is a block cipher?

A type of cipher that encrypts data in blocks of a fixed size, using a key. For example, let's say we encrypt a block of 128 bits, known as a plaintext block, using a key. The encryption algorithm then transforms this block into a ciphertext block of the same size. To decrypt the ciphertext, we essentially reverse the process using the same key.

How does the decryption process work in a block cipher?

A block cipher's decryption algorithm uses the same key as the encryption algorithm to transform ciphertext back into plaintext. This ensures that only someone with the key can decode the encrypted message.

What does it mean for a block cipher to be invertible?

A block cipher is considered 'invertible' because using the key, you can always recover the original plaintext from the ciphertext. This means it's a one-to-one mapping between plaintext and ciphertext.

What is Advanced Encryption Standard (AES) and how does it work?

AES is a widely used block cipher with various key lengths, including 128, 192, and 256 bits. It encrypts data in 128-bit blocks, like fitting 128 marbles in a secure box. Its strength is also in its key size. A longer key, like 256 bits, makes it much harder for someone to guess the key and thus decipher the message.

How was AES selected?

AES was chosen after a public competition hosted by NIST from 1997 to 2000. The goal was to find a secure and efficient encryption algorithm. This process set a standard for choosing secure encryption methods.

Why is AES so commonly used?

AES is used in various hardware and software applications. Its widespread adoption is due to its speed and security. For example, it's likely used in your computer and mobile phone.

How does AES manage the data it encrypts?

AES uses a state of 128 bits, organized as a 4x4 array, like a grid of 16 squares. It transforms this state through different rounds using a combination of permutations (like rearranging the bits) and substitutions (like replacing bits with different values).

What is a substitution-permutation network?

AES uses a 'substitution-permutation network'. These are like a series of operations applied to your state (data). The operations mix the data heavily, making it difficult to reverse the process without knowing the key.

What is the SubBytes step in AES?

SubBytes in AES involves replacing each byte (8 bits) in the state array with another value based on a predefined S-Box. It's essentially a look-up table where each combination of 8 bits is assigned a unique different 8 bits.

What is the ShiftRows step in AES?

ShiftRows in AES involves shifting each row of the state array to the left by a specific number of positions. It's like a cyclic shift, where the bits at the beginning of the row are moved to the end.

What is the MixColumns step in AES?

MixColumns in AES involves mixing the bits within the state array using a mathematical operation that involves multiplication and addition. It's like scrambling the bits within each column.

How are rounds in AES implemented?

The number of rounds in AES depends on the key size: 10 rounds for a 128-bit key, 12 rounds for a 192-bit key, and 14 rounds for a 256-bit key. Each round consists of the steps: SubBytes, ShiftRows, MixColumns (except for the last round), and AddRoundKey.

What is the AddRoundKey step in AES?

AddRoundKey combines the state array with a round key derived from the original key. It involves a simple XOR operation, similar to flipping a switch on or off. This mixes the key with the data at each round.

How are Round Keys in AES created?

In AES, the round keys are generated from the initial key using a key schedule algorithm, which takes the original key and expands it to generate a series of round keys, one for each round in the encryption process.

What are the issues with using block ciphers directly?

Directly using a block cipher to encrypt messages can leave you vulnerable to various security risks. It involves issues like not being able to encrypt messages longer than the block size and the potential for repeating patterns in the ciphertext. These issues can lead to attacks.

Study Notes

Computer Security Foundations Week 8: Symmetric Encryption

• Symmetric encryption is a cryptographic technique where the same key is used for both encryption and decryption.
• Encryption transforms plaintexts into ciphertexts using a key.
• Decryption transforms ciphertexts back into plaintexts using the same key.
• Encryption guarantees confidentiality, but additional guarantees like authenticity and non-repudiation may be needed in real-world applications for secure systems.
• There exist many types of encryption, including symmetric, asymmetric, authenticated, homomorphic, etc.
• The presentation outlines symmetric encryption, emphasizing the concept and related algorithms.

What is Encryption?

• Encryption transforms plaintext into ciphertext using a key.
• Encryption notation: c ← E(k, p), where c is ciphertext, k is key, and p is plaintext. Encryption is typically randomized.
• Decryption notation: p ← D(k, c), where p is plaintext, k is key, and c is ciphertext. Decryption is deterministic.
• Symmetric encryption uses the same key for both encryption and decryption.

What we talk about when we talk about Security

• Alice wants to send a secure message to Bob, which must be protected against an attacker.
• The core question is, what does it mean for encryption to be "secure".
• Security requires that the attacker cannot reveal anything about the original message, considering different scenarios.

Caesar Cipher

• A simple substitution cipher.
• Uses a fixed or variable shift size as a key.
• The algorithm shifts the plaintext a fixed number of characters.

Substitution Ciphers

• A more general substitution cipher than the Caesar cipher.
• Involves changing the characters in a defined way with a defined key.
• The size of the key space is very large (26!), making brute-force attacks impractical without massive computational resources.
• Frequency letter attacks can break this type of cipher by exploiting the frequency distribution of letters in the original language.

Frequency Letter Attacks

• Frequency letter attacks exploit common letter frequencies in a language to potentially decrypt ciphertexts.
• The attacker gathers ciphertexts and counts the frequency of each letter or other characters.
• They compare that frequency to common frequencies in the plaintext. This matching process often reveals patterns to decrypt the message.
• Frequency analysis can be used in breaking ciphers.

Rotor Machines

• Machines using rotors to encrypt and decrypt messages.
• Some examples include the Hebern machine and the Enigma machine.
• Multiple rotors are used, each rotor and their permutation combination forms the main key, so the key's size is much larger than simpler substitutions.

The one-time pad

• A method of encryption considered perfectly secure (as long as the key is used only once).
• It involves applying the bitwise XOR operation between the plaintext and the randomly generated key of the same size.
• The key must be as long as the message. This is computationally inefficient.

Kerckhoffs's Principle

• The idea that security should not depend on the secrecy of the algorithm, but rather on the secrecy of the key.
• All details of a cryptosystem's operation must be public.
• The only secret is the key, promoting scrutiny and analysis by the community which reduces the number of vulnerabilities.

AES (Advanced Encryption Standard)

• A widely used block cipher.
• Standardized in 2000, replacing older standard algorithms.
• Key features include SubBytes, ShiftRows, MixColumns, AddRoundKey, which combine substitution and permutation operations to secure the cipher.
• AES uses a block size of 128 bits and varying key sizes.

Modes of Operation

• Block ciphers by themselves are insecure.
• Modes of operations are methods used to encrypt messages of varying lengths.
• In the presentation, ECB, CBC, CTR are covered.

Cipher Block Chaining (CBC)

• A more sophisticated mode, where each block is dependent on the preceding blocks, making it more secure.
• It involves an Initialization Vector.

Counter Mode (CTR)

• A very efficient mode, where the key stream can be preprocessed.
• Used in nonce based cryptography, where the counter is used to create a pseudo-random string of the same length as the message, which creates the keystream needed for encryption.

Quantifying Security

• Best attack to break a cipher with 'n' bit security, requires 2ⁿ steps in a brute-force attack.
• n-bit security means the minimum number of steps for breaking the scheme is 2ⁿ.

Good Security Values (Real-world Crypto)

• A 2¹²⁸ rule of thumb approach is considered a good benchmark.
• Designers aim for security that needs an effort proportional to the age of the universe to break.

Key Takeaways

• Encryption involves encryption and decryption algorithms which transform plain text into cipher text and vice versa.
• Classical ciphers can be subject to attacks if their keyspace is not large. The one-time pad is a theoretical exception to this.
• Modern ciphers use modes of operation which combine the block cipher primitive for encrypting messages of all lengths correctly.
• Randomness is crucial to cryptographic security.
• Proper key management prevents key recovery, and key wrapping provides another layer of protection for the keys.

Description

Test your understanding of encryption concepts, including how encryption transforms plaintexts and the type of encryption that uses the same key for both encryption and decryption. This quiz will help reinforce key ideas related to data security.