Information Security: Principles And Practice PDF
Document Details
Uploaded by Deleted User
William Stallings and Lawrie Brown
Tags
Summary
These lecture slides cover fundamental concepts in information security, focusing on cryptography and its different types, along with the principles behind the subject matter. Topics include cryptographic tools, symmetric encryption, and the techniques for attacking such systems.
Full Transcript
Information Security: Principles and Practice Chapter 2 – Cryptographic Tools First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Introduction Cryptography is a method used to protect information by transforming it into a fo...
Information Security: Principles and Practice Chapter 2 – Cryptographic Tools First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Introduction Cryptography is a method used to protect information by transforming it into a form that can only be understood by authorized individuals. cryptography as the science of encoding and decoding information to keep it secure. Cryptography ensures that only the intended recipient can understand the message. Traditional cryptographic algorithms, also known as classical cryptography algorithms, were primarily used before the modern era of cryptography. They focus on methods that either substitute or scramble text, relying on simple mathematical transformations. Here are the key types of traditional algorithms: Substitution Cipher Transposition Cipher Monoalphabetic Cipher (e.g., Caesar Cipher) Transposition Cipher (e.g., Rail Fence Cipher) Vigenère Cipher (Polyalphabetic substitution) Playfair Cipher (polyalphabetic cipher) Affine Cipher (Mathematical shift) Hill Cipher (Linear algebra-based) Enigma Machine (Historical cipher machine) Cryptographic Tools cryptographic algorithms important element in security services review various types of elements symmetric encryption public-key (asymmetric) encryption digital signatures and key management secure hash functions Example is use to encrypt stored data Symmetric Encryption A symmetric encryption scheme has five ingredients ( Figure 2.1 ): Plaintext: This is the original message or data that is fed into the algorithm as input. Encryption algorithm: The encryption algorithm performs various substitutions and transformations on the plaintext. Secret key: The secret key is also input to the encryption algorithm. The exact substitutions and transformations performed by the algorithm depend on the key. Ciphertext: This is the scrambled message produced as output. It depends onthe plaintext and the secret key. For a given message, two different keys will produce two different ciphertexts. Decryption algorithm: This is essentially the encryption algorithm run in reverse. It takes the ciphertext and the secret key and produces the original plaintext. Attacking Symmetric Encryption Cryptanalysis is the study and practice of breaking cryptographic systems. The attacker tries to figure out the key or the original message (plaintext) from the encrypted message (ciphertext). rely on nature of the algorithm plus some knowledge of plaintext characteristics even some sample plaintext-ciphertext pairs exploits characteristics of algorithm to deduce specific plaintext or key brute-force attack try all possible keys on some ciphertext until get an intelligible translation into plaintext Exhaustive Key Search Symmetric Encryption Algorithms The most commonly used symmetric encryption algorithms are block ciphers. A block cipher processes the plaintext input in fixed-size blocks and produces a block of ciphertext of equal size for each plaintext block. The algorithm processes longer plaintext amounts as a series of fixed-size blocks. The most important symmetric algorithms, all of which are block ciphers, are the Data Encryption Standard (DES), triple DES, and the Advanced Encryption Standard (AES); as summarized here in Table 2.2 from the text. DES and Triple-DES Data Encryption Standard (DES) is the most widely used encryption scheme uses 64 bit plaintext block and 56 bit key to produce a 64 bit ciphertext block concerns about algorithm & use of 56-bit key Triple-DES repeats basic DES algorithm three times using either two or three unique keys much more secure but also much slower Advanced Encryption Standard (AES) needed a better replacement for DES NIST called for proposals in 1997 efficiency, security, HW/SW suitability, 128, 256, 256 keys selected Rijndael in Nov 2001 symmetric block cipher uses 128 bit data & 128/192/256 bit keys now widely available commercially Block verses Stream Ciphers Message Authentication Encryption protects against passive attack (eavesdropping). message or data authentication protects against active attacks verifies received message is authentic contents unaltered from authentic source timely and in correct sequence can use conventional encryption only sender & receiver have key needed or separate authentication mechanisms append authentication tag to cleartext message. Furthermore, if the message includes an error-detection code and a sequence number, the receiver is assured that no alterations have been made and that sequencing is proper. If the message also includes a timestamp, the receiver is assured that the message has not been delayed beyond that normally expected for network transit. Message Authentication without Message Encryption In all of these approaches, an authentication tag is generated and appended to each message for transmission. Because the approaches discussed in this section do not encrypt the message,message confidentiality is not provided. Typically, however, message authentication is provided as a separate function from message encryption MESSAGE AUTHENTICATION CODE One authentication technique involves the use of a secret key to generate a small block of data, known as a message authentication code, that is appended to the message. This technique assumes that two communicating parties, say A and B, share a common secret key KAB. When A has a message to send to B, it calculates the message authentication code as a complex function of the message and the key: MACM F(KAB, M). The message plus code are transmitted to the intended recipient. The recipient performs the same calculation on the received message, using the same secret key, to generate a new message authentication code. The received code is compared to the calculated code ( Figure 2.4 ). If we assume that only the receiver and the sender know the identity of the secret key, and if the received code matches the calculated code, then 1. The receiver is assured that the message has not been altered.why? 2. The receiver is assured that the message is from the alleged sender.Why? 3. If the message includes a sequence number , then the receiver can be assured of the proper sequence,why? Message Authentication Codes ONE-WAY HASH FUNCTION An alternative to the message authentication code is the one-way hash function. As with the message authentication code, a hash function accepts a variable-size message M as input and produces a fixed- size message digest H(M) as output ( Figure 2.5 ). Typically, the message is padded out to an integer multiple of some fixed length (e.g., 1024 bits) and the padding includes the value of the length of the original message in bits. The length field is a security measure to increase the difficulty for an attacker to produce an alternative message with the same hash value. Secure Hash Functions Secure Hash Functions The one-way hash function, or secure hash function, is important not only in message authentication but in digital signatures. Hash Function Requirements applied to any size data H produces a fixed-length output. H(x) is relatively easy to compute for any given x one-way property computationally infeasible to find x such that H(x) = h weak collision resistance computationally infeasible to find y ≠ x such tha H(y) = H(x) strong collision resistance computationally infeasible to find any pair (x, y) such that H(x) = H(y) Hash Functions SHA most widely used hash algorithm SHA-1 gives 160-bit hash more recent SHA-256, SHA-384, SHA-512 provide improved size and security Public Key Encryption Public-key encryption, first publicly proposed by Diffie and Hellman in 1976 is the first truly revolutionary advance in encryption in literally thousands of years. Public-key algorithms are based on mathematical functions rather than on simple operations on bit patterns. More important, public-key cryptography is asymmetric, involving the use of two separate keys, in contrast to the symmetric conventional encryption, which uses only one key In fact, the security of any encryption scheme depends on (1) the length of the key and (2) the computational work involved in breaking a cipher. A public-key encryption scheme has six ingredients, as shown here in Figure 2.6a: Plaintext: the readable message or data that is fed into the algorithm as input. Encryption algorithm: performs various transformations on the plaintext. Public and private key: a pair of keys selected so that if one is used for encryption, the other is used for decryption. The exact transformations performed by the encryption algorithm depend on the public or private key that is provided as input. Ciphertext: the scrambled message produced as output that depends on the plaintext and key. Decryption algorithm: takes ciphertext and key to produces the original plaintext. As the names suggest, the public key of the pair is made public for others to use, while the private key is known only to its owner. A public-key cryptographic algorithm relies on one key for encryption and a different but related key for decryption. All participants have access to public keys, and private keys are generated locally by each participant and therefore need never be distributed. As long as a user protects his or her private key, incoming communication is secure. Public Key Encryption Public Key Authentication Authentication and/or data integrity Public Key Algorithms RSA (Rivest, Shamir, Adleman) developed in 1977 only widely accepted public-key encryption alg given tech advances need 1024+ bit keys Diffie-Hellman key exchange algorithm only allows exchange of a secret key Digital Signature Standard (DSS) provides only a digital signature function with SHA-1 Elliptic curve cryptography (ECC) new, security like RSA, but with much smaller keys Digital Signature Public-key encryption can be used for authentication. as suggested by Figure 2.6b. Suppose that Bob wants to send a message to Alice. Although it is not important that the message be kept secret, he wants Alice to be certain that the message is indeed from him. For this purpose, Bob uses a secure hash function, such as SHA-512, to generate a hash value for the message and then encrypts the hash code with his private key, creating a digital signature. Bob sends the message with the signature attached. When Alice receives the message plus signature, she (1) calculates a hash value for the message; (2) decrypts the signature using Bob’s public key; and (3) compares the calculated hash value to the decrypted hash value. If the two hash values match, Alice is assured that the message must have been signed by Bob. No one else has Bob’s private key and therefore no one else could have created a ciphertext that could be decrypted with Bob’s public key. In addition, it is impossible to alter the message without access to Bob’s private key, so the message is authenticated both in terms of source and in terms of data integrity It is important to emphasize that the digital signature does not provide confidentiality. That is, the message being sent is safe from alteration but not safe from eavesdropping. This is obvious in the case of a signature based on a portion of the message, because the rest of the message is transmitted in the clear. Problem How does Alice really know that she is using Bob’s public key? How does Alice know she really is using Bob’s public key and it isn’t someone pretending to be Bob? Public-Key Certificates Digital certificates are issued to individuals by a certificate authority (CA), a private company that charges either the user or the receiver for issuing a certificate. The company DocuSign is an example of an issuer of digital certificates. Your digital certificate will contain: your name the name of the certificate authority a unique certificate serial number, its expiration date, etc. a unique private key (to include with messages you send) the digital signature of the CA