1 / 43

Computer and Network Security

Computer and Network Security. Rabie A. Ramadan Lecture 2. Grading Security Services and Mechanisms Symmetric Cipher Model Substitution techniques Transposition Techniques Stream and Block Ciphers. Table of Contents. Security Attacks. Security Attacks. Confidentiality. Integrity.

jace
Télécharger la présentation

Computer and Network Security

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Computer and Network Security Rabie A. Ramadan Lecture 2

  2. Grading Security Services and Mechanisms Symmetric Cipher Model Substitution techniques Transposition Techniques Stream and Block Ciphers Table of Contents

  3. Security Attacks Security Attacks Confidentiality Integrity Availability Snooping Denial of Service Modification Traffic Analysis Masquerading Replaying

  4. International Telecommunication Union Telecommunication Standardization (ITU-T) Provides: Services Mechanisms Security Services and Mechanisms

  5. Authentication - assurance that the communicating entity is the one claimed Access Control - prevention of the unauthorized use of a resource Data Confidentiality –protection of data from unauthorized disclosure Data Integrity - assurance that data received is as sent by an authorized entity Non-Repudiation - protection against denial by one of the parties in a communication Security Services

  6. Specific security mechanisms: Implemented on specific layer (OSI model) Encipherment, digital signatures, access controls, data integrity, authentication exchange, routing control, notarization Pervasive security mechanisms: Not related to a specific layer Trusted functionality, security labels, event detection Security Mechanisms

  7. Model for Network Security

  8. Using this model requires us to: Design a suitable algorithm for the security transformation. Generate the secret information (keys) used by the algorithm. Develop methods to distribute and share the secret information. Specify a protocol enabling the principals to use the transformation and secret information for a security service. Model for Network Security

  9. Symmetric Cipher Model

  10. Known as: Conventional Encryption Single-Key Encryption Plaintext Original text/msg Ciphertext Coded msg Enciphering/Encryption The process of converting the plaintext to ciphertext Deciphering/Decryption The process of converting the ciphertext to plaintext Symmetric Cipher Model

  11. Cryptography The developed encryption schemes Cryptanalysis Techniques used to get the plaintext out of the ciphertext without prior knowledge to the encryption scheme (breaking the code) Cryptology Both the cryptography and cryptanalysis Symmetric Cipher Model (Cont.)

  12. Unconditional Security The ciphertext provides insufficient information to uniquely determine the corresponding plaintext. Computational Security The time needed for calculations is greater than age of universe More Definitions

  13. Symmetric Cipher Model (Cont.)

  14. Requirements Strong Key  the opponent can not figure it out even if he/she has a number of ciphertexts The key must be exchanged through a secure channel Y = E(K,X) ~ Y = EK(X) X =D(K,Y) ~ X = DK(Y) Symmetric Cipher Model

  15. Always possible to simply try every key Most basic attack, proportional to key size Brute Force Search

  16. Substitution Ciphers

  17. You are spying on your friend Ahmed while he is chatting with John, you received the following message: “Ygjcxgvqmnnvjgrgumfgpv” Can you decrypt this message? Lets have Fun

  18. Ahmed is telling John: “Ygjcxgvqmnnvjgrgumfgpv” “We have to kill the president” Encryption Key: Replacement Table Plaintext ABCDEFGHIJKLMNOPQRSTUVWXYZ Ciphertext CDEFGHIJKLMNOPQRSTUVWXYZAB Encryption Technique Each letter is replaced by the second one after it Remove blanks Answer

  19. Earliest known substitution cipher by Julius Caesar first attested use in military affairs replaces each letter by 3rd one after it E.g. meet me after the toga party PHHW PH DIWHU WKH WRJD SDUWB Caesar Cipher

  20. Transformation : Mathematically give each letter a number a b c d e f g h i j k l m 0 1 2 3 4 5 6 7 8 9 10 11 12 n o p q r s t u v w x y Z 13 14 15 16 17 18 19 20 21 22 23 24 25 Then have Caesar cipher as: C = E(p) = (p + k) mod (26) p = D(C) = (C – k) mod (26) Caesar Cipher (Cont.)

  21. Cryptanalysis Only have 26 possible ciphers A maps to A,B,..Z Could simply try each in turn Caesar Cipher (Cont.)

  22. Rather than just shifting the alphabet Could shuffle (jumble) the letters arbitrarily Each plaintext letter maps to a different random ciphertext letter The key is 26 letters long Plain: abcdefghijklmnopqrstuvwxyz Cipher: DKVQFIBJWPESCXHTMYAUOLRGZN Plaintext: ifwewishtoreplaceletters Ciphertext: WIRFRWAJUHYFTSDVFSFUUFYA Monoalphabetic Cipher

  23. now have a total of 26! = 4 x 1026 keys with so many keys, might think is secure but would be !!!WRONG!!! Language Characteristics Problem Using the occurrence frequency of each letter , we can deduce the letters in the ciphertext Monoalphabetic Cipher Security

  24. English Letter Frequencies

  25. Invented by Charles Wheatstone in 1854, but named after his friend Baron Playfair. Encrypts multiple letters Uses Playfair Matrix Uses some of the rules to interpret the matrix Playfair Cipher

  26. A 5X5 matrix of letters based on a keyword Fill in letters of keyword (Avoid repetition) Fill rest of matrix with other letters E.g. using the keyword MONARCHY Playfair Key Matrix

  27. Plaintext encrypted two letters at a time: if a pair is a repeated letter, insert a filler like 'X', eg. "balloon" encrypts as "ba lx lo on" If both letters fall in the same row, replace each with letter to right (wrapping back to start from end), eg. “ar" encrypts as "RM" If both letters fall in the same column, replace each with the letter below it(again wrapping to top from bottom), eg. “mu" encrypts to "CM" Otherwiseeach letter is replaced by the one in its row in the column of the other letter of the pair, eg. “hs" encrypts to "BP", and “ea" to "IM" or "JM" (as desired) Playfair Rules

  28. Based on Playfair encryption, encrypt the word “Hello” Key : Note: The key is an arrangement of all of the alphabetic letters Group Activity

  29. Step 1: Group the letters He ll o 1st rule  repeated letters ll He lx lo Step 2: find the corresponding text in the key He  EC - rule 2 H and e on the same row (replace each with letter to right)  EC Lx  QZ -- rule 3 L and x at the same column (replace each with the letter below it)  QZ loBX -- rule 4 l and o at different rows and columns (replaced by the one in its row in the column of the other letter of the pair) E (Hello) “ECQZBX” Answer

  30. Security much improved over monoalphabetic Since have 26 x 26 = 676 diagrams Was widely used for many years (eg. US & British military in WW1) It can be broken, given a few hundred letters since still has much of plaintext structure Security of the Playfair Cipher

  31. Another approach to improving security is to use multiple cipher alphabets Makes cryptanalysis harder with more alphabets to guess and flatter frequency distribution Use a key to select which alphabet is used for each letter of the message Use each alphabet in turn Repeat from start after end of key is reached Polyalphabetic Ciphers

  32. Simplest polyalphabetic substitution cipher effectively multiple caesar ciphers key is multiple letters long K = k1 k2 ... kd ith letter specifies ith alphabet to use use each alphabet in turn repeat from start after d letters in message decryption simply works in reverse Vigenère Cipher

  33. eg using repeated keyword deceptive key: deceptivedeceptivedeceptive plaintext: wearediscoveredsaveyourself ciphertext:ZICVTWQNGRZGVTWAVZHCQYGLMGJ From the previous table lookup the key letter then the plain text letter. The cipher letter is the intersection letter Example

  34. have multiple ciphertext letters for each plaintext letter Letter frequencies are obscured But not totally lost Security of Vigenère Ciphers

  35. Ideally want a key as long as the message Vigenère proposed the autokey cipher The keyword is prefixed to message as key Still have frequency characteristics to attack Eg. given key deceptive key: deceptivewearediscoveredsav plaintext: wearediscoveredsaveyourself ciphertext: ZICVTWQNGKZEIIGASXSTSLVVWLA Autokey Cipher

  36. Select a random key that is equal to the message length. Use a table structure such as Vigenère table Problems: Generating long random keys Bandwidth problem  sending the key as long as the Msg One-Time Pad

  37. Transposition/Permutation Ciphers

  38. The letters of the message are rearranged Columnar transposition The number of columns is required Example: THIS IS A MESSAGE TO SHOW HOW A COLMUNAR TRANSPOSITION WORKS Transposition (Cont.)

  39. T H I S I S A M E S S A G E T O S H O W H O W A C O L M U N A R T R A N S P O S I T I O N W O R K S tssoh oaniw haaso lrsto imghw utpir seeoa mrook istwc nasna Transposition (Cont.)

  40. Given the following message “ This is the second lecture” Divide the message onto a block of 5 letters block Transpose the message Use Autokey cipher to encrypt the result Key : “ NetworkSecurity” Group Activity

  41. Stream  converts one symbol of plaintext into a symbol of ciphertext Block  encrypts a group of plaintext symbols as one block. Stream Vs. Block Ciphers

  42. Stallings Chapter 1 Chapter 2 Reading materials

More Related