internet lab ilab1 introduction to cryptography
play

Internet Lab (iLab1) Introduction to Cryptography Lars Wstrich - PowerPoint PPT Presentation

Sep 27, 2022 •122 likes •694 views

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) Introduction to Cryptography Lars Wstrich ilab1@net.in.tum.de Chair of Network Architectures and Services Department

  1. Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) Introduction to Cryptography Lars Wüstrich ilab1@net.in.tum.de Chair of Network Architectures and Services Department of Informatics Technical University of Munich Slides based on: Network Security Introduction to modern cryptography (slides by Benjamin Hof) A Graduate Course in Applied Cryptography (Dan Boneh and Victor Shoup) Cryptography – WiSe 2019/20

  2. Outline Cryptography Security Goals Symmetric encryption Hash functions Asymetric cryptography Summary 1/35

  3. Outline Cryptography Security Goals Symmetric encryption Hash functions Asymetric cryptography Summary 2/35

  4. What is Cryptography? • It is • a tool to protect information in computer systems • the basis of many security mechanisms • It is NOT : • the holy grail that solves all security problems • something that you should try to invent yourself We are just users of cryptography 3/35

  5. Goals of cryptography 1. Secure communication in computer networks HTTPS Protection from: - Eavesdropping - Tampering 4/35

  6. Goals of cryptography 2. Protect files (beyond computer networks) Disk Alice File 1 Alice Protection from: - Eavesdropping File 2 - Tampering 5/35

  7. Outline Cryptography Security Goals Symmetric encryption Hash functions Asymetric cryptography Summary 6/35

  8. Security Goals Our main security goals in computer networks are CIA: • Confidentiality • Integrity • Authenticity In addition to that, there are the goals of • Accountability (non-repudiation) • Availability • Access control 7/35

  9. 8/35

  10. Building Blocks of Cryptography Digital Signatures Entity Zero-Knowledge Origin Non-Repudiation Proofs Authentication MAC Algorithms Cryptography Block Ciphers, Hash Functions Stream Ciphers Data Confidentiality Authentication Public-Key Encryption Authenticated Encryption 9/35

  11. Outline Cryptography Security Goals Symmetric encryption Hash functions Asymetric cryptography Summary 10/35

  12. What helps us reach our goals? Symmetric Crypto Asymmetric Crypto Confidentiality Integrity Authenticity Key Exchange 11/35

  13. Symmetric Encryption Alice Bob m E(k, m) = c c D(k, c) = m E D k k In symmetric encryption there are two algorithms 1. An ecnryption algorithm E 2. A decryption algrothm D In addition there is a secret key k which is shared by the communicating parties. 12/35

  14. Kerckhoffs’ principle Security should only depend on secrecy of the key, not the secrecy of the system. • key easier to keep secret • change • compatibility No security by obscurity. • scrutiny • standards • reverse engineering 13/35

  15. Block ciphers • fixed key length and block length • chop m into n bit blocks • pad the last block m k n bit E c 14/35

  16. Stream ciphers Stream ciphers, create a key stream that is XORed onto the message: nonce key initialization vector E keystream plaintext ⊕ ciphertext 15/35

  17. What can we do so far? Symmetric Crypto Asymmetric Crypto Confidentiality � Integrity Authenticity Key exchange 16/35

  18. Outline Cryptography Security Goals Symmetric encryption Hash functions Asymetric cryptography Summary 17/35

  19. • Common practice in data communications: error detection code , to identify random errors introduced during transmission • Most simple error detection code: Parity • 7 data bits, 1 parity bit • Prefixes data with 1 ( 0 ) if number of set data bits is odd (even) • 0 0 11 00 11 • 1 0 11 00 10 • Further examples: Bit-Interleaved Parity, Cyclic Redundancy Check (CRC) 18/35

  20. • Common practice in data communications: error detection code , to identify random errors introduced during transmission • Most simple error detection code: Parity • 7 data bits, 1 parity bit • Prefixes data with 1 ( 0 ) if number of set data bits is odd (even) • 0 0 11 00 11 • 1 0 11 00 10 • Further examples: Bit-Interleaved Parity, Cyclic Redundancy Check (CRC) • Underlying idea of these codes: add redundancy to a message for being able to detect , or even correct transmission errors 18/35

  21. • Common practice in data communications: error detection code , to identify random errors introduced during transmission • Most simple error detection code: Parity • 7 data bits, 1 parity bit • Prefixes data with 1 ( 0 ) if number of set data bits is odd (even) • 0 0 11 00 11 • 1 0 11 00 10 • Further examples: Bit-Interleaved Parity, Cyclic Redundancy Check (CRC) • Underlying idea of these codes: add redundancy to a message for being able to detect , or even correct transmission errors • The error detection/correction code of choice and its parameters is a trade-off between: • Computational overhead • Increase of message length • ... and depends on the probability/characteristics of errors on the transmission medium 18/35

  22. • We want to achieve: Integrity • We received message m . Has m been modified by an attacker? 19/35

  23. • We want to achieve: Integrity • We received message m . Has m been modified by an attacker? • It is a different (and much harder!) problem to determine if m has been modified on purpose! 19/35

  24. • We want to achieve: Integrity • We received message m . Has m been modified by an attacker? • It is a different (and much harder!) problem to determine if m has been modified on purpose! • Why? 19/35

  25. • We want to achieve: Integrity • We received message m . Has m been modified by an attacker? • It is a different (and much harder!) problem to determine if m has been modified on purpose! • Why? • It is unlikely that a random error that modified a message also "fixes" the messages error detection code • An attacker can modify the message and fix the respective error detection code 19/35

  26. • We want to achieve: Integrity • We received message m . Has m been modified by an attacker? • It is a different (and much harder!) problem to determine if m has been modified on purpose! • Why? • It is unlikely that a random error that modified a message also "fixes" the messages error detection code • An attacker can modify the message and fix the respective error detection code • Consequently, we need to add a code that fulfills some additional properties which should make it computationally infeasible for an attacker to tamper with messages 19/35

  27. • We want to achieve: Integrity • We received message m . Has m been modified by an attacker? • It is a different (and much harder!) problem to determine if m has been modified on purpose! • Why? • It is unlikely that a random error that modified a message also "fixes" the messages error detection code • An attacker can modify the message and fix the respective error detection code • Consequently, we need to add a code that fulfills some additional properties which should make it computationally infeasible for an attacker to tamper with messages • Therefore we need: 1. Cryptographic Hash Functions 2. Message Authentication Codes 19/35

  28. Hash functions input • one way function • easy to compute H ( · ) • variable length input • fixed length output output fixed length 20/35

  29. • A function H is called a cryptographic hash function if: 21/35

  30. • A function H is called a cryptographic hash function if: 1. H is a one way function For all pre-specified outputs y , it is computationally infeasible to find an x with H ( x ) = y "For any possible hash value y of a hash function, I cannot efficiently find an input x that yields y " → 1 st pre-image resistance 21/35

  31. • A function H is called a cryptographic hash function if: 1. H is a one way function For all pre-specified outputs y , it is computationally infeasible to find an x with H ( x ) = y "For any possible hash value y of a hash function, I cannot efficiently find an input x that yields y " → 1 st pre-image resistance 2. Given x it is computationally infeasible to find any second input x’ with x � = x ’ such that H(x) = H(x’) "Given a first message x , I cannot efficiently find a second, different message x ′ that yields the same hash value as x " → 2 nd pre-image resistance Note: This property is very important for digital signatures. 21/35

  32. • A function H is called a cryptographic hash function if: 1. H is a one way function For all pre-specified outputs y , it is computationally infeasible to find an x with H ( x ) = y "For any possible hash value y of a hash function, I cannot efficiently find an input x that yields y " → 1 st pre-image resistance 2. Given x it is computationally infeasible to find any second input x’ with x � = x ’ such that H(x) = H(x’) "Given a first message x , I cannot efficiently find a second, different message x ′ that yields the same hash value as x " → 2 nd pre-image resistance Note: This property is very important for digital signatures. 3. It is computationally infeasible to find any pair (x, x’) with x � = x ’ such that H(x) = H(x’) "I cannot efficiently find a pair of different input values x and x ′ that yield the same hash value" → Collision resistance 21/35

Recommend

Internet Lab (iLab1) Domain Name Sytem Dominik Scholz ilab1@net.in.tum.de Chair of Network

Internet Lab (iLab1) Domain Name Sytem Dominik Scholz ilab1@net.in.tum.de Chair of Network

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) Domain Name Sytem Dominik Scholz ilab1@net.in.tum.de Chair of Network Architectures and Services Department of

1.01k views • 54 slides
Internet Lab (iLab1) Wireless Networks Lars Wstrich ilab1@net.in.tum.de Chair of Network

Internet Lab (iLab1) Wireless Networks Lars Wstrich ilab1@net.in.tum.de Chair of Network

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) Wireless Networks Lars Wstrich ilab1@net.in.tum.de Chair of Network Architectures and Services Department of

715 views • 32 slides
Internet Lab (iLab1) NAT / DHCP Dominik Scholz ilab1@net.in.tum.de Chair of Network

Internet Lab (iLab1) NAT / DHCP Dominik Scholz ilab1@net.in.tum.de Chair of Network

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) NAT / DHCP Dominik Scholz ilab1@net.in.tum.de Chair of Network Architectures and Services Department of Informatics

1.11k views • 63 slides
Internet Lab (iLab1) Basics Lars Wstrich ilab1@net.in.tum.de Chair of Network Architectures

Internet Lab (iLab1) Basics Lars Wstrich ilab1@net.in.tum.de Chair of Network Architectures

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) Basics Lars Wstrich ilab1@net.in.tum.de Chair of Network Architectures and Services Department of Informatics

240 views • 22 slides
Internet Lab (iLab1) Basics Minoo Rouhi ilab1@net.in.tum.de Chair of Network Architectures and

Internet Lab (iLab1) Basics Minoo Rouhi ilab1@net.in.tum.de Chair of Network Architectures and

Chair of Network Architectures and Services Department of Informatics Technical University of Munich Internet Lab (iLab1) Basics Minoo Rouhi ilab1@net.in.tum.de Chair of Network Architectures and Services Department of Informatics Technical

609 views • 24 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography

Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography

Homomorphic Cryptography & Its Applications Aaram Yun, UNIST FIF presentation, 2015 1 Cryptography 2 Cryptography Bike lock of Internet Provides many important building blocks for security For example, encryption or

699 views • 31 slides
Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU Leuven - COSIC 20 November 2012 Privacy Preserving Protocols Introduction Cryptography in Daily Life RFID Privacy

1.04k views • 60 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 19th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security fail?

758 views • 72 slides
Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and

Introduction to Cryptography Summarized from Applied Cryptography, Protocols, Algorithms, and Source Code in C , 2nd. Edition, Bruce Schneier, John Wiley & Sons, Inc. Outline Cryptographic Protocols Introduction Introduction

759 views • 45 slides
Lattice Cryptography for the Internet Chris Peikert Georgia Institute of Technology Post-Quantum

Lattice Cryptography for the Internet Chris Peikert Georgia Institute of Technology Post-Quantum

Lattice Cryptography for the Internet Chris Peikert Georgia Institute of Technology Post-Quantum Cryptography 2 October 2014 1 / 12 Lattice-Based Cryptography p d o m x g = y N = = p m e mod N q e ( g a , g b ) (Images

873 views • 70 slides
Introduction to Symmetric Cryptography Lars R. Knudsen June 2014 L.R. Knudsen Introduction to

Introduction to Symmetric Cryptography Lars R. Knudsen June 2014 L.R. Knudsen Introduction to

Introduction to Symmetric Cryptography Lars R. Knudsen June 2014 L.R. Knudsen Introduction to Symmetric Cryptography What is cryptography? Cryptography is communication in the presence of an adversary Ron Rivest. Coding theory Detection and

877 views • 28 slides
Internet Security HTTPS SSH CSS441: Security and Cryptography Sirindhorn International

Internet Security HTTPS SSH CSS441: Security and Cryptography Sirindhorn International

CSS441 Internet Security Web Security TLS/SSL Internet Security HTTPS SSH CSS441: Security and Cryptography Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 20 December 2015

832 views • 32 slides
Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key

Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key

Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key Cryptography 1 Renate Scheidler The RSA Cryptosystem 2 Department of Mathematics & Statistics Department of Computer Science University of

372 views • 7 slides
iLab DNS and DNSSEC Dominik Scholz Slides by Benjamin Hof ilab1 @list.net.in.tum.de Chair of

iLab DNS and DNSSEC Dominik Scholz Slides by Benjamin Hof ilab1 @list.net.in.tum.de Chair of

iLab DNS and DNSSEC Dominik Scholz Slides by Benjamin Hof ilab1 @list.net.in.tum.de Chair of Network Architectures and Services Department of Informatics Technical University of Munich Lab 5 17ws 1 / 32 Outline Domain Name System

853 views • 58 slides
Security II: Cryptography Jonathan Katz, Yehuda Lindell: Introduction to Modern Cryptography

Security II: Cryptography Jonathan Katz, Yehuda Lindell: Introduction to Modern Cryptography

Related textbooks Main reference: Security II: Cryptography Jonathan Katz, Yehuda Lindell: Introduction to Modern Cryptography Chapman & Hall/CRC, 2nd ed., 2014 Further reading: Markus Kuhn Christof Paar, Jan Pelzl: Understanding

794 views • 27 slides
Permutation-based cryptography for the Internet of Things Gilles Van Assche 1 1 STMicroelectronics

Permutation-based cryptography for the Internet of Things Gilles Van Assche 1 1 STMicroelectronics

Permutation-based cryptography for the Internet of Things Gilles Van Assche 1 1 STMicroelectronics 2 Radboud University RIOT Summit 2017 Berlin, September 25-26, 2017 1 / 56 Joint work with Guido Bertoni, Joan Daemen 1 , 2 , Seth Hoffert,

871 views • 65 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
CS 1501 www.cs.pitt.edu/~nlf4/cs1501/ An Introduction to Cryptography Introduction to crypto

CS 1501 www.cs.pitt.edu/~nlf4/cs1501/ An Introduction to Cryptography Introduction to crypto

CS 1501 www.cs.pitt.edu/~nlf4/cs1501/ An Introduction to Cryptography Introduction to crypto Cryptography - enabling secure communication in the presence of third parties Alice wants to send Bob a message without anyone else being

878 views • 44 slides
Related textbooks Jonathan Katz, Yehuda Lindell: Security II: Cryptography Introduction to

Related textbooks Jonathan Katz, Yehuda Lindell: Security II: Cryptography Introduction to

Related textbooks Jonathan Katz, Yehuda Lindell: Security II: Cryptography Introduction to Modern Cryptography Chapman & Hall/CRC, 2008 Christof Paar, Jan Pelzl: Markus Kuhn Understanding Cryptography Springer, 2010

470 views • 20 slides
Cryptography for Embedded Devices Tobias Oder Ruhr-University Bochum Workshop on Cryptography

Cryptography for Embedded Devices Tobias Oder Ruhr-University Bochum Workshop on Cryptography

Efficient Implementation of Lattice-based Cryptography for Embedded Devices Tobias Oder Ruhr-University Bochum Workshop on Cryptography for the 09.11.2017 Internet of Things and Cloud 2017 Lattice-based Cryptography Set of vectors in n

601 views • 27 slides
cryptography From internet to softwares Julie Gommes Vienna November 2015 Julie Gommes IT

cryptography From internet to softwares Julie Gommes Vienna November 2015 Julie Gommes IT

Jihadism and cryptography From internet to softwares Julie Gommes Vienna November 2015 Julie Gommes IT Security and governance consultant - Working on jihadist networks from years - Lived/worked in Egypt, Syria, Soudan, Liban, Tunia -

1.03k views • 26 slides
Cryptography for the quantum internet Elements of a quantum TLS Christian Majenz

Cryptography for the quantum internet Elements of a quantum TLS Christian Majenz

Cryptography for the quantum internet Elements of a quantum TLS Christian Majenz Colloquium Informatics Institute, University of Amsterdam Quantum computers Quantum computers Accelerating effort to build a quantum computer Quantum

1.74k views • 115 slides
Introduction to Public-Key Cryptography Nadia Heninger University of Pennsylvania June 11, 2018

Introduction to Public-Key Cryptography Nadia Heninger University of Pennsylvania June 11, 2018

Introduction to Public-Key Cryptography Nadia Heninger University of Pennsylvania June 11, 2018 We stand today on the brink of a revolution in cryptography. Diffie and Hellman, 1976 Symmetric cryptography AES k ( m ) * Toy

935 views • 50 slides

More recommend