Chapter 2. Symmetric Encryption and Message Confidentiality
Total Page:16
File Type:pdf, Size:1020Kb
Load more
Recommended publications
-
Chapter 3 – Block Ciphers and the Data Encryption Standard
Chapter 3 –Block Ciphers and the Data Cryptography and Network Encryption Standard Security All the afternoon Mungo had been working on Stern's Chapter 3 code, principally with the aid of the latest messages which he had copied down at the Nevin Square drop. Stern was very confident. He must be well aware London Central knew about that drop. It was obvious Fifth Edition that they didn't care how often Mungo read their messages, so confident were they in the by William Stallings impenetrability of the code. —Talking to Strange Men, Ruth Rendell Lecture slides by Lawrie Brown Modern Block Ciphers Block vs Stream Ciphers now look at modern block ciphers • block ciphers process messages in blocks, each one of the most widely used types of of which is then en/decrypted cryptographic algorithms • like a substitution on very big characters provide secrecy /hii/authentication services – 64‐bits or more focus on DES (Data Encryption Standard) • stream ciphers process messages a bit or byte at a time when en/decrypting to illustrate block cipher design principles • many current ciphers are block ciphers – better analysed – broader range of applications Block vs Stream Ciphers Block Cipher Principles • most symmetric block ciphers are based on a Feistel Cipher Structure • needed since must be able to decrypt ciphertext to recover messages efficiently • bloc k cihiphers lklook like an extremely large substitution • would need table of 264 entries for a 64‐bit block • instead create from smaller building blocks • using idea of a product cipher 1 Claude -
Chapter 3 – Block Ciphers and the Data Encryption Standard
Symmetric Cryptography Chapter 6 Block vs Stream Ciphers • Block ciphers process messages into blocks, each of which is then en/decrypted – Like a substitution on very big characters • 64-bits or more • Stream ciphers process messages a bit or byte at a time when en/decrypting – Many current ciphers are block ciphers • Better analyzed. • Broader range of applications. Block vs Stream Ciphers Block Cipher Principles • Block ciphers look like an extremely large substitution • Would need table of 264 entries for a 64-bit block • Arbitrary reversible substitution cipher for a large block size is not practical – 64-bit general substitution block cipher, key size 264! • Most symmetric block ciphers are based on a Feistel Cipher Structure • Needed since must be able to decrypt ciphertext to recover messages efficiently Ideal Block Cipher Substitution-Permutation Ciphers • in 1949 Shannon introduced idea of substitution- permutation (S-P) networks – modern substitution-transposition product cipher • These form the basis of modern block ciphers • S-P networks are based on the two primitive cryptographic operations we have seen before: – substitution (S-box) – permutation (P-box) (transposition) • Provide confusion and diffusion of message Diffusion and Confusion • Introduced by Claude Shannon to thwart cryptanalysis based on statistical analysis – Assume the attacker has some knowledge of the statistical characteristics of the plaintext • Cipher needs to completely obscure statistical properties of original message • A one-time pad does this Diffusion -
The Impetus to Creativity in Technology
The Impetus to Creativity in Technology Alan G. Konheim Professor Emeritus Department of Computer Science University of California Santa Barbara, California 93106 [email protected] [email protected] Abstract: We describe the technical developments ensuing from two well-known publications in the 20th century containing significant and seminal results, a paper by Claude Shannon in 1948 and a patent by Horst Feistel in 1971. Near the beginning, Shannon’s paper sets the tone with the statement ``the fundamental problem of communication is that of reproducing at one point either exactly or approximately a message selected *sent+ at another point.‛ Shannon’s Coding Theorem established the relationship between the probability of error and rate measuring the transmission efficiency. Shannon proved the existence of codes achieving optimal performance, but it required forty-five years to exhibit an actual code achieving it. These Shannon optimal-efficient codes are responsible for a wide range of communication technology we enjoy today, from GPS, to the NASA rovers Spirit and Opportunity on Mars, and lastly to worldwide communication over the Internet. The US Patent #3798539A filed by the IBM Corporation in1971 described Horst Feistel’s Block Cipher Cryptographic System, a new paradigm for encryption systems. It was largely a departure from the current technology based on shift-register stream encryption for voice and the many of the electro-mechanical cipher machines introduced nearly fifty years before. Horst’s vision directed to its application to secure the privacy of computer files. Invented at a propitious moment in time and implemented by IBM in automated teller machines for the Lloyds Bank Cashpoint System. -
Chapter 2 the Data Encryption Standard (DES)
Chapter 2 The Data Encryption Standard (DES) As mentioned earlier there are two main types of cryptography in use today - symmet- ric or secret key cryptography and asymmetric or public key cryptography. Symmet- ric key cryptography is the oldest type whereas asymmetric cryptography is only being used publicly since the late 1970’s1. Asymmetric cryptography was a major milestone in the search for a perfect encryption scheme. Secret key cryptography goes back to at least Egyptian times and is of concern here. It involves the use of only one key which is used for both encryption and decryption (hence the use of the term symmetric). Figure 2.1 depicts this idea. It is necessary for security purposes that the secret key never be revealed. Secret Key (K) Secret Key (K) ? ? - - - - Plaintext (P ) E{P,K} Ciphertext (C) D{C,K} Plaintext (P ) Figure 2.1: Secret key encryption. To accomplish encryption, most secret key algorithms use two main techniques known as substitution and permutation. Substitution is simply a mapping of one value to another whereas permutation is a reordering of the bit positions for each of the inputs. These techniques are used a number of times in iterations called rounds. Generally, the more rounds there are, the more secure the algorithm. A non-linearity is also introduced into the encryption so that decryption will be computationally infeasible2 without the secret key. This is achieved with the use of S-boxes which are basically non-linear substitution tables where either the output is smaller than the input or vice versa. 1It is claimed by some that government agencies knew about asymmetric cryptography before this. -
Feistel Cipher
Chapter 3 – Block Ciphers and the CryptographyCryptography andand Data Encryption Standard Network Security Network Security All the afternoon Mungo had been working on Stern's code, principally with the aid of the latest ChapterChapter 33 messages which he had copied down at the Nevin Square drop. Stern was very confident. He must be well aware London Central knew Fifth Edition about that drop. It was obvious that they didn't care how often Mungo read their messages, so by William Stallings confident were they in the impenetrability of the Lecture slides by Lawrie Brown code. —Talking to Strange Men, Ruth Rendell (with edits by RHB) Outline Modern Block Ciphers • will consider: • now look at modern block ciphers – Block vs stream ciphers • one of the most widely used types of – Feistel cipher design & structure cryptographic algorithms – DES • provide secrecy/authentication services • details • Initially look at Data Encryption Standard • strength (DES) to illustrate block cipher design – Differential & linear cryptanalysis issues – Block cipher design principles Block vs Stream Ciphers Block vs Stream Ciphers Block vs Stream Ciphers • block ciphers process messages in blocks, each of which is then en/decrypted • like a substitution on very big characters – 64 -bits or more (these days, 128 or more) • stream ciphers process messages a bit or byte at a time when en/de -crypting • many current ciphers are block ciphers – better analysed – broader range of applications Block Cipher Principles Ideal Block Cipher • many symmetric block ciphers -
Oral History Interview with Martin Hellman
An Interview with MARTIN HELLMAN OH 375 Conducted by Jeffrey R. Yost on 22 November 2004 Palo Alto, California Charles Babbage Institute Center for the History of Information Technology University of Minnesota, Minneapolis Copyright 2004, Charles Babbage Institute Martin Hellman Interview 22 November 2004 Oral History 375 Abstract Leading cryptography scholar Martin Hellman begins by discussing his developing interest in cryptography, factors underlying his decision to do academic research in this area, and the circumstances and fundamental insights of his invention of public key cryptography with collaborators Whitfield Diffie and Ralph Merkle at Stanford University in the mid-1970s. He also relates his subsequent work in cryptography with Steve Pohlig (the Pohlig-Hellman system) and others. Hellman addresses his involvement with and the broader context of the debate about the federal government’s cryptography policy—regarding to the National Security Agency’s (NSA) early efforts to contain and discourage academic work in the field, the Department of Commerce’s encryption export restrictions (under the International Traffic of Arms Regulation, or ITAR), and key escrow (the so-called Clipper chip). He also touches on the commercialization of cryptography with RSA Data Security and VeriSign, as well as indicates some important individuals in academe and industry who have not received proper credit for their accomplishments in the field of cryptography. 1 TAPE 1 (Side A) Yost: My name is Jeffrey Yost. I am from the Charles Babbage Institute and am here today with Martin Hellman in his home in Stanford, California. It’s November 22nd 2004. Yost: Martin could you begin by giving a brief biographical background of yourself—of where you were born and where you grew up? Hellman: I was born October 2nd 1945 in New York City. -
An Efficient VHDL Description and Hardware Implementation of The
An Efficient VHDL Description and Hardware Implementation of the Triple DES Algorithm A thesis submitted to the Graduate School of the University of Cincinnati In partial fulfillment of the requirements for the degree of Master of Science In the Department of Electrical and Computer Engineering Of the College of Engineering and Applied Sciences June 2014 By Lathika SriDatha Namburi B.Tech, Electronics and Communications Engineering, Jawaharlal Nehru Technological University, Hyderabad, India, 2011 Thesis Advisor and Committee Chair: Dr. Carla Purdy ABSTRACT Data transfer is becoming more and more essential these days with applications ranging from everyday social networking to important banking transactions. The data that is being sent or received shouldn’t be in its original form but must be coded to avoid the risk of eavesdropping. A number of algorithms to encrypt and decrypt the data are available depending on the level of security to be achieved. Many of these algorithms require special hardware which makes them expensive for applications which require a low to medium level of data security. FPGAs are a cost effective way to implement such algorithms. We briefly survey several encryption/decryption algorithms and then focus on one of these, the Triple DES. This algorithm is currently used in the electronic payment industry as well as in applications such as Microsoft OneNote, Microsoft Outlook and Microsoft system center configuration manager to password protect user content and data. We implement the algorithm in a Hardware Description Language, specifically VHDL and deploy it on an Altera DE1 board which uses a NIOS II soft core processor. The algorithm takes input encoded using a software based Huffman encoding to reduce its redundancy and compress the data. -
Symmetric Cryptography: DES And
Modern Symmetric Ciphers Symmetric Cryptography: Symmetric Cryptography: z We will now look at two examples of modern symmetric key DES and RC4 ciphers: –DES – RC4 z These will serve as the basis for later discussion z We will also discuss modes of operation z Other popular ciphers: AES (Rijndael), RC5 Block vs Stream Ciphers Block Cipher Principles z There are two main classes of symmetric ciphers: z Most symmetric block ciphers are based on a Feistel Cipher – Block Ciphers: Break message into blocks and operate on a block- Structure by-block basis – This structure is desirable as it is easily reversible, allowing for – Stream Ciphers: Process messages bit-by-bit or byte-by-byte as easy encryption and decryption data arrives. Just reuse the same code, essentially! – Feistel structures allow us to break the construction of an z Typically, block ciphers may be modified to run in a “stream encryption/decryption algorithm into smaller, manageable building mode” blocks z We will examine two of ciphers: z Goal of a block cipher: – DES: The basic block cipher (building block for 3DES) – Mix and permute message bits in a way that is parameterized by – RC4: A popular example of a stream cipher an encryption key – Output should be “statistically” uncorrelated with the key and input message 1 Substitution & Permutation Ciphers Confusion and Diffusion z In 1949 Claude Shannon introduced idea of substitution- z Cipher needs to completely obscure statistical properties of permutation (S-P) networks original message – modern substitution-transposition -
Cryptography Basics: 1
Lecture Notes (Syracuse University) Cryptography Basics: 1 Cryptography Basics 1 Secret Key Encryption • Convention and Terms – Plaintext: – Ciphertext: – Encryption: – Decryption: – Cryptanalysis: • Secret Key Encryption is also called Symmetric Key Encryption: the key used for encryption is the same as the key for decryption. 1.1 Classical Cryptosystems • Monoalphabetic Substitution Cipher – Units of plaintext are substituted with ciphertext according to a regular system. The ”units” may be single letters, pairs of letters, triplets of letters, mixtures of the above, and so forth. The receiver deciphers the text by performing an inverse substitution. – Example: Mapping: A->D, B->E, so on, Encryption: HELLO -> KHOOR – Drawbacks: this cipher can be easily broken using frequency analysis. In any language, the frequencies of the characters are different. For example, in English, ’z’ appears much less frequent than ’t’. Although each character is mapped to another character in the substitution cipher, their frequencies can reveal themselves. • Polyalphabetic Substitution Cipher: using multiple substitution alphabets. – The Enigma machine is more complex but still fundamentally a polyalphabetic substitution ci- pher. • The Enigma Machines. • Transposition Cipher – Units of the plaintext are rearranged in a different and usually quite complex order, but the units themselves are left unchanged. By contrast, in a substitution cipher, the units of the plaintext are retained in the same sequence in the ciphertext, but the units themselves are altered. – Example Lecture Notes (Syracuse University) Cryptography Basics: 2 HELLO WORLD -> HLOOL --> HLOOLELWRD ELWRD • One-time pad (see wikipedia) – Invented in 1917 – Used in low bandwidth – Used in military – The Hotline between US and former Soviet Union use one-time pad. -
Cryptography
What is this course about? Aims Cryptography This course provides an overview of basic modern cryptographic techniques and covers essential concepts that users of cryptographic standards need to understand to achieve their intended security goals. Markus Kuhn Objectives By the end of the course you should I be familiar with commonly used standardized cryptographic building Computer Laboratory, University of Cambridge blocks; I be able to match application requirements with concrete security definitions and identify their absence in naive schemes; https://www.cl.cam.ac.uk/teaching/1920/Crypto/ I understand various adversarial capabilities and basic attack These notes are merely provided as an aid for following the lectures. algorithms and how they affect key sizes; They are no substitute for attending the course. I understand and compare the finite groups most commonly used with discrete-logarithm schemes; Lent 2020 { CST Part II I understand the basic number theory underlying the most common public-key schemes, and some efficient implementation techniques. crypto-slides-4up.pdf 2020-04-23 20:49 b7c0c5f 1 2 1 Historic ciphers Related textbooks 2 Perfect secrecy Main reference: 3 Semantic security I Jonathan Katz, Yehuda Lindell: 4 Block ciphers Introduction to Modern Cryptography 2nd ed., Chapman & Hall/CRC, 2014 5 Modes of operation Further reading: 6 Message authenticity I Christof Paar, Jan Pelzl: 7 Authenticated encryption Understanding Cryptography Springer, 2010 8 Secure hash functions http://www.springerlink.com/content/978-3-642-04100-6/ http://www.crypto-textbook.com/ 9 Secure hash applications I Douglas Stinson: 10 Key distribution problem Cryptography { Theory and Practice 3rd ed., CRC Press, 2005 11 Number theory and group theory I Menezes, van Oorschot, Vanstone: 12 Discrete logarithm problem Handbook of Applied Cryptography 13 RSA trapdoor permutation CRC Press, 1996 http://www.cacr.math.uwaterloo.ca/hac/ 14 Digital signatures The course notes and some of the exercises also contain URLs with more detailed information. -
An Efficient Implementation of the Blowfish Encryption Algorithm
An Efficient Implementation of the Blowfish Encryption Algorithm A thesis submitted to the Graduate School of the University of Cincinnati In partial fulfillment of the requirements For the degree of Master of Science In the Department of Electrical and Computer Engineering Of the College of Engineering and Applied Sciences July 2014 By Ramya Krishna Addluri B.E, Electronics and Communications Engineering, University College of Engineering, Osmania University, India, 2011 Thesis Advisor and Committee Chair: Dr. Carla Purdy ABSTRACT Global networking and mobile computing are prevalent today, with the increase of communication methods such as telephones, computers, internet, broadcasting, etc. Because these transmission channels are open, there is no guarantee to avoid unauthorized access of the information through eavesdropping. Thus, several encryption algorithms have been designed for the security of the information being stored or transmitted. Several applications require such high throughputs for encryption and decryption that they cannot be executed on a regular general purpose microprocessor. FPGAs are a great platform for such implementations. We briefly study several cryptographic algorithms designed to prevent eavesdropping and then focus in detail on the Blowfish encryption algorithm. It is widely used in tools for password management, database security, email encryption etc. The algorithm is implemented in VHDL. It is then deployed onto a Nios II soft core processor on Altera DE1 board. Altera Quartus II is used to synthesize the design. Software based Huffman encoding is used to encode the input to the algorithm to reduce redundancy and to achieve lossless data compression. The results are analyzed. ii iii ACKNOWLEDGEMENT First of all, I would like to thank my advisor, Dr. -
Introduction to Cryptography
Introduction to Cryptography Alvin Lin January 2018 - May 2018 Block Ciphers A stream cipher algorithm defines how to encrypt or decrypt arbitrary length mes- sages. A block cipher can only encrypt or decrypt b bits, no more, no less. Arbitrary length message are handled by a separate algorithm called a block cipher mode of op- eration (ECB). A stream cipher's encryption and decryption operations are the same. A block cipher's encryption and decryption operations are different. To decrypt, the encryption operation must be run backward. Thus, the encryption operation must be invertible. Additionally, block ciphers are much more than just an encryption algorithm, they can be used: • to build different types of block-based encryption schemes • to realize stream ciphers • to construct hash functions • to make message authentication codes • to build key establishment protocols • to make a pseudo-random number generator Block Cipher Primitives Claude Shannon: there are two primitive operations with which strong encryption algorithms can be built. 1 1. Confusion: An encryption operation where the relationship between the key and ciphertext is obscured. Today, a common element for achieving confusion is substitution, which is found in both AES and DES. 2. Diffusion: An encryption operation where the influence of one plaintext sym- bol is spread of over many ciphertext symbols with the goal of hiding statistical properties of the plaintext. A simple diffusion element is the bit permutation, which is frequently used within DES. This obscures the relationship between the ciphertext and the plaintext. Both operations by themselves cannot provide security. The idea is to concatenate confusion and diffusion elements to build so called product ciphers.