Cryptography and the Web

Post on 31-Dec-2015

21 views 1 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

description

Cryptography and the Web. Lincoln Stein Whitehead Institute/MIT Center for Genome Research. Cryptography. The art of secret message writing. Creating texts that can only be read by authorized individuals only. Simple Cryptography. Ciphertext. the romans are coming today. Plaintext. Key. - PowerPoint PPT Presentation

transcript

Cryptography and the Web

Lincoln Stein

Whitehead Institute/MIT Center for Genome Research

Cryptography

The art of secret message writing. Creating texts that can only be read by

authorized individuals only.

Simple Cryptography

Plaintext

Key

Ciphertext

Caesar Cipher

ABCDEFGHIJKLMNOPQRSTUVWXYZ

NOPQRSTUVWXYZABCDEFGHIJKLM

THE GOTHS COMETH

rotate 13 positions

FUR TAFUE PAYRFU

Plaintext

Key

Ciphertext

13

ABCDEFGHIJKLMNOPQRSTUVWXYZBCDEFGHIJKLMNOPQRSTUVWXYZACDEFGHIJKLMNOPQRSTUVWXYZABDEFGHIJKLMNOPQRSTUVWXYZABCEFGHIJKLMNOPQRSTUVWXYZABCDFGHIJKLMNOPQRSTUVWXYZABCDEGHIJKLMNOPQRSTUVWXYZABCDEFHIJKLMNOPQRSTUVWXYZABCD...

Rotating Key Cipher

SOUND THE RETREAT

DEADFED

VSUPC XKG UEWWEX

plaintext

key

ciphertext

General Principles

Longer keys make better ciphers Random keys make better ciphers Good ciphers produce “random” ciphertext Best keys are used once and thrown away

Symmetric (Private Key) Cryptography

Examples: DES, RC4, RC5, IDEA, Skipjack Advantages: fast, ciphertext secure Disadvantages: must distribute key in

advance, key must not be divulged

DES: Data Encryption Standard

Widely published & used - federal standard Complex series of bit substitutions,

permutations and recombinations Basic DES: 56-bit keys

– Crackable in about a day using specialized hardware

Triple DES: effective 112-bit key– Uncrackable by known techniques

Asymmetric (Public Key) Cryptography

Examples: RSA, Diffie-Hellman, ElGamal Advantages: public key widely

distributable, does digital signatures Disadvantages: slow, key distribution

RSA

Algorithm patented by RSA Data Security Uses special properties of modular

arithmetic– C = Pe (mod n)– P = Cd (mod n)– e, d, and n all hundreds of digits long and

derived from a pair of large prime numbers Keys lengths from 512 to 1024 bits

Public Key Encryption: The Frills

Frill Technique

Fast encryption/decryption Digital envelopesAuthentication of sender Digital signatureVerification of message integrity Message digestsSafe distribution of public keys Certifying authorities

Digital Envelopes

Digital Signatures

Message Digests

Certifying Authorities

Hierarchy of Trust

Secure, Verifiable Transmission

Public Key Cryptography on the Web

Secure Socket Layer (SSL)– Netscape Communications Corporation

Secure HTTP (SHTTP)– Commerce Net

SSL and SHTTP, similarities

RSA public key cryptography MD5 message digests Variety of private key systems

– Strong cryptography for use in U.S.– Weakened cryptography for export.

SSL and SHTTP, differences

Physical Layer

Network interface

Internet

Transport

Application

SSL

HTTP

TELNET NNTP

FTP

SHTTP

Using SSL

Signed Certificate

Applying for a Server Certificate

Filling out Certificate Request

URLs

SSL Protocol– http://home.netscape.com/newsref/std/SSL.html

SHTTP Protocol– http://www.eit.com/projects/s-http/

Verisign– http://www.verisign.com/

RSA Data Security– http://www.rsa.com/

Top related

Cryptography - Fix IT for Me.Net Study Guide/Cryptography... · Web viewUsing Symmetric and Asymmetric known as public key cryptography: symmetric for bulk data encryption and asymmetric
Documents
Quantum cryptography CS4600/5600 Biometrics and Cryptography UTC/CSE.
Documents
Security Analysis of the W3C Web Cryptography API
Documents
Experiential Learning in Cryptography and Mapping into IA ...web2.utc.edu/.../cryptography/.../LabManual2011.docx  · Web viewIn this project you will develop a program to encrypt
Documents
SEC835 Cryptography Basic. Major Security Services Present in any web application Cryptography, or cryptosystem User’s authentication Access control Audit.
Documents
Applied Cryptography Week 8 Slide 1 Applied Cryptography Week 8 Web Services, Secure Voting and XML Signature Mike McCarthy.
Documents
G. Pullaiah College of Engineering and Technology · Web viewPublic-key cryptography :Principles of public-key cryptography, RSA Algorithm, Diffie-Hellman Key Exchange, ELGamal cryptographic
Documents
Codes, Ciphers, and Cryptography Quantum Cryptography.
Documents
Cryptography in web applications: vulnerabilities and attacks
Documents
Lattice-based Cryptography · Cryptography Post-Quantum CryptographyResults and Perspectives Outline 1 Cryptography Fundamental Goals Techniques and Limitations 2 Post-Quantum Cryptography
Documents
ECE 646 Cryptography and Computer Network Security …ece.gmu.edu/coursewebpages/ECE/ECE646/F15/viewgraphs_F15/ECE6… · 1 Course web page: ECE 646 Cryptography and Computer Network
Documents
Cryptography - Key Agreement and Key Transport Using Elliptic Curve Cryptography
Documents
CS 4770: Cryptography CS 6750: Cryptography and ...
Documents
Web cryptography
Technology
Applied Cryptography Spring 2015 GSM and cryptography.
Documents
CS 4770: Cryptography CS 6750: Cryptography and ... · ... Introduction to Modern Cryptography. J. Katz and Y. Lindell 2. ... •Modern cryptography ... We have also used materials
Documents
Cryptography for [web]app developers
Technology
Web Security - CSP & Web Cryptography
Software
Web Applications: Overview and Architectureweb.cse.ohio-state.edu/~joseph.97/courses/3901/... · Web Applications: Overview and Architecture ... cryptography, databases, operating
Documents
Cryptography applied for Data Security in Mobile Devices and Web
Technology

Copyright © 2018 DOCUMENTS