• No results found

ECE 297:11 - Lecture 1. Security Services. Basic Concepts of Cryptology. Security Threats and Security Services. Need for information security

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "ECE 297:11 - Lecture 1. Security Services. Basic Concepts of Cryptology. Security Threats and Security Services. Need for information security"

Copied!
13
0
0

Loading.... (view fulltext now)

Download now ( 13 Page )

Full text

(1)

Security Services

Basic Concepts of

Cryptology

ECE 297:11 - Lecture 1

Need for information security

• widespread use of data processing equipment:

computer security

• widespread use of computer networks and

distributed computing systems:

network security

Security Threats and

Security Services

(2)

Security Threats in Banking Systems

Bank A interception Bank B

modification fabrication unauthorized access Radiation analysis Timing attacks ATM

Network Security Threats (1)

Interruption Interception Modification Fabrication Passive Active Interception Release of message contents Traffic analysis Interruption (availability) Modification (integrity) Fabrication (authenticity)

Network Security Threats (2)

(3)

Security services

Protecting data

in transit

at rest

• confidentiality • integrity • authentication • non-repudiation • access control - identification - authorization - auditing • availability

Identification

(User Authentication)

On the basis of

• what you know (passwords, PINs)

• what you have (magnetic card, smart card)

• what you are (fingerprints, handprints, voiceprints,

keystroke timing, signatures, retinal

scanners)

Basic Security Services (1)

1. Confidentiality 2. Message integrity 3. Message authentication Bob Alice Charlie Bob Alice Charlie Bob Alice Charlie

(4)

Basic Security Services (2)

4. Non-repudiation

- of sender - of receiver - mutual Technique: digital signature

Signature

DIGITAL HANDWRITTEN

A6E3891F2939E38C745B 25289896CA345BEF5349 245CBA653448E349EA47

Main Goals: • unique identification

• proof of agreement to the contents of the document

Handwritten and digital signatures

Common Features

Handwritten signature Digital signature 1. Unique

2. Impossible to be forged

3. Impossible to be denied by the author 4. Easy to verify by an independent judge 5. Easy to generate

Handwritten and digital signatures

Differences

Handwritten signature Digital signature 6. Associated physically

with the document

7. Almost identical for all documents 8. Usually at the last page

6. Can be stored and transmitted independently of the document 7. Function of the document 8. Covers the entire document

(5)

Relations among security services

INTEGRITY AUTHENTICATION NON-REPUDIATION CONFIDENTIALITY

Basic Concepts of

Cryptology

CRYPTOLOGY CRYPTOGRAPHY CRYPTANALYSIS from Greek

cryptos - hidden, secret logos - word

(6)

Basic Vocabulary

ciphertext (cryptogram, encrypted message) message (plaintext, clear message) message (plaintext, clear message) M C M encryption (encipherment) decryption (decipherment) Sender Receiver

Cryptosystem (Cipher)

message ciphertext cryptographic key N bits M bits K bits

Definition of a cryptosystem (cipher)

M C family of enciphering transformations family of deciphering transformations K key K

message space key space ciphertext space

enciphering transformation EK(M)

deciphering transformation DK(C) K ∈ K M ∈ M DK(EK(M)) = M

(7)

Substitution Cipher

Key = a b c d e f g h i j k l m n o p q r s t u v w x y z f q i s h n c v j t y a u w d r e x l b m z o g k p TO BE OR NOT TO BE BD QH DX WDB BD QH TO BE OR NOT TO BE enciphering deciphering Number of keys = 26! ≈ 4 ⋅ 1026

Kerckhoff’s principle

The security of a cipher MUST NOT depend

on anything that cannot be easily changed

A. Kerckhoff, 1883

Unpublished vs. published algorithm?

Unpublished algorithm Published algorithm 1. Cryptanalysis must include

recovering the algorithm 2. Smaller number of users, smaller motivation to break 3. Unavailable for other countries

1. The only reliable way of assessing cipher security 2. Prevents backdoors hidden by designers

3. Large number of implementations = low cost + high performance 4. No need for engineering protection 5. Software implementations 6. Domestic and international standardization

(8)

Fundamental Tenet of Cryptography

If lots of smart people have failed to solve

a problem, then it probably will not be

solved anytime soon.

Security of unpublished ciphers

Commercial packages cracking unpublished encryption schemes built-in:

• MS Word, MS Excel, MS Money • Word-Perfect, ProWrite, Data Perfect • Lotus 1-2-3, Symphony, Quattro-Pro • Paradox, Semantec’s Q&A • PKZip

Time: 1-2 minutes

Price: ~ $200

Companies: Access Data Crak Software

Passwords recovered even for empty files!

Access Data – DNA: Distributed Network Attack

• client-server application

• DNA client runs in the background, only taking unused processor time

• performs an exhaustive key search on Office ‘97 and Office 2000 encrypted documents

Expected recovery times (200 MHz, Intel machines):

Product Maximum Time Expected

25 Client Network 16 Days 8 Days

50 Client Network 8 Days 4 Days

100 Client Network 4 Days 2 Days 500 Client Network 20 Hours 10 Hours 1,000 Client Network 10 Hours 5 Hours

(9)

Breaking ciphers used in GSM (1)

GSM - world's most widely used mobile telephony system

• 51% market share of all cellular phones, both analog and digital

• over 215 million subscribers in America, Europe, Asia, Africa, and Australia

• In the US, GSM employed in the "Digital PCS" networks of Pacific Bell, Bell South, Omnipoint, etc. Two voice encryption algorithms:

A5/1 and A5/2

encrypt voice between the cellphone and the base station

Breaking ciphers used in GSM (2)

Both voice encryption algorithms

• never published

• designed and analyzed by the secretive "SAGE" group (part of ETSI – European Telecommunications Standard Institute)

• A5/1 believed to be based on the modified French naval cipher

Both algorithms reverse-engineered by

"Marc Briceno" with the Smartcard Developer Association published by the Berkeley group

A5/1 in May 1999, A5/2 in August 1999

Breaking ciphers used in GSM (3)

Published attacks

May 1999, Jovan Golic

Number of operations in the attack ~ 240 A5/1

December 1999, Alex Biryukov and Adi Shamir

Less than 1 second on a single PC with 128 MB RAM and two 73 GB hard disks.

Based on the analysis of the A5/1 output during the first two minutes of the conversation. A5/2

August 1999, Ian Goldberg and David Wagner, U.C. Berkeley

(10)

Features required from today’s ciphers

STRENGTH

FUNCTIONALITY • easy key distribution • digital signatures PERFORMANCE

Software or hardware?

SOFTWARE HARDWARE security of data during transmission flexibility (new cryptoalgorithms, protection against new attacks)

speed random key generation access control to keys tamper resistance

(viruses, internal attacks)

low cost

Basic hardware implementations of cryptography

• VLSI chip • smart card • PCMCIA card • cryptographic card

(11)

Applications most suitable for

hardware implementations

• hardware accelerators for security gateways and routers • wireless communications

• universal smart cards for electronic commerce • electronic wallet

• Certificate Authority - center for registration of public keys • key-escrow cryptography

• military devices

• high-grade security devices

Evolution of cryptography and cryptanalysis

cryptography cryptanalysis 2000 1990 1980 1970 1940 1920 mathematics engineering physics

DES RSA ECC

statistics number theory rotor machines enciphering devices integrated circuits software packages operating systems quantum cryptography mathematics engineering physics statistics permutation theory cryptographic bombs special-purpose

machines supercomputers computernetworks quantum computing computers

number theory

NSA

National Security Agency

(also known as “No Such Agency”

or “Never Say Anything”)

Created in 1952 by president Truman

Goals:

• designing strong ciphers (to protect U.S. communications) • breaking ciphers (to listen to non-U.S. communications) Budget and number of employees kept secret

Largest employer of mathematicians in the world Larger purchaser of computer hardware

(12)

RSA Security Inc.

• patents for RSA, RC5, RC6 and other cryptographic algorithms

• over 500 mln users of the basic cryptographic library BSAFE

• RSA Laboratory • RSA Conference • spin-off companies

VeriSign - Public Key Infrastructure

Companies introducing security into their products/services hardware software telecom finances IBM Motorola Intel Compaq Sun Hewlett-Packard Lotus Microsoft Netscape Novell Oracle Intuit AT&T Worldcom Nothern Telecom Visa Mastercard Verifone

Worldwide Survey of Cryptographic Products

NAI Labs, June 2001

Foreign products developed in 43 countries distributed in at least 76 countries

763 758

413

532

domestic

Companies Products

(13)

Germany (118) UK (93) Canada (85) Switzerland (74) Sweden (35) Russia (31) Australia (29) South Korea (26) Japan (26) Isreal (19) Other (222)

Foreign Cryptographic Products

Increase in the number of foreign

cryptographic products and companies

0 100 200 300 400 500 600 700 800 900 1993 1994 1995 1996 1997 1999 656 474 804 512

Trusted Information Systems GWU products companies NAI 2000 2001 835 491 758 532

American and international standards

regarding public key cryptography

IEEE ANSI NIST ISO RSA Labs PKCS Industrial standards Banking standards Federal standards International standards Informal industrial standards P1363 ANSI X9 FIPS PKCS ISO

References

Download now ( PDF - 13 Page - 54.12 KB )

Related documents

2017 Final Evaluation Report for Better Together

While almost all of the program access and service ratings were positive, the substance abuse support groups, referrals to community services, family therapy, and peer

Eyes absent homologue 2 predicts a favorable prognosis in colorectal cancer

analyzed the subgroup of patients who had stage II disease and EYA2-low protein expression, we observed that use of chemotherapy had a clear association with reduced survival

Taking stock of Rwanda’s decentralisation: changing local governance in a post-conflict environment

3 Through tight monitoring of local governments underpinned by a result-oriented governance, and enhanced coordination of local officials, decentralisation has allowed the

Heading to our second year. New business properties. Special property. Nr. 4 Houses Lands Businesses Hotels

It is quite common for people that have just retired, to sell their house, buy a smaller home instead, and invests the remaining money in overseas property - buying a house

Investigating summer thermal stratification in Lake Ontario

quantitative capability of these sequencing methods. We present data on our current high throughput genetic assays designed to detect invasive, or potentially invasive, invertebrate

Novel Neural Network Model of Power Amplifier Plus Iq Imbalances

Unlike the polynomial based model, which suffers from condition number effects and inaccuracy for deeply nonlinear system, the proposed RSFTDNN shows high accuracy.. Two cases of

Exploring the Estimability of Mark-Recapture Models with Individual, Time-Varying Covariates using the Scaled Logit Link Function

Keywords: model estimability, scaled logit link function, missing data, maximum likeli-.. hood,

Comparison of Two Commercial Microimmunofluorescence Kits and an Enzyme Immunoassay Kit for Detection of Serum Immunoglobulin G Antibodies to Chlamydia pneumoniae

The distribution of endpoint titers with the Labsystems MIF kit versus that with the MRL MIF kit showed that 3 (3.6%) samples had results that were 3 dilutions higher with the