Encryption and Data Security

Encryption and Data Security

Research & Innovation Conference

April 28, 2008

Kurt Langfeld, David McMullan

School of Mathematics and Statistics University of Plymouth

Plymouth Particle Physics Group:

Members:

Chris Harvey, Wolfgang Lutz (PhD) Anton Ilderton (PostDoc)

Tom Heinzl, Kurt Langfeld, Martin Lavelle, David McMullan 1−2 fm

Plymouth Particle Physics Group:

Members:

Chris Harvey, Wolfgang Lutz (PhD) Anton Ilderton (PostDoc)

Tom Heinzl, Kurt Langfeld, Martin Lavelle, David McMullan 1−2 fm

What are we doing?

Plymouth Particle Physics Group:

Members:

Chris Harvey, Wolfgang Lutz (PhD) Anton Ilderton (PostDoc)

Tom Heinzl, Kurt Langfeld, Martin Lavelle, David McMullan 1−2 fm

What are we doing?

Use Mathematics + High Performance Computing:

to understand the properties of matter

[e.g. when the universe was 10 µs old]

to explore quantum limits and applications

Example:

The (empty) vacuum

Example:

The (true) vacuum

Quantum Theory

... too naive

Example:

The (true) vacuum

Quantum Theory ... too naive Code breaking Encryption ? ? ?

The (empty) vacuum

Outline of the workshop:

Outline of the workshop:

Encryption

Hands on: encryption / decryption

Outline of the workshop:

Encryption

Hands on: encryption / decryption

Code breaking

Outline of the workshop:

Encryption

Hands on: encryption / decryption

Code breaking

Hands on: break the Caesar cipher

Outline of the workshop:

Encryption

Hands on: encryption / decryption

Code breaking

Hands on: break the Caesar cipher

Encryption nowadays

[public-key cryptography]

[the political dimension of cryptography] [(some) modern tools]

Encryption: history and importance

Atbash Bible Code (2000 bc):

Encryption: history and importance

Atbash Bible Code (2000 bc):

Ceasar cipher (0000 ad):

a b c d e f g h i j k l m n o p q r s t u v w x y z

v w x y z a b c d e f g h i j k l m n o p q r s t u

plain text

Encryption: history and importance

(1775) Madame d’Urfé and

Giacomo Girolamo Casanova

[example of code breaking]

[University Archives, USA]

Encryption: history and importance

(1775) Madame d’Urfé and

Giacomo Girolamo Casanova

[example of code breaking]

[University Archives, USA]

London 1850: ciphered press advertisements

[Babbage, Wheatstone:

Encryption: history and importance

(1918, 1st World War) Ludendorff Cipher (Westfront)

Encryption: history and importance

(1918, 1st World War) Ludendorff Cipher (Westfront)

(2nd World war) Enigma

[messaging between HQ and submarines] [multipart substitution]

Encryption: history and importance

Who is involved nowadays?

M.I.6 G.C.H.Q Governm. Communic._Headquarters

Defense Intelligence Ag.

CIA DIA

BND _{Fernmeldestatistik}

der Informationstechnik

U.S.I.B.

Central Intelligence Ag. historical: G.C.&C.S, war station, Station X,

since 1990: Amt fur Militarkunde Bundesamt fur ..

.. .. .. Room 47 foreign office

Bundesamt fur Sicherheit in

kanzleramt Bundes−

Encryption: history and importance

Who is involved nowadays?

M.I.6 G.C.H.Q Governm. Communic._Headquarters

Defense Intelligence Ag.

CIA DIA

BND _{Fernmeldestatistik}

der Informationstechnik

U.S.I.B.

Central Intelligence Ag. historical: G.C.&C.S, war station, Station X,

since 1990: Amt fur Militarkunde Bundesamt fur ..

.. .. .. Room 47 foreign office

Bundesamt fur Sicherheit in

kanzleramt Bundes− online banking e−health internet shopping mobile phones all of us ! ....

Hands on: The Ceasar cipher

Ceasar cipher:

25

different possibilities

Hands on: The Ceasar cipher

Ceasar cipher:

25

different possibilities

simple substitution:

replace each letter with another one

Hands on: The Ceasar cipher

Ceasar cipher:

25

different possibilities

simple substitution:

replace each letter with another one

25

×

24

×

. . .

×

3

×

2

≈

1

.

6

×

10

possible ciphers

difficult to remember

use a

password

⇒

construct the cipher

advantage:

cipher is easy to exchange

Hands on: The Ceasar cipher

Hands on: The Ceasar cipher

agree on a password; here:

tuesday

create your substitution table:

step 1

a b c d e f g h i j k l m n o p q r s t u v w x y z

t u e s d a y

Hands on: The Ceasar cipher

agree on a password; here:

tuesday

create your substitution table:

step 1

a b c d e f g h i j k l m n o p q r s t u v w x y z t u e s d a y

step 2

Hands on: The Ceasar cipher

create your substitution table:

final step

e u t s d a y z b c f g h i j k l m n o p q r v w x a b c d e f g h i j k l m n o p q r s t u v w x y z encryption decryption

Hands on: The Ceasar cipher

create your substitution table:

final step

e u t s d a y z b c f g h i j k l m n o p q r v w x a b c d e f g h i j k l m n o p q r s t u v w x y z encryption decryption

example:

hands on !

Code breaking

Generically difficult ⇒ need knowledge on the cipher

Code breaking

Generically difficult ⇒ need knowledge on the cipher

[The Ceasar cipher was unbroken for hundred of years]

many codes get broken because of

the sloppy use of ciphers

The Register 2008:

Clues left in the clumsily encrypted notes of a Mafia don have helped Italian investigators to track his associates and ultimately contributed to his capture after years on the run.

....instructions incorporating basic encryption on small scraps of paper, known locally as pizzini.

Code breaking

Generically difficult ⇒ need knowledge on the cipher

[The Ceasar cipher was unbroken for hundred of years]

many codes get broken because of

the sloppy use of ciphers

The Register 2008:

Clues left in the clumsily encrypted notes of a Mafia don have helped Italian investigators to track his associates and ultimately contributed to his capture after years on the run.

....instructions incorporating basic encryption on small scraps of paper, known locally as pizzini.

What went wrong?

Code breaking

How can we break a

substitution cipher

?

Code breaking

How can we break a

substitution cipher

?

Frequency analysis:

in a simple substitution cipher,

each letter is replaced with another

certain letters and combinations of letters occur with varying frequencies

Frequency analysis:

abundance of letters in an English text:

Frequency analysis:

abundance of letters in an English text:

hands on !

Public Key Cryptography:

modern applications:

internet banking

sign electronic documents encrypt an email

Public Key Cryptography:

modern applications:

internet banking

sign electronic documents encrypt an email

exchange of a

key

is very inconvenient

Public Key Cryptography:

modern applications:

internet banking

sign electronic documents encrypt an email

exchange of a

key

is very inconvenient

can two parties exchange secure messages

without having met before?

Public Key Cryptography:

modern applications:

internet banking

sign electronic documents encrypt an email

exchange of a

key

is very inconvenient

can two parties exchange secure messages

without having met before?

yes !

public key cryptography

Public Key Cryptography:

How does it work?

door with a strange lock ⇒ two different keys

one key locks the door

Public Key Cryptography:

How does it work?

door with a strange lock ⇒ two different keys

one key locks the door

only the other key unlocks the door

Bob prepares himself

to receive encrypted messages ⇒ leaves his door open

⇒ puts ONE key beside the door

[public key]

Public Key Cryptography:

Public Key Cryptography:

Alice wants to send Bob a message which only Bob can read

Bob finds his door locked [only he can open it]

private key

Public Key Cryptography:

Alice wants to send Bob a message which only Bob can read

Bob finds his door locked [only he can open it]

private key

Public Key Cryptography:

realisation

[administration]

⇒ everyone got an open door and a public/private key pair

⇒ Alice wants to make sure that she puts

the money transfer into the “open door” of the bank ⇒ certification authorities (CA) act as trusted third party

[VeriSign (57.6%), Comodo (8.3%), GoDaddy (6.4%)]

Public Key Cryptography:

realisation

[administration]

⇒ everyone got an open door and a public/private key pair

⇒ Alice wants to make sure that she puts

the money transfer into the “open door” of the bank ⇒ certification authorities (CA) act as trusted third party

[VeriSign (57.6%), Comodo (8.3%), GoDaddy (6.4%)]

realisation

[where the maths is]

GCHQ (early 70s): Ellis, Cocks, Williamson [disclosed until 1997]

RSA encryption:

... it is all about

primes

RSA encryption:

... it is all about

primes

What are primes?

RSA encryption:

... it is all about

primes

What are primes?

the high-profile cast of RSA:

public secret message n (huge) integer e public key d private key

m integer representing text

if you know the primes can be easily calculated

behind n

RSA in action::

Alice ciphers :

c

=

m

mod

n

RSA in action::

Alice ciphers :

c

=

m

mod

n

[security:

c

−→

m

not feasible]

theorem:

(

m

)

mod

n

=

m

[chinese remainder theorem, China 300 ad]

[Fermat’s little theorem, Pierre de Fermat, October 18, 1640]

RSA in action::

Alice ciphers :

c

=

m

mod

n

[security:

c

−→

m

not feasible]

theorem:

(

m

)

mod

n

=

m

[chinese remainder theorem, China 300 ad]

[Fermat’s little theorem, Pierre de Fermat, October 18, 1640]

RSA security aspects

how secure is the RSA standard ?

We don’t know !

RSA security aspects

how secure is the RSA standard ?

We don’t know !

we do know:

if you know how to factorise an integer into primes, you can break the RSA code !

RSA security aspects

how secure is the RSA standard ?

We don’t know !

we do know:

if you know how to factorise an integer into primes, you can break the RSA code !

...but that is easy:

21 = 7

×

3

RSA security aspects

how secure is the RSA standard ?

We don’t know !

we do know:

if you know how to factorise an integer into primes, you can break the RSA code !

...but that is easy:

21 = 7

×

3

The RSA challange:

what about this number?

200 digits, 2 prime factors:

2799783391122132787082946763872260162107044678695 5428537560009929326128400107609345671052955360856 0618223519109513657886371059544820065767750985805 57613579098734950144178863178946295187237869221823983

The RSA challange:

what about this number?

200 digits, 2 prime factors:

2799783391122132787082946763872260162107044678695 5428537560009929326128400107609345671052955360856 0618223519109513657886371059544820065767750985805 57613579098734950144178863178946295187237869221823983

Using a HPC cluster, the problem was only solved in 2005

The RSA challange:

what about this number?

200 digits, 2 prime factors:

2799783391122132787082946763872260162107044678695 5428537560009929326128400107609345671052955360856 0618223519109513657886371059544820065767750985805 57613579098734950144178863178946295187237869221823983

Using a HPC cluster, the problem was only solved in 2005

[equivalent of 55 years on a single 2.2 GHz Opteron CPU]

and the winners are:

35324619344027701212726049781984643686711974001976250 23649303468776121253679423200058547956528088349

and

79258699544783330333470858414800596877379758573642 19960734330341455767872818152135381409304740185467

The RSA challange:

The RSA Security division of EMC has offered prizes

to factor huge numbers

[numbers used in devising secure RSA cryptosystems]

The RSA challange:

The RSA Security division of EMC has offered prizes

to factor huge numbers

[numbers used in devising secure RSA cryptosystems]

(⇒ political dimension !)

RSA-140: solved on February 2, 1999 RSA-200: solved on May 2005

RSA-640: solved on November 2, 2005

RSA-2048: Bank of England (effective 1 June 2006), not solved

The RSA challange:

The RSA Security division of EMC has offered prizes

to factor huge numbers

[numbers used in devising secure RSA cryptosystems]

(⇒ political dimension !)

RSA-140: solved on February 2, 1999 RSA-200: solved on May 2005

RSA-640: solved on November 2, 2005

RSA-2048: Bank of England (effective 1 June 2006), not solved

RSA challenges stopped in 2007

RSA-640 took approximately 30 2.2GHz-Opteron-CPU years over five months of calendar time

Political dimension

conflict of interests:

necessity of encryption ↔ governmental control

Political dimension

conflict of interests:

necessity of encryption ↔ governmental control

US: International Traffic in Arms Regulations (ITAR)

1996-1997, classified strong cryptography as arms and prohibited their export

Political dimension

conflict of interests:

necessity of encryption ↔ governmental control

US: International Traffic in Arms Regulations (ITAR)

1996-1997, classified strong cryptography as arms and prohibited their export

led to absurd legislation:

no restrictions on books, but

no export of encryption electronically

[MIT has printed a book with PGP in a machine readable OCR font.]

What next? Forbid the use of primes !

Political dimension

conflict of interests:

necessity of encryption ↔ governmental control

US: International Traffic in Arms Regulations (ITAR)

1996-1997, classified strong cryptography as arms and prohibited their export

led to absurd legislation:

no restrictions on books, but

no export of encryption electronically

[MIT has printed a book with PGP in a machine readable OCR font.]

What next? Forbid the use of primes !

Where are we today?

[personal opinion]

governmental control not feasible

Quantum impact on crpytography:

Quantum computing

[bad news]

Quantum impact on crpytography:

Quantum computing

[bad news]

Quantum computing:

binary number: 0101(= 5) stored 1 bit per register

Quantum computing:

binary number: 0101(= 5) stored 1 bit per register Qubits advantages:

standard problems of

miniaturisation do not apply quantum registers store

Quantum computing:

Where is the bad news ?

Quantum computing:

Where is the bad news ?

Quantum computing:

Where is the bad news ?

quantum computer factorise huge integers

Is this the fall of RSA ?

Yes !

Quantum computing:

Where is the bad news ?

quantum computer factorise huge integers

Is this the fall of RSA ?

Yes !

where are we today ?

Quantum computing:

Where is the bad news ?

quantum computer factorise huge integers

Is this the fall of RSA ?

Yes !

where are we today ?

we don’t know (top secret).

2001: IBM Almaden Research Center, 7 Qubits, 15 = 5 × 3

Quantum cryptography:

create a one-time key between two parties and

Quantum cryptography:

create a one-time key between two parties and

be absolutely (!) sure that nobody has eavesdropped on the key

use quantum mechanics for “absolutely”

detecting a photon necessarily

changes its state

properties of light:

comes in packets (photons) photon has two states

why is it “absolutely” sure?

man in the middle

tries to

measure Alice photons

why is it “absolutely” sure?

man in the middle

tries to

measure Alice photons

measurement

necessarily

changes their states

[quantum theory]

⇒

no-cloning theorem

Alice and Bob realise when a third party interferes

why is it “absolutely” sure?

man in the middle

tries to

measure Alice photons

measurement

necessarily

changes their states

[quantum theory]

⇒

no-cloning theorem

Alice and Bob realise when a third party interferes

Alice and Bob agree on a

key

, and they know

that nobody else knows it !

Cryptographic tools:

You want to do:

[encrypt your data and communication] [sign your data and communication] [effectively manage your keys]

[access public key directories]

Cryptographic tools:

You want to do:

[encrypt your data and communication] [sign your data and communication] [effectively manage your keys]

[access public key directories]

standard tool:

GNU Privacy Guard (GPG, PGP)

available for:

Linux, FreeBSD, OpenBSD

Windows 95/98/NT/2000/ME/XP MacOS X

Cryptographic tools:

You want to do:

[encrypt your data and communication] [sign your data and communication] [effectively manage your keys]

[access public key directories]

standard tool:

GNU Privacy Guard (GPG, PGP)

available for:

Linux, FreeBSD, OpenBSD

Windows 95/98/NT/2000/ME/XP MacOS X

windows oriented version of GnuPG:

Cryptographic tools:

You want to do:

[create a new encrypted container → drive ]

[create an encrypted CD] [mountvan encrypted CD]

Cryptographic tools:

You want to do:

[create a new encrypted container → drive ]

[create an encrypted CD] [mountvan encrypted CD]

[remove encryption from a container / CD]

linux: (all open source)

loop-AES, Cryptoloop, PPDD (Practical Privacy Disc Driver)

Cryptographic tools:

You want to do:

[create a new encrypted container → drive ]

[create an encrypted CD] [mountvan encrypted CD]

[remove encryption from a container / CD]

linux: (all open source)

loop-AES, Cryptoloop, PPDD (Practical Privacy Disc Driver)

windows: (open source)

Cryptographic tools:

You want to do:

[create a new encrypted container → drive ]

[create an encrypted CD] [mountvan encrypted CD]

[remove encryption from a container / CD]

linux: (all open source)

loop-AES, Cryptoloop, PPDD (Practical Privacy Disc Driver)

windows: (open source)

TrueCrypt, FreeOTFE (high Linux compat.)

windows: (commercial)

BestCrypt (high Linux compat.), PGPdisk (supports MAC)

Cryptographic tools:

You want to do:

[create a new encrypted container → drive ]

[create an encrypted CD] [mountvan encrypted CD]

[remove encryption from a container / CD]

linux: (all open source)

loop-AES, Cryptoloop, PPDD (Practical Privacy Disc Driver)

windows: (open source)

TrueCrypt, FreeOTFE (high Linux compat.)

windows: (commercial)

BestCrypt (high Linux compat.), PGPdisk (supports MAC)

... more “hands-on” CPD to come!

References:

Simon Singh,

The Code Book: The Secret History of Codes and Code-breaking

Fourth Estate; New Ed edition (8 Jun 2000)

References:

Simon Singh,

The Code Book: The Secret History of Codes and Code-breaking

Fourth Estate; New Ed edition (8 Jun 2000)