ch2 Part1

Security in Computing
Chapter 2
Elementary Cryptography
Pfleeger, Security in Computing, ch. 2 1

Chapter Outline
• 2.1 Terminology and Background
• 2.2 Substitution Ciphers
• 2.3 Transpositions (Permutations)
• 2.4 Making “Good” Encryption Algorithms
• 2.5 The Data Encryption Standard (DES)
• 2.6 The AES Encryption Algorithm
• 2.7 Public Key Encryption
• 2.8 Uses of Encryption
• 2.9 Summary

Elementary Cryptography
• important tool
• rooted in some heavy-duty math
– number theory
– group & field theory
– computational complexity
– probability
• our goal:
– be able to intelligently use crypto
– not design/break cryptosystems
• some more detailed analysis in ch. 10

Chapter Outline
• 2.6 The AES Encryption Algorithm
• 2.9 Summary

Text’s Notation
• S sender O might try to:
• R recipient • block
• intercept
• T trans. medium
• modify
• O outsider or intruder
• fabricate

Terminology
• encryption (or encipher)
• decryption (or decipher)
• note: encode/decode different meaning
• plaintext
• ciphertext

Graphical View
plaintext ciphertext plaintext

encryption decryption

Notation
• denote plaintext P = <p1,p2, … , pn>
• denote ciphertext C = <c1,c2, … , cn>
• Example:
– plaintext “I like cheesy poofs”
– P = <I, ,L,I,K,E, ,C,H,E,E,S,Y, ,P,O,O,F,S>
– ciphertext “X QXVC JMCCZB ARREZ”
– C = <X, ,Q,X,V,C, ,J,M,C,C,Z,B, ,A,R,R,E,Z>
• More formally:
– C=E(P) P=D(C)
– P=D(E(P))

How Codes Are Different
• code uses linguistic units
• codebook is the key bored students
word code
bored 9685 9685 1092
car 2307
poultry 7902
• may use phrases as well
students 1092
• e.g., “return to base for
. . supplies” enciphered
. . GIDIZZLEDUNK

Cryptographic Keys
• most algorithms use keys
• encryption:
– C = E(K, P)
– P = D(K, C)
– P = D(K, E(K,P))

Cryptosystem
• Cryptographic algorithm (aka cipher)
– mathematical function used for encrypt
• Cryptosystem consists of:
– cryptographic algorithm
– set of all possible plaintexts
– set of all possible ciphertexts

Symmetric Algorithm
• encryption, decryption keys are the same
key


Asymmetric Algorithm
• encryption, decryption keys different
• encryption key: KE
• decryption key: KD
– C = E(KE, P)
– P = D(KD,C)
– P = D(KD, E(KE, P))

Asymmetric Algorithm Diagram
KE KD


Restricted Algorithms
• algorithm itself is secret
• security of algorithm depends on its secrecy
• bad idea:
– can’t be used by large or changing group
– if one accidentally reveals algo, everyone must change
– how do you know if the algo is strong?
• think of regular (i.e., physical) locks

Kerckhoff’s Principle
• secrecy must reside entirely with the key
• must assume that the enemy has complete details of

the cryptographic algorithm
• Kerkhoff’s assumption: people will:

– reverse engineer your algorithm
– disassemble your code
– e.g., RC4 in 1994

Cryptology
Cryptography Cryptanalysis

Cryptanalysis
• Cryptanalyst tries to break an algorithm
• Categories (due to Lars Knudsen)
– total break - find the key K such that D(K,C)=P
– global deduction - find alternative algorithm, A,
equivalent to D(K,C) without knowing K
– instance (or local) deduction - find the plaintext of an
intercepted ciphertext
– information deduction - get some information about the
key or plaintext, e.g., first bits of the key, info about the
form of the plaintext, …
• Attempt at cryptanalysis called an attack

How is Cryptanalysis Done?
• Analyst works with whatever is available:
– encrypted messages
– known algorithms
– intercepted plaintext
– known or suspected plaintext
– properties of the likely plaintext
– properties of computers
– properties of network protocols

Breakable Encryption
• breakable algorithm
• breakable but not practical to break
• more breakable with tricks
• effects of sloppy procedures
• Moore’s law

Character Arithmetic
• Usually don't consider case
• Can do arithmetic on letters
• Example: A+2, Y+5, etc.
Letter A B C D E F G H I J K L M
Code 0 1 2 3 4 5 6 7 8 9 10 11 12
Letter N O P Q R S T U V W X Y Z
Code 13 14 15 16 17 18 19 20 21 22 23 24 25
• What if you go past the end, e.g. Y+3?

modular arithmetic – quick review
a and b are integers, b ≥ 1
divide a by b (using regular long division)
result is:
q (quotient)
r (remainder or residue)
a = qb + r, where 0 ≤ r < b
r = a mod b
Cryptographic Elements
• Primitive operations:
– substitutions - exchange one letter for another
– transpositions – rearrange the order of the letters

Chapter Outline
• 2.6 The AES Algorithm
• 2.9 Summary
Keyword Mixed Alphabet
• Form ciphertext alphabet by:
– pick a keyword
– spell it without duplicates
– then, fill in the rest of the alphabet in order
• Example, keyword VACATION
A ABCDEFGHIJKLMNOPQRSTUVWXYZ
C V A C T I O N B DE F G H J K L M P Q R S U W X Y Z
• Encrypt “I should be sailing” as:

– DQBK SGTA IQVD GDJN
Another Substitution
• Shift plaintext chars. three characters
A: A B C D E F G H I J K L M
C: D E F G H I J K L M N O P
A: N O P Q R S T U V W X Y Z
C: Q R S T U V W X Y Z A B C
• Example:
– P = “Old School cracked me up”
– C = ROG VFKRRO FUDFNHG PH XS
• Example:
– P = “Old School cracked me up”
notice wrap
– C = ROG VFKRRO FUDFNHG PH XS
• Algorithm called Caesar Cipher

notice wrap

Caesar Example
A A B C D E F G H I J K L M N O P Q R S T U V W X Y
C D E F G H I J K L M N O P Q R S T U V W X Y Z A B
• What is: VFUXEV LV D IXQQB VKRZ ?

Caesar Cipher (more formal def)
• encryption:
– EK(m) = m + 3 mod 26
• decryption:
– DK(c) = c – 3 mod 26
• review:
– if a and m are positive integers, a mod m is the
remainder when a is divided by m
• Caesar cipher special case of shift cipher
Shift Cipher
• encryption:
– EK(m) = m + K mod 26
• decryption:
– DK(c) = c – K mod 26
• example: k=5
A: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
C: F G H I J K L M N O P Q R S T U V W X Y Z A B C D E
• “summer vacation was too short” encrypts to
– XZRR JWAF HFYN TSBF XYTT XMTW Y

Breaking Shift Ciphers
• How difficult?
• How many possibilities?
• Example:
– AKZC JAQA IZMI TTGN CVVG APWE

First 13 Possibilities
0 A K Z C J A Q A I Z M I T T G N C V V G A P W
1 B L A D K B R B J A N J U U H O D W W H B Q X
2 C M B E L C S C K B O K V V I P E X X I C R Y
3 D N C F M D T D L C P L W W J Q F Y Y J D S Z
4 E O D G N E U E M D Q M X X K R G Z Z K E T A
5 F P E H O F V F N E R N Y Y L S H A A L F U B
6 G Q F I P G W G O F S O Z Z M T I B B M G V C
7 H R G J Q H X H P G T P A A N U J C C N H W D
8 I S H K R I Y I Q H U Q B B O V K D D O I X E
9 J T I L S J Z J R I V R C C P W L E E P J Y F
10 K U J M T K A K S J W S D D Q X M F F Q K Z G
11 L V K N U L B L T K X T E E R Y N G G R L A H
12 M W L O V M C M U L Y U F F S Z O H H S M B I
Last 13 Possibilities
13 N X M P W N D N V M Z V G G T A P I I T N C J R
14 O Y N Q X O E O W N A W H H U B Q J J U O D K S
15 P Z O R Y P F P X O B X I I V C R K K V P E L T
16 Q A P S Z Q G Q Y P C Y J J W D S L L W Q F M U
17 R B Q T A R H R Z Q D Z K K X E T M M X R G N V
18 S C R U B S I S A R E A L L Y F U N N Y S H O W
19 T D S V C T J T B S F B M M Z G V O O Z T I P X
20 U E T W D U K U C T G C N N A H W P P A U J Q Y
21 V F U X E V L V D U H D O O B I X Q Q B V K R Z
22 W G V Y F W M W E V I E P P C J Y R R C W L S A
23 X H W Z G X N X F W J F Q Q D K Z S S D X M T B
24 Y I X A H Y O Y G X K G R R E L A T T E Y N U C
25 Z J Y B I Z P Z H Y L H S S F M B U U F Z O V D
Monoalphabetic Ciphers
• simple substitutions, e.g., shift, keyword
mixed, newspapaer cryptogram ... are
monoalphabetic ciphers
• how many possible substitution alphabets?
• can we try all permutations?
• how would you try to break them?

monoalphabetic – brute force
• how many possible substitution alphabets?
– 26! ≈ 4 * 1026
• can we try all permutations?
– sure. have some time?
– at 1 test/μsec
• 2*1026μsec = 6.4*1012 years
• how would you try to break them?
– use what you know to reduce the possibilities

breaking substitutions
• how do you break the newspaper
cryptogram?
– look at common letters (E, T, O, A, N, ...)
– single-letter words (I, and A)
– two-letter words (of, to, in, ...)
– three-letter words (the, and, ...)
– double letters (ll, ee, oo, tt, ff, rr, nn, ...)
– other tricks?

breaking substitutions (cont'd)
• use language statistics of plaintext
– English, java, TCP packet headers, etc.
• example:
– frequencies in English
char: A B C D E F G H I J K L M
pct: 8 1.5 3 4 13 2 1.5 6 6.5 0.5 0.5 3.5 3
char: N O P Q R S T U V W X Y Z
pct: 7 8 2 0.25 6.5 6 9 3 1 1.5 0.5 2 0.25

Character Frequencies (English)
13
12
11
10
9
8
7
percent
6
5
4
3
2
1
0
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
characters 39
Pfleeger, Security in Computing, ch. 2
Common English Digrams and
Trigrams
Digrams Trigrams
EN ENT
RE ION
ER AND
NT ING
TH IVE
ON TIO
IN FOR
TF OUR
AN THI
OR ONE

ch2 Part1

Uploaded by

Copyright:

Available Formats

ch2 Part1

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

ch2 Part1

Uploaded by

Copyright:

Available Formats

Security in Computing

Pfleeger, Security in Computing, ch. 2 1

Pfleeger, Security in Computing, ch. 2 2

Pfleeger, Security in Computing, ch. 2 3

Pfleeger, Security in Computing, ch. 2 4

Pfleeger, Security in Computing, ch. 2 5

Pfleeger, Security in Computing, ch. 2 6

plaintext ciphertext plaintext

Pfleeger, Security in Computing, ch. 2 7

Pfleeger, Security in Computing, ch. 2 8

Pfleeger, Security in Computing, ch. 2 9

Pfleeger, Security in Computing, ch. 2 10

Pfleeger, Security in Computing, ch. 2 11

plaintext ciphertext plaintext

Pfleeger, Security in Computing, ch. 2 12

Pfleeger, Security in Computing, ch. 2 13

plaintext ciphertext plaintext

Pfleeger, Security in Computing, ch. 2 14

Pfleeger, Security in Computing, ch. 2 15

• must assume that the enemy has complete details of

• Kerkhoff’s assumption: people will:

Pfleeger, Security in Computing, ch. 2 16

Pfleeger, Security in Computing, ch. 2 17

Pfleeger, Security in Computing, ch. 2 18

Pfleeger, Security in Computing, ch. 2 19

Pfleeger, Security in Computing, ch. 2 20

• What if you go past the end, e.g. Y+3?

– substitutions - exchange one letter for another

– transpositions – rearrange the order of the letters

Pfleeger, Security in Computing, ch. 2 23

• Encrypt “I should be sailing” as:

• Algorithm called Caesar Cipher

Pfleeger, Security in Computing, ch. 2 28

• What is: VFUXEV LV D IXQQB VKRZ ?

Pfleeger, Security in Computing, ch. 2 29

Pfleeger, Security in Computing, ch. 2 31

• How many possibilities?

– AKZC JAQA IZMI TTGN CVVG APWE

Pfleeger, Security in Computing, ch. 2 32

Pfleeger, Security in Computing, ch. 2 35

Pfleeger, Security in Computing, ch. 2 36

Pfleeger, Security in Computing, ch. 2 37

Pfleeger, Security in Computing, ch. 2 38

Pfleeger, Security in Computing, ch. 2 40

You might also like