Notes - MCS
Applied Cryptography
Notes - MCS
Applied Cryptography
  • Applied Cryptography
  • Classical (Symmetric) Cryptography
    • Terminology
    • The Players
    • Use Cases
    • Information-Theoretic Security
    • Computational Security
    • Cryptanalysis
    • Practical Approaches
    • Cryptographic Robustness
    • Ciphers
      • Mono-Alphabetic
      • Polylphabetic
    • Rotor Machines
    • Stream Ciphers
  • Modern Symmetric Cryptography
    • Types
    • Symmetric Ciphers
    • Symmetric Block Ciphers
    • Feistel Networks
    • DES (Data Encryption Standard)
    • AES (Advanced Encryption Standard)
    • Stream Ciphers
    • Uniform Random Access
    • Linear Feedback Shift Register (LFSR)
  • Cipher Modes
    • Deployment of (Symmetric) Block Ciphers
    • Stream Cipher Modes
    • Security Reinforcement
  • Cryptographic Hashing
    • Digest functions
    • Rainbow Tables
    • Message Authentication Codes (MAC)
    • Authenticated Encryption
    • Encryption + Authentication
  • RSA & Related Subjects
    • Modular Arithmetic
    • Fast Modular Multiplication
    • The Extended Euclid's Algorithm
    • Linear Maps
    • Fermat's Little Theorem
    • Chinese Remainder Theorem
    • Fermat's Little Theorem
    • Modular Exponentiation
    • Multiplicative Order
    • The Discrete Logarithm Problem
    • Primality tests
    • The Diffie-Hellman Key Exchange Protocol
    • ElGamal Public Key Cryptosystem
    • The Rivest-Shamir-Adleman Cryptosystem
    • Finite Fields
    • Elliptic Curves
    • Diffie-Hellman using elliptic curves
    • Can we do RSA-like things with elliptic curves?
    • The discrete logarithm problem for elliptic curves
    • Secret sharing
    • Quadratic Residues
    • Zero-Knowledge proofs
      • One of two oblivious transfer
      • Coin flipping
      • Zero-knowledge proofs of identity
    • Homomorphic encryption
  • Asymmetric Key Management
    • Design Principles
    • Exploitation of private keys
    • Distribution of public keys
    • Public key (digital) certificates
    • Key pair usage
    • Certification Authorities (CA)
    • Certification Hierarchies
    • Refreshing of asymmetric key pairs
    • Certificate revocation lists (CRL)
    • Validity of signatures
    • Distribution of public key certificates
    • Time Stamping Authority (TSA)
    • PKI (Public Key Infrastructure)
  • Digital Signatures
    • Fundamental Approach
    • Signature Schemes
    • Key Elements
    • The document to sign
    • The signature date
    • The identity of the signatory
    • Optional elements of a digital signature
    • Algorithms
    • RSA signatures
    • ASN.1 digest algorithm prefixes
    • Digital Signature Standard (DSS)
    • Blind Signatures
    • Chaum Blind Signatures
    • Qualified electronic signature
      • Signature devices
    • PKCS #11
    • Microsoft Cryptographic API (CAPI)
    • Long-Term Validation (LTV)
    • LTV Advanced Electronic Signatures (AdES)
Powered by GitBook
On this page
  • Theoretical Security vs. Practical Security
  • Computational Security
  • 5 Shannon Criteria
  • Confusion
  • Diffusion
  • Always assume the worst-case
  1. Classical (Symmetric) Cryptography

Practical Approaches

Theoretical Security vs. Practical Security

Expected use != practical exploitation.

Defective practices can introduce vulnerabilities.

  • Example: reuse of keys.

Computational Security

Computational complexity of break-in attacks

  • Using brute force.

Security bounds:

  • Cost of cryptanalysis.

  • Availability of cryptanalysis infra-structure.

  • Lifetime of ciphertext.

5 Shannon Criteria

  • The amount of offered secrecy.

    • e.g. key length.

  • Complexity of key selection.

    • e.g. key generation, and detection of weak keys.

  • Implementation simplicity.

  • Error propagation.

    • Relevant in error-prone environments.

    • e.g. noisy communication channels.

  • Dimension of ciphertexts.

    • Regarding the related plaintexts.

Confusion

Complex relationship between the key, plaintext, and ciphertext.

  • Output bits (ciphertext) should depend on the input bits (plaintext + key) in a very complex way.

Diffusion

Plaintext statistics are dissipated in the ciphertext.

  • If one plaintext bit toggles, then the ciphertext changes substantially, in an unpredictable or pseudorandom manner.

Avalanche effect.

Always assume the worst-case

Cryptanalysts know the algorithm.

  • Security lies in the key.

Cryptanalysts know/have many ciphertext samples produced with the same algorithm & key.

  • Ciphertext is not secret!

Cryptanalysts partially know original plaintexts.

  • As they have some idea of what they are looking for.

  • Know-plaintext attacks.

  • chosen-plaintext attacks.

Last updated 1 year ago