SlideShare a Scribd company logo

4255596.ppt

Download as PPT, PDF
S
ShahidMehmood285010

Cryptography and Network Security

Education
1 of 44
Cryptography and Network Security Chapter 3 Fifth Edition by William Stallings Lecture slides by Lawrie Brown
Content  Block Cipher Principles  The Data Encryption Standard  Simplified-DES  DES Details  DES Design Issues and Attacks  3DES, AES and Other Block Ciphers
The objectives  now look at modern block ciphers  one of the most widely used types of cryptographic algorithms  provide secrecy /authentication services  focus on DES (Data Encryption Standard)  to illustrate block cipher design principles
Block Ciphers  Encrypt data one block at a time  „Used in broader range of applications  „Typical block size 64 – 128 bits 128 bits  „Most algorithms based on a structure referred to as Feistel block cipher
Block vs Stream Ciphers
Block cipher principles  n-bit block cipher takes n bit plaintext and produces n bit ciphertext  2n possible different plaintext blocks  Encryption must be reversible (decryption possible)  Each plaintext block must produce unique ciphertext block  Total transformations is 2n!
Ideal Block Cipher key is mapping ; Key length 16 × 4 bits = 64 bits . i.e. concatenate all bits of ciphertext table
Encryption/decryption table
Ideal Block Cipher  n-bit input maps to 2n possible input states  Substitution used to produce 2n output states  Output states map to n-bit output  Ideal block cipher allows maximum number of possible encryption mappings from plaintext block  Problems with ideal block cipher: – Small block size: equivalent to classical substitution cipher; cryptanalysis based on statistical characteristics feasible – Large block size: key must be very large; performance/implementation problems  Key length : – In general, key length is 2n × n – „Actual block size is at least 64 bit ( „Key length will be 264× 64 ≈ 1021 „ bits)
Feistel Structure for Block Ciphers  Feistel proposed applying two or more simple ciphers in sequence so final result cryptographically stronger than component ciphers  n-bit block length; k-bit key length; 2k transformations (rather than 2n !)  Feistel cipher alternates: substitutions, transpositions (permutations)  Applies concepts of diffusion and confusion  Applied in many ciphers today  Approach: – Plaintext split into halves – Subkeys (or round keys) generated from key – Round function, F, applied to right half – Apply substitution on left half using XOR – Apply permutation: interchange to halves  implements Shannon’s S-P net concept
Feistel Cipher Structure
Confusion and Diffusion  Diffusion – Statistical nature of plaintext is reduced in ciphertext – E.g. A plaintext letter affects the value of many ciphertext letters – How: repeatedly apply permutation (transposition) to data, and then apply function  Confusion – Make relationship between ciphertext and key as complex as possible – Even if attacker can find some statistical characteristics of ciphertext, still hard to find key – How: apply complex (non-linear) substitution algorithm
Using the Feistel Structure  Exact implementation depends on various design features  Block size, e.g. 64, 128 bits: larger values leads to more diffusion  Key size, e.g. 128 bits: larger values leads to more confusion, resistance against brute force  Number of rounds, e.g. 16 rounds  Subkey generation algorithm: should be complex  Round function F: should be complex  Other factors include fast encryption in software and ease of analysis  Tradeoff : security vs performance
Feistel Example
Data Encryption Standard (DES)  Symmetric block cipher – 56-bit key, 64-bit input block, 64-bit output block  One of most used encryption systems in world – Developed in 1977 by NBS/NIST – Designed by IBM (Lucifer) with input from NSA – Principles used in other ciphers, e.g. 3DES, IDEA  Simplified DES (S-DES) – Cipher using principles of DES – Developed for education (not real world use)
Simplified DES  Input (plaintext) block: 8-bits  Output (ciphertext) block: 8-bits  Key: 10-bits  Rounds: 2  Round keys generated using permutations and left shifts  Encryption: initial permutation, round function, switch halves  Decryption: Same as encryption, except round keys used in opposite order
S-DES Algorithm IP = { 2, 6, 3, 1, 4, 8, 5 , 7 } IP -1= { 4,1 ,3 ,5 ,7 ,2 ,8 , 6}
S-DES Key generation P10 = { 3, 5, 2, 7, 4, 10, 1, 9, 8, 6} P8 = { 6, 3, 7, 4, 8, 5, 10, 9}
S-DES Encryption Details EP = { 4, 1, 2, 3, 2, 3, 4, 1} P4 = { 2, 4, 3, 1} IP = { 2.,6, 3 , 1 , 4 , 8 , 5 , 7 } IP -1 = { 4.,1 ,3 , 5 , 7 , 2, 8 , 6}
S-Box  S-DES (and DES) perform substitutions using S-Boxes  S-Box considered as a matrix: input used to select row/column; selected element is output  4-bit input: bit1; bit2; bit3; bit4 – bit1 , bit4 species row (0, 1, 2 or 3 in decimal) – bit2bit3 species column – 2-bit output
S-DES Example  S-DES Example – Plaintext: 01110010 – Key: 1010000010 – Ciphertext: 01110111 – See the example detailes on the website
S-DES Summery  S-DES expressed as functions:  Security of S-DES: – 10-bit key, 1024 keys: brute force easy – If know plaintext and corresponding ciphertext, can we determine key? Very hard
Comparing DES and S-DES  S-DES – 8-bit blocks – 10-bit key: 2 x 8-bit round keys – IP: 8-bits – F operates on 4 bits – 2 S-Boxes – 2 rounds  DES – 64-bit blocks – 56-bit key: 16 x 48-bit round keys – IP: 64 bits – F operates on 32 bits – 8 S-Boxes – 16 rounds
DES Encryption Algorithm
Permutation Tables for DES
3: Expansion permutation (E ) 4 : Permutation Function (P) Permutation Tables for DES
Single Round of DES Algorithm 27
DES Round Structure
Definition of DES S-Boxes
Definition of DES S-Boxes
DES Key Schedule Calculation 31
Table 3.2 DES Example Note: DES subkeys are shown as eight 6-bit values in hex format (Table can be found on page 75 in textbook)
DES Example
Avalanche Effect  Aim: small change in key (or plaintext) produces large change in ciphertext  Avalanche effect is present in DES (good for security)  Following examples show the number of bits that change in output when two different inputs are used, differing by 1 bit – Plaintext 1: 02468aceeca86420 – Plaintext 2: 12468aceeca86420 – Ciphertext difference: 32 bits – Key 1: 0f1571c947d9e859 – Key 2: 1f1571c947d9e859 – Ciphertext difference: 30
Table 3.3 Avalanche Effect in DES: Change in Plaintext
Table 3.4 Avalanche Effect in DES: Change in Key
Table 3.5 Average Time Required for Exhaustive Key Search
Key size  Although 64 bit initial key, only 56 bits used in encryption (other 8 for parity check)  256 = 7.2 x 1016 – 1977: estimated cost $US20m to build machine to break in 10 hours – 1998: EFF built machine for $US250k to break in 3 days – Today: 56 bits considered too short to withstand brute force attack  3DES uses 128-bit keys
Attacks on DES  Timing Attacks – Information gained about key/plaintext by observing how long implementation takes to decrypt – No known useful attacks on DES  Differential Cryptanalysis – Observe how pairs of plaintext blocks evolve – Break DES in 247 encryptions (compared to 255); but require 247 chosen plaintexts  Linear Cryptanalysis – Find linear approximations of the transformations – Break DES using 243 known plaintexts
DES Algorithm Design  DES was designed in private; questions about the motivation of the design – S-Boxes provide non-linearity: important part of DES, generally considered to be secure – S-Boxes provide increased confusion – Permutation P chosen to increase diffusion
Multiple Encryption with DES  DES is vulnerable to brute force attack  Alternative block cipher that makes use of DES software/equipment/knowledge: encrypt multiple times with different keys  Options: – 1. Double DES: not much better than single DES – 2. Triple DES (3DES) with 2 keys: brute force 2112 – 3. Triple DES with 3 keys: brute force 2168
Double Encryption  For DES, 2 56-bit keys, meaning 112-bit key length  Requires 2111 operations for brute force?  Meet-in-the-middle attack makes it easier
Triple Encryption  2 keys, 112 bits  3 keys, 168 bits  Why E-D-E? To be compatible with single DES:
Summary  have considered: – block vs stream ciphers – Feistel cipher design & structure – DES » details » strength – Doupbe DES – Triple DES

Recommended

Information and data security block cipher and the data encryption standard (...
Information and data security block cipher and the data encryption standard (...Information and data security block cipher and the data encryption standard (...
Information and data security block cipher and the data encryption standard (...Mazin Alwaaly
 
Lecture 05 - 04 Nov 21.pptx
Lecture 05 - 04 Nov 21.pptxLecture 05 - 04 Nov 21.pptx
Lecture 05 - 04 Nov 21.pptxHammadAsghar26
 
Module 1-Block Ciphers and the Data Encryption Standard.pptx
Module 1-Block Ciphers and the Data Encryption Standard.pptxModule 1-Block Ciphers and the Data Encryption Standard.pptx
Module 1-Block Ciphers and the Data Encryption Standard.pptxSridharCS7
 
DES.ppt
DES.pptDES.ppt
DES.pptRizwanBasha12
 
Network Security Lec4
Network Security Lec4Network Security Lec4
Network Security Lec4Federal Urdu University
 
Encryption
EncryptionEncryption
EncryptionIGZ Software house
 
cryptography and network security chap 3
cryptography and network security chap 3cryptography and network security chap 3
cryptography and network security chap 3Debanjan Bhattacharya
 
Cryptography and Network Security William Stallings Lawrie Brown
Cryptography and Network Security William Stallings Lawrie BrownCryptography and Network Security William Stallings Lawrie Brown
Cryptography and Network Security William Stallings Lawrie BrownInformation Security Awareness Group
 

Recommended

Information and data security block cipher and the data encryption standard (...
Information and data security block cipher and the data encryption standard (...Information and data security block cipher and the data encryption standard (...
Information and data security block cipher and the data encryption standard (...Mazin Alwaaly
 
Lecture 05 - 04 Nov 21.pptx
Lecture 05 - 04 Nov 21.pptxLecture 05 - 04 Nov 21.pptx
Lecture 05 - 04 Nov 21.pptxHammadAsghar26
 
Module 1-Block Ciphers and the Data Encryption Standard.pptx
Module 1-Block Ciphers and the Data Encryption Standard.pptxModule 1-Block Ciphers and the Data Encryption Standard.pptx
Module 1-Block Ciphers and the Data Encryption Standard.pptxSridharCS7
 
DES.ppt
DES.pptDES.ppt
DES.pptRizwanBasha12
 
Network Security Lec4
Network Security Lec4Network Security Lec4
Network Security Lec4Federal Urdu University
 
Encryption
EncryptionEncryption
EncryptionIGZ Software house
 
cryptography and network security chap 3
cryptography and network security chap 3cryptography and network security chap 3
cryptography and network security chap 3Debanjan Bhattacharya
 
Cryptography and Network Security William Stallings Lawrie Brown
Cryptography and Network Security William Stallings Lawrie BrownCryptography and Network Security William Stallings Lawrie Brown
Cryptography and Network Security William Stallings Lawrie BrownInformation Security Awareness Group
 
Ch03
Ch03Ch03
Ch03Joe Christensen
 
CNS2 unit 2.pdf
CNS2 unit 2.pdfCNS2 unit 2.pdf
CNS2 unit 2.pdfPadamata Rameshbabu
 
paper4.pdf
paper4.pdfpaper4.pdf
paper4.pdfaminasouyah
 
doc4.pdf
doc4.pdfdoc4.pdf
doc4.pdfaminasouyah
 
sheet4.pdf
sheet4.pdfsheet4.pdf
sheet4.pdfaminasouyah
 
doc4.pdf
doc4.pdfdoc4.pdf
doc4.pdfaminasouyah
 
lecture3.pdf
lecture3.pdflecture3.pdf
lecture3.pdfaminasouyah
 
presentation based on data encryption standards
presentation based on data encryption standardspresentation based on data encryption standards
presentation based on data encryption standardsSwati Sharma
 
block ciphers
block ciphersblock ciphers
block ciphersAsad Ali
 
Overview on Cryptography and Network Security
Overview on Cryptography and Network SecurityOverview on Cryptography and Network Security
Overview on Cryptography and Network SecurityDr. Rupa Ch
 
Blockchain Technology - Week 9 - Blockciphers
Blockchain Technology - Week 9 - BlockciphersBlockchain Technology - Week 9 - Blockciphers
Blockchain Technology - Week 9 - BlockciphersFerdin Joe John Joseph PhD
 
Chapter 3: Block Ciphers and the Data Encryption Standard
Chapter 3: Block Ciphers and the Data Encryption StandardChapter 3: Block Ciphers and the Data Encryption Standard
Chapter 3: Block Ciphers and the Data Encryption StandardShafaan Khaliq Bhatti
 
3.pptx
3.pptx3.pptx
3.pptxTapodhirAcharjee2
 
Ch03
Ch03Ch03
Ch03ssusere796b3
 
02 Information System Security
02 Information System Security02 Information System Security
02 Information System SecurityShu Shin
 
Topic4 data encryption standard(des)
Topic4 data encryption standard(des)Topic4 data encryption standard(des)
Topic4 data encryption standard(des)MdFazleRabbi18
 
Jaimin chp-8 - network security-new -use this - 2011 batch
Jaimin chp-8 - network security-new -use this - 2011 batchJaimin chp-8 - network security-new -use this - 2011 batch
Jaimin chp-8 - network security-new -use this - 2011 batchJaimin Jani
 
Network security jeni corrected 1
Network security jeni corrected 1Network security jeni corrected 1
Network security jeni corrected 1NIVEDHINIMANIVANNAN
 
DES-lecture (1).ppt
DES-lecture (1).pptDES-lecture (1).ppt
DES-lecture (1).pptMrsPrabhaBV
 
Block Ciphers and DES.pptx
Block Ciphers and DES.pptxBlock Ciphers and DES.pptx
Block Ciphers and DES.pptxDrAnilKannur1
 
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...Marc Dusseiller Dusjagr
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 

More Related Content

Similar to 4255596.ppt

presentation based on data encryption standards
presentation based on data encryption standardspresentation based on data encryption standards
presentation based on data encryption standardsSwati Sharma
 
block ciphers
block ciphersblock ciphers
block ciphersAsad Ali
 
Overview on Cryptography and Network Security
Overview on Cryptography and Network SecurityOverview on Cryptography and Network Security
Overview on Cryptography and Network SecurityDr. Rupa Ch
 
Chapter 3: Block Ciphers and the Data Encryption Standard
Chapter 3: Block Ciphers and the Data Encryption StandardChapter 3: Block Ciphers and the Data Encryption Standard
Chapter 3: Block Ciphers and the Data Encryption StandardShafaan Khaliq Bhatti
 
02 Information System Security
02 Information System Security02 Information System Security
02 Information System SecurityShu Shin
 
Topic4 data encryption standard(des)
Topic4 data encryption standard(des)Topic4 data encryption standard(des)
Topic4 data encryption standard(des)MdFazleRabbi18
 
Jaimin chp-8 - network security-new -use this - 2011 batch
Jaimin chp-8 - network security-new -use this - 2011 batchJaimin chp-8 - network security-new -use this - 2011 batch
Jaimin chp-8 - network security-new -use this - 2011 batchJaimin Jani
 
Network security jeni corrected 1
Network security jeni corrected 1Network security jeni corrected 1
Network security jeni corrected 1NIVEDHINIMANIVANNAN
 
DES-lecture (1).ppt
DES-lecture (1).pptDES-lecture (1).ppt
DES-lecture (1).pptMrsPrabhaBV
 
Block Ciphers and DES.pptx
Block Ciphers and DES.pptxBlock Ciphers and DES.pptx
Block Ciphers and DES.pptxDrAnilKannur1
 

Similar to 4255596.ppt (20)

Ch03
Ch03Ch03
Ch03
 
CNS2 unit 2.pdf
CNS2 unit 2.pdfCNS2 unit 2.pdf
CNS2 unit 2.pdf
 
paper4.pdf
paper4.pdfpaper4.pdf
paper4.pdf
 
doc4.pdf
doc4.pdfdoc4.pdf
doc4.pdf
 
sheet4.pdf
sheet4.pdfsheet4.pdf
sheet4.pdf
 
doc4.pdf
doc4.pdfdoc4.pdf
doc4.pdf
 
lecture3.pdf
lecture3.pdflecture3.pdf
lecture3.pdf
 
presentation based on data encryption standards
presentation based on data encryption standardspresentation based on data encryption standards
presentation based on data encryption standards
 
block ciphers
block ciphersblock ciphers
block ciphers
 
Overview on Cryptography and Network Security
Overview on Cryptography and Network SecurityOverview on Cryptography and Network Security
Overview on Cryptography and Network Security
 
Blockchain Technology - Week 9 - Blockciphers
Blockchain Technology - Week 9 - BlockciphersBlockchain Technology - Week 9 - Blockciphers
Blockchain Technology - Week 9 - Blockciphers
 
Chapter 3: Block Ciphers and the Data Encryption Standard
Chapter 3: Block Ciphers and the Data Encryption StandardChapter 3: Block Ciphers and the Data Encryption Standard
Chapter 3: Block Ciphers and the Data Encryption Standard
 
3.pptx
3.pptx3.pptx
3.pptx
 
Ch03
Ch03Ch03
Ch03
 
02 Information System Security
02 Information System Security02 Information System Security
02 Information System Security
 
Topic4 data encryption standard(des)
Topic4 data encryption standard(des)Topic4 data encryption standard(des)
Topic4 data encryption standard(des)
 
Jaimin chp-8 - network security-new -use this - 2011 batch
Jaimin chp-8 - network security-new -use this - 2011 batchJaimin chp-8 - network security-new -use this - 2011 batch
Jaimin chp-8 - network security-new -use this - 2011 batch
 
Network security jeni corrected 1
Network security jeni corrected 1Network security jeni corrected 1
Network security jeni corrected 1
 
DES-lecture (1).ppt
DES-lecture (1).pptDES-lecture (1).ppt
DES-lecture (1).ppt
 
Block Ciphers and DES.pptx
Block Ciphers and DES.pptxBlock Ciphers and DES.pptx
Block Ciphers and DES.pptx
 

Recently uploaded

“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...Marc Dusseiller Dusjagr
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactPECB
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxRoyAbrique
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityGeoBlogs
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphThiyagu K
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Celine George
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfJayanti Pande
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfSoniaTolstoy
 
Mastering the Unannounced Regulatory Inspection
Mastering the Unannounced Regulatory InspectionMastering the Unannounced Regulatory Inspection
Mastering the Unannounced Regulatory InspectionSafetyChain Software
 
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991RKavithamani
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationnomboosow
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxiammrhaywood
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Sapana Sha
 
How to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptxHow to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptxmanuelaromero2013
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxGaneshChakor2
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)eniolaolutunde
 
Q4-W6-Restating Informational Text Grade 3
Q4-W6-Restating Informational Text Grade 3Q4-W6-Restating Informational Text Grade 3
Q4-W6-Restating Informational Text Grade 3JemimahLaneBuaron
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeThiyagu K
 
Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application ) Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application ) Sakshi Ghasle
 

Recently uploaded (20)

“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
“Oh GOSH! Reflecting on Hackteria's Collaborative Practices in a Global Do-It...
 
Beyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global ImpactBeyond the EU: DORA and NIS 2 Directive's Global Impact
Beyond the EU: DORA and NIS 2 Directive's Global Impact
 
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptxContemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
Contemporary philippine arts from the regions_PPT_Module_12 [Autosaved] (1).pptx
 
Paris 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activityParis 2024 Olympic Geographies - an activity
Paris 2024 Olympic Geographies - an activity
 
Z Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot GraphZ Score,T Score, Percential Rank and Box Plot Graph
Z Score,T Score, Percential Rank and Box Plot Graph
 
Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17Advanced Views - Calendar View in Odoo 17
Advanced Views - Calendar View in Odoo 17
 
Web & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdfWeb & Social Media Analytics Previous Year Question Paper.pdf
Web & Social Media Analytics Previous Year Question Paper.pdf
 
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdfBASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
BASLIQ CURRENT LOOKBOOK LOOKBOOK(1) (1).pdf
 
Mastering the Unannounced Regulatory Inspection
Mastering the Unannounced Regulatory InspectionMastering the Unannounced Regulatory Inspection
Mastering the Unannounced Regulatory Inspection
 
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
Industrial Policy - 1948, 1956, 1973, 1977, 1980, 1991
 
Interactive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communicationInteractive Powerpoint_How to Master effective communication
Interactive Powerpoint_How to Master effective communication
 
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptxSOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
SOCIAL AND HISTORICAL CONTEXT - LFTVD.pptx
 
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111Call Girls in Dwarka Mor Delhi Contact Us 9654467111
Call Girls in Dwarka Mor Delhi Contact Us 9654467111
 
How to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptxHow to Make a Pirate ship Primary Education.pptx
How to Make a Pirate ship Primary Education.pptx
 
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptxINDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
INDIA QUIZ 2024 RLAC DELHI UNIVERSITY.pptx
 
CARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptxCARE OF CHILD IN INCUBATOR..........pptx
CARE OF CHILD IN INCUBATOR..........pptx
 
Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)Software Engineering Methodologies (overview)
Software Engineering Methodologies (overview)
 
Q4-W6-Restating Informational Text Grade 3
Q4-W6-Restating Informational Text Grade 3Q4-W6-Restating Informational Text Grade 3
Q4-W6-Restating Informational Text Grade 3
 
Measures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and ModeMeasures of Central Tendency: Mean, Median and Mode
Measures of Central Tendency: Mean, Median and Mode
 
Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application ) Hybridoma Technology ( Production , Purification , and Application )
Hybridoma Technology ( Production , Purification , and Application )
 

4255596.ppt

  • 1. Cryptography and Network Security Chapter 3 Fifth Edition by William Stallings Lecture slides by Lawrie Brown
  • 2. Content  Block Cipher Principles  The Data Encryption Standard  Simplified-DES  DES Details  DES Design Issues and Attacks  3DES, AES and Other Block Ciphers
  • 3. The objectives  now look at modern block ciphers  one of the most widely used types of cryptographic algorithms  provide secrecy /authentication services  focus on DES (Data Encryption Standard)  to illustrate block cipher design principles
  • 4. Block Ciphers  Encrypt data one block at a time  „Used in broader range of applications  „Typical block size 64 – 128 bits 128 bits  „Most algorithms based on a structure referred to as Feistel block cipher
  • 5. Block vs Stream Ciphers
  • 6. Block cipher principles  n-bit block cipher takes n bit plaintext and produces n bit ciphertext  2n possible different plaintext blocks  Encryption must be reversible (decryption possible)  Each plaintext block must produce unique ciphertext block  Total transformations is 2n!
  • 7. Ideal Block Cipher key is mapping ; Key length 16 × 4 bits = 64 bits . i.e. concatenate all bits of ciphertext table
  • 9. Ideal Block Cipher  n-bit input maps to 2n possible input states  Substitution used to produce 2n output states  Output states map to n-bit output  Ideal block cipher allows maximum number of possible encryption mappings from plaintext block  Problems with ideal block cipher: – Small block size: equivalent to classical substitution cipher; cryptanalysis based on statistical characteristics feasible – Large block size: key must be very large; performance/implementation problems  Key length : – In general, key length is 2n × n – „Actual block size is at least 64 bit ( „Key length will be 264× 64 ≈ 1021 „ bits)
  • 10. Feistel Structure for Block Ciphers  Feistel proposed applying two or more simple ciphers in sequence so final result cryptographically stronger than component ciphers  n-bit block length; k-bit key length; 2k transformations (rather than 2n !)  Feistel cipher alternates: substitutions, transpositions (permutations)  Applies concepts of diffusion and confusion  Applied in many ciphers today  Approach: – Plaintext split into halves – Subkeys (or round keys) generated from key – Round function, F, applied to right half – Apply substitution on left half using XOR – Apply permutation: interchange to halves  implements Shannon’s S-P net concept
  • 12. Confusion and Diffusion  Diffusion – Statistical nature of plaintext is reduced in ciphertext – E.g. A plaintext letter affects the value of many ciphertext letters – How: repeatedly apply permutation (transposition) to data, and then apply function  Confusion – Make relationship between ciphertext and key as complex as possible – Even if attacker can find some statistical characteristics of ciphertext, still hard to find key – How: apply complex (non-linear) substitution algorithm
  • 13. Using the Feistel Structure  Exact implementation depends on various design features  Block size, e.g. 64, 128 bits: larger values leads to more diffusion  Key size, e.g. 128 bits: larger values leads to more confusion, resistance against brute force  Number of rounds, e.g. 16 rounds  Subkey generation algorithm: should be complex  Round function F: should be complex  Other factors include fast encryption in software and ease of analysis  Tradeoff : security vs performance
  • 15. Data Encryption Standard (DES)  Symmetric block cipher – 56-bit key, 64-bit input block, 64-bit output block  One of most used encryption systems in world – Developed in 1977 by NBS/NIST – Designed by IBM (Lucifer) with input from NSA – Principles used in other ciphers, e.g. 3DES, IDEA  Simplified DES (S-DES) – Cipher using principles of DES – Developed for education (not real world use)
  • 16. Simplified DES  Input (plaintext) block: 8-bits  Output (ciphertext) block: 8-bits  Key: 10-bits  Rounds: 2  Round keys generated using permutations and left shifts  Encryption: initial permutation, round function, switch halves  Decryption: Same as encryption, except round keys used in opposite order
  • 17. S-DES Algorithm IP = { 2, 6, 3, 1, 4, 8, 5 , 7 } IP -1= { 4,1 ,3 ,5 ,7 ,2 ,8 , 6}
  • 18. S-DES Key generation P10 = { 3, 5, 2, 7, 4, 10, 1, 9, 8, 6} P8 = { 6, 3, 7, 4, 8, 5, 10, 9}
  • 19. S-DES Encryption Details EP = { 4, 1, 2, 3, 2, 3, 4, 1} P4 = { 2, 4, 3, 1} IP = { 2.,6, 3 , 1 , 4 , 8 , 5 , 7 } IP -1 = { 4.,1 ,3 , 5 , 7 , 2, 8 , 6}
  • 20. S-Box  S-DES (and DES) perform substitutions using S-Boxes  S-Box considered as a matrix: input used to select row/column; selected element is output  4-bit input: bit1; bit2; bit3; bit4 – bit1 , bit4 species row (0, 1, 2 or 3 in decimal) – bit2bit3 species column – 2-bit output
  • 21. S-DES Example  S-DES Example – Plaintext: 01110010 – Key: 1010000010 – Ciphertext: 01110111 – See the example detailes on the website
  • 22. S-DES Summery  S-DES expressed as functions:  Security of S-DES: – 10-bit key, 1024 keys: brute force easy – If know plaintext and corresponding ciphertext, can we determine key? Very hard
  • 23. Comparing DES and S-DES  S-DES – 8-bit blocks – 10-bit key: 2 x 8-bit round keys – IP: 8-bits – F operates on 4 bits – 2 S-Boxes – 2 rounds  DES – 64-bit blocks – 56-bit key: 16 x 48-bit round keys – IP: 64 bits – F operates on 32 bits – 8 S-Boxes – 16 rounds
  • 26. 3: Expansion permutation (E ) 4 : Permutation Function (P) Permutation Tables for DES
  • 27. Single Round of DES Algorithm 27
  • 29. Definition of DES S-Boxes
  • 30. Definition of DES S-Boxes
  • 31. DES Key Schedule Calculation 31
  • 32. Table 3.2 DES Example Note: DES subkeys are shown as eight 6-bit values in hex format (Table can be found on page 75 in textbook)
  • 34. Avalanche Effect  Aim: small change in key (or plaintext) produces large change in ciphertext  Avalanche effect is present in DES (good for security)  Following examples show the number of bits that change in output when two different inputs are used, differing by 1 bit – Plaintext 1: 02468aceeca86420 – Plaintext 2: 12468aceeca86420 – Ciphertext difference: 32 bits – Key 1: 0f1571c947d9e859 – Key 2: 1f1571c947d9e859 – Ciphertext difference: 30
  • 35. Table 3.3 Avalanche Effect in DES: Change in Plaintext
  • 36. Table 3.4 Avalanche Effect in DES: Change in Key
  • 37. Table 3.5 Average Time Required for Exhaustive Key Search
  • 38. Key size  Although 64 bit initial key, only 56 bits used in encryption (other 8 for parity check)  256 = 7.2 x 1016 – 1977: estimated cost $US20m to build machine to break in 10 hours – 1998: EFF built machine for $US250k to break in 3 days – Today: 56 bits considered too short to withstand brute force attack  3DES uses 128-bit keys
  • 39. Attacks on DES  Timing Attacks – Information gained about key/plaintext by observing how long implementation takes to decrypt – No known useful attacks on DES  Differential Cryptanalysis – Observe how pairs of plaintext blocks evolve – Break DES in 247 encryptions (compared to 255); but require 247 chosen plaintexts  Linear Cryptanalysis – Find linear approximations of the transformations – Break DES using 243 known plaintexts
  • 40. DES Algorithm Design  DES was designed in private; questions about the motivation of the design – S-Boxes provide non-linearity: important part of DES, generally considered to be secure – S-Boxes provide increased confusion – Permutation P chosen to increase diffusion
  • 41. Multiple Encryption with DES  DES is vulnerable to brute force attack  Alternative block cipher that makes use of DES software/equipment/knowledge: encrypt multiple times with different keys  Options: – 1. Double DES: not much better than single DES – 2. Triple DES (3DES) with 2 keys: brute force 2112 – 3. Triple DES with 3 keys: brute force 2168
  • 42. Double Encryption  For DES, 2 56-bit keys, meaning 112-bit key length  Requires 2111 operations for brute force?  Meet-in-the-middle attack makes it easier
  • 43. Triple Encryption  2 keys, 112 bits  3 keys, 168 bits  Why E-D-E? To be compatible with single DES:
  • 44. Summary  have considered: – block vs stream ciphers – Feistel cipher design & structure – DES » details » strength – Doupbe DES – Triple DES