SlideShare a Scribd company logo

C0281010016

I
inventionjournals

International Journal of Engineering and Science Invention (IJESI) is an international journal intended for professionals and researchers in all fields of computer science and electronics. IJESI publishes research articles and reviews within the whole field Engineering Science and Technology, new teaching methods, assessment, validation and the impact of new technologies and it will continue to provide information on the latest trends and developments in this ever-expanding subject. The publications of papers are selected through double peer reviewed to ensure originality, relevance, and readability. The articles published in our journal can be accessed online.

TechnologyEducation
1 of 7
Download to read offline
International Journal of Engineering Science Invention ISSN (Online): 2319 – 6734, ISSN (Print): 2319 – 6726 www.ijesi.org Volume 2 Issue 8 ǁ August 2013 ǁ PP.10-16 www.ijesi.org 10 | Page E-Governance Security using Public Key Cryptography With special focus on ECC Prokash Barman1 , Dr Banani Saha2 1 (Department of Computer Science & Engineering, University of Calcutta, India) 2 (Department of Computer Science & Engineering, University of Calcutta, India) ABSTRACT : This paper gives an idea on E-Governance Security using public key cryptography. The public key cryptography technique called Elliptic Curve Cryptography (ECC) become popular in the last few years. The main attraction of ECC is that it takes exponential time challenge for an intruder to break into the cryptographic system. ECC using 160 bits key, provides the same security as offered by the well known RSA using 1024 bits key, thus leading to lower processing time, minimal bandwidth use and speedy transactions. KEYWORDS: E-Governance, Public Key Cryptography, RSA, Elliptic Curve Cryptography (ECC), Encryption. I. INTRODUCTION Recent days with the advancement of Information and Communication Technology (ICT) various E- Governance systems such as Government – to – Government (G-2-G), Government – to – Business (G-2-B), Government – to – Citizen (G-2-C), Government – to – Employee (G-2-E) etc have evolved nowadays. The hackers and intruders may attack the E-Governance systems directly or indirectly. The unauthenticated access of information and alteration of valuable Government data may be the target segment of the attackers. Hence the E-Governance systems need to be highly secured. With the use of Public Key Cryptography algorithm, risks may be minimized during various E-Governance transactions. We discuss Public Key Cryptography algorithms and its utilization in E-Governance security in different sections of this paper, which are arranged as follows- Section 2 defines some terms related to the E- Governance security. RSA and ECC Public Key Cryptography algorithms have been discussed in section 3. The advantages of ECC over RSA are depicted in section 4. The section 5 describes various ECC implementations for E-Governance system. Conclusion is depicted in section 6. II. E-GOVERNANCE The best utilization of the information and communication technology (ICT) to improve efficient service delivery to the citizen is called e-governance. E-governance is the process of delivering information to the user or client in an efficient way for the benefit of both client & government. 1.1 E-Governance Risk Factors The E-governance risk factors [1] seen are as follows 2.1.1 Spoofing: In this technique the attacker attempts to gain access of E-Governance system by using fallacious identity either by stealth or by using false IP address. Once the access is gained, the attacker abuses the E-Governance system by elevation of privileges. 2.1.2 Repudiation: The attacker can mount repudiation attack during the E-Governance transaction, which is the ability of the user to deny its performed transaction. 2.1.3 Disclosure of E-Governance Information: Unwanted information disclosure can take place easily, in case of the compromised E-Governance system. 2.1.4 Denial of Service: Attackers can perform Denial of Service (DoS) attack by flooding the E-Governance server with request to consume all of its resources so as crash down the system.
E-Governance Security using Public Key… www.ijesi.org 11 | Page 2.1.5 Elevation of Privilege 2.1.6 Cyber Crimes 1.2 Security measures to reduce E-Governance risk factors The information transmitted in the internet is broken into data packets which may travel over different routes to reach the destination. The most vulnerable point of interception of information is the points of entry and exit from the internet. [1] Encrypting and decrypting the packets moving between these two fragile points may be done to keep the data secured and intact. There are different types of Cryptography algorithm to achieve the above target are described below: 1.2.1 Symmetric or Secret Key Encryption: Encryption algorithms that use the same key for encrypting and for decrypting information are called symmetric-key algorithms. It is also called a secret key because it is kept as a shared secret between the sender and receiver of information. Else, the confidentiality of the encrypted information is compromised. Strength of Symmetric Key encryption depends of the size of the key used. Symmetric key encryption is much faster than public key encryption, (may be 100 to 1,000 times faster). Figure 1: Encryption and Decryption Encryption: EK(M)=C Decryption: DK(C)=M Where, M=>Original Message E=> Encryption Function D=>Decryption Function C=>Cipher Text K=>Secret Key Symmetric/ Secret Key Encryption 1.2.2 Asymmetric or Public Key Encryption: Encryption algorithm that use different keys for encrypting and decrypting information are most often called public key algorithm[3] but are sometimes also called asymmetric key algorithms[3]. Public key encryption requires the use of both a private key (a key that is known to only its owner) and a public key (a key that is available to and known to other entities on the network). All the user‟s public key may be published in the directory so that it is accessible to all the users of the organization. The two keys are different but one is complement to other. Information that is encrypted with the help of public key can be decrypted only with the corresponding private key of the set. Encryption: EK1 (M)=C Decryption: DK2 (C)=M; DK2 (EK1 (M)) Where, Plain Text Cipher Text Original Plain Text Encryption Decryption
E-Governance Security using Public Key… www.ijesi.org 12 | Page M=>Original Message E=> Encryption Function D=>Decryption Function C=>Cipher Text K1 =>Private Key K2 =>Public Key K1 ≠K2 Asymmetric/ Public Key Encryption 1.2.3 Secret Key Exchange[5] In case of online communications using symmetric key cryptography, the secret key must be shared with communicating parties and protected from unauthorized parties. To exchange secret key online, public key encryption algorithm may be implied to keep the key exchange secure. III. PUBLIC KEY CRYPTOGRAPHY There are two prominent Public Key Cryptography algorithms mostly used for secured transaction i.e. RSA and ECC. The ECC is the most recent technique with low key size, minimum processing overload and provide same security compared to large key based RSA algorithm. 1.3 RSA RSA [2] is an algorithm for public-key cryptography that is based on the presumed difficulty of factoring large integers. RSA is the first letters of the surname of Ron Rivest, Adi Shamir and Leonard Adleman, had first publicly described it in 1977. In 1973, an equivalent system had developed by an English mathematician, Clifford Cocks, but it was classified until 1997. The participating user of RSA algorithm creates and then publishes the product of two large prime numbers, along with their public key, as an auxiliary value. The prime factors must be kept secret. A message can be encrypt by anyone using the public key, but with currently published methods, if the public key is large, someone with knowledge of the prime factors can feasibly decrypt the chipper text. Whether breaking RSA encryption is as hard as factoring is an open question known as the RSA problem. As an illustration of this take two large prime numbers (300) digits, multiply them together. As a result you will find a) a large number (More or equals 300 digits) b) it has two factors, both are prime (Multiplier) The two prime numbers can be given easily from which the product can be calculated. But finding the primes from the given product is more difficult. In fact if the numbers get adequately large, it is almost impossible to find them. So the multiplying of two large prime numbers together is the easy forward function in this algorithm. The inverse factor finding operation is considerably more difficult and in practice its almost impossible. The RSA system employs this fact to generate public key and private key pairs. The keys are the functions of the product and the primes. The arrangement of this cryptosystem is to operate in easy forward function – multiplication. Conversely, the operation need to make difficult to find the plaintext from cipher text using only public key, because the inverse operation needs to solve difficult inverse factoring problem. 1.4 Elliptic Curve Cryptography (ECC) As the key length of secure RSA has increased recent years, it has put a heavier processing load on application using RSA. This problem has been reduced using smaller key length Elliptic Curve Cryptography (ECC). The ECC is based on Elliptic Curve. Elliptic Curve: Elliptic Curves are not actually ellipses. The curve are so named because they are depicted by cubic equation, similar to those used for calculating the circumference of an ellipse. The locus of a point, whose coordinates conform to a particular cubic equation along with the point at infinity O (the point at which the locus in the projective plane intersects the line at infinity) is known as an elliptic curve [7]. An elliptic curve is defined in a two dimensional, standard, x, y Cartesian coordinate system are given below as equation (1) and (2) y2 = x3 + ax + b (1) where 4a3 + 27b2 ≠ 0. y2 + xy = x3 + ax2 + b (2)
E-Governance Security using Public Key… www.ijesi.org 13 | Page The mathematical foundation of ECC is based on the above equations which may be depicted as follows Figure 2: An Elliptic Curve In ECC, the elliptic curve is used to define the members of the set over which the group is calculated and the operations between them which define how math works in the group. It is done by imagine a graph labelled along both axes with the numbers of a large prime field. Elliptic curve cryptography (ECC) [4] is an approach to public-key cryptography based on the algebraic structure of elliptic curves over finite fields. In 1985, Neal Koblitz and Victor S. Miller suggested independently, the use of elliptic curves in cryptography. The elliptic curve cryptosystem is one of the three cryptosystems currently in use for public key cryptography (PKC), integer factorization systems and discrete logarithm systems are the other two systems. The RSA cryptosystem is the best known example of the integer factorization problem while the Digital Signature Algorithm (DSA) cryptosystem is based on the discrete logarithm problem. Public-key cryptography is based on the interoperability of certain mathematical problems. Before ECC, it assumed that Public-key systems are secure assuming that it is difficult to factor a large integer composed of two or more large prime factors. In case of elliptic curve based protocols, finding the discrete logarithm of a random elliptic curve element with respect to a publicly known base point is not feasible which is assumed. The size of the elliptic curve determines the difficulty of the problem. Benefit of ECC is a smaller key size, which facilitate to reduce storage and transmission requirements, as a result an elliptic curve group could provide the same level of security afforded by an RSA-based system with a large modulus and correspondingly larger key, i.e. a 256bit ECC public key should provide comparable security to a 3072bit RSA public key . The mathematical operations of ECC is defined over the elliptic curve y2 = x3 + ax + b, where 4a3 +27b2 ≠0. Each value of „a‟ and „b‟ gives a different elliptic curve. All points (x , y) which satisfies the above equation plus a point at infinity lies on the elliptic curve. A point in the curve is Public key and the private key is a random number. By multiplying the private key with the generator point G in the elliptic curve, the public key is obtained. The domain parameter (Set of pre defined constant known by all the parties taking part in the communication) of ECC constitute by the generator point G, the curve parameters „a‟ and „b‟, along with few other constants. IV. ECC OPERATIONS Various operations which are performed on ECC are given below in detail [7]: 1) Point Multiplication The dominant operation in ECC cryptographic schemes is point multiplication method. Point multiplication is calculating the value of nJ, where n is an integer and J is a point on the elliptic curve defined in the prime field. In point multiplication, a point J on the elliptic curve is multiplied with a scalar n using elliptic curve equation to obtain another point K on the same elliptic curve, i.e. nJ=K. The Point multiplication method is achieved by two basic elliptic curve operations. • Point addition, adding two points J and K to obtain another point L i.e., L = J + K. • Point doubling, adding a point J to itself to obtain another point L i.e. L = 2J. a) Point addition: The Point addition method is the addition of two points J and K on an elliptic curve to obtain another point L on the same elliptic curve. Consider two points J and K on an elliptic curve as shown in figure (a). If K ≠-J then a line drawn through the points J and K will intersect the elliptic curve at exactly one more point –L. The result of addition of points J and K gives the point -L. The reflection of the point –L with respect to x-axis gives the point L. That is on an elliptic curve L = J + K. If K = -J the line through this point intersect at a point at infinity O. Hence J + (- J)= O. This is shown in figure 2(b). Where, O is the additive identity of the elliptic curve group. The reflection of a point with respect to x-axis is the negative of that point.
E-Governance Security using Public Key… www.ijesi.org 14 | Page Figure 3: Addition of two points b) Point doubling: Point doubling is the addition of a point J on the elliptic curve to itself to obtain another point L on the same elliptic curve. To find L = 2J which imply to double a point J to get the point L, consider a point J on an elliptic curve as shown in figure 3(a). If y axis coordinate of the point J is non zero then the tangent line at J will intersect the elliptic curve at exactly one more point –L. The reflection of the point –L with respect to x-axis gives the point L, which is the doubling result of the point J. Figure 4: Doubling of Points Thus L = 2J. If y coordinate of the point J is zero then the tangent at this point intersects at a point at infinity O. Hence 2J = O when yJ = 0. This is shown in figure. Security policy of ECC (Discrete Logarithm Problem) The security of ECC [8] depends on how difficult is to determine n given nJ and J. This difficulty is called Elliptic Curve Discrete Logarithm Problem. Let J and K are two points on an Elliptic Curve such that nJ=K, where n is a scalar. Given J and K, it is computationally infeasible to obtain n, if n is sufficiently large. n is the discrete logarithm of K base J. Hence the main operation involved in ECC is point multiplication i.e. multiplication of scalar n with the point J on the curve to obtain point K on the curve. V. ADVANTAGES OF ECC OVER RSA There are lot of advantages of ECC over RSA. These advantages become more and more distinct as security levels increase (and, as a result, as hardware gets faster, and the key sizes as per recommendation must be increased). A 384-bit ECC key is equivalent with a 7680-bit RSA key for security. The smaller ECC keys mean the cryptographic operations that must be performed by the communicating devices can be squeezed into considerably smaller hardware as a result software applications may complete cryptographic operations with fewer processor cycles, The operations can be performed much faster, while guaranteeing equivalent security. Which stand for less heat, less power consumption, less resourse consumed on the printed circuit board hardware, and software applications run more rapidly and make lower memory demands which lead in turn to more portable devices to produce less heat while run longer.
E-Governance Security using Public Key… www.ijesi.org 15 | Page Now, consider the following three factors 1) Firstly, the factor that the security and practicality of a given asymmetric cryptosystems relies upon the difference in difficulty between doing a given operation and its inverse. 2) Second, the factor that the difference in difficulty between the forward and the inverse operation in a given system is a function of the key length in use, due to the fact that the difficulty of the forward and the inverse operations increase as very different functions of the key length; the inverse operations get harder faster. 3) (iii) Third, the factor that as the longer key lengths are used to adjust the greater processing power are now available to attack the cryptosystem, even the „legitimate‟ forward operations get harder, and require greater resources (chip space and/or processor time), though by a lesser degree than do the inverse operations. If these three factors can be recognized, the advantages of ECC over other asymmetric cryptosystems can be easily grasp. Table 1: Comparison between RSA and ECC Key size VI. ECC FOR E-GOVERNANCE To reduce the risk factors of E-Governance, suitable Public Key Cryptography method must be implemented. Among the latest Public Key Cryptography algorithms ECC is best suited for E-Governance systems for its speed, security, lowest resource usages and low processing load. The ECC based crypto system is recommended to use in the following area [6]. Security of E-Governance Web Sites: The most dominant protocols for providing security in the Internet are the Secure Socket Layer (SSL) and its sister protocol namely Transport Layer Security (TLS) protocols. Although, the use of these protocols puts a significant performance overhead on the web servers because the protocols uses RSA algorithm. It is seen that the use of ECC-224 over RSA-2048 improves server performance by 120%–279%. An experiment in [9] shows that replacing RSA with ECC reduces the servers processing time for new SSL connections across the entire range of page sizes from 10KB to 70KB. For a 70KB page (comparing ECC-160 with RSA-1024), the measured reduction ranges from 29% to 85%, for a 10KB page (comparing ECC-224 with RSA-2048). Table 2: Performance of Public Key Algorithm The Secure Electronic Transaction (SET) specification enables highly secure Internet shopping using credit cards. This kind of cards are developed by Visa and MasterCard company in response to the security concerns of transacting on the Internet. Byung Kwan Lee proposed Advanced Secure Electronic Payment (ASEP) Protocol that uses ECC to secure the online transactions. Strangio and Me proposed the EC-PAY e-Cheque Payment Scheme, which makes use of ECC primitives for local payment transactions, to be deployed in the realm of a PKI infrastructure in a wireless environment or on a mobile device. Personal Computers used for E-Governance: Although devices having fewer resources are considered suitable for ECC, government software may be developed with ECC based security on desktop PCs/Laptops, primarily for protection of data and for mail security. Identification devices like as smart cards and RFIDs: RFID (Radio Frequency Identification) tags are a new generation of small devices used for identification in many applications such as e-tolling in motorways, payment through mobile phones, telemetry,
E-Governance Security using Public Key… www.ijesi.org 16 | Page product tracking, identification of patients and hospital staff and other employee identification. To prevent counterfeiting problems, Radio Frequency Identification technique has gained appreciation as an emerging technology. ECC based RFID Authentication Protocol (ERAP) which helps to secure, mutual offline authentication is proposed by Ahamed et al. ECC is best suited for smart cards as they have extremely rigid constraints on processing capability, storage capacity of parameters and code space. Smart cards are used primarily for signing and decryption operation where ECC is best suited, because it is fast and requires lesser computing power. There are many manufacturing companies who are producing smart cards that using elliptic curve digital signature algorithm. The smart cards are flexible devices which can be used in many situations such as banks credit/debit cards, personal identification or registration cards and electronic tickets. Woodbury et al. demonstrate the use of ECC on smart cards without coprocessors. They demonstrate that scalar multiplication of a fixed point of an EC (the core operation for signature generation) can be performed in less than 2 seconds on an 8051 microcontroller. Chatterji and Gupta proposeed an authentication protocol based on ECDSA for smart cards in. Biometric Signature Verification in E-Governance: An approach using biometric signatures, based on the ECC may be implied in E-Governance. The use of ECC in biometric signature creation improves the electronic banking security, in this technique the public and private keys are created without transmitting and storing any private information nowhere. The two parties need to share a secret key through an insecure channel in symmetric cryptography. ECDH (Elliptic Curve Diffie– Hellman) is a protocol to create and share secret keys between parties without transmitting any private value, as a result no one has access to these secret keys except the communicating parties. Combining the biometrics and the ECDH algorithm, secret messages can be generated in symmetric cryptography with the help of dynamically generated private keys. VII. CONCLUSION Elliptic curve cryptography is implemented in the NSA‟s Suite B to protect both classified and unclassified national security systems and information. It used for both digital signatures and key exchange. This shows that elliptic curve cryptosystem is ready for real world use and is to be preferred in many cases over other cryptosystems. Although there is no real mathematical proof that elliptic curve cryptosystem is more secure than cryptosystems based on discrete logs over finite fields or integer factorisation, elliptic curve cryptosystem seems to be the most efficient and secure public key cryptosystem available today. With the possibility of evaluating nature of attacks on E-Governance system, the strongest and advanced Cryptographic mechanism i.e. ECC must be engineered to obtain highest level of security of E-Governance system. REFERENCES [1]. Abhishek Roy and Sunil Karforma, “Risk and Remedies of E-Governance System”, in Oriental Journal of Computer Science &Technology, Vol. V, No.( 2), pp. 329-339, December 2011 [2]. Wikipedia.org, http://en.wikipedia.org/wiki/RSA_%28algorithm%29, -Accessed on 17-10-2012 [3]. Bruce Schneier., “Applied Cryptography: Protocols, Algorithms, and Source Code in C”, -Second Edition. [4]. Wikipedia.org, http://en.wikipedia.org/wiki/Elliptic_curve_cryptography -accessed on 17-10-2012 [5]. Microsoft Technet, http://technet.microsoft.com/en-us/library/cc962035.aspx -, accessed on 17-10-2012 [6]. Vivek Katiyar, Kamlesh Dutta & Syona Gupta,”A Survey on Elliptic Curve Cryptography for Pervasive Computing Environment”, in International Journal of Computer Applications (0975 – 8887) , Volume 11– No.10, December 2010, pp. 41- 46 . [7]. Arun Kumar, Dr. S.S. Tyagi, Manisha Rana, Neha Aggarwal, Pawan Bhadana - “A Comparative Study of Public Key Cryptosystem based on ECC and RSA” - International Journal on Computer Science and Engineering (IJCSE), Vol 3, No. 5, May-2011, pp. 1904-1905. [8]. William Stallings, Cryptography and Network SecurityFifth Edition, Pearson. pp. 344. [9]. Vipul Gupta, Douglas Stebila, Sheueling Chang Shantz “Integrating Elliptic Curve Cryptography into the Web‟s Security Infrastructure”, WWW2004, May 17-22,2004.

Recommended

ijircee_Template
ijircee_Templateijircee_Template
ijircee_Templateijircee
 
Image Cryptography using RSA Algorithm
Image Cryptography using RSA AlgorithmImage Cryptography using RSA Algorithm
Image Cryptography using RSA Algorithmijtsrd
 
Secure Data Storage on Cloud System for Privacy Preserving
Secure Data Storage on Cloud System for Privacy PreservingSecure Data Storage on Cloud System for Privacy Preserving
Secure Data Storage on Cloud System for Privacy PreservingIRJET Journal
 
Vtu network security(10 ec832) unit 3 notes.
Vtu network security(10 ec832) unit 3 notes.Vtu network security(10 ec832) unit 3 notes.
Vtu network security(10 ec832) unit 3 notes.Jayanth Dwijesh H P
 
Security analysis of fbdk block cipher for digital images
Security analysis of fbdk block cipher for digital imagesSecurity analysis of fbdk block cipher for digital images
Security analysis of fbdk block cipher for digital imageseSAT Journals
 
Vtu network security(10 ec832) unit 2 notes..
Vtu network security(10 ec832) unit 2 notes..Vtu network security(10 ec832) unit 2 notes..
Vtu network security(10 ec832) unit 2 notes..Jayanth Dwijesh H P
 
Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...
Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...
Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...IOSR Journals
 
IRJET- Data Transmission using RSA Algorithm
IRJET- Data Transmission using RSA AlgorithmIRJET- Data Transmission using RSA Algorithm
IRJET- Data Transmission using RSA AlgorithmIRJET Journal
 

Recommended

ijircee_Template
ijircee_Templateijircee_Template
ijircee_Templateijircee
 
Image Cryptography using RSA Algorithm
Image Cryptography using RSA AlgorithmImage Cryptography using RSA Algorithm
Image Cryptography using RSA Algorithmijtsrd
 
Secure Data Storage on Cloud System for Privacy Preserving
Secure Data Storage on Cloud System for Privacy PreservingSecure Data Storage on Cloud System for Privacy Preserving
Secure Data Storage on Cloud System for Privacy PreservingIRJET Journal
 
Vtu network security(10 ec832) unit 3 notes.
Vtu network security(10 ec832) unit 3 notes.Vtu network security(10 ec832) unit 3 notes.
Vtu network security(10 ec832) unit 3 notes.Jayanth Dwijesh H P
 
Security analysis of fbdk block cipher for digital images
Security analysis of fbdk block cipher for digital imagesSecurity analysis of fbdk block cipher for digital images
Security analysis of fbdk block cipher for digital imageseSAT Journals
 
Vtu network security(10 ec832) unit 2 notes..
Vtu network security(10 ec832) unit 2 notes..Vtu network security(10 ec832) unit 2 notes..
Vtu network security(10 ec832) unit 2 notes..Jayanth Dwijesh H P
 
Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...
Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...
Generate an Encryption Key by using Biometric Cryptosystems to secure transfe...IOSR Journals
 
IRJET- Data Transmission using RSA Algorithm
IRJET- Data Transmission using RSA AlgorithmIRJET- Data Transmission using RSA Algorithm
IRJET- Data Transmission using RSA AlgorithmIRJET Journal
 
Mini Project on Data Encryption & Decryption in JAVA
Mini Project on Data Encryption & Decryption in JAVAMini Project on Data Encryption & Decryption in JAVA
Mini Project on Data Encryption & Decryption in JAVAchovatiyabhautik
 
Secure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
Secure Data Sharing Using Compact Summation key in Hybrid Cloud StorageSecure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
Secure Data Sharing Using Compact Summation key in Hybrid Cloud StorageIOSR Journals
 
Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Jayanth Dwijesh H P
 
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...TELKOMNIKA JOURNAL
 
IRJET- Comparison Among RSA, AES and DES
IRJET- Comparison Among RSA, AES and DESIRJET- Comparison Among RSA, AES and DES
IRJET- Comparison Among RSA, AES and DESIRJET Journal
 
82 86
82 8682 86
82 86Editor IJARCET
 
A Review Paper on Secure authentication and data sharing in cloud storage usi...
A Review Paper on Secure authentication and data sharing in cloud storage usi...A Review Paper on Secure authentication and data sharing in cloud storage usi...
A Review Paper on Secure authentication and data sharing in cloud storage usi...ijsrd.com
 
Iaetsd a survey on cloud storage security with
Iaetsd a survey on cloud storage security withIaetsd a survey on cloud storage security with
Iaetsd a survey on cloud storage security withIaetsd Iaetsd
 
Attribute Based Encryption with Privacy Preserving In Clouds
Attribute Based Encryption with Privacy Preserving In Clouds Attribute Based Encryption with Privacy Preserving In Clouds
Attribute Based Encryption with Privacy Preserving In Clouds Swathi Rampur
 
IRJET- Comparative Analysis of Encryption Techniques
IRJET- Comparative Analysis of Encryption TechniquesIRJET- Comparative Analysis of Encryption Techniques
IRJET- Comparative Analysis of Encryption TechniquesIRJET Journal
 
Network and cyber security module(15ec835, 17ec835)
Network and cyber security module(15ec835, 17ec835)Network and cyber security module(15ec835, 17ec835)
Network and cyber security module(15ec835, 17ec835)Jayanth Dwijesh H P
 
50120140507006
5012014050700650120140507006
50120140507006IAEME Publication
 
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
RSA and RC4 Cryptosystem Performance Evaluation Using Image and TextRSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
RSA and RC4 Cryptosystem Performance Evaluation Using Image and TextYekini Nureni
 
VTU network security(10 ec832) unit 6 notes
VTU network security(10 ec832) unit 6 notesVTU network security(10 ec832) unit 6 notes
VTU network security(10 ec832) unit 6 notesJayanth Dwijesh H P
 
A new hybrid text encryption approach over mobile ad hoc network
A new hybrid text encryption approach over mobile ad hoc network A new hybrid text encryption approach over mobile ad hoc network
A new hybrid text encryption approach over mobile ad hoc network IJECEIAES
 
File transfer using cryptography techniques
File transfer using cryptography techniquesFile transfer using cryptography techniques
File transfer using cryptography techniquesmiteshkumar82
 
A novel efficient multiple encryption algorithm for real time images
A novel efficient multiple encryption algorithm for real time images A novel efficient multiple encryption algorithm for real time images
A novel efficient multiple encryption algorithm for real time images IJECEIAES
 
International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)IJERD Editor
 
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...IOSRjournaljce
 
Vtu network security(10 ec832) unit 1 notes
Vtu network security(10 ec832) unit 1 notesVtu network security(10 ec832) unit 1 notes
Vtu network security(10 ec832) unit 1 notesJayanth Dwijesh H P
 
Project Proposal Presentation
Project Proposal PresentationProject Proposal Presentation
Project Proposal Presentationguest1a53eae
 
An Approach to Establishing Municipal Cadres in India
An Approach to Establishing Municipal Cadres in IndiaAn Approach to Establishing Municipal Cadres in India
An Approach to Establishing Municipal Cadres in IndiaNirmala Sambamoorthy
 

More Related Content

What's hot

Mini Project on Data Encryption & Decryption in JAVA
Mini Project on Data Encryption & Decryption in JAVAMini Project on Data Encryption & Decryption in JAVA
Mini Project on Data Encryption & Decryption in JAVAchovatiyabhautik
 
Secure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
Secure Data Sharing Using Compact Summation key in Hybrid Cloud StorageSecure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
Secure Data Sharing Using Compact Summation key in Hybrid Cloud StorageIOSR Journals
 
Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Jayanth Dwijesh H P
 
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...TELKOMNIKA JOURNAL
 
IRJET- Comparison Among RSA, AES and DES
IRJET- Comparison Among RSA, AES and DESIRJET- Comparison Among RSA, AES and DES
IRJET- Comparison Among RSA, AES and DESIRJET Journal
 
A Review Paper on Secure authentication and data sharing in cloud storage usi...
A Review Paper on Secure authentication and data sharing in cloud storage usi...A Review Paper on Secure authentication and data sharing in cloud storage usi...
A Review Paper on Secure authentication and data sharing in cloud storage usi...ijsrd.com
 
Iaetsd a survey on cloud storage security with
Iaetsd a survey on cloud storage security withIaetsd a survey on cloud storage security with
Iaetsd a survey on cloud storage security withIaetsd Iaetsd
 
Attribute Based Encryption with Privacy Preserving In Clouds
Attribute Based Encryption with Privacy Preserving In Clouds Attribute Based Encryption with Privacy Preserving In Clouds
Attribute Based Encryption with Privacy Preserving In Clouds Swathi Rampur
 
IRJET- Comparative Analysis of Encryption Techniques
IRJET- Comparative Analysis of Encryption TechniquesIRJET- Comparative Analysis of Encryption Techniques
IRJET- Comparative Analysis of Encryption TechniquesIRJET Journal
 
Network and cyber security module(15ec835, 17ec835)
Network and cyber security module(15ec835, 17ec835)Network and cyber security module(15ec835, 17ec835)
Network and cyber security module(15ec835, 17ec835)Jayanth Dwijesh H P
 
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
RSA and RC4 Cryptosystem Performance Evaluation Using Image and TextRSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
RSA and RC4 Cryptosystem Performance Evaluation Using Image and TextYekini Nureni
 
VTU network security(10 ec832) unit 6 notes
VTU network security(10 ec832) unit 6 notesVTU network security(10 ec832) unit 6 notes
VTU network security(10 ec832) unit 6 notesJayanth Dwijesh H P
 
A new hybrid text encryption approach over mobile ad hoc network
A new hybrid text encryption approach over mobile ad hoc network A new hybrid text encryption approach over mobile ad hoc network
A new hybrid text encryption approach over mobile ad hoc network IJECEIAES
 
File transfer using cryptography techniques
File transfer using cryptography techniquesFile transfer using cryptography techniques
File transfer using cryptography techniquesmiteshkumar82
 
A novel efficient multiple encryption algorithm for real time images
A novel efficient multiple encryption algorithm for real time images A novel efficient multiple encryption algorithm for real time images
A novel efficient multiple encryption algorithm for real time images IJECEIAES
 
International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)IJERD Editor
 
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...IOSRjournaljce
 
Vtu network security(10 ec832) unit 1 notes
Vtu network security(10 ec832) unit 1 notesVtu network security(10 ec832) unit 1 notes
Vtu network security(10 ec832) unit 1 notesJayanth Dwijesh H P
 

What's hot (20)

Mini Project on Data Encryption & Decryption in JAVA
Mini Project on Data Encryption & Decryption in JAVAMini Project on Data Encryption & Decryption in JAVA
Mini Project on Data Encryption & Decryption in JAVA
 
Secure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
Secure Data Sharing Using Compact Summation key in Hybrid Cloud StorageSecure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
Secure Data Sharing Using Compact Summation key in Hybrid Cloud Storage
 
Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.Vtu network security(10 ec832) unit 5 notes.
Vtu network security(10 ec832) unit 5 notes.
 
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
Comparison of Secret Splitting, Secret Sharing and Recursive Threshold Visual...
 
IRJET- Comparison Among RSA, AES and DES
IRJET- Comparison Among RSA, AES and DESIRJET- Comparison Among RSA, AES and DES
IRJET- Comparison Among RSA, AES and DES
 
82 86
82 8682 86
82 86
 
A Review Paper on Secure authentication and data sharing in cloud storage usi...
A Review Paper on Secure authentication and data sharing in cloud storage usi...A Review Paper on Secure authentication and data sharing in cloud storage usi...
A Review Paper on Secure authentication and data sharing in cloud storage usi...
 
Iaetsd a survey on cloud storage security with
Iaetsd a survey on cloud storage security withIaetsd a survey on cloud storage security with
Iaetsd a survey on cloud storage security with
 
Attribute Based Encryption with Privacy Preserving In Clouds
Attribute Based Encryption with Privacy Preserving In Clouds Attribute Based Encryption with Privacy Preserving In Clouds
Attribute Based Encryption with Privacy Preserving In Clouds
 
IRJET- Comparative Analysis of Encryption Techniques
IRJET- Comparative Analysis of Encryption TechniquesIRJET- Comparative Analysis of Encryption Techniques
IRJET- Comparative Analysis of Encryption Techniques
 
Network and cyber security module(15ec835, 17ec835)
Network and cyber security module(15ec835, 17ec835)Network and cyber security module(15ec835, 17ec835)
Network and cyber security module(15ec835, 17ec835)
 
50120140507006
5012014050700650120140507006
50120140507006
 
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
RSA and RC4 Cryptosystem Performance Evaluation Using Image and TextRSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
 
VTU network security(10 ec832) unit 6 notes
VTU network security(10 ec832) unit 6 notesVTU network security(10 ec832) unit 6 notes
VTU network security(10 ec832) unit 6 notes
 
A new hybrid text encryption approach over mobile ad hoc network
A new hybrid text encryption approach over mobile ad hoc network A new hybrid text encryption approach over mobile ad hoc network
A new hybrid text encryption approach over mobile ad hoc network
 
File transfer using cryptography techniques
File transfer using cryptography techniquesFile transfer using cryptography techniques
File transfer using cryptography techniques
 
A novel efficient multiple encryption algorithm for real time images
A novel efficient multiple encryption algorithm for real time images A novel efficient multiple encryption algorithm for real time images
A novel efficient multiple encryption algorithm for real time images
 
International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)International Journal of Engineering Research and Development (IJERD)
International Journal of Engineering Research and Development (IJERD)
 
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
Secure Data Sharing and Search in Cloud Based Data Using Authoritywise Dynami...
 
Vtu network security(10 ec832) unit 1 notes
Vtu network security(10 ec832) unit 1 notesVtu network security(10 ec832) unit 1 notes
Vtu network security(10 ec832) unit 1 notes
 

Viewers also liked

Project Proposal Presentation
Project Proposal PresentationProject Proposal Presentation
Project Proposal Presentationguest1a53eae
 
An Approach to Establishing Municipal Cadres in India
An Approach to Establishing Municipal Cadres in IndiaAn Approach to Establishing Municipal Cadres in India
An Approach to Establishing Municipal Cadres in IndiaNirmala Sambamoorthy
 
Financial Instruments;, Hedging Accounting
Financial Instruments;, Hedging AccountingFinancial Instruments;, Hedging Accounting
Financial Instruments;, Hedging AccountingSarahAlian
 
Project Management Plan - Cafe Au Lait.PDF
Project Management Plan - Cafe Au Lait.PDFProject Management Plan - Cafe Au Lait.PDF
Project Management Plan - Cafe Au Lait.PDFGeoff Penhorwood
 
Cafe construction project report
Cafe construction project reportCafe construction project report
Cafe construction project reportHagi Sahib
 
Sample project plan
Sample project planSample project plan
Sample project planmamoonnift
 
project on construction of house report.
project on construction of house report.project on construction of house report.
project on construction of house report.Hagi Sahib
 

Viewers also liked (10)

Project Proposal Presentation
Project Proposal PresentationProject Proposal Presentation
Project Proposal Presentation
 
An Approach to Establishing Municipal Cadres in India
An Approach to Establishing Municipal Cadres in IndiaAn Approach to Establishing Municipal Cadres in India
An Approach to Establishing Municipal Cadres in India
 
Huongprf
HuongprfHuongprf
Huongprf
 
Wo-Men-X Cafe
Wo-Men-X Cafe Wo-Men-X Cafe
Wo-Men-X Cafe
 
Financial Instruments;, Hedging Accounting
Financial Instruments;, Hedging AccountingFinancial Instruments;, Hedging Accounting
Financial Instruments;, Hedging Accounting
 
MGMT_404 PROJECT FINAL
MGMT_404 PROJECT FINALMGMT_404 PROJECT FINAL
MGMT_404 PROJECT FINAL
 
Project Management Plan - Cafe Au Lait.PDF
Project Management Plan - Cafe Au Lait.PDFProject Management Plan - Cafe Au Lait.PDF
Project Management Plan - Cafe Au Lait.PDF
 
Cafe construction project report
Cafe construction project reportCafe construction project report
Cafe construction project report
 
Sample project plan
Sample project planSample project plan
Sample project plan
 
project on construction of house report.
project on construction of house report.project on construction of house report.
project on construction of house report.
 

Similar to C0281010016

Implementation Secure Authentication Using Elliptic Curve Cryptography
Implementation Secure Authentication Using Elliptic Curve CryptographyImplementation Secure Authentication Using Elliptic Curve Cryptography
Implementation Secure Authentication Using Elliptic Curve CryptographyAM Publications
 
Pairing Based Elliptic Curve Cryptosystem for Message Authentication
Pairing Based Elliptic Curve Cryptosystem for Message AuthenticationPairing Based Elliptic Curve Cryptosystem for Message Authentication
Pairing Based Elliptic Curve Cryptosystem for Message AuthenticationIJTET Journal
 
“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”
“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”
“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”IOSR Journals
 
Data Security Using Elliptic Curve Cryptography
Data Security Using Elliptic Curve CryptographyData Security Using Elliptic Curve Cryptography
Data Security Using Elliptic Curve CryptographyIJCERT
 
A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...
A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...
A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...Editor IJCATR
 
Nt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointNt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointJanet Robinson
 
Hybrid Cryptography security in public cloud using TwoFish and ECC algorithm
Hybrid Cryptography security in public cloud using TwoFish and ECC algorithmHybrid Cryptography security in public cloud using TwoFish and ECC algorithm
Hybrid Cryptography security in public cloud using TwoFish and ECC algorithmIJECEIAES
 
Comparison of Various Encryption Algorithms and Techniques for improving secu...
Comparison of Various Encryption Algorithms and Techniques for improving secu...Comparison of Various Encryption Algorithms and Techniques for improving secu...
Comparison of Various Encryption Algorithms and Techniques for improving secu...IOSR Journals
 
A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...
A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...
A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...IOSR Journals
 
ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...
ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...
ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...IRJET Journal
 
Prevention of Cheating Message based on Block Cipher using Digital Envelope
Prevention of Cheating Message based on Block Cipher using Digital EnvelopePrevention of Cheating Message based on Block Cipher using Digital Envelope
Prevention of Cheating Message based on Block Cipher using Digital Envelopeiosrjce
 
IRJET- Cryptography Encryption and Decryption File Protection based on Mo...
IRJET- Cryptography Encryption and Decryption File Protection based on Mo...IRJET- Cryptography Encryption and Decryption File Protection based on Mo...
IRJET- Cryptography Encryption and Decryption File Protection based on Mo...IRJET Journal
 
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...IJECEIAES
 
Comparative study of private and public key cryptography algorithms a survey
Comparative study of private and public key cryptography algorithms a surveyComparative study of private and public key cryptography algorithms a survey
Comparative study of private and public key cryptography algorithms a surveyeSAT Publishing House
 
Time Performance Analysis of RSA and Elgamal Public Key Cryptosystems
Time Performance Analysis of RSA and Elgamal Public Key CryptosystemsTime Performance Analysis of RSA and Elgamal Public Key Cryptosystems
Time Performance Analysis of RSA and Elgamal Public Key Cryptosystemsijtsrd
 
File transfer with multiple security mechanism
File transfer with multiple security mechanismFile transfer with multiple security mechanism
File transfer with multiple security mechanismShubham Patil
 
A New Approach of Cryptographic Technique Using Simple ECC & ECF
A New Approach of Cryptographic Technique Using Simple ECC & ECFA New Approach of Cryptographic Technique Using Simple ECC & ECF
A New Approach of Cryptographic Technique Using Simple ECC & ECFIJAEMSJORNAL
 

Similar to C0281010016 (20)

Implementation Secure Authentication Using Elliptic Curve Cryptography
Implementation Secure Authentication Using Elliptic Curve CryptographyImplementation Secure Authentication Using Elliptic Curve Cryptography
Implementation Secure Authentication Using Elliptic Curve Cryptography
 
Pairing Based Elliptic Curve Cryptosystem for Message Authentication
Pairing Based Elliptic Curve Cryptosystem for Message AuthenticationPairing Based Elliptic Curve Cryptosystem for Message Authentication
Pairing Based Elliptic Curve Cryptosystem for Message Authentication
 
“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”
“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”
“Proposed Model for Network Security Issues Using Elliptical Curve Cryptography”
 
Data Security Using Elliptic Curve Cryptography
Data Security Using Elliptic Curve CryptographyData Security Using Elliptic Curve Cryptography
Data Security Using Elliptic Curve Cryptography
 
Ijcnc050208
Ijcnc050208Ijcnc050208
Ijcnc050208
 
A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...
A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...
A New Security Level for Elliptic Curve Cryptosystem Using Cellular Automata ...
 
Nt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointNt1310 Unit 6 Powerpoint
Nt1310 Unit 6 Powerpoint
 
Hybrid Cryptography security in public cloud using TwoFish and ECC algorithm
Hybrid Cryptography security in public cloud using TwoFish and ECC algorithmHybrid Cryptography security in public cloud using TwoFish and ECC algorithm
Hybrid Cryptography security in public cloud using TwoFish and ECC algorithm
 
Comparison of Various Encryption Algorithms and Techniques for improving secu...
Comparison of Various Encryption Algorithms and Techniques for improving secu...Comparison of Various Encryption Algorithms and Techniques for improving secu...
Comparison of Various Encryption Algorithms and Techniques for improving secu...
 
L017136269
L017136269L017136269
L017136269
 
A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...
A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...
A Secure Encryption Technique based on Advanced Hill Cipher For a Public Key ...
 
ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...
ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...
ELECTRONIC MAIL SECURITY USING ASYMMETRIC CRYPTOGRAPHIC ALGORITHM: A NOVEL AP...
 
J017667582
J017667582J017667582
J017667582
 
Prevention of Cheating Message based on Block Cipher using Digital Envelope
Prevention of Cheating Message based on Block Cipher using Digital EnvelopePrevention of Cheating Message based on Block Cipher using Digital Envelope
Prevention of Cheating Message based on Block Cipher using Digital Envelope
 
IRJET- Cryptography Encryption and Decryption File Protection based on Mo...
IRJET- Cryptography Encryption and Decryption File Protection based on Mo...IRJET- Cryptography Encryption and Decryption File Protection based on Mo...
IRJET- Cryptography Encryption and Decryption File Protection based on Mo...
 
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
A Survey on Comparisons of Cryptographic Algorithms Using Certain Parameters ...
 
Comparative study of private and public key cryptography algorithms a survey
Comparative study of private and public key cryptography algorithms a surveyComparative study of private and public key cryptography algorithms a survey
Comparative study of private and public key cryptography algorithms a survey
 
Time Performance Analysis of RSA and Elgamal Public Key Cryptosystems
Time Performance Analysis of RSA and Elgamal Public Key CryptosystemsTime Performance Analysis of RSA and Elgamal Public Key Cryptosystems
Time Performance Analysis of RSA and Elgamal Public Key Cryptosystems
 
File transfer with multiple security mechanism
File transfer with multiple security mechanismFile transfer with multiple security mechanism
File transfer with multiple security mechanism
 
A New Approach of Cryptographic Technique Using Simple ECC & ECF
A New Approach of Cryptographic Technique Using Simple ECC & ECFA New Approach of Cryptographic Technique Using Simple ECC & ECF
A New Approach of Cryptographic Technique Using Simple ECC & ECF
 

Recently uploaded

Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxnull - The Open Security Community
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraDeakin University
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsSnow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsHyundai Motor Group
 
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your BudgetHyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your BudgetEnjoy Anytime
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 

Recently uploaded (20)

Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptxMaking_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
Making_way_through_DLL_hollowing_inspite_of_CFG_by_Debjeet Banerjee.pptx
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Artificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning eraArtificial intelligence in the post-deep learning era
Artificial intelligence in the post-deep learning era
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptxVulnerability_Management_GRC_by Sohang Sengupta.pptx
Vulnerability_Management_GRC_by Sohang Sengupta.pptx
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsSnow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
 
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your BudgetHyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
Hyderabad Call Girls Khairatabad ✨ 7001305949 ✨ Cheap Price Your Budget
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 

C0281010016

  • 1. International Journal of Engineering Science Invention ISSN (Online): 2319 – 6734, ISSN (Print): 2319 – 6726 www.ijesi.org Volume 2 Issue 8 ǁ August 2013 ǁ PP.10-16 www.ijesi.org 10 | Page E-Governance Security using Public Key Cryptography With special focus on ECC Prokash Barman1 , Dr Banani Saha2 1 (Department of Computer Science & Engineering, University of Calcutta, India) 2 (Department of Computer Science & Engineering, University of Calcutta, India) ABSTRACT : This paper gives an idea on E-Governance Security using public key cryptography. The public key cryptography technique called Elliptic Curve Cryptography (ECC) become popular in the last few years. The main attraction of ECC is that it takes exponential time challenge for an intruder to break into the cryptographic system. ECC using 160 bits key, provides the same security as offered by the well known RSA using 1024 bits key, thus leading to lower processing time, minimal bandwidth use and speedy transactions. KEYWORDS: E-Governance, Public Key Cryptography, RSA, Elliptic Curve Cryptography (ECC), Encryption. I. INTRODUCTION Recent days with the advancement of Information and Communication Technology (ICT) various E- Governance systems such as Government – to – Government (G-2-G), Government – to – Business (G-2-B), Government – to – Citizen (G-2-C), Government – to – Employee (G-2-E) etc have evolved nowadays. The hackers and intruders may attack the E-Governance systems directly or indirectly. The unauthenticated access of information and alteration of valuable Government data may be the target segment of the attackers. Hence the E-Governance systems need to be highly secured. With the use of Public Key Cryptography algorithm, risks may be minimized during various E-Governance transactions. We discuss Public Key Cryptography algorithms and its utilization in E-Governance security in different sections of this paper, which are arranged as follows- Section 2 defines some terms related to the E- Governance security. RSA and ECC Public Key Cryptography algorithms have been discussed in section 3. The advantages of ECC over RSA are depicted in section 4. The section 5 describes various ECC implementations for E-Governance system. Conclusion is depicted in section 6. II. E-GOVERNANCE The best utilization of the information and communication technology (ICT) to improve efficient service delivery to the citizen is called e-governance. E-governance is the process of delivering information to the user or client in an efficient way for the benefit of both client & government. 1.1 E-Governance Risk Factors The E-governance risk factors [1] seen are as follows 2.1.1 Spoofing: In this technique the attacker attempts to gain access of E-Governance system by using fallacious identity either by stealth or by using false IP address. Once the access is gained, the attacker abuses the E-Governance system by elevation of privileges. 2.1.2 Repudiation: The attacker can mount repudiation attack during the E-Governance transaction, which is the ability of the user to deny its performed transaction. 2.1.3 Disclosure of E-Governance Information: Unwanted information disclosure can take place easily, in case of the compromised E-Governance system. 2.1.4 Denial of Service: Attackers can perform Denial of Service (DoS) attack by flooding the E-Governance server with request to consume all of its resources so as crash down the system.
  • 2. E-Governance Security using Public Key… www.ijesi.org 11 | Page 2.1.5 Elevation of Privilege 2.1.6 Cyber Crimes 1.2 Security measures to reduce E-Governance risk factors The information transmitted in the internet is broken into data packets which may travel over different routes to reach the destination. The most vulnerable point of interception of information is the points of entry and exit from the internet. [1] Encrypting and decrypting the packets moving between these two fragile points may be done to keep the data secured and intact. There are different types of Cryptography algorithm to achieve the above target are described below: 1.2.1 Symmetric or Secret Key Encryption: Encryption algorithms that use the same key for encrypting and for decrypting information are called symmetric-key algorithms. It is also called a secret key because it is kept as a shared secret between the sender and receiver of information. Else, the confidentiality of the encrypted information is compromised. Strength of Symmetric Key encryption depends of the size of the key used. Symmetric key encryption is much faster than public key encryption, (may be 100 to 1,000 times faster). Figure 1: Encryption and Decryption Encryption: EK(M)=C Decryption: DK(C)=M Where, M=>Original Message E=> Encryption Function D=>Decryption Function C=>Cipher Text K=>Secret Key Symmetric/ Secret Key Encryption 1.2.2 Asymmetric or Public Key Encryption: Encryption algorithm that use different keys for encrypting and decrypting information are most often called public key algorithm[3] but are sometimes also called asymmetric key algorithms[3]. Public key encryption requires the use of both a private key (a key that is known to only its owner) and a public key (a key that is available to and known to other entities on the network). All the user‟s public key may be published in the directory so that it is accessible to all the users of the organization. The two keys are different but one is complement to other. Information that is encrypted with the help of public key can be decrypted only with the corresponding private key of the set. Encryption: EK1 (M)=C Decryption: DK2 (C)=M; DK2 (EK1 (M)) Where, Plain Text Cipher Text Original Plain Text Encryption Decryption
  • 3. E-Governance Security using Public Key… www.ijesi.org 12 | Page M=>Original Message E=> Encryption Function D=>Decryption Function C=>Cipher Text K1 =>Private Key K2 =>Public Key K1 ≠K2 Asymmetric/ Public Key Encryption 1.2.3 Secret Key Exchange[5] In case of online communications using symmetric key cryptography, the secret key must be shared with communicating parties and protected from unauthorized parties. To exchange secret key online, public key encryption algorithm may be implied to keep the key exchange secure. III. PUBLIC KEY CRYPTOGRAPHY There are two prominent Public Key Cryptography algorithms mostly used for secured transaction i.e. RSA and ECC. The ECC is the most recent technique with low key size, minimum processing overload and provide same security compared to large key based RSA algorithm. 1.3 RSA RSA [2] is an algorithm for public-key cryptography that is based on the presumed difficulty of factoring large integers. RSA is the first letters of the surname of Ron Rivest, Adi Shamir and Leonard Adleman, had first publicly described it in 1977. In 1973, an equivalent system had developed by an English mathematician, Clifford Cocks, but it was classified until 1997. The participating user of RSA algorithm creates and then publishes the product of two large prime numbers, along with their public key, as an auxiliary value. The prime factors must be kept secret. A message can be encrypt by anyone using the public key, but with currently published methods, if the public key is large, someone with knowledge of the prime factors can feasibly decrypt the chipper text. Whether breaking RSA encryption is as hard as factoring is an open question known as the RSA problem. As an illustration of this take two large prime numbers (300) digits, multiply them together. As a result you will find a) a large number (More or equals 300 digits) b) it has two factors, both are prime (Multiplier) The two prime numbers can be given easily from which the product can be calculated. But finding the primes from the given product is more difficult. In fact if the numbers get adequately large, it is almost impossible to find them. So the multiplying of two large prime numbers together is the easy forward function in this algorithm. The inverse factor finding operation is considerably more difficult and in practice its almost impossible. The RSA system employs this fact to generate public key and private key pairs. The keys are the functions of the product and the primes. The arrangement of this cryptosystem is to operate in easy forward function – multiplication. Conversely, the operation need to make difficult to find the plaintext from cipher text using only public key, because the inverse operation needs to solve difficult inverse factoring problem. 1.4 Elliptic Curve Cryptography (ECC) As the key length of secure RSA has increased recent years, it has put a heavier processing load on application using RSA. This problem has been reduced using smaller key length Elliptic Curve Cryptography (ECC). The ECC is based on Elliptic Curve. Elliptic Curve: Elliptic Curves are not actually ellipses. The curve are so named because they are depicted by cubic equation, similar to those used for calculating the circumference of an ellipse. The locus of a point, whose coordinates conform to a particular cubic equation along with the point at infinity O (the point at which the locus in the projective plane intersects the line at infinity) is known as an elliptic curve [7]. An elliptic curve is defined in a two dimensional, standard, x, y Cartesian coordinate system are given below as equation (1) and (2) y2 = x3 + ax + b (1) where 4a3 + 27b2 ≠ 0. y2 + xy = x3 + ax2 + b (2)
  • 4. E-Governance Security using Public Key… www.ijesi.org 13 | Page The mathematical foundation of ECC is based on the above equations which may be depicted as follows Figure 2: An Elliptic Curve In ECC, the elliptic curve is used to define the members of the set over which the group is calculated and the operations between them which define how math works in the group. It is done by imagine a graph labelled along both axes with the numbers of a large prime field. Elliptic curve cryptography (ECC) [4] is an approach to public-key cryptography based on the algebraic structure of elliptic curves over finite fields. In 1985, Neal Koblitz and Victor S. Miller suggested independently, the use of elliptic curves in cryptography. The elliptic curve cryptosystem is one of the three cryptosystems currently in use for public key cryptography (PKC), integer factorization systems and discrete logarithm systems are the other two systems. The RSA cryptosystem is the best known example of the integer factorization problem while the Digital Signature Algorithm (DSA) cryptosystem is based on the discrete logarithm problem. Public-key cryptography is based on the interoperability of certain mathematical problems. Before ECC, it assumed that Public-key systems are secure assuming that it is difficult to factor a large integer composed of two or more large prime factors. In case of elliptic curve based protocols, finding the discrete logarithm of a random elliptic curve element with respect to a publicly known base point is not feasible which is assumed. The size of the elliptic curve determines the difficulty of the problem. Benefit of ECC is a smaller key size, which facilitate to reduce storage and transmission requirements, as a result an elliptic curve group could provide the same level of security afforded by an RSA-based system with a large modulus and correspondingly larger key, i.e. a 256bit ECC public key should provide comparable security to a 3072bit RSA public key . The mathematical operations of ECC is defined over the elliptic curve y2 = x3 + ax + b, where 4a3 +27b2 ≠0. Each value of „a‟ and „b‟ gives a different elliptic curve. All points (x , y) which satisfies the above equation plus a point at infinity lies on the elliptic curve. A point in the curve is Public key and the private key is a random number. By multiplying the private key with the generator point G in the elliptic curve, the public key is obtained. The domain parameter (Set of pre defined constant known by all the parties taking part in the communication) of ECC constitute by the generator point G, the curve parameters „a‟ and „b‟, along with few other constants. IV. ECC OPERATIONS Various operations which are performed on ECC are given below in detail [7]: 1) Point Multiplication The dominant operation in ECC cryptographic schemes is point multiplication method. Point multiplication is calculating the value of nJ, where n is an integer and J is a point on the elliptic curve defined in the prime field. In point multiplication, a point J on the elliptic curve is multiplied with a scalar n using elliptic curve equation to obtain another point K on the same elliptic curve, i.e. nJ=K. The Point multiplication method is achieved by two basic elliptic curve operations. • Point addition, adding two points J and K to obtain another point L i.e., L = J + K. • Point doubling, adding a point J to itself to obtain another point L i.e. L = 2J. a) Point addition: The Point addition method is the addition of two points J and K on an elliptic curve to obtain another point L on the same elliptic curve. Consider two points J and K on an elliptic curve as shown in figure (a). If K ≠-J then a line drawn through the points J and K will intersect the elliptic curve at exactly one more point –L. The result of addition of points J and K gives the point -L. The reflection of the point –L with respect to x-axis gives the point L. That is on an elliptic curve L = J + K. If K = -J the line through this point intersect at a point at infinity O. Hence J + (- J)= O. This is shown in figure 2(b). Where, O is the additive identity of the elliptic curve group. The reflection of a point with respect to x-axis is the negative of that point.
  • 5. E-Governance Security using Public Key… www.ijesi.org 14 | Page Figure 3: Addition of two points b) Point doubling: Point doubling is the addition of a point J on the elliptic curve to itself to obtain another point L on the same elliptic curve. To find L = 2J which imply to double a point J to get the point L, consider a point J on an elliptic curve as shown in figure 3(a). If y axis coordinate of the point J is non zero then the tangent line at J will intersect the elliptic curve at exactly one more point –L. The reflection of the point –L with respect to x-axis gives the point L, which is the doubling result of the point J. Figure 4: Doubling of Points Thus L = 2J. If y coordinate of the point J is zero then the tangent at this point intersects at a point at infinity O. Hence 2J = O when yJ = 0. This is shown in figure. Security policy of ECC (Discrete Logarithm Problem) The security of ECC [8] depends on how difficult is to determine n given nJ and J. This difficulty is called Elliptic Curve Discrete Logarithm Problem. Let J and K are two points on an Elliptic Curve such that nJ=K, where n is a scalar. Given J and K, it is computationally infeasible to obtain n, if n is sufficiently large. n is the discrete logarithm of K base J. Hence the main operation involved in ECC is point multiplication i.e. multiplication of scalar n with the point J on the curve to obtain point K on the curve. V. ADVANTAGES OF ECC OVER RSA There are lot of advantages of ECC over RSA. These advantages become more and more distinct as security levels increase (and, as a result, as hardware gets faster, and the key sizes as per recommendation must be increased). A 384-bit ECC key is equivalent with a 7680-bit RSA key for security. The smaller ECC keys mean the cryptographic operations that must be performed by the communicating devices can be squeezed into considerably smaller hardware as a result software applications may complete cryptographic operations with fewer processor cycles, The operations can be performed much faster, while guaranteeing equivalent security. Which stand for less heat, less power consumption, less resourse consumed on the printed circuit board hardware, and software applications run more rapidly and make lower memory demands which lead in turn to more portable devices to produce less heat while run longer.
  • 6. E-Governance Security using Public Key… www.ijesi.org 15 | Page Now, consider the following three factors 1) Firstly, the factor that the security and practicality of a given asymmetric cryptosystems relies upon the difference in difficulty between doing a given operation and its inverse. 2) Second, the factor that the difference in difficulty between the forward and the inverse operation in a given system is a function of the key length in use, due to the fact that the difficulty of the forward and the inverse operations increase as very different functions of the key length; the inverse operations get harder faster. 3) (iii) Third, the factor that as the longer key lengths are used to adjust the greater processing power are now available to attack the cryptosystem, even the „legitimate‟ forward operations get harder, and require greater resources (chip space and/or processor time), though by a lesser degree than do the inverse operations. If these three factors can be recognized, the advantages of ECC over other asymmetric cryptosystems can be easily grasp. Table 1: Comparison between RSA and ECC Key size VI. ECC FOR E-GOVERNANCE To reduce the risk factors of E-Governance, suitable Public Key Cryptography method must be implemented. Among the latest Public Key Cryptography algorithms ECC is best suited for E-Governance systems for its speed, security, lowest resource usages and low processing load. The ECC based crypto system is recommended to use in the following area [6]. Security of E-Governance Web Sites: The most dominant protocols for providing security in the Internet are the Secure Socket Layer (SSL) and its sister protocol namely Transport Layer Security (TLS) protocols. Although, the use of these protocols puts a significant performance overhead on the web servers because the protocols uses RSA algorithm. It is seen that the use of ECC-224 over RSA-2048 improves server performance by 120%–279%. An experiment in [9] shows that replacing RSA with ECC reduces the servers processing time for new SSL connections across the entire range of page sizes from 10KB to 70KB. For a 70KB page (comparing ECC-160 with RSA-1024), the measured reduction ranges from 29% to 85%, for a 10KB page (comparing ECC-224 with RSA-2048). Table 2: Performance of Public Key Algorithm The Secure Electronic Transaction (SET) specification enables highly secure Internet shopping using credit cards. This kind of cards are developed by Visa and MasterCard company in response to the security concerns of transacting on the Internet. Byung Kwan Lee proposed Advanced Secure Electronic Payment (ASEP) Protocol that uses ECC to secure the online transactions. Strangio and Me proposed the EC-PAY e-Cheque Payment Scheme, which makes use of ECC primitives for local payment transactions, to be deployed in the realm of a PKI infrastructure in a wireless environment or on a mobile device. Personal Computers used for E-Governance: Although devices having fewer resources are considered suitable for ECC, government software may be developed with ECC based security on desktop PCs/Laptops, primarily for protection of data and for mail security. Identification devices like as smart cards and RFIDs: RFID (Radio Frequency Identification) tags are a new generation of small devices used for identification in many applications such as e-tolling in motorways, payment through mobile phones, telemetry,
  • 7. E-Governance Security using Public Key… www.ijesi.org 16 | Page product tracking, identification of patients and hospital staff and other employee identification. To prevent counterfeiting problems, Radio Frequency Identification technique has gained appreciation as an emerging technology. ECC based RFID Authentication Protocol (ERAP) which helps to secure, mutual offline authentication is proposed by Ahamed et al. ECC is best suited for smart cards as they have extremely rigid constraints on processing capability, storage capacity of parameters and code space. Smart cards are used primarily for signing and decryption operation where ECC is best suited, because it is fast and requires lesser computing power. There are many manufacturing companies who are producing smart cards that using elliptic curve digital signature algorithm. The smart cards are flexible devices which can be used in many situations such as banks credit/debit cards, personal identification or registration cards and electronic tickets. Woodbury et al. demonstrate the use of ECC on smart cards without coprocessors. They demonstrate that scalar multiplication of a fixed point of an EC (the core operation for signature generation) can be performed in less than 2 seconds on an 8051 microcontroller. Chatterji and Gupta proposeed an authentication protocol based on ECDSA for smart cards in. Biometric Signature Verification in E-Governance: An approach using biometric signatures, based on the ECC may be implied in E-Governance. The use of ECC in biometric signature creation improves the electronic banking security, in this technique the public and private keys are created without transmitting and storing any private information nowhere. The two parties need to share a secret key through an insecure channel in symmetric cryptography. ECDH (Elliptic Curve Diffie– Hellman) is a protocol to create and share secret keys between parties without transmitting any private value, as a result no one has access to these secret keys except the communicating parties. Combining the biometrics and the ECDH algorithm, secret messages can be generated in symmetric cryptography with the help of dynamically generated private keys. VII. CONCLUSION Elliptic curve cryptography is implemented in the NSA‟s Suite B to protect both classified and unclassified national security systems and information. It used for both digital signatures and key exchange. This shows that elliptic curve cryptosystem is ready for real world use and is to be preferred in many cases over other cryptosystems. Although there is no real mathematical proof that elliptic curve cryptosystem is more secure than cryptosystems based on discrete logs over finite fields or integer factorisation, elliptic curve cryptosystem seems to be the most efficient and secure public key cryptosystem available today. With the possibility of evaluating nature of attacks on E-Governance system, the strongest and advanced Cryptographic mechanism i.e. ECC must be engineered to obtain highest level of security of E-Governance system. REFERENCES [1]. Abhishek Roy and Sunil Karforma, “Risk and Remedies of E-Governance System”, in Oriental Journal of Computer Science &Technology, Vol. V, No.( 2), pp. 329-339, December 2011 [2]. Wikipedia.org, http://en.wikipedia.org/wiki/RSA_%28algorithm%29, -Accessed on 17-10-2012 [3]. Bruce Schneier., “Applied Cryptography: Protocols, Algorithms, and Source Code in C”, -Second Edition. [4]. Wikipedia.org, http://en.wikipedia.org/wiki/Elliptic_curve_cryptography -accessed on 17-10-2012 [5]. Microsoft Technet, http://technet.microsoft.com/en-us/library/cc962035.aspx -, accessed on 17-10-2012 [6]. Vivek Katiyar, Kamlesh Dutta & Syona Gupta,”A Survey on Elliptic Curve Cryptography for Pervasive Computing Environment”, in International Journal of Computer Applications (0975 – 8887) , Volume 11– No.10, December 2010, pp. 41- 46 . [7]. Arun Kumar, Dr. S.S. Tyagi, Manisha Rana, Neha Aggarwal, Pawan Bhadana - “A Comparative Study of Public Key Cryptosystem based on ECC and RSA” - International Journal on Computer Science and Engineering (IJCSE), Vol 3, No. 5, May-2011, pp. 1904-1905. [8]. William Stallings, Cryptography and Network SecurityFifth Edition, Pearson. pp. 344. [9]. Vipul Gupta, Douglas Stebila, Sheueling Chang Shantz “Integrating Elliptic Curve Cryptography into the Web‟s Security Infrastructure”, WWW2004, May 17-22,2004.