SlideShare a Scribd company logo

Lecture 2

Download as PPTX, PDF
F
fadwa_stuka

المحاضرة الثانية - Information Security CS709 - د. ابراهيم المرهاق

EducationTechnology
1 of 37
Information Security Part I: Crypto
Chapter 2: Crypto Basics MXDXBVTZWVMXNSPBQXLIMSCCSGXSCJXBOVQXCJZMOJZCVC TVWJCZAAXZBCSSCJXBQCJZCOJZCNSPOXBXSBTVWJC JZDXGXXMOZQMSCSCJXBOVQXCJZMOJZCNSPJZHGXXMOSPLH JZDXZAAXZBXHCSCJXTCSGXSCJXBOVQX plaintext from Lewis Carroll, Alice in Wonderland The solution is by no means so difficult as you might be led to imagine from the first hasty inspection of the characters. These characters, as any one might readily guess, form a cipher that is to say, they convey a meaning… Edgar Allan Poe, The Gold Bug Part 1 Cryptography 2
Crypto  Cryptology The art and science of making and breaking “secret codes”  Cryptography making “secret codes”  Cryptanalysis breaking “secret codes”  Crypto all of the above (and more) Part 1 Cryptography 3
How to Speak Crypto  A cipher or cryptosystem is used to encrypt the plaintext  The result of encryption is ciphertext  We decrypt ciphertext to recover plaintext  A key is used to configure a cryptosystem  A symmetric key cryptosystem uses the same key to encrypt as to decrypt  A public keycryptosystem uses a public key to encrypt and a private keyto decrypt
Crypto  Basic assumptions o The system is completely known to the attacker o Only the key is secret o That is, crypto algorithms are not secret  This is known as Kerckhoffs’ Principle  Why do we make this assumption? o Experience has shown that secret algorithms are weak when exposed o Secret algorithms never remain secret o Better to find weaknesses beforehand
Crypto as Black Box key key plaintext encrypt decrypt plaintext ciphertext A generic view of symmetric key crypto
Simple Substitution  Plaintext: fourscoreandsevenyearsago  Key: Plaintext a b C d e f g h i j k l m n o p q r s t u v w x y z Ciphertext D E F G H I J K L M N O P Q R S T U V W X Y Z A B C  Ciphertext: IRXUVFRUHDQGVHYHQBHDUVDJR  Shift by 3 is “Caesar’s cipher”
Ceasar’s Cipher Decryption  Suppose we know a Ceasar’s cipher is being used: Plaintext a b c d e f g h i j k l m n o p q r s t u v w x y z Ciphertext D E F G H I J K L M N O P Q R S T U V W X Y Z A B C  Given ciphertext: VSRQJHEREVTXDUHSDQWV Plaintext: spongebobsquarepants
Not-so-Simple Substitution  Shift by n for some n {0,1,2,…,25}  Then key is n  Example: key n = 7 Plaintext A B C D E F G H I J K L M N O P Q R S T U V W X Y z Ciphertext H I J K L M N O P Q R S T U V W X Y Z A B C D E F g
Cryptanalysis I: Try Them All  A simple substitution (shift by n) is used o But the key is unknown  Given ciphertext: CSYEVIXIVQMREXIH  How to find the key?  Only 26 possible keys  try them all!  Exhaustive key search  Solution: key is n = 4
Least-Simple Simple Substitution  In general, simple substitution key can be any permutation of letters o Not necessarily a shift of the alphabet  For example Plaintext a b c d e f g h i j k l mn o p q r s t u v wx y z Ciphertext J I C A X S E Y V D K W B Q T Z R H F M P N U L G O  Then 26! > 288 possible keys!
Cryptanalysis II: Be Clever  We know that a simple substitution is used  But not necessarily a shift by n  Find the key given the ciphertext: PBFPVYFBQXZTYFPBFEQJHDXXQVAPTPQJKTOYQWIPBVWLXTO XBTFXQWAXBVCXQWAXFQJVWLEQNTOZQGGQLFXQWAKVWLX QWAEBIPBFXFQVXGTVJVWLBTPQWAEBFPBFHCVLXBQUFEVWLX GDPEQVPQGVPPBFTIXPFHXZHVFAGFOTHFEFBQUFTDHZBQPOTH XTYFTODXQHFTDPTOGHFQPBQWAQJJTODXQHFOQPWTBDHHI XQVAPBFZQHCFWPFHPBFIPBQWKFABVYYDZBOTHPBQPQJTQOT OGHFQAPBFEQJHDXXQVAVXEBQPEFZBVFOJIWFFACFCCFHQW AUVWFLQHGFXVAFXQHFUFHILTTAVWAFFAWTEVOITDHFHFQA ITIXPFHXAFQHEFZQWGFLVWPTOFFA
Cryptanalysis II  Cannot try all 288 simple substitution keys  Can we be more clever?  English letter frequency counts… 0.14 0.12 0.10 0.08 0.06 0.04 0.02 0.00 A C E G I K M O Q S U W Y
Cryptanalysis II  Ciphertext: PBFPVYFBQXZTYFPBFEQJHDXXQVAPTPQJKTOYQWIPBVWLXTOXBTFX QWAXBVCXQWAXFQJVWLEQNTOZQGGQLFXQWAKVWLXQWAEBIPBF XFQVXGTVJVWLBTPQWAEBFPBFHCVLXBQUFEVWLXGDPEQVPQGVPPBF TIXPFHXZHVFAGFOTHFEFBQUFTDHZBQPOTHXTYFTODXQHFTDPTOG HFQPBQWAQJJTODXQHFOQPWTBDHHIXQVAPBFZQHCFWPFHPBFIPB QWKFABVYYDZBOTHPBQPQJTQOTOGHFQAPBFEQJHDXXQVAVXEBQP EFZBVFOJIWFFACFCCFHQWAUVWFLQHGFXVAFXQHFUFHILTTAVWAF FAWTEVOITDHFHFQAITIXPFHXAFQHEFZQWGFLVWPTOFFA  Analyze this message using statistics below Ciphertext frequency counts: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z 21 26 6 10 12 51 10 25 10 9 3 10 0 1 15 28 42 0 0 27 4 24 22 28 6 8
Cryptanalysis: Terminology  Cryptosystem is secure if best know attack is to try all keys o Exhaustive key search, that is  Cryptosystem is insecure if any shortcut attack is known  Butthen insecure cipher might be harder to break than a secure cipher! o What the … ?
Double Transposition  Plaintext: attackxatxdawn Permute rows and columns  Ciphertext: xtawxnattxadakc  Key is matrix size and permutations: (3,5,1,4,2) and (1,3,2)
One-Time Pad: Encryption e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111 Encryption: Plaintext Key = Ciphertext h e i l h i t l e r Plaintext 001 000 010 100 001 010 111 100 000 101 Key 111 101 110 101 111 100 000 101 110 000 Ciphertext 110 101 100 001 110 110 111 001 110 101 s r l h s s t h s r
One-Time Pad: Decryption e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111 Encryption: Plaintext Key = Ciphertext s r l h s s t h s r Ciphertext 110 101 100 001 110 110 111 001 110 101 Key 111 101 110 101 111 100 000 101 110 000 Plaintext 001 000 010 100 001 010 111 100 000 101 h e i l h i t l e r
One-Time Pad Double agent claims sender used the following “key” s r l h s s t h s r Ciphertext 110 101 100 001 110 110 111 001 110 101 Key 101 111 000 101 111 100 000 101 110 000 Plaintext 011 010 100 100 001 010 111 100 000 101 k i l l h i t l e r e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111
One-Time Pad Or sender is captured and claims the key is… s r l h s s t h s r Ciphertext 110 101 100 001 110 110 111 001 110 101 Key 111 101 000 011 101 110 001 011 101 101 Plaintext 001 000 100 010 011 000 110 010 011 000 h e l i K e s i k e e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111
One-Time Pad Summary  Provablysecure… o Ciphertext provides no info about plaintext o All plaintexts are equally likely  …but, only when be used correctly o Pad must be random, used only once o Pad is known only to sender and receiver  Note: pad (key) is same size as message  So, why not distribute msg instead of pad?
Real-World One-Time Pad  Project VENONA o Encrypted spy messages from U.S. to Moscow in 30’s, 40’s, and 50’s o Nuclear espionage, etc. o Thousands of messages  Spy carried one-time pad into U.S.  Spy used pad to encrypt secret messages  Repeats within the “one-time” pads made cryptanalysis possible
VENONA Decrypt (1944) [C% Ruth] learned that her husband [v] was called up by the army but he was not sent to the front. He is a mechanical engineer and is now working at the ENORMOUS [ENORMOZ] [vi] plant in SANTA FE, New Mexico. [45 groups unrecoverable] detain VOLOK [vii] who is working in a plant on ENORMOUS. He is a FELLOWCOUNTRYMAN [ZEMLYaK] [viii]. Yesterday he learned that they had dismissed him from his work. His active work in progressive organizations in the past was cause of his dismissal. In the FELLOWCOUNTRYMAN line LIBERAL is in touch with CHESTER [ix]. They meet once a month for the payment of dues. CHESTER is interested in whether we are satisfied with the collaboration and whether there are not any misunderstandings. He does not inquire about specific items of work [KONKRETNAYa RABOTA]. In as much as CHESTER knows about the role of LIBERAL's group we beg consent to ask C. through LIBERAL about leads from among people who are working on ENOURMOUS and in other technical fields.  “Ruth” == Ruth Greenglass  “Liberal” == Julius Rosenberg  “Enormous” == the atomic bomb
Codebook Cipher  Literally, a book filled with “codewords”  Zimmerman Telegram encrypted via codebook Februar 13605 fest 13732 finanzielle 13850 folgender 13918 Frieden 17142 Friedenschluss 17149 : :  Modern block ciphers are codebooks!
Codebook Cipher: Additive  Codebooks also (usually) use additive  Additive book of “random” numbers o Encrypt message with codebook o Then choose position in additive book o Add additives to get ciphertext o Send ciphertext and additive position (MI) o Recipient subtracts additives before decrypting  Why use an additive sequence?
Zimmerman Telegram  Perhaps most famous codebook ciphertext ever  A major factor in U.S. entry into World War I
Zimmerman Telegram Decrypted  British had recovered partial codebook  Then able to fill in missing parts
Random Historical Items  Crypto timeline  Spartan Scytale - transposition cipher  Caesar’s cipher  Poe’s short story: The Gold Bug  Election of 1876
Election of 1876  “Rutherfraud” Hayes vs “Swindling” Tilden o Popular vote was virtual tie  Electoral college delegations for 4 states (including Florida) in dispute  Commission gave all 4 states to Hayes o Vote on straight party lines  Tilden accused Hayes of bribery o Was it true?
Election of 1876  Encrypted messages by Tilden supporters later emerged  Cipher: Partial codebook, plus transposition  Codebook substitution for important words ciphertext plaintext Copenhagen Greenbacks Greece Hayes Rochester votes Russia Tilden Warsaw telegram : :
Election of 1876  Apply codebook to original message  Pad message to multiple of 5 words (total length, 10,15,20,25 or 30 words)  For each length, a fixed permutation applied to resulting message  Permutations found by comparing several messages of same length  Note that the same key is applied to all messages of a given length
Election of 1876  Ciphertext: Warsaw they read all unchanged last are idiots can’t situation  Codebook: Warsaw telegram  Transposition: 9,3,6,1,10,5,2,7,4,8  Plaintext: Can’t read last telegram. Situation unchanged. They are all idiots.  A weak cipher made worse by reuse of key  Lesson? Don’t overuse keys!
Early 20th Century  WWI Zimmerman Telegram  “Gentlemen do not read each other’s mail” o Henry L. Stimson, Secretary of State, 1929  WWII golden age of cryptanalysis o Midway/Coral Sea o Japanese Purple (codename MAGIC) o German Enigma (codename ULTRA)
Post-WWII History  Claude Shannon father of the science of information theory  Computer revolution lots of data to protect  Data Encryption Standard (DES), 70’s  Public Key cryptography, 70’s  CRYPTO conferences, 80’s  Advanced Encryption Standard (AES), 90’s  The crypto genie is out of the bottle…
Claude Shannon  The founder of Information Theory  1949 paper:Comm. Thy. of Secrecy Systems  Fundamental concepts o Confusion obscure relationship between plaintext and ciphertext o Diffusion spread plaintext statistics through the ciphertext  Proved one-time pad is secure  One-time pad is confusion-only, while double transposition is diffusion-only
Taxonomy of Cryptography  Symmetric Key o Same key for encryption and decryption o Two types: Stream ciphers, Block ciphers  Public Key (or asymmetric crypto) o Two keys, one for encryption (public), and one for decryption (private) o And digital signatures nothing comparable in symmetric key crypto  Hash algorithms o Can be viewed as “one way” crypto
Taxonomy of Cryptanalysis  From perspective of info available to Trudy o Ciphertext only o Known plaintext o Chosen plaintext  “Lunchtime attack”  Protocols might encrypt chosen data o Adaptively chosen plaintext o Related key o Forward search (public key crypto) o And others…

Recommended

Airodump ng [aircrack-ng]
Airodump ng [aircrack-ng]Airodump ng [aircrack-ng]
Airodump ng [aircrack-ng]nazrinzaidi
 
Caesar Cipher , Substitution Cipher, PlayFair and Vigenere Cipher
Caesar Cipher , Substitution Cipher, PlayFair and Vigenere CipherCaesar Cipher , Substitution Cipher, PlayFair and Vigenere Cipher
Caesar Cipher , Substitution Cipher, PlayFair and Vigenere CipherMona Rajput
 
One-Time Pad Encryption
One-Time Pad EncryptionOne-Time Pad Encryption
One-Time Pad EncryptionCharles Southerland
 
One Time Pad Encryption Technique
One Time Pad Encryption TechniqueOne Time Pad Encryption Technique
One Time Pad Encryption TechniqueJohn Adams
 
Polyalphabetic Substitution Cipher
Polyalphabetic Substitution CipherPolyalphabetic Substitution Cipher
Polyalphabetic Substitution CipherSHUBHA CHATURVEDI
 
Cryptography and Information Security
Cryptography and Information SecurityCryptography and Information Security
Cryptography and Information SecurityDr Naim R Kidwai
 
SSL TLS Protocol
SSL TLS ProtocolSSL TLS Protocol
SSL TLS ProtocolDevang Badrakiya
 
Monoalphabetic Substitution Cipher
Monoalphabetic Substitution CipherMonoalphabetic Substitution Cipher
Monoalphabetic Substitution CipherSHUBHA CHATURVEDI
 

Recommended

Airodump ng [aircrack-ng]
Airodump ng [aircrack-ng]Airodump ng [aircrack-ng]
Airodump ng [aircrack-ng]nazrinzaidi
 
Caesar Cipher , Substitution Cipher, PlayFair and Vigenere Cipher
Caesar Cipher , Substitution Cipher, PlayFair and Vigenere CipherCaesar Cipher , Substitution Cipher, PlayFair and Vigenere Cipher
Caesar Cipher , Substitution Cipher, PlayFair and Vigenere CipherMona Rajput
 
One-Time Pad Encryption
One-Time Pad EncryptionOne-Time Pad Encryption
One-Time Pad EncryptionCharles Southerland
 
One Time Pad Encryption Technique
One Time Pad Encryption TechniqueOne Time Pad Encryption Technique
One Time Pad Encryption TechniqueJohn Adams
 
Polyalphabetic Substitution Cipher
Polyalphabetic Substitution CipherPolyalphabetic Substitution Cipher
Polyalphabetic Substitution CipherSHUBHA CHATURVEDI
 
Cryptography and Information Security
Cryptography and Information SecurityCryptography and Information Security
Cryptography and Information SecurityDr Naim R Kidwai
 
SSL TLS Protocol
SSL TLS ProtocolSSL TLS Protocol
SSL TLS ProtocolDevang Badrakiya
 
Monoalphabetic Substitution Cipher
Monoalphabetic Substitution CipherMonoalphabetic Substitution Cipher
Monoalphabetic Substitution CipherSHUBHA CHATURVEDI
 
CNIT 141: 8. Authenticated Encryption
CNIT 141: 8. Authenticated EncryptionCNIT 141: 8. Authenticated Encryption
CNIT 141: 8. Authenticated EncryptionSam Bowne
 
Peripherals and interfacing
Peripherals and interfacingPeripherals and interfacing
Peripherals and interfacingRAMPRAKASHT1
 
Cryptography
CryptographyCryptography
CryptographySidharth Mohapatra
 
Key management
Key managementKey management
Key managementBrandon Byungyong Jo
 
Hash crypto
Hash cryptoHash crypto
Hash cryptoTony Nguyen
 
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...JAINAM KAPADIYA
 
Cryptography.ppt
Cryptography.pptCryptography.ppt
Cryptography.pptUday Meena
 
RSA algorithm
RSA algorithmRSA algorithm
RSA algorithmArpana shree
 
Algoritmos criptograficos
Algoritmos criptograficosAlgoritmos criptograficos
Algoritmos criptograficosIsrra AguiMor
 
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH CiphersChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH CiphersAdaLabs
 
Network Security and Cryptography
Network Security and CryptographyNetwork Security and Cryptography
Network Security and CryptographyAdam Reagan
 
Classical Encryption
Classical EncryptionClassical Encryption
Classical EncryptionShafaan Khaliq Bhatti
 
Blowfish Cryptosystem
Blowfish Cryptosystem Blowfish Cryptosystem
Blowfish Cryptosystem هيثم فرج
 
Cryptographic tools
Cryptographic toolsCryptographic tools
Cryptographic toolsCAS
 
Hash Function
Hash FunctionHash Function
Hash FunctionSiddharth Srivastava
 
Assembly level language
Assembly level languageAssembly level language
Assembly level languagePDFSHARE
 
4. The Advanced Encryption Standard (AES)
4. The Advanced Encryption Standard (AES)4. The Advanced Encryption Standard (AES)
4. The Advanced Encryption Standard (AES)Sam Bowne
 
Idea alogorithim
Idea alogorithimIdea alogorithim
Idea alogorithimSachinMaithani1
 
Risc cisc Difference
Risc cisc DifferenceRisc cisc Difference
Risc cisc DifferenceSehrish Asif
 
Cryptography
CryptographyCryptography
Cryptographyjayashri kolekar
 
Lecture 1
Lecture 1Lecture 1
Lecture 1fadwa_stuka
 
Cryptography
Cryptography Cryptography
Cryptography Karwan Mustafa Kareem
 

More Related Content

What's hot

CNIT 141: 8. Authenticated Encryption
CNIT 141: 8. Authenticated EncryptionCNIT 141: 8. Authenticated Encryption
CNIT 141: 8. Authenticated EncryptionSam Bowne
 
Peripherals and interfacing
Peripherals and interfacingPeripherals and interfacing
Peripherals and interfacingRAMPRAKASHT1
 
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...JAINAM KAPADIYA
 
Cryptography.ppt
Cryptography.pptCryptography.ppt
Cryptography.pptUday Meena
 
Algoritmos criptograficos
Algoritmos criptograficosAlgoritmos criptograficos
Algoritmos criptograficosIsrra AguiMor
 
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH CiphersChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH CiphersAdaLabs
 
Network Security and Cryptography
Network Security and CryptographyNetwork Security and Cryptography
Network Security and CryptographyAdam Reagan
 
Cryptographic tools
Cryptographic toolsCryptographic tools
Cryptographic toolsCAS
 
Assembly level language
Assembly level languageAssembly level language
Assembly level languagePDFSHARE
 
4. The Advanced Encryption Standard (AES)
4. The Advanced Encryption Standard (AES)4. The Advanced Encryption Standard (AES)
4. The Advanced Encryption Standard (AES)Sam Bowne
 
Risc cisc Difference
Risc cisc DifferenceRisc cisc Difference
Risc cisc DifferenceSehrish Asif
 

What's hot (20)

CNIT 141: 8. Authenticated Encryption
CNIT 141: 8. Authenticated EncryptionCNIT 141: 8. Authenticated Encryption
CNIT 141: 8. Authenticated Encryption
 
Peripherals and interfacing
Peripherals and interfacingPeripherals and interfacing
Peripherals and interfacing
 
Cryptography
CryptographyCryptography
Cryptography
 
Key management
Key managementKey management
Key management
 
Hash crypto
Hash cryptoHash crypto
Hash crypto
 
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
Symmetric Cipher Model, Substitution techniques, Transposition techniques, St...
 
Cryptography.ppt
Cryptography.pptCryptography.ppt
Cryptography.ppt
 
RSA algorithm
RSA algorithmRSA algorithm
RSA algorithm
 
Algoritmos criptograficos
Algoritmos criptograficosAlgoritmos criptograficos
Algoritmos criptograficos
 
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH CiphersChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
ChaCha20-Poly1305 Cipher Summary - AdaLabs SPARKAda OpenSSH Ciphers
 
Network Security and Cryptography
Network Security and CryptographyNetwork Security and Cryptography
Network Security and Cryptography
 
Classical Encryption
Classical EncryptionClassical Encryption
Classical Encryption
 
Blowfish Cryptosystem
Blowfish Cryptosystem Blowfish Cryptosystem
Blowfish Cryptosystem
 
Cryptographic tools
Cryptographic toolsCryptographic tools
Cryptographic tools
 
Hash Function
Hash FunctionHash Function
Hash Function
 
Assembly level language
Assembly level languageAssembly level language
Assembly level language
 
4. The Advanced Encryption Standard (AES)
4. The Advanced Encryption Standard (AES)4. The Advanced Encryption Standard (AES)
4. The Advanced Encryption Standard (AES)
 
Idea alogorithim
Idea alogorithimIdea alogorithim
Idea alogorithim
 
Risc cisc Difference
Risc cisc DifferenceRisc cisc Difference
Risc cisc Difference
 
Cryptography
CryptographyCryptography
Cryptography
 

Viewers also liked

Unit 10 PowerPoint (The 1950s and 1960s)
Unit 10 PowerPoint (The 1950s and 1960s)Unit 10 PowerPoint (The 1950s and 1960s)
Unit 10 PowerPoint (The 1950s and 1960s)Crosswinds High School
 
Basic Encryption Decryption Chapter 2
Basic Encryption Decryption Chapter 2Basic Encryption Decryption Chapter 2
Basic Encryption Decryption Chapter 2AfiqEfendy Zaen
 
Cissp d5-cryptography v2012-mini coursev2
Cissp d5-cryptography v2012-mini coursev2Cissp d5-cryptography v2012-mini coursev2
Cissp d5-cryptography v2012-mini coursev2infosecedu
 
LinkedIn SlideShare: Knowledge, Well-Presented
LinkedIn SlideShare: Knowledge, Well-PresentedLinkedIn SlideShare: Knowledge, Well-Presented
LinkedIn SlideShare: Knowledge, Well-PresentedSlideShare
 

Viewers also liked (7)

Lecture 1
Lecture 1Lecture 1
Lecture 1
 
Cryptography
Cryptography Cryptography
Cryptography
 
Lecture 3 animal cell types
Lecture 3 animal cell typesLecture 3 animal cell types
Lecture 3 animal cell types
 
Unit 10 PowerPoint (The 1950s and 1960s)
Unit 10 PowerPoint (The 1950s and 1960s)Unit 10 PowerPoint (The 1950s and 1960s)
Unit 10 PowerPoint (The 1950s and 1960s)
 
Basic Encryption Decryption Chapter 2
Basic Encryption Decryption Chapter 2Basic Encryption Decryption Chapter 2
Basic Encryption Decryption Chapter 2
 
Cissp d5-cryptography v2012-mini coursev2
Cissp d5-cryptography v2012-mini coursev2Cissp d5-cryptography v2012-mini coursev2
Cissp d5-cryptography v2012-mini coursev2
 
LinkedIn SlideShare: Knowledge, Well-Presented
LinkedIn SlideShare: Knowledge, Well-PresentedLinkedIn SlideShare: Knowledge, Well-Presented
LinkedIn SlideShare: Knowledge, Well-Presented
 

Similar to Lecture 2

CryptX '22 W1 Release (1).pptx
CryptX '22 W1 Release (1).pptxCryptX '22 W1 Release (1).pptx
CryptX '22 W1 Release (1).pptxBhavikaGianey
 
Substitution cipher and Its Cryptanalysis
Substitution cipher and Its CryptanalysisSubstitution cipher and Its Cryptanalysis
Substitution cipher and Its CryptanalysisSunil Meena
 
Classical encryption techniques
Classical encryption techniquesClassical encryption techniques
Classical encryption techniquesJanani S
 
classicalencryptiontechniques.ppt
classicalencryptiontechniques.pptclassicalencryptiontechniques.ppt
classicalencryptiontechniques.pptutsavkakkad1
 
Practical intro to cryptanalysis
Practical intro to cryptanalysisPractical intro to cryptanalysis
Practical intro to cryptanalysisCameron Lonsdale
 
Computer Security (Cryptography) Ch03
Computer Security (Cryptography) Ch03Computer Security (Cryptography) Ch03
Computer Security (Cryptography) Ch03Saif Kassim
 
Cryptography (Distributed computing)
Cryptography (Distributed computing)Cryptography (Distributed computing)
Cryptography (Distributed computing)Sri Prasanna
 
One time pad Encryption:
One time pad Encryption:One time pad Encryption:
One time pad Encryption:Asad Ali
 
Introductory Lecture on Cryptography and Information Security
Introductory Lecture on Cryptography and Information SecurityIntroductory Lecture on Cryptography and Information Security
Introductory Lecture on Cryptography and Information SecurityBikramjit Sarkar, Ph.D.
 

Similar to Lecture 2 (20)

Cryptography
CryptographyCryptography
Cryptography
 
Cryptography
CryptographyCryptography
Cryptography
 
Cryptography
CryptographyCryptography
Cryptography
 
Cryptography
CryptographyCryptography
Cryptography
 
Cryptography
CryptographyCryptography
Cryptography
 
Cryptography
CryptographyCryptography
Cryptography
 
Cryptography
CryptographyCryptography
Cryptography
 
CryptX '22 W1 Release (1).pptx
CryptX '22 W1 Release (1).pptxCryptX '22 W1 Release (1).pptx
CryptX '22 W1 Release (1).pptx
 
unit 2.ppt
unit 2.pptunit 2.ppt
unit 2.ppt
 
Ch02...1
Ch02...1Ch02...1
Ch02...1
 
Substitution cipher and Its Cryptanalysis
Substitution cipher and Its CryptanalysisSubstitution cipher and Its Cryptanalysis
Substitution cipher and Its Cryptanalysis
 
Classical encryption techniques
Classical encryption techniquesClassical encryption techniques
Classical encryption techniques
 
Edward Schaefer
Edward SchaeferEdward Schaefer
Edward Schaefer
 
classicalencryptiontechniques.ppt
classicalencryptiontechniques.pptclassicalencryptiontechniques.ppt
classicalencryptiontechniques.ppt
 
Practical intro to cryptanalysis
Practical intro to cryptanalysisPractical intro to cryptanalysis
Practical intro to cryptanalysis
 
Computer Security (Cryptography) Ch03
Computer Security (Cryptography) Ch03Computer Security (Cryptography) Ch03
Computer Security (Cryptography) Ch03
 
Cryptography (Distributed computing)
Cryptography (Distributed computing)Cryptography (Distributed computing)
Cryptography (Distributed computing)
 
One time pad Encryption:
One time pad Encryption:One time pad Encryption:
One time pad Encryption:
 
Cryptography Crash Course
Cryptography Crash CourseCryptography Crash Course
Cryptography Crash Course
 
Introductory Lecture on Cryptography and Information Security
Introductory Lecture on Cryptography and Information SecurityIntroductory Lecture on Cryptography and Information Security
Introductory Lecture on Cryptography and Information Security
 

Recently uploaded

Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxthorishapillay1
 
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfEnzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfSumit Tiwari
 
Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Celine George
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentInMediaRes1
 
Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceSamikshaHamane
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxOH TEIK BIN
 
Presiding Officer Training module 2024 lok sabha elections
Presiding Officer Training module 2024 lok sabha electionsPresiding Officer Training module 2024 lok sabha elections
Presiding Officer Training module 2024 lok sabha electionsanshu789521
 
Painted Grey Ware.pptx, PGW Culture of India
Painted Grey Ware.pptx, PGW Culture of IndiaPainted Grey Ware.pptx, PGW Culture of India
Painted Grey Ware.pptx, PGW Culture of IndiaVirag Sontakke
 
Biting mechanism of poisonous snakes.pdf
Biting mechanism of poisonous snakes.pdfBiting mechanism of poisonous snakes.pdf
Biting mechanism of poisonous snakes.pdfadityarao40181
 
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdfssuser54595a
 
CELL CYCLE Division Science 8 quarter IV.pptx
CELL CYCLE Division Science 8 quarter IV.pptxCELL CYCLE Division Science 8 quarter IV.pptx
CELL CYCLE Division Science 8 quarter IV.pptxJiesonDelaCerna
 
Historical philosophical, theoretical, and legal foundations of special and i...
Historical philosophical, theoretical, and legal foundations of special and i...Historical philosophical, theoretical, and legal foundations of special and i...
Historical philosophical, theoretical, and legal foundations of special and i...jaredbarbolino94
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxEyham Joco
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxNirmalaLoungPoorunde1
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatYousafMalik24
 
भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,Virag Sontakke
 
EPANDING THE CONTENT OF AN OUTLINE using notes.pptx
EPANDING THE CONTENT OF AN OUTLINE using notes.pptxEPANDING THE CONTENT OF AN OUTLINE using notes.pptx
EPANDING THE CONTENT OF AN OUTLINE using notes.pptxRaymartEstabillo3
 

Recently uploaded (20)

Proudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptxProudly South Africa powerpoint Thorisha.pptx
Proudly South Africa powerpoint Thorisha.pptx
 
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdfEnzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
Enzyme, Pharmaceutical Aids, Miscellaneous Last Part of Chapter no 5th.pdf
 
Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17Computed Fields and api Depends in the Odoo 17
Computed Fields and api Depends in the Odoo 17
 
Alper Gobel In Media Res Media Component
Alper Gobel In Media Res Media ComponentAlper Gobel In Media Res Media Component
Alper Gobel In Media Res Media Component
 
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
Model Call Girl in Bikash Puri Delhi reach out to us at 🔝9953056974🔝
 
Roles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in PharmacovigilanceRoles & Responsibilities in Pharmacovigilance
Roles & Responsibilities in Pharmacovigilance
 
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdfTataKelola dan KamSiber Kecerdasan Buatan v022.pdf
TataKelola dan KamSiber Kecerdasan Buatan v022.pdf
 
Solving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptxSolving Puzzles Benefits Everyone (English).pptx
Solving Puzzles Benefits Everyone (English).pptx
 
Presiding Officer Training module 2024 lok sabha elections
Presiding Officer Training module 2024 lok sabha electionsPresiding Officer Training module 2024 lok sabha elections
Presiding Officer Training module 2024 lok sabha elections
 
Painted Grey Ware.pptx, PGW Culture of India
Painted Grey Ware.pptx, PGW Culture of IndiaPainted Grey Ware.pptx, PGW Culture of India
Painted Grey Ware.pptx, PGW Culture of India
 
Biting mechanism of poisonous snakes.pdf
Biting mechanism of poisonous snakes.pdfBiting mechanism of poisonous snakes.pdf
Biting mechanism of poisonous snakes.pdf
 
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
18-04-UA_REPORT_MEDIALITERAСY_INDEX-DM_23-1-final-eng.pdf
 
CELL CYCLE Division Science 8 quarter IV.pptx
CELL CYCLE Division Science 8 quarter IV.pptxCELL CYCLE Division Science 8 quarter IV.pptx
CELL CYCLE Division Science 8 quarter IV.pptx
 
Historical philosophical, theoretical, and legal foundations of special and i...
Historical philosophical, theoretical, and legal foundations of special and i...Historical philosophical, theoretical, and legal foundations of special and i...
Historical philosophical, theoretical, and legal foundations of special and i...
 
9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR9953330565 Low Rate Call Girls In Rohini Delhi NCR
9953330565 Low Rate Call Girls In Rohini Delhi NCR
 
Types of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptxTypes of Journalistic Writing Grade 8.pptx
Types of Journalistic Writing Grade 8.pptx
 
Employee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptxEmployee wellbeing at the workplace.pptx
Employee wellbeing at the workplace.pptx
 
Earth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice greatEarth Day Presentation wow hello nice great
Earth Day Presentation wow hello nice great
 
भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,भारत-रोम व्यापार.pptx, Indo-Roman Trade,
भारत-रोम व्यापार.pptx, Indo-Roman Trade,
 
EPANDING THE CONTENT OF AN OUTLINE using notes.pptx
EPANDING THE CONTENT OF AN OUTLINE using notes.pptxEPANDING THE CONTENT OF AN OUTLINE using notes.pptx
EPANDING THE CONTENT OF AN OUTLINE using notes.pptx
 

Lecture 2

  • 1. Information Security Part I: Crypto
  • 2. Chapter 2: Crypto Basics MXDXBVTZWVMXNSPBQXLIMSCCSGXSCJXBOVQXCJZMOJZCVC TVWJCZAAXZBCSSCJXBQCJZCOJZCNSPOXBXSBTVWJC JZDXGXXMOZQMSCSCJXBOVQXCJZMOJZCNSPJZHGXXMOSPLH JZDXZAAXZBXHCSCJXTCSGXSCJXBOVQX plaintext from Lewis Carroll, Alice in Wonderland The solution is by no means so difficult as you might be led to imagine from the first hasty inspection of the characters. These characters, as any one might readily guess, form a cipher that is to say, they convey a meaning… Edgar Allan Poe, The Gold Bug Part 1 Cryptography 2
  • 3. Crypto  Cryptology The art and science of making and breaking “secret codes”  Cryptography making “secret codes”  Cryptanalysis breaking “secret codes”  Crypto all of the above (and more) Part 1 Cryptography 3
  • 4. How to Speak Crypto  A cipher or cryptosystem is used to encrypt the plaintext  The result of encryption is ciphertext  We decrypt ciphertext to recover plaintext  A key is used to configure a cryptosystem  A symmetric key cryptosystem uses the same key to encrypt as to decrypt  A public keycryptosystem uses a public key to encrypt and a private keyto decrypt
  • 5. Crypto  Basic assumptions o The system is completely known to the attacker o Only the key is secret o That is, crypto algorithms are not secret  This is known as Kerckhoffs’ Principle  Why do we make this assumption? o Experience has shown that secret algorithms are weak when exposed o Secret algorithms never remain secret o Better to find weaknesses beforehand
  • 6. Crypto as Black Box key key plaintext encrypt decrypt plaintext ciphertext A generic view of symmetric key crypto
  • 7. Simple Substitution  Plaintext: fourscoreandsevenyearsago  Key: Plaintext a b C d e f g h i j k l m n o p q r s t u v w x y z Ciphertext D E F G H I J K L M N O P Q R S T U V W X Y Z A B C  Ciphertext: IRXUVFRUHDQGVHYHQBHDUVDJR  Shift by 3 is “Caesar’s cipher”
  • 8. Ceasar’s Cipher Decryption  Suppose we know a Ceasar’s cipher is being used: Plaintext a b c d e f g h i j k l m n o p q r s t u v w x y z Ciphertext D E F G H I J K L M N O P Q R S T U V W X Y Z A B C  Given ciphertext: VSRQJHEREVTXDUHSDQWV Plaintext: spongebobsquarepants
  • 9. Not-so-Simple Substitution  Shift by n for some n {0,1,2,…,25}  Then key is n  Example: key n = 7 Plaintext A B C D E F G H I J K L M N O P Q R S T U V W X Y z Ciphertext H I J K L M N O P Q R S T U V W X Y Z A B C D E F g
  • 10. Cryptanalysis I: Try Them All  A simple substitution (shift by n) is used o But the key is unknown  Given ciphertext: CSYEVIXIVQMREXIH  How to find the key?  Only 26 possible keys  try them all!  Exhaustive key search  Solution: key is n = 4
  • 11. Least-Simple Simple Substitution  In general, simple substitution key can be any permutation of letters o Not necessarily a shift of the alphabet  For example Plaintext a b c d e f g h i j k l mn o p q r s t u v wx y z Ciphertext J I C A X S E Y V D K W B Q T Z R H F M P N U L G O  Then 26! > 288 possible keys!
  • 12. Cryptanalysis II: Be Clever  We know that a simple substitution is used  But not necessarily a shift by n  Find the key given the ciphertext: PBFPVYFBQXZTYFPBFEQJHDXXQVAPTPQJKTOYQWIPBVWLXTO XBTFXQWAXBVCXQWAXFQJVWLEQNTOZQGGQLFXQWAKVWLX QWAEBIPBFXFQVXGTVJVWLBTPQWAEBFPBFHCVLXBQUFEVWLX GDPEQVPQGVPPBFTIXPFHXZHVFAGFOTHFEFBQUFTDHZBQPOTH XTYFTODXQHFTDPTOGHFQPBQWAQJJTODXQHFOQPWTBDHHI XQVAPBFZQHCFWPFHPBFIPBQWKFABVYYDZBOTHPBQPQJTQOT OGHFQAPBFEQJHDXXQVAVXEBQPEFZBVFOJIWFFACFCCFHQW AUVWFLQHGFXVAFXQHFUFHILTTAVWAFFAWTEVOITDHFHFQA ITIXPFHXAFQHEFZQWGFLVWPTOFFA
  • 13. Cryptanalysis II  Cannot try all 288 simple substitution keys  Can we be more clever?  English letter frequency counts… 0.14 0.12 0.10 0.08 0.06 0.04 0.02 0.00 A C E G I K M O Q S U W Y
  • 14. Cryptanalysis II  Ciphertext: PBFPVYFBQXZTYFPBFEQJHDXXQVAPTPQJKTOYQWIPBVWLXTOXBTFX QWAXBVCXQWAXFQJVWLEQNTOZQGGQLFXQWAKVWLXQWAEBIPBF XFQVXGTVJVWLBTPQWAEBFPBFHCVLXBQUFEVWLXGDPEQVPQGVPPBF TIXPFHXZHVFAGFOTHFEFBQUFTDHZBQPOTHXTYFTODXQHFTDPTOG HFQPBQWAQJJTODXQHFOQPWTBDHHIXQVAPBFZQHCFWPFHPBFIPB QWKFABVYYDZBOTHPBQPQJTQOTOGHFQAPBFEQJHDXXQVAVXEBQP EFZBVFOJIWFFACFCCFHQWAUVWFLQHGFXVAFXQHFUFHILTTAVWAF FAWTEVOITDHFHFQAITIXPFHXAFQHEFZQWGFLVWPTOFFA  Analyze this message using statistics below Ciphertext frequency counts: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z 21 26 6 10 12 51 10 25 10 9 3 10 0 1 15 28 42 0 0 27 4 24 22 28 6 8
  • 15. Cryptanalysis: Terminology  Cryptosystem is secure if best know attack is to try all keys o Exhaustive key search, that is  Cryptosystem is insecure if any shortcut attack is known  Butthen insecure cipher might be harder to break than a secure cipher! o What the … ?
  • 16. Double Transposition  Plaintext: attackxatxdawn Permute rows and columns  Ciphertext: xtawxnattxadakc  Key is matrix size and permutations: (3,5,1,4,2) and (1,3,2)
  • 17. One-Time Pad: Encryption e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111 Encryption: Plaintext Key = Ciphertext h e i l h i t l e r Plaintext 001 000 010 100 001 010 111 100 000 101 Key 111 101 110 101 111 100 000 101 110 000 Ciphertext 110 101 100 001 110 110 111 001 110 101 s r l h s s t h s r
  • 18. One-Time Pad: Decryption e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111 Encryption: Plaintext Key = Ciphertext s r l h s s t h s r Ciphertext 110 101 100 001 110 110 111 001 110 101 Key 111 101 110 101 111 100 000 101 110 000 Plaintext 001 000 010 100 001 010 111 100 000 101 h e i l h i t l e r
  • 19. One-Time Pad Double agent claims sender used the following “key” s r l h s s t h s r Ciphertext 110 101 100 001 110 110 111 001 110 101 Key 101 111 000 101 111 100 000 101 110 000 Plaintext 011 010 100 100 001 010 111 100 000 101 k i l l h i t l e r e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111
  • 20. One-Time Pad Or sender is captured and claims the key is… s r l h s s t h s r Ciphertext 110 101 100 001 110 110 111 001 110 101 Key 111 101 000 011 101 110 001 011 101 101 Plaintext 001 000 100 010 011 000 110 010 011 000 h e l i K e s i k e e=000 h=001 i=010 k=011 l=100 r=101 s=110 t=111
  • 21. One-Time Pad Summary  Provablysecure… o Ciphertext provides no info about plaintext o All plaintexts are equally likely  …but, only when be used correctly o Pad must be random, used only once o Pad is known only to sender and receiver  Note: pad (key) is same size as message  So, why not distribute msg instead of pad?
  • 22. Real-World One-Time Pad  Project VENONA o Encrypted spy messages from U.S. to Moscow in 30’s, 40’s, and 50’s o Nuclear espionage, etc. o Thousands of messages  Spy carried one-time pad into U.S.  Spy used pad to encrypt secret messages  Repeats within the “one-time” pads made cryptanalysis possible
  • 23. VENONA Decrypt (1944) [C% Ruth] learned that her husband [v] was called up by the army but he was not sent to the front. He is a mechanical engineer and is now working at the ENORMOUS [ENORMOZ] [vi] plant in SANTA FE, New Mexico. [45 groups unrecoverable] detain VOLOK [vii] who is working in a plant on ENORMOUS. He is a FELLOWCOUNTRYMAN [ZEMLYaK] [viii]. Yesterday he learned that they had dismissed him from his work. His active work in progressive organizations in the past was cause of his dismissal. In the FELLOWCOUNTRYMAN line LIBERAL is in touch with CHESTER [ix]. They meet once a month for the payment of dues. CHESTER is interested in whether we are satisfied with the collaboration and whether there are not any misunderstandings. He does not inquire about specific items of work [KONKRETNAYa RABOTA]. In as much as CHESTER knows about the role of LIBERAL's group we beg consent to ask C. through LIBERAL about leads from among people who are working on ENOURMOUS and in other technical fields.  “Ruth” == Ruth Greenglass  “Liberal” == Julius Rosenberg  “Enormous” == the atomic bomb
  • 24. Codebook Cipher  Literally, a book filled with “codewords”  Zimmerman Telegram encrypted via codebook Februar 13605 fest 13732 finanzielle 13850 folgender 13918 Frieden 17142 Friedenschluss 17149 : :  Modern block ciphers are codebooks!
  • 25. Codebook Cipher: Additive  Codebooks also (usually) use additive  Additive book of “random” numbers o Encrypt message with codebook o Then choose position in additive book o Add additives to get ciphertext o Send ciphertext and additive position (MI) o Recipient subtracts additives before decrypting  Why use an additive sequence?
  • 26. Zimmerman Telegram  Perhaps most famous codebook ciphertext ever  A major factor in U.S. entry into World War I
  • 27. Zimmerman Telegram Decrypted  British had recovered partial codebook  Then able to fill in missing parts
  • 28. Random Historical Items  Crypto timeline  Spartan Scytale - transposition cipher  Caesar’s cipher  Poe’s short story: The Gold Bug  Election of 1876
  • 29. Election of 1876  “Rutherfraud” Hayes vs “Swindling” Tilden o Popular vote was virtual tie  Electoral college delegations for 4 states (including Florida) in dispute  Commission gave all 4 states to Hayes o Vote on straight party lines  Tilden accused Hayes of bribery o Was it true?
  • 30. Election of 1876  Encrypted messages by Tilden supporters later emerged  Cipher: Partial codebook, plus transposition  Codebook substitution for important words ciphertext plaintext Copenhagen Greenbacks Greece Hayes Rochester votes Russia Tilden Warsaw telegram : :
  • 31. Election of 1876  Apply codebook to original message  Pad message to multiple of 5 words (total length, 10,15,20,25 or 30 words)  For each length, a fixed permutation applied to resulting message  Permutations found by comparing several messages of same length  Note that the same key is applied to all messages of a given length
  • 32. Election of 1876  Ciphertext: Warsaw they read all unchanged last are idiots can’t situation  Codebook: Warsaw telegram  Transposition: 9,3,6,1,10,5,2,7,4,8  Plaintext: Can’t read last telegram. Situation unchanged. They are all idiots.  A weak cipher made worse by reuse of key  Lesson? Don’t overuse keys!
  • 33. Early 20th Century  WWI Zimmerman Telegram  “Gentlemen do not read each other’s mail” o Henry L. Stimson, Secretary of State, 1929  WWII golden age of cryptanalysis o Midway/Coral Sea o Japanese Purple (codename MAGIC) o German Enigma (codename ULTRA)
  • 34. Post-WWII History  Claude Shannon father of the science of information theory  Computer revolution lots of data to protect  Data Encryption Standard (DES), 70’s  Public Key cryptography, 70’s  CRYPTO conferences, 80’s  Advanced Encryption Standard (AES), 90’s  The crypto genie is out of the bottle…
  • 35. Claude Shannon  The founder of Information Theory  1949 paper:Comm. Thy. of Secrecy Systems  Fundamental concepts o Confusion obscure relationship between plaintext and ciphertext o Diffusion spread plaintext statistics through the ciphertext  Proved one-time pad is secure  One-time pad is confusion-only, while double transposition is diffusion-only
  • 36. Taxonomy of Cryptography  Symmetric Key o Same key for encryption and decryption o Two types: Stream ciphers, Block ciphers  Public Key (or asymmetric crypto) o Two keys, one for encryption (public), and one for decryption (private) o And digital signatures nothing comparable in symmetric key crypto  Hash algorithms o Can be viewed as “one way” crypto
  • 37. Taxonomy of Cryptanalysis  From perspective of info available to Trudy o Ciphertext only o Known plaintext o Chosen plaintext  “Lunchtime attack”  Protocols might encrypt chosen data o Adaptively chosen plaintext o Related key o Forward search (public key crypto) o And others…