3 - 2: Symmetric Cryptography Flashcards
Data Encryption Standard (DES) history
An IBM standard created in the 1970s to standardize government agency algorithms using the Feistel function
Data Encryption Standard (DES) key facts
Symmetric algorithm, block cipher of 64-bit blocks, 56 bit key, now considered insecure
3DES
A workaround where DES is applied 3 times with 3 keys. 3 different keys is most secure.
Why 3DES and not 2?
Vulnerable to a meet-in-the-middle attack
Advanced Encryption Standard (AES)
Symmetric algorithm, block cipher of 128-bits, key lengths of 128, 192, or 256 bits, uses both substitution and transposition
Blowfish
Public domain algorithm, symmetric, block cipher of 64 bits, key between 32 and 448 bits, no longer secure
Twofish
Public domain encryption using Feistel network, symmetric, 128-bit blocks, keys of 128, 192, or 256 bits, still secure
RC4
A symmetric stream cipher widely used to encrypt network traffic, enabling WAP, WEP, SSL, and TLS.
RC4 keystream
The stream is pseudorandom: while the stream is random, it is initialized with a selected encryption key
RC4 key facts
Symmetric, stream cipher, variable length between 40 and 2048 bits, no longer considered secure
Cipher mode
Describes how an algorithm encrypts and decrypts data
Electronic codebook (ECB)
Context: you’ve encrypted plaintext with independent, individual block ciphers. The ECB is a library of sorts containing the keys and ciphertext.
Simulates a digital codebook providing an encrypted version of each possible input. Encrypting the same block with the same key results in identical ciphertext blocks
Cipherblock chaining (CBC)
Requires previous blocks to be encrypted, feeding previous blocks into the next block’s encryption using exclusive or logic
Counter mode (CTR)
Uses a random value and a counter (beginning at 0), which are added and included in the encryption block, then proceeds using exclusive or logic. Allows a block cipher to behave more like a stream cipher.
Glaois/Counter mode (GCM)
Adds authentication to counter mode
