CHAPTER 7_Cryptography Flashcards
1
Q
Emphasis: Replay Attacks
A
Replay AttacksA big concern in distributed environments is the replay attack, in which an attacker captures some type of data and resubmits it with the hopes of fooling the receiving device into thinking it is legitimate information. Many times, the data captured and resubmitted are authentication information, and the attacker is trying to authenticate herself as someone else to gain unauthorized access.
2
Q
Bullets: Algebraic attack
A
Cryptanalysis attack that exploits vulnerabilities within the intrinsic algebraic structure of mathematical functions.
3
Q
Emphasis: work factor
A
As explained earlier in this chapter, work factor is the amount of time and resources it would take for someone to break an encryption method. In asymmetric algorithms, the work factor relates to the difference in time and effort that carrying out a one-way function in the easy direction takes compared to carrying out a one-way function in the hard direction. In most cases, the larger the key size, the longer it would take for the bad guy to carry out the one-way function in the hard direction (decrypt a message).
4
Q
Bullets: Chosen-plaintext attack
A
Cryptanalysis attack where the attacker can choose arbitrary plaintexts to be encrypted and obtain the corresponding ciphertexts.
5
Q
Emphasis: The pad must be made up of truly random values
A
• The pad must be made up of truly random values. This may not seem like a difficult task, but even our computer systems today do not have truly random number generators; rather, they have pseudorandom number generators.
6
Q
Emphasis: asymmetric algorithms
A
Cryptography algorithms are either symmetric algorithms, which use symmetric keys (also called secret keys), or asymmetric algorithms, which use asymmetric keys (also called public and private keys). As if encryption were not complicated enough, the terms used to describe the key types only make it worse. Just pay close attention and you will get through this fine.
7
Q
Emphasis: Trusted Platform Module
A
Trusted Platform ModuleThe Trusted Platform Module (TPM) is a microchip installed on the motherboard of modern computers and is dedicated to carrying out security functions that involve the storage and processing of symmetric and asymmetric keys, hashes, and digital certificates. The TPM was devised by the Trusted Computing Group (TCG), an organization that promotes open standards to help strengthen computing platforms against security weaknesses and attacks.
8
Q
Emphasis: block cipher
A
When a block cipher is used for encryption and decryption purposes, the message is divided into blocks of bits. These blocks are then put through mathematical functions, one block at a time. Suppose you need to encrypt a message you are sending to your mother and you are using a block cipher that uses 64 bits. Your message of 640 bits is chopped up into 10 individual blocks of 64 bits. Each block is put through a succession of mathematical formulas, and what you end up with is 10 blocks of encrypted text. You send this encrypted message to your mother. She has to have the same block cipher and key, and those 10 ciphertext blocks go back through the algorithm in the reverse sequence and end up in your plaintext message.
9
Q
Bullets: One-time pad
A
Encryption method created by Gilbert Vernam that is considered impossible to crack if carried out properly
10
Q
Bullets: Diffie-Hellman algorithm
A
First asymmetric algorithm created and is used to exchange symmetric key values. Based upon logarithms in finite fields.
11
Q
Bullets: Acquirer (merchant’s bank)
A
The financial institution that processes payment cards.
12
Q
Emphasis: asynchronous
A
Synchronous cryptosystems use keystreams to encrypt plaintext one bit at a time. The keystream values are “in synch” with the plaintext values. An asynchronous cryptosystem uses previously generated output to encrypt the current plaintext values. So a stream algorithm would be considered synchronous, while a block algorithm using chaining would be considered asynchronous.
13
Q
Bullets: Cryptology
A
The study of both cryptography and cryptanalysis
14
Q
Explanations: El Gamal
A
El Gamal is a public key algorithm that can be used for digital signatures, encryption, and key exchange. It is based not on the difficulty of factoring large numbers but on calculating discrete logarithms in a finite field. El Gamal is actually an extension of the Diffie-Hellman algorithm.
15
Q
Bullets: Cookies
A
Data files used by web browsers and servers to keep browser state information and browsing preferences.
16
Q
Bullets: Replay attack
A
Valid data transmission is maliciously or fraudulently repeated to allow an entity gain unauthorized access.
17
Q
Bullets: One-way hash
A
Cryptographic process that takes an arbitrary amount of data and generates a fixed-length value. Used for integrity protection.
18
Q
Bullets: Statistically unpredictable keystream
A
Bits generated from the keystream generator cannot be predicted.
19
Q
Emphasis: one-time pad
A
A one-time pad is a perfect encryption scheme because it is considered unbreakable if implemented properly. It was invented by Gilbert Vernam in 1917, so sometimes it is referred to as the Vernam cipher.
20
Q
Explanation Bullets: PKI supplies the following security services:
A
- Confidentiality
- Access control
- Integrity
- Authentication
- Nonrepudiation
21
Q
Explanations: Types of Asymmetric Systems
A
As described earlier in the chapter, using purely symmetric key cryptography has three drawbacks, which affect the following:
22
Q
Emphasis: Pretty Good Privacy (PGP)
A
Pretty Good Privacy (PGP) was designed by Phil Zimmerman as a freeware e-mail security program and was released in 1991. It was the first widespread public key encryption program. PGP is a complete cryptosystem that uses cryptographic protection to protect e-mail and files. It can use RSA public key encryption for key management and use IDEA symmetric cipher for bulk encryption of data, although the user has the option of picking different types of algorithms for these functions. PGP can provide confidentiality by using the IDEA encryption algorithm, integrity by using the MD5 hashing algorithm, authentication by using the public key certificates, and nonrepudiation by using cryptographically signed messages. PGP uses its own type of digital certificates rather than what is used in PKI, but they both have similar purposes.
23
Q
Emphasis: Certificates
A
CertificatesOne of the most important pieces of a PKI is its digital certificate. A certificate is the mechanism used to associate a public key with a collection of components in a manner that is sufficient to uniquely identify the claimed owner. The standard for how the CA creates the certificate is X.509, which dictates the different fields used in the certificate and the valid values that can populate those fields. The most commonly used version is 3 of this standard, which is often denoted as X.509v3. Many cryptographic protocols use this type of certificate, including SSL.
24
Q
Explanations: Digital Signatures
A
To do a digital signature, do I sign my name on my monitor screen?Response: Sure.
25
Bullets: Diffusion
Transposition processes used in encryption functions to increase randomness.
26
Bullets: MARS
Developed by the IBM team that created Lucifer
27
Emphasis: The Registration Authority
The Registration AuthorityThe registration authority (RA) performs the certification registration duties. The RA establishes and confirms the identity of an individual, initiates the certification process with a CA on behalf of an end user, and performs certificate life-cycle management functions. The RA cannot issue certificates, but can act as a broker between the user and the CA. When users need new certificates, they make requests to the RA, and the RA verifies all necessary identification information before allowing a request to go to the CA.
28
Bullets: Stream cipher
Algorithm type that generates a keystream (random values), which is XORd with plaintext for encryption purposes.
29
Bullets: Public key
Value used in public key cryptography that is used for encryption and signature validation that can be known by all parties.
30
Explanations: What Does It Mean When an Algorithm Is Broken?
I dropped my algorithm.Response: Well, now it’s broken.
31
Explanations: Side-Channel Attacks
All of the attacks we have covered thus far have been based mainly on the mathematics of cryptography. Using plaintext and ciphertext involves high-powered mathematical tools that are needed to uncover the key used in the encryption process.
32
Explanations: Certificate Authorities
How do I know I can trust you?Response: The CA trusts me.
33
Emphasis: session key
A session key is a single-use symmetric key that is used to encrypt messages between two users during a communication session. A session key is no different from the symmetric key described in the previous section, but it is only good for one communication session between users.
34
Bullets: CMAC
Cipher message authentication code that is based upon and provides more security compared to CBC-MAC.
35
Bullets: A keystream not linearly related to the key
If someone figures out the keystream values, that does not mean she now knows the key value.
36
Explanations: Running and Concealment Ciphers
I have my decoder ring, spyglasses, and secret handshake. Now let me figure out how I will encrypt my messages.
37
Explanations: PKI Steps
Now that we know some of the main pieces of a PKI and how they actually work together, let’s walk through an example. First, suppose that John needs to obtain a digital certificate for himself so he can participate in a PKI. The following are the steps to do so:
38
Bullets: El Gamal algorithm
Asymmetric algorithm based upon the Diffie-Hellman algorithm used for digital signatures, encryption, and key exchange.
39
Explanations: Analytic Attacks
Analytic attacks identify algorithm structural weaknesses or flaws, as opposed to brute force attacks, which simply exhaust all possibilities without respect to the specific properties of the algorithm. Examples include the Double DES attack and RSA factoring attack.
40
Bullets: Confusion
Substitution processes used in encryption functions to increase randomness.
41
Emphasis: Initialization Vectors
Initialization VectorsInitialization vectors (IVs) are random values that are used with algorithms to ensure patterns are not created during the encryption process. They are used with keys and do not need to be encrypted when being sent to the destination. If IVs are not used, then two identical plaintext values that are encrypted with the same key will create the same ciphertext. Providing attackers with these types of patterns can make their job easier in breaking the encryption method and uncovering the key. For example, if we have the plaintext value of “See Spot run” two times within our message, we need to make sure that even though there is a pattern in the plaintext message, a pattern in the resulting ciphertext will not be created. So the IV and key are both used by the algorithm to provide more randomness to the encryption process.
42
Bullets: Rijndael
Developed by Joan Daemen and Vincent Rijmen
43
Bullets: Cryptography
Science of secret writing that enables an entity to store and transmit data in a form that is available only to the intended individuals
44
Explanation Bullets: Out of these contestants, Rijndael was chosen. The block sizes that Rijndael supports are 128, 192, and 256 bits. The number of rounds depends upon the size of the block and the key length:
* If both the key and block size are 128 bits, there are 10 rounds.
* If both the key and block size are 192 bits, there are 12 rounds.
* If both the key and block size are 256 bits, there are 14 rounds.
45
Emphasis: Online Certificate Status Protocol (OCSP)
Online Certificate Status Protocol (OCSP) is being used more and more rather than the cumbersome CRL approach. When using just a CRL, the user’s browser must either check a central CRL to find out if the certification has been revoked or the CA has to continually push out CRL values to the clients to ensure they have an updated CRL. If OCSP is implemented, it does this work automatically in the background. It carries out real-time validation of a certificate and reports back to the user whether the certificate is valid, invalid, or unknown. OCSP checks the CRL that is maintained by the CA. So the CRL is still being used, but now we have a protocol developed specifically to check the CRL during a certificate validation process.
46
Explanation Bullets: Disadvantages of end-to-end encryption include the following:
* Headers, addresses, and routing information are not encrypted, and therefore not protected.
47
Explanation Bullets: Advantages of link encryption include the following:
* All data are encrypted, including headers, addresses, and routing information.
* Users do not need to do anything to initiate it. It works at a lower layer in the OSI model.
48
Emphasis: knapsack
Over the years, different versions of knapsack algorithms have arisen. The first to be developed, Merkle-Hellman, could be used only for encryption, but it was later improved upon to provide digital signature capabilities. These types of algorithms are based on the “knapsack problem,” a mathematical dilemma that poses the following question: If you have several different items, each having its own weight, is it possible to add these items to a knapsack so the knapsack has a specific weight?
49
Bullets: Issuer (cardholder’s bank)
The financial institution that provides a credit card to the individual.
50
Emphasis: online encryption
Link encryption, which is sometimes called online encryption, is usually provided by service providers and is incorporated into network protocols. All of the information is encrypted, and the packets must be decrypted at each hop so the router, or other intermediate device, knows where to send the packet next. The router must decrypt the header portion of the packet, read the routing and address information within the header, and then re-encrypt it and send it on its way.
51
Bullets: Keyspace
A range of possible values used to construct keys
52
Emphasis: Message Integrity
Message IntegrityParity bits and cyclic redundancy check (CRC) functions have been used in protocols to detect modifications in streams of bits as they are passed from one computer to another, but they can usually detect only unintentional modifications. Unintentional modifications can happen if a spike occurs in the power supply, if there is interference or attenuation on a wire, or if some other type of physical condition happens that causes the corruption of bits as they travel from one destination to another. Parity bits cannot identify whether a message was captured by an intruder, altered, and then sent on to the intended destination. The intruder can just recalculate a new parity value that includes his changes, and the receiver would never know the difference. For this type of protection, hash algorithms are required to successfully detect intentional and unintentional unauthorized modifications to data. We will now dive into hash algorithms and their characteristics.
53
Bullets: Multipurpose Internet Mail Extension
Standard that outlines the format of e-mail messages and allows binary attachments to be transmitted through email.
54
Emphasis: The pad must be securely distributed and protected at its destination
• The pad must be securely distributed and protected at its destination. This is a very cumbersome process to accomplish, because the pads are usually just individual pieces of paper that need to be delivered by a secure courier and properly guarded at each destination.
55
Bullets: Digital Rights Management (DRM)
Access control technologies commonly used to protect copyright material
56
Bullets: Secure Shell (SSH)
Network protocol that allows for a secure connection to a remote system. Developed to replace Telnet and other insecure remote shell methods.
57
Bullets: Hybrid cryptography
Combined use of symmetric and asymmetric algorithms where the symmetric key encrypts data and an asymmetric key encrypts the symmetric key.
58
Bullets: Triple DES
Symmetric cipher that applies DES three times to each block of data during the encryption process.
59
Emphasis: email Standards
email StandardsLike other types of technologies, cryptography has industry standards and de facto standards. Standards are necessary because they help ensure interoperability among vendor products. Standards usually mean that a certain technology has been under heavy scrutiny and has been properly tested and accepted by many similar technology communities. A company still needs to decide what type of standard to follow and what type of technology to implement.
60
Explanations: The Diffie-Hellman Algorithm
The first group to address the shortfalls of symmetric key cryptography decided to attack the issue of secure distribution of the symmetric key. Whitfield Diffie and Martin Hellman worked on this problem and ended up developing the first asymmetric key agreement algorithm, called, naturally, Diffie-Hellman.
61
Explanations: Cryptosystems
A cryptosystem encompasses all of the necessary components for encryption and decryption to take place. Pretty Good Privacy (PGP) is just one example of a cryptosystem. A cryptosystem is made up of at least the following:
62
Bullets: Authorization
Upon proving identity, the individual is then provided with the key or password that will allow access to some resource.
63
Explanations: Hardware vs. Software Cryptography Systems
Encryption can be done through software or hardware, and there are trade-offs with each. Generally, software is less expensive and provides a slower throughput than hardware mechanisms. Software cryptography methods can be more easily modified and disabled compared to hardware systems, but it depends on the application and the hardware product.
64
Emphasis: Wireless Security Woes
Wireless Security WoesWe covered the different 802.11 standards and the Wired Equivalent Privacy (WEP) protocol in Chapter 6. Among the long laundry list of security problems with WEP, not using unique session keys for data encryption is one of them. If only WEP is being used to encrypt wireless traffic, then in most implementations, just one static symmetric key is being used over and over again to encrypt the packets. This is one of the changes and advancements in the 802.11i standard, which makes sure each packet is encrypted with a unique session key.
65
Explanations: Triple-DES
We went from DES to Triple-DES (3DES), so it might seem we skipped Double-DES. We did. Double-DES has a key length of 112 bits, but there is a specific attack against Double-DES that reduces its work factor to about the same as DES. Thus, it is no more secure than DES. So let’s move on to 3DES.
66
Explanations: Cryptography Notation
In some resources, you may run across rc5-w/r/b or RC5-32/12/16. This is a type of shorthand that describes the configuration of the algorithm:
67
Bullets: Caesar cipher
Simple substitution algorithm created by Julius Caesar that shifts alphabetic values three positions during its encryption and decryption processes
68
Emphasis: Diffie-Hellman
To understand how Diffie-Hellman works, consider an example. Let’s say that Tanya and Erika would like to communicate over an encrypted channel by using Diffie-Hellman. They would both generate a private and public key pair and exchange public keys. Tanya’s software would take her private key (which is just a numeric value) and Erika’s public key (another numeric value) and put them through the Diffie-Hellman algorithm. Erika’s software would take her private key and Tanya’s public key and insert them into the Diffie-Hellman algorithm on her computer. Through this process, Tanya and Erika derive the same shared value, which is used to create instances of symmetric keys.
69
Bullets: Avalanche effect
Algorithm design requirement so that slight changes to the input result in drastic changes to the output.
70
Explanation Bullets: Some important characteristics of ECB mode encryption are as follows:
* Operations can be run in parallel, which decreases processing time.
* Errors are contained. If an error takes place during the encryption process, it only affects one block of data.
* Only usable for the encryption of short messages.
* Cannot carry out preprocessing functions before receiving plaintext.
71
Explanations: Session Keys
Hey, I have a disposable key!Response: Amazing. Now go away.
72
Bullets: Transport mode
Mode that IPSec protocols can work in that provides protection for packet data payload.
73
Explanations: Block and Stream Ciphers
Which should I use, the stream cipher or the block cipher?Response: The stream cipher, because it makes you look skinnier.
74
Emphasis: Response: The stream cipher, because it makes you look skinnier
Which should I use, the stream cipher or the block cipher?Response: The stream cipher, because it makes you look skinnier.
75
Bullets: Digital envelope
Message is encrypted with a symmetric key and the symmetric key is encrypted with an asymmetric key. Collectively this is called a digital envelope.
76
Bullets: Data Encryption Algorithm
Algorithm chosen to fulfill the Data Encryption Standard. Block symmetric cipher that uses a 56-bit true key size, 64-bit block size, and 16 rounds of computation.
77
Bullets: Encipher
Act of transforming data into an unreadable format
78
Bullets: Running key cipher
Substitution cipher that creates keystream values, commonly from agreed-upon text passages, to be used for encryption purposes
79
Bullets: Expansion
Expanding the plaintext by duplicating values. Commonly used to increase the plaintext size to map to key sizes.
80
Bullets: End-to-end encryption
Encryption method used by the sender of data that encrypts individual messages and not full packets.
81
Bullets: Plaintext
Data in readable format, also referred to as cleartext
82
Emphasis: Key Derivation Functions
Key Derivation FunctionsFor complex keys to be generated, a master key is commonly created, and then symmetric keys are generated from it. For example, if an application is responsible for creating a session key for each subject that requests one, it should not be giving out the same instance of that one key. Different subjects need to have different symmetric keys to ensure that the window for the bad guy to capture and uncover that key is smaller than if the same key were to be used over and over again. When two or more keys are created from a master key, they are called subkeys.
83
Bullets: Key
Sequence of bits that are used as instructions that govern the acts of cryptographic functions within an algorithm
84
Explanations: Hashes, HMACs, CBC-MACs, CMACs—Oh My!
MACs and hashing processes can be confusing. The following table simplifies the differences between them.
85
Bullets: Out-of-band method
Sending data through an alternate communication channel.
86
Emphasis: Internet Protocol Security (IPSec)
The Internet Protocol Security (IPSec) protocol suite provides a method of setting up a secure channel for protected data exchange between two devices. The devices that share this secure channel can be two servers, two routers, a workstation and a server, or two gateways between different networks. IPSec is a widely accepted standard for providing network layer protection. It can be more flexible and less expensive than end-to-end and link encryption methods.
87
Emphasis: Social Engineering Attacks
Social Engineering AttacksAttackers can trick people into providing their cryptographic key material through various social engineering attack types. Social engineering attacks have been covered in earlier chapters. They are nontechnical attacks that are carried out on people with the goal of tricking them into divulging some type of sensitive information that can be used by the attacker. The attacker may convince the victim that he is a security administrator that requires the cryptographic data for some type of operational effort. The attacker could then use the data to decrypt and gain access to sensitive data. The attacks can be carried out through persuasion, coercion (rubber-hose cryptanalysis), or bribery (purchase-key attack).
88
Emphasis: Secure Electronic Transaction (SET)
Secure Electronic Transaction (SET) is a security technology proposed by Visa and MasterCard to allow for more secure credit card transaction possibilities than what is currently available. SET has been waiting in the wings for full implementation and acceptance as a standard for quite some time. Although SET provides an effective way of transmitting credit card information, businesses and users do not see it as efficient because it requires more parties to coordinate their efforts, more software installation and configuration for each entity involved, and more effort and cost than the widely used SSL method.
89
Bullets: RSA algorithm
De facto asymmetric algorithm used for encryption, digital signatures, and key exchange. Based upon the difficulty of factoring large numbers into their original prime numbers.
90
Bullets: Initialization vectors (IVs)
Values that are used with algorithms to increase randomness for cryptographic functions.
91
Explanations: Why Can’t We Call an Apple an Apple?
The idea of a hashing function is simple. You run a message through a hashing algorithm, which in turn generates a hashing value. It must have been too simple, because someone threw in a lot of terms to make it more confusing:
92
Explanations: Known-Plaintext Attacks
In known-plaintext attacks, the attacker has the plaintext and corresponding ciphertext of one or more messages. Again, the goal is to discover the key used to encrypt the messages so other messages can be deciphered and read.
93
Emphasis: Secure Shell
Secure ShellSecure Shell (SSH) functions as a type of tunneling mechanism that provides terminal-like access to remote computers. SSH is a program and a protocol that can be used to log into another computer over a network. For example, the program can let Paul, who is on computer A, access computer B’s files, run applications on computer B, and retrieve files from computer B without ever physically touching that computer. SSH provides authentication and secure transmission over vulnerable channels like the Internet.
94
Bullets: Persistent memory
There are two kinds of keys present in the static memory: Endorsement Key (EK) and Storage Root Key (SRK):
95
Bullets: Digital signature
Ensuring the authenticity and integrity of a message through the use of hashing algorithms and asymmetric algorithms. The message digest is encrypted with the sender’s private key.
96
Emphasis: security association (SA)
Each device will have at least one security association (SA) for each secure connection it uses. The SA, which is critical to the IPSec architecture, is a record of the configurations the device needs to support an IPSec connection. When two devices complete their handshaking process, which means they have agreed upon a long list of parameters they will use to communicate, these data must be recorded and stored somewhere, which is in the SA. The SA can contain the authentication and encryption keys, the agreed-upon algorithms, the key lifetime, and the source IP address. When a device receives a packet via the IPSec protocol, it is the SA that tells the device what to do with the packet. So if device B receives a packet from device C via IPSec, device B will look to the corresponding SA to tell it how to decrypt the packet, how to properly authenticate the source of the packet, which key to use, and how to reply to the message if necessary.
97
Emphasis: The pad must be as long as the message
• The pad must be as long as the message. If it is not as long as the message, the pad will need to be reused to cover the whole message. This would be the same thing as using a pad more than one time, which could introduce patterns.
98
Bullets: Key clustering
Instance when two different keys generate the same ciphertext from the same plaintext
99
Bullets: Cryptanalysis
Practice of uncovering flaws within cryptosystems
100
Bullets: DES-EDE3
Uses three different keys for encryption, and the data are encrypted, decrypted, encrypted.
101
Emphasis: Triple-DES (3DES)
We went from DES to Triple-DES (3DES), so it might seem we skipped Double-DES. We did. Double-DES has a key length of 112 bits, but there is a specific attack against Double-DES that reduces its work factor to about the same as DES. Thus, it is no more secure than DES. So let’s move on to 3DES.
102
Bullets: Statistical attack
Cryptanalysis attack that uses identified statistical patterns.
103
Bullets: Steganography
Method of hiding data in another media type with the goal of secrecy
104
Explanation Bullets: Advantages of end-to-end encryption include the following:
* It provides more flexibility to the user in choosing what gets encrypted and how.
* Higher granularity of functionality is available because each application or user can choose specific configurations.
* Each hop device on the network does not need to have a key to decrypt each packet.
105
Emphasis: one-way function
A one-way function is a mathematical function that is easier to compute in one direction than in the opposite direction. An analogy of this is when you drop a glass on the floor. Although dropping a glass on the floor is easy, putting all the pieces back together again to reconstruct the original glass is next to impossible. This concept is similar to how a one-way function is used in cryptography, which is what the RSA algorithm, and all other asymmetric algorithms, are based upon.
106
Bullets: Padding
Adding material to plaintext data before it is encrypted.
107
Bullets: Session keys
Symmetric keys that have a short lifespan, thus providing more protection than static keys with longer lifespans.
108
Bullets: Substitution cipher
Encryption method that uses an algorithm that changes out (substitutes) one value for another value
109
Bullets: Scytale cipher
Ancient encryption tool that used a type of paper and rod used by Greek military factions
110
Emphasis: Methods of Encryption
Methods of EncryptionAlthough there can be several pieces to an encryption process, the two main pieces are the algorithms and the keys. As stated earlier, algorithms used in computer systems are complex mathematical formulas that dictate the rules of how the plaintext will be turned into ciphertext. A key is a string of random bits that will be used by the algorithm to add to the randomness of the encryption process. For two entities to be able to communicate via encryption, they must use the same algorithm and, many times, the same key. In some encryption technologies, the receiver and the sender use the same key, and in other encryption technologies, they must use different but related keys for encryption and decryption purposes. The following sections explain the differences between these two types of encryption methods.
111
Emphasis: International Data Encryption Algorithm (IDEA)
International Data Encryption Algorithm (IDEA) is a block cipher and operates on 64-bit blocks of data. The 64-bit data block is divided into 16 smaller blocks, and each has eight rounds of mathematical functions performed on it. The key is 128 bits long, and IDEA is faster than DES when implemented in software.
112
Emphasis: HTTP Secure
HTTP SecureHTTP Secure (HTTPS) is HTTP running over SSL. (HTTP works at the application layer, and SSL works at the transport layer.) Secure Sockets Layer (SSL) uses public key encryption and provides data encryption, server authentication, message integrity, and optional client authentication. When a client accesses a web site, that web site may have both secured and public portions. The secured portion would require the user to be authenticated in some fashion. When the client goes from a public page on the web site to a secured page, the web server will start the necessary tasks to invoke SSL and protect this type of communication.
113
Explanations: Ciphertext-Only Attacks
In this type of attack, the attacker has the ciphertext of several messages. Each of the messages has been encrypted using the same encryption algorithm. The attacker’s goal is to discover the key used in the encryption process. Once the attacker figures out the key, she can decrypt all other messages encrypted with the same key.
114
Bullets: Serpent
Developed by Ross Anderson, Eli Biham, and Lars Knudsen
115
Emphasis: Synchronous versus Asynchronous
Synchronous versus AsynchronousSynchronous cryptosystems use keystreams to encrypt plaintext one bit at a time. The keystream values are “in synch” with the plaintext values. An asynchronous cryptosystem uses previously generated output to encrypt the current plaintext values. So a stream algorithm would be considered synchronous, while a block algorithm using chaining would be considered asynchronous.
116
Explanations: Here We Are
If this is your first time trying to understand cryptography, you may be exasperated by now. Don’t get too uptight. Many people are new to cryptography, because all of this magic just seems to work in the background without us having to understand it or mess with it.
117
Emphasis: Advanced Encryption Standard (AES)
DES was later replaced by the Rijndael algorithm as the Advanced Encryption Standard (AES) by NIST. This means that Rijndael is the new approved method of encrypting sensitive but unclassified information for the U.S. government; it has been accepted by, and is widely used in, the public arena today.
118
Bullets: Long periods of no repeating patterns within keystream values
Bits generated by the keystream must be random.
119
Explanations: Substitution Ciphers
Give me your A and I will change it out for an M. Now, no one can read your message.Response: That will fool them.
120
Bullets: Chosen-ciphertext attack
Cryptanalysis attack where the attacker chooses a ciphertext and obtains its decryption under an unknown key.
121
Explanations: Algebraic Attacks
Algebraic attacks analyze the vulnerabilities in the mathematics used within the algorithm and exploit the intrinsic algebraic structure. For instance, attacks on the “textbook” version of the RSA cryptosystem exploit properties of the algorithm, such as the fact that the encryption of a raw “0” message is “0.”
122
Bullets: Message authentication code (MAC)
Keyed cryptographic hash function used for data integrity and data origin authentication.
123
Bullets: Decipher
Act of transforming data into a readable format
124
Bullets: Security services
Purely symmetric key cryptography provides confidentiality only, not authentication or nonrepudiation.
125
Bullets: Cardholder
The individual authorized to use a credit card.
126
Explanations: Cipher Block Chaining (CBC) Mode
In ECB mode, a block of plaintext and a key will always give the same ciphertext. This means that if the word “balloon” were encrypted and the resulting ciphertext was “hwicssn,” each time it was encrypted using the same key, the same ciphertext would always be given. This can show evidence of a pattern, enabling an evildoer, with some effort, to discover the pattern and get a step closer to compromising the encryption process.
127
Emphasis: Linear Cryptanalysis
Linear CryptanalysisLinear cryptanalysis is another type of attack that carries out functions to identify the highest probability of a specific key employed during the encryption process using a block algorithm. The attacker carries out a known-plaintext attack on several different messages encrypted with the same key. The more messages the attacker can use and put through this type of attack, the higher the confidence level in the probability of a specific key value.
128
Bullets: Hashed message authentication code (HMAC)
Cryptographic hash function that uses a symmetric key value and is used for data integrity and data origin authentication.
129
Bullets: RC5
Block symmetric cipher that uses variable block sizes (32, 64, 128) and variable-length key sizes (0–2040).
130
Explanations: Hybrid Encryption Methods
Up to this point, we have figured out that symmetric algorithms are fast but have some drawbacks (lack of scalability, difficult key management, and they provide only confidentiality). Asymmetric algorithms do not have these drawbacks but are very slow. We just can’t seem to win. So we turn to a hybrid system that uses symmetric and asymmetric encryption methods together.
131
Explanations: Kerckhoffs’ Principle
Auguste Kerckhoffs published a paper in 1883 stating that the only secrecy involved with a cryptography system should be the key. He claimed that the algorithm should be publicly known. He asserted that if security were based on too many secrets, there would be more vulnerabilities to possibly exploit.
132
Emphasis: ciphertext-only attack
A ciphertext-only attack is the most common type of active attack because it is very easy to get ciphertext by sniffing someone’s traffic, but it is the hardest attack to actually be successful at because the attacker has so little information about the encryption process.
133
Emphasis: Start with the Basics
Start with the BasicsWhy do we connect to the Internet? At first, this seems a basic question, but as we dive deeper into the query, complexity creeps in. We connect to download MP3s, check email, order security books, look at web sites, communicate with friends, and perform various other tasks. But what are we really doing? We are using services provided by a computer’s protocols and software. The services may be file transfers provided by FTP, remote connectivity provided by Telnet, Internet connectivity provided by HTTP, secure connections provided by SSL, and much, much more. Without these protocols, there would be no way to even connect to the Internet.
134
Bullets: Concealment cipher
Encryption method that hides a secret message within an open message
135
Emphasis: sealing
Another application of the TPM is “sealing” a system’s state to a particular hardware and software configuration. Sealing a computing system through TPM is used to deter any attempts to tamper with a system’s configurations. In practice, this is similar to how hashes are used to verify the integrity of files shared over the Internet (or any other untrusted medium).
136
Emphasis: Binding
“Binding” a hard disk drive is the most common usage scenario of the TPM—where the content of a given hard disk drive is affixed with a particular computing system. The content of the hard disk drive is encrypted, and the decryption key is stored away in the TPM chip. To ensure safe storage of the decryption key, it is further “wrapped” with another encryption key. Binding a hard disk drive makes its content basically inaccessible to other systems, and any attempt to retrieve the drive’s content by attaching it to another system will be very difficult. However, in the event of the TPM chip’s failure, the hard drive’s content will be rendered useless, unless a backup of the key has been escrowed.
137
Explanation Bullets: So RC5-32/12/16 would mean the following:
* 32-bit words, which means it encrypts 64-bit data blocks
* Using 12 rounds
* With a 16-byte (128-bit) key
138
Emphasis: One-Way Functions
One-Way FunctionsA one-way function is a mathematical function that is easier to compute in one direction than in the opposite direction. An analogy of this is when you drop a glass on the floor. Although dropping a glass on the floor is easy, putting all the pieces back together again to reconstruct the original glass is next to impossible. This concept is similar to how a one-way function is used in cryptography, which is what the RSA algorithm, and all other asymmetric algorithms, are based upon.
139
Emphasis: RC5-32/12/16
In some resources, you may run across rc5-w/r/b or RC5-32/12/16. This is a type of shorthand that describes the configuration of the algorithm:
140
Bullets: Keystream generator
Component of a stream algorithm that creates random values for encryption purposes.
141
Bullets: Frequency analysis
Cryptanalysis process used to identify weaknesses within cryptosystems by locating patterns in resulting ciphertext
142
Bullets: Ciphertext-only attack
Cryptanalysis attack where the attacker is assumed to have access only to a set of ciphertexts.
143
Bullets: Certificate revocation list
List that is maintained by the certificate authority of a PKI that contains information on all of the digital certificates that have been revoked.
144
Bullets: Secure key distribution
The symmetric key must be delivered to its destination through a secure courier.
145
Bullets: Blowfish
Block symmetric cipher that uses 64-bit block sizes and variable-length keys.
146
Bullets: HTTPS
A combination of HTTP and SSL\TLS that is commonly used for secure Internet connections and e-commerce transactions.
147
Bullets: RC6
Block symmetric cipher that uses a 128-bit block size and variable-length key sizes (128, 192, 256). Built upon the RC5 algorithm.
148
Bullets: Elliptic curve cryptosystem algorithm
Asymmetric algorithm based upon the algebraic structure of elliptic curves over finite fields. Used for digital signatures, encryption, and key exchange.
149
Bullets: Algorithm
Set of mathematical and logic rules used in cryptographic functions
150
Bullets: Certificate
Digital identity used within a PKI. Generated and maintained by a certificate authority and used for authentication.
151
Bullets: Differential cryptanalysis
Cryptanalysis method that uses the study of how differences in an input can affect the resultant difference at the output.
152
Bullets: Block cipher
Symmetric algorithm type that encrypts chunks (blocks) of data at a time.
153
Emphasis: Symmetric vs. Asymmetric Algorithms
Symmetric vs. Asymmetric AlgorithmsCryptography algorithms are either symmetric algorithms, which use symmetric keys (also called secret keys), or asymmetric algorithms, which use asymmetric keys (also called public and private keys). As if encryption were not complicated enough, the terms used to describe the key types only make it worse. Just pay close attention and you will get through this fine.
154
Bullets: Registration authority
Component of PKI that validates the identity of an entity requesting a digital certificate.
155
Bullets: Scalability
As the number of people who need to communicate increases, so does the number of symmetric keys required, meaning more keys must be managed.
156
Emphasis: Statistical Attacks
Statistical AttacksStatistical attacks identify statistical weaknesses in algorithm design for exploitation—for example, if statistical patterns are identified, as in the number of zeros compared to the number of ones. For instance, a random number generator (RNG) may be biased. If keys are taken directly from the output of the RNG, then the distribution of keys would also be biased. The statistical knowledge about the bias could be used to reduce the search time for the keys.
157
Bullets: Asymmetric algorithm
Encryption method that uses two different key types, public and private. Also called public key cryptography.
158
Bullets: Stegomedium
The medium in which the information is hidden
159
Bullets: Meet-in-the-middle attack
Cryptanalysis attack that tries to uncover a mathematical problem from two different ends.
160
Explanations: Asymmetric Cryptography
Some things you can tell the public, but some things you just want to keep private.
161
Bullets: Payment gateway
This processes the merchant payment. It may be an acquirer.
162
Emphasis: Counter Mode (CTR)
Counter (CTR) Mode Counter Mode (CTR) is very similar to OFB mode, but instead of using a randomly unique IV value to generate the keystream values, this mode uses an IV counter that increments for each plaintext block that needs to be encrypted. The unique counter ensures that each block is XORed with a unique keystream value.
163
Bullets: DES-EEE3
Uses three different keys for encryption, and the data are encrypted, encrypted, encrypted.
164
Bullets: Transposition
Encryption method that shifts (permutation) values
165
Explanations: Quantum Cryptography
Gee, cryptography just isn’t complex enough. Let’s mix some quantum physics in with it.
166
Bullets: Pretty Good Privacy
Cryptosystem used to integrate public key cryptography with e-mail functionality and data encryption, which was developed by Phil Zimmerman.
167
Bullets: Authentication header protocol
Protocol within the IPSec suite used for integrity and authentication.
168
Emphasis: Analytic attacks
Analytic attacks identify algorithm structural weaknesses or flaws, as opposed to brute force attacks, which simply exhaust all possibilities without respect to the specific properties of the algorithm. Examples include the Double DES attack and RSA factoring attack.
169
Emphasis: Block Ciphers
Block CiphersWhen a block cipher is used for encryption and decryption purposes, the message is divided into blocks of bits. These blocks are then put through mathematical functions, one block at a time. Suppose you need to encrypt a message you are sending to your mother and you are using a block cipher that uses 64 bits. Your message of 640 bits is chopped up into 10 individual blocks of 64 bits. Each block is put through a succession of mathematical formulas, and what you end up with is 10 blocks of encrypted text. You send this encrypted message to your mother. She has to have the same block cipher and key, and those 10 ciphertext blocks go back through the algorithm in the reverse sequence and end up in your plaintext message.
170
Explanations: Stream Ciphers vs. One-Time Pads
Stream ciphers were developed to provide the same type of protection one-time pads do, which is why they work in such a similar manner. In reality, stream ciphers cannot provide the level of protection one-time pads do, but because stream ciphers are implemented through software and automated means, they are much more practical.
171
Bullets: Kerckhoffs’ principle
Concept that an algorithm should be known and only the keys should be kept secret
172
Explanation Bullets: Unfortunately, we don’t always seem to be able to call an apple an apple. In many types of technology, the exact same thing can have more than one name. This could be because the different inventors of the technology had schizophrenia, or it could mean that different terms just evolved over time that overlapped. Sadly, you could see symmetric cryptography referred to as any of the following:
* Single key cryptography
* Secret key cryptography
* Session key cryptography
* Private key cryptography
* Shared-key cryptography
173
Explanations: Public Key Infrastructure
Let’s put all of these cryptography pieces in a bowl and figure out how they all work together.
174
Bullets: Known-plaintext attack
Cryptanalysis attack where the attacker is assumed to have access to sets of corresponding plaintext and ciphertext.
175
Bullets: Advanced Encryption Standard
U.S. encryption standard that replaced DES. Block symmetric cipher that uses 128-bit block sizes and various key lengths (128, 192, 256).
176
Explanations: Key Management
I am the manager of all keys!Response: I feel so sorry for you.
177
Bullets: Quantum cryptography
Use of quantum mechanical functions to provide strong cryptographic key exchange.
178
Bullets: Lucifer
Algorithm that was chosen for the Data Encryption Standard, which was altered and renamed Data Encryption Algorithm.
179
Explanations: Zero Knowledge Proof
Total knowledge zero. Yep, that’s how I feel after reading all of this cryptography stuff!Response: Just put your head between your knees and breathe slowly.
180
Emphasis: Statistical attacks
Statistical attacks identify statistical weaknesses in algorithm design for exploitation—for example, if statistical patterns are identified, as in the number of zeros compared to the number of ones. For instance, a random number generator (RNG) may be biased. If keys are taken directly from the output of the RNG, then the distribution of keys would also be biased. The statistical knowledge about the bias could be used to reduce the search time for the keys.
181
Bullets: Social engineering attack
Manipulating individuals so that they will divulge confidential information, rather than by breaking in or using technical cracking techniques.
182
Explanations: Cryptographic Transformation Techniques
We have covered diffusion, confusion, avalanche, IVs, and random number generation. Some other techniques used in algorithms to increase their cryptographic strength are listed here:
183
Emphasis: Secure HTTP
Secure HTTPThough their names are very similar, there is a difference between Secure HTTP (S-HTTP) and HTTP Secure (HTTPS). S-HTTP is a technology that protects each message sent between two computers, while HTTPS protects the communication channel between two computers, messages and all. HTTPS uses SSL/TLS and HTTP to provide a protected circuit between a client and server. So, S-HTTP is used if an individual message needs to be encrypted, but if all information that passes between two computers must be encrypted, then HTTPS is used, which is SSL over HTTP.
184
Bullets: Statistically unbiased keystream (as many zeroes as ones)
There should be no dominance in the number of zeroes or ones in the keystream.
185
Bullets: Secure MIME
Secure/Multipurpose Internet Mail Extensions, which outlines how public key cryptography can be used to secure MIME data types.
186
Emphasis: HAVAL
HAVAL is a variable-length, one-way hash function and is a modification of MD5. It processes message blocks twice the size of those used in MD5; thus, it processes blocks of 1,024 bits. HAVAL can produce hashes from 128 to 256 bits in length.
187
Emphasis: cryptosystem
A cryptosystem encompasses all of the necessary components for encryption and decryption to take place. Pretty Good Privacy (PGP) is just one example of a cryptosystem. A cryptosystem is made up of at least the following:
188
Emphasis: Types of Ciphers
Types of CiphersSymmetric encryption ciphers come in two basic types: substitution and transposition (permutation). The substitution cipher replaces bits, characters, or blocks of characters with different bits, characters, or blocks. The transposition cipher does not replace the original text with different text, but rather moves the original values around. It rearranges the bits, characters, or blocks of characters to hide the original meaning.
189
Emphasis: Chosen-Plaintext Attacks
Chosen-Plaintext AttacksIn chosen-plaintext attacks, the attacker has the plaintext and ciphertext, but can choose the plaintext that gets encrypted to see the corresponding ciphertext. This gives her more power and possibly a deeper understanding of the way the encryption process works so she can gather more information about the key being used. Once the key is discovered, other messages encrypted with that key can be decrypted.
190
Emphasis: Secure MIME (S/MIME)
Secure MIME (S/MIME) is a standard for encrypting and digitally signing electronic mail and for providing secure data transmissions. S/MIME extends the MIME standard by allowing for the encryption of e-mail and attachments. The encryption and hashing algorithms can be specified by the user of the mail package, instead of having it dictated to them. S/MIME follows the Public Key Cryptography Standards (PKCS). S/MIME provides confidentiality through encryption algorithms, integrity through hashing algorithms, authentication through the use of X.509 public key certificates, and nonrepudiation through cryptographically signed message digests.
191
Bullets: Key Derivation Functions (KDFs)
Generation of secret keys (subkeys) from an initial value (master key)
192
Emphasis: concealment cipher
A concealment cipher is a message within a message. If my other supersecret spy buddy and I decide our key value is every third word, then when I get a message from him, I will pick out every third word and write it down. Suppose he sends me a message that reads, “The saying, ‘The time is right’ is not cow language, so is now a dead subject.” Because my key is every third word, I come up with “The right cow is dead.” This again means nothing to me, and I am now turning in my decoder ring.
193
Explanations: Types of Symmetric Systems
Several types of symmetric algorithms are used today. They have different methods of providing encryption and decryption functionality. The one thing they all have in common is that they are symmetric algorithms, meaning the sender and receiver are using two instances of the same key.
194
Bullets: Tunnel mode
Mode that IPSec protocols can work in that provides protection for packet headers and data payload.
195
Bullets: Knapsack algorithm
Asymmetric algorithm based upon a subset sum problem (knapsack problem). It has been broken and no longer used.
196
Bullets: Side-channel attack
Attack that uses information (timing, power consumption) that has been gathered to uncover sensitive data or processing functions.
197
Emphasis: polyalphabetic substitution cipher
This is an example of a substitution cipher, because each character is replaced with another character. This type of substitution cipher is referred to as a monoalphabetic substitution cipher because it uses only one alphabet, whereas a polyalphabetic substitution cipher uses multiple alphabets.
198
Explanation Bullets: One-Time Pad Requirements
For a one-time pad encryption scheme to be considered unbreakable, each pad in the scheme must be
* Made up of truly random values
* Used only one time
* Securely distributed to its destination
* Secured at sender’s and receiver’s sites
* At least as long as the message
199
Explanations: The History of Cryptography
Look, I scrambled up the message so no one can read it.Response: Yes, but now neither can we.
200
Bullets: Link encryption
Technology that encrypts full packets (all headers and data payload) and is carried out without the sender’s interaction.
201
Emphasis: Trusted Platform Module (TPM)
The Trusted Platform Module (TPM) is a microchip installed on the motherboard of modern computers and is dedicated to carrying out security functions that involve the storage and processing of symmetric and asymmetric keys, hashes, and digital certificates. The TPM was devised by the Trusted Computing Group (TCG), an organization that promotes open standards to help strengthen computing platforms against security weaknesses and attacks.
202
Emphasis: Output Feedback Mode (OFB)
So Output Feedback Mode (OFB) is a mode that a block cipher can work in when it needs to emulate a stream because it encrypts small amounts of data at a time, but it has a smaller chance of creating and extending errors throughout the full encryption process.
203
Bullets: Collision
When two different messages are computed by the same hashing algorithm and the same message digest value results.
204
Emphasis: Attacks Against One-Way Hash Functions
Attacks Against One-Way Hash FunctionsA strong hashing algorithm does not produce the same hash value for two different messages. If the algorithm does produce the same value for two distinctly different messages, this is called a collision. An attacker can attempt to force a collision, which is referred to as a birthday attack. This attack is based on the mathematical birthday paradox that exists in standard statistics. Now hold on to your hat while we go through this—it is a bit tricky:
205
Bullets: Secure Electronic Transaction
Secure e-commerce standard developed by Visa and MasterCard that has not been accepted within the marketplace.
206
Emphasis: algorithm
The algorithm, the set of rules also known as the cipher, dictates how enciphering and deciphering take place. Many of the mathematical algorithms used in computer systems today are publicly known and are not the secret part of the encryption process. If the internal mechanisms of the algorithm are not a secret, then something must be. The secret piece of using a well-known encryption algorithm is the key. A common analogy used to illustrate this point is the use of locks you would purchase from your local hardware store. Let’s say 20 people bought the same brand of lock. Just because these people share the same type and brand of lock does not mean they can now unlock each other’s doors and gain access to their private possessions. Instead, each lock comes with its own key, and that one key can only open that one specific lock.
207
Emphasis: chosen-plaintext attacks
In chosen-plaintext attacks, the attacker has the plaintext and ciphertext, but can choose the plaintext that gets encrypted to see the corresponding ciphertext. This gives her more power and possibly a deeper understanding of the way the encryption process works so she can gather more information about the key being used. Once the key is discovered, other messages encrypted with that key can be decrypted.
208
Bullets: Private key
Value used in public key cryptography that is used for decryption and signature creation and known to only key owner.
209
Emphasis: Digital Watermarking
Digital WatermarkingHave you ever tried to copy something that was not yours that had an embedded logo or trademark of another company? (If so, shame on you!) The embedded logo or trademark is called a digital watermark. Instead of having a secret message within a graphic that is supposed to be invisible to you, digital watermarks are usually visible. These are put into place to deter people from using material that is not theirs. This type of steganography is referred to as Digital Rights Management (DRM). The goal is to restrict the usage of material that is owned by a company or individual.
210
Emphasis: Public key infrastructure (PKI)
Public key infrastructure (PKI) is a different animal. It is not an algorithm, a protocol, or an application—it is an infrastructure based on public key cryptography.
211
Emphasis: Digital Envelopes
Digital EnvelopesWhen cryptography is new to people, the process of using symmetric and asymmetric cryptography together can be a bit confusing. But it is important to understand these concepts, because they really are the core, fundamental concepts of all cryptography. This process is not just used in an e-mail client or in a couple of products—this is how it is done when data and a symmetric key must be protected in transmission.
212
Emphasis: multiparty key recovery
Key escrow is a process or entity that can recover lost or corrupted cryptographic keys; thus, it is a common component of key recovery operations. When two or more entities are required to reconstruct a key for key recovery processes, this is known as multiparty key recovery. Multiparty key recovery implements dual control, meaning that two or more people have to be involved with a critical task.Trusted Platform Module
213
Explanation Bullets: A PKI may be made up of the following entities and functions:
* Certification authority
* Registration authority
* Certificate repository
* Certificate revocation system
* Key backup and recovery system
* Automatic key update
* Management of key histories
* Timestamping
* Client-side software
214
Bullets: Online certificate status protocol
Automated method of maintaining revoked certificates within a PKI.
215
Explanations: Meet-in-the-Middle Attacks
This term refers to a mathematical analysis used to try and break a math problem from both ends. It is a technique that works on the forward mapping of a function and the inverse of the second function at the same time. The attack works by encrypting from one end and decrypting from the other end, thus meeting in the middle.
216
Bullets: Active attack
Attack where the attacker does interact with processing or communication activities.
217
Bullets: International Data Encryption Algorithm
Block symmetric cipher that uses a 128-bit key and 64-bit block size.
218
Bullets: Versatile memory
There are three kinds of keys (or values) present in the versatile memory: Attestation Identity Key (AIK), Platform Configuration Register Hashes (PCR), and storage keys:
219
Bullets: Zero knowledge proof
One entity can prove something to be true without providing a secret value.
220
Explanations: Internet Protocol Security
Hey, is there a really complex protocol that can provide me with network layer protection?Response: Yep, IPSec.
221
Bullets: RC4
Stream symmetric cipher that was created by Ron Rivest of RSA. Used in SSL and WEP.
222
Explanations: Rules for Keys and Key Management
Key management is critical for proper protection. The following are responsibilities that fall under the key management umbrella:
223
Bullets: Carrier
A signal, data stream, or file that has hidden information (payload) inside of it
224
Encryption at Different Layers : In reality, encryption can happen at different layers of an operating system and network stack. The following are just a few examples:
* End-to-end encryption happens within the applications.
* SSL encryption takes place at the transport layer.
* PPTP encryption takes place at the data link layer.
* Link encryption takes place at the data link and physical layers.
225
Explanation Bullets: If this is your first time with these issues and you are struggling, don’t worry. I remember when I first started with these concepts, and they turned my brain into a pretzel. Just remember the following points:
* An asymmetric algorithm performs encryption and decryption by using public and private keys that are related to each other mathematically.
* A symmetric algorithm performs encryption and decryption by using a shared secret key.
* A symmetric key is used to encrypt and/or decrypt the actual message.
* Public keys are used to encrypt the symmetric key for secure key exchange.
* A secret key is synonymous with a symmetric key.
* An asymmetric key refers to a public or private key.
226
Bullets: Number generator
Algorithm used to create values that are used in cryptographic functions to add randomness
227
Explanation Bullets: The following list outlines the strengths and weakness of symmetric key systems:
Strengths
* Much faster (less computationally intensive) than asymmetric systems.
* Hard to break if using a large key size.
228
Bullets: Analytic attack
Cryptanalysis attack that exploits vulnerabilities within the algorithm structure.
229
Emphasis: Public vs. Secret Algorithms
Public vs. Secret AlgorithmsThe public mainly uses algorithms that are known and understood versus the secret algorithms where the internal processes and functions are not released to the public. In general, cryptographers in the public sector feel as though the strongest and best-engineered algorithms are the ones released for peer review and public scrutiny, because a thousand brains are better than five, and many times some smarty-pants within the public population can find problems within an algorithm that the developers did not think of. This is why vendors and companies have competitions to see if anyone can break their code and encryption processes. If someone does break it, that means the developers must go back to the drawing board and strengthen this or that piece.
230
Explanation Bullets: The following list outlines the strengths and weaknesses of asymmetric key algorithms:
Strengths
* Better key distribution than symmetric systems.
* Better scalability than symmetric systems
* Can provide authentication and nonrepudiation
231
Bullets: DES-EDE2
The same as DES-EDE3, but uses only two keys, and the first and third encryption processes use the same key.
232
Emphasis: Multipurpose Internet Mail Extension (MIME)
Multipurpose Internet Mail Extension (MIME) is a technical specification indicating how multimedia data and e-mail binary attachments are to be transferred. The Internet has mail standards that dictate how mail is to be formatted, encapsulated, transmitted, and opened. If a message or document contains a binary attachment, MIME dictates how that portion of the message should be handled.
233
Rules for Keys and Key Management : Key management is critical for proper protection. The following are responsibilities that fall under the key management umbrella:
* The key length should be long enough to provide the necessary level of protection.
* Keys should be stored and transmitted by secure means.
* Keys should be extremely random, and the algorithm should use the full spectrum of the keyspace.
* The key’s lifetime should correspond with the sensitivity of the data it is protecting. (Less secure data may allow for a longer key lifetime, whereas more sensitive data might require a shorter key lifetime.)
* The more the key is used, the shorter its lifetime should be.
* Keys should be backed up or escrowed in case of emergencies.
* Keys should be properly destroyed when their lifetime comes to an end.
234
Bullets: Passive attack
Attack where the attacker does not interact with processing or communication activities, but only carries out observation and data collection, as in network sniffing.
235
Emphasis: Differential Cryptanalysis
Differential CryptanalysisThis type of attack also has the goal of uncovering the key that was used for encryption purposes. This attack looks at ciphertext pairs generated by encryption of plaintext pairs with specific differences and analyzes the effect and result of those differences. One such attack was invented in 1990 as an attack against DES, and it turned out to be an effective and successful attack against DES and other block algorithms.
236
Emphasis: The Advanced Encryption Standard
The Advanced Encryption StandardAfter DES was used as an encryption standard for over 20 years and it was cracked in a relatively short time once the necessary technology was available, NIST decided a new standard, the Advanced Encryption Standard (AES), needed to be put into place. In January 1997, NIST announced its request for AES candidates and outlined the requirements in FIPS PUB 197. AES was to be a symmetric block cipher supporting key sizes of 128, 192, and 256 bits. The following five algorithms were the finalists:
237
Bullets: Birthday attack
Cryptographic attack that exploits the mathematics behind the birthday problem in the probability theory forces collisions within hashing functions.
238
Bullets: Encapsulating security protocol
Protocol within the IPSec suite used for integrity, authentication, and encryption.
239
Emphasis: chosen-ciphertext attacks
In chosen-ciphertext attacks, the attacker can choose the ciphertext to be decrypted and has access to the resulting decrypted plaintext. Again, the goal is to figure out the key. This is a harder attack to carry out compared to the previously mentioned attacks, and the attacker may need to have control of the system that contains the cryptosystem.
240
Explanation Bullets: The following are examples of symmetric algorithms, which will be explained later in the “Block and Stream Ciphers” section:
* Data Encryption Standard (DES)
* Triple-DES (3DES)
* Blowfish
* International Data Encryption Algorithm (IDEA)
* RC4, RC5, and RC6
* Advanced Encryption Standard (AES)
241
Emphasis: Response: Just put your head between your knees and breathe slowly
Total knowledge zero. Yep, that’s how I feel after reading all of this cryptography stuff!Response: Just put your head between your knees and breathe slowly.
242
Explanation Bullets: Disadvantages of link encryption include the following:
* Key distribution and management are more complex because each hop device must receive a key, and when the keys change, each must be updated.
* Packets are decrypted at each hop; thus, more points of vulnerability exist.
243
Explanations: Various Hashing Algorithms
As stated earlier, the goal of using a one-way hash function is to provide a fingerprint of the message. If two different messages produce the same hash value, it would be easier for an attacker to break that security mechanism because patterns would be revealed.
244
Bullets: Public key cryptography
Asymmetric cryptography, which uses public and private key values for cryptographic functions.
245
Bullets: CCM
Block cipher mode that combines the CTR encryption mode and CBC-MAC. One encryption key is used for both authentication and encryption purposes.
246
Bullets: Data Encryption Standard
Block symmetric algorithm chosen by NIST as an encryption standard in 1976. It uses a 56-bit true key bit size, 64-bit block size, and 16 rounds of computation.
247
Emphasis: one-way hash
A one-way hash is a function that takes a variable-length string (a message) and produces a fixed-length value called a hash value. For example, if Kevin wants to send a message to Maureen and he wants to ensure the message does not get altered in an unauthorized fashion while it is being transmitted, he would calculate a hash value for the message and append it to the message itself. When Maureen receives the message, she performs the same hashing function Kevin used and then compares her result with the hash value sent with the message. If the two values are the same, Maureen can be sure the message was not altered during transmission. If the two values are different, Maureen knows the message was altered, either intentionally or unintentionally, and she discards the message.
248
Explanation Bullets: Weaknesses
* Requires a secure mechanism to deliver keys properly.
* Each pair of users needs a unique key, so as the number of individuals increases, so does the number of keys, possibly making key management overwhelming.
* Provides confidentiality but not authenticity or nonrepudiation.
249
Explanations: How Does DES Work?
How does DES work again?Response: With voodoo magic and a dead chicken.
250
Explanations: Stream Ciphers
As stated earlier, a block cipher performs mathematical functions on blocks of bits. A stream cipher, on the other hand, does not divide a message into blocks. Instead, a stream cipher treats the message as a stream of bits and performs mathematical functions on each bit individually.
251
Explanations: Encryption at Different Layers
In reality, encryption can happen at different layers of an operating system and network stack. The following are just a few examples:
252
Bullets: DES-EEE2
The same as DES-EEE3, but uses only two keys, and the first and third encryption processes use the same key.
253
Explanations: How Would a Birthday Attack Take Place?
Sue and Joe are going to get married, but before they do, they have a prenuptial contract drawn up that states if they get divorced, then Sue takes her original belongings and Joe takes his original belongings. To ensure this contract is not modified, it is hashed and a message digest value is created.
254
Bullets: Compression
Reduce redundancy before plaintext is encrypted. Compression functions are run on the text before it goes into the encryption algorithm.
255
Bullets: Internet Security Association and Key Management Protocol
Used to establish security associates and an authentication framework in Internet connections. Commonly used by IKE for key exchange.
256
Emphasis: registration authority (RA)
The registration authority (RA) performs the certification registration duties. The RA establishes and confirms the identity of an individual, initiates the certification process with a CA on behalf of an end user, and performs certificate life-cycle management functions. The RA cannot issue certificates, but can act as a broker between the user and the CA. When users need new certificates, they make requests to the RA, and the RA verifies all necessary identification information before allowing a request to go to the CA.
257
Emphasis: Data Encryption Algorithm (DEA)
Data Encryption Standard (DES) has had a long and rich history within the computer community. The National Institute of Standards and Technology (NIST) researched the need for the protection of sensitive but unclassified data during the 1960s and initiated a cryptography program in the early 1970s. NIST invited vendors to submit data encryption algorithms to be used as a cryptographic standard. IBM had already been developing encryption algorithms to protect financial transactions. In 1974, IBM’s 128-bit algorithm, named Lucifer, was submitted and accepted. The NSA modified this algorithm to use a key size of 64 bits (with 8 bits used for parity, resulting in an effective key length of 56 bits) instead of the original 128 bits, and named it the Data Encryption Algorithm (DEA). Controversy arose about whether the NSA weakened Lucifer on purpose to enable it to decrypt messages not intended for it, but in the end the modified Lucifer became a national cryptographic standard in 1977 and an American National Standards Institute (ANSI) standard in 1978.
258
Bullets: Certificate authority
Component of a PKI that creates and maintains digital certificates throughout their life cycles.
259
Explanation Bullets: Strong cryptographic hash functions has the following characteristics:
* The hash should be computed over the entire message.
* The hash should be a one-way function so messages are not disclosed by their values.
* Given a message and its hash value, computing another message with the same hash value should be impossible.
* The function should be resistant to birthday attacks (explained in the upcoming section “Attacks Against One-Way Hash Functions”).
260
Emphasis: The pad must be used only one time
• The pad must be used only one time. If the pad is used more than one time, this might introduce patterns in the encryption process that will aid the evildoer in his goal of breaking the encryption.
261
Emphasis: Diving into Numbers
Diving into NumbersCryptography is really all about using mathematics to scramble bits into an undecipherable form and then using the same mathematics in reverse to put the bits back into a form that can be understood by computers and people. RSA’s mathematics are based on the difficulty of factoring a large integer into its two prime factors. Put on your nerdy hat with the propeller and let’s look at how this algorithm works.
262
Bullets: Linear cryptanalysis
Cryptanalysis method that uses the study of affine transformation approximation in encryption processes.
263
Explanation Bullets: DES and other symmetric block ciphers have several distinct modes of operation that are used in different situations for different results. You just need to understand five of them:
* Electronic Code Book (ECB)
* Cipher Block Chaining (CBC)
* Cipher Feedback (CFB)
* Output Feedback (OFB)
* Counter Mode (CTR)
264
Emphasis: Digital Signature Standard
Digital Signature StandardBecause digital signatures are so important in proving who sent which messages, the U.S. government decided to establish standards pertaining to their functions and acceptable use. In 1991, NIST proposed a federal standard called the Digital Signature Standard (DSS). It was developed for federal departments and agencies, but most vendors also designed their products to meet these specifications. The federal government requires its departments to use DSA, RSA, or the elliptic curve digital signature algorithm (ECDSA) and SHA. SHA creates a 160-bit message digest output, which is then inputted into one of the three mentioned digital signature algorithms. SHA is used to ensure the integrity of the message, and the other algorithms are used to digitally sign the message. This is an example of how two different algorithms are combined to provide the right combination of security services.
265
Explanations: Chosen-Ciphertext Attacks
In chosen-ciphertext attacks, the attacker can choose the ciphertext to be decrypted and has access to the resulting decrypted plaintext. Again, the goal is to figure out the key. This is a harder attack to carry out compared to the previously mentioned attacks, and the attacker may need to have control of the system that contains the cryptosystem.
266
Explanation Bullets: In this section, we will be walking through many of the following algorithms and their characteristics:
* Data Encryption Standard (DES)
* 3DES (Triple DES)
* Blowfish
* Twofish
* International Data Encryption Algorithm (IDEA)
* RC4, RC5, and RC6
* Advanced Encryption Standard (AES)
* Secure and Fast Encryption Routine (SAFER)
* Serpent
267
Explanations: Output Feedback (OFB) Mode
As you have read, you can use ECB mode for the process of encrypting small amounts of data, such as a key or PIN value. These components will be around 64 bits or more, so ECB mode works as a true block cipher. You can use CBC mode to encrypt larger amounts of data in block sizes of 64 bits. In situations where you need to encrypt a smaller amount of data, you need the cipher to work like a stream cipher and to encrypt individual bits of the blocks, as in CFB. In some cases, you still need to encrypt a small amount of data at a time (one to eight bits), but you need to ensure possible errors do not affect your encryption and decryption processes.
268
Explanation Bullets: We need to be clear on all the available choices within cryptography, because different steps and algorithms provide different types of security services:
* A message can be encrypted, which provides confidentiality.
* A message can be hashed, which provides integrity.
* A message can be digitally signed, which provides authentication, nonrepudiation, and integrity.
* A message can be encrypted and digitally signed, which provides confidentiality, authentication, nonrepudiation, and integrity.
269
Emphasis: known-plaintext attacks
In known-plaintext attacks, the attacker has the plaintext and corresponding ciphertext of one or more messages. Again, the goal is to discover the key used to encrypt the messages so other messages can be deciphered and read.
270
Emphasis: Key Management Principles
Key Management PrinciplesKeys should not be in cleartext outside the cryptography device. As stated previously, many cryptography algorithms are known publicly, which puts more stress on protecting the secrecy of the key. If attackers know how the actual algorithm works, in many cases, all they need to figure out is the key to compromise a system. This is why keys should not be available in cleartext—the key is what brings secrecy to encryption.
271
Bullets: Digital signature standard
U.S. standard that outlines the approved algorithms to be used for digital signatures for government authentication activities.
272
Emphasis: Algebraic attacks
Algebraic attacks analyze the vulnerabilities in the mathematics used within the algorithm and exploit the intrinsic algebraic structure. For instance, attacks on the “textbook” version of the RSA cryptosystem exploit properties of the algorithm, such as the fact that the encryption of a raw “0” message is “0.”
273
Explanations: Internet Security
Is the Internet tied up into a web?Response: Well, kind of.
274
Explanations: The One-Way Hash
Now, how many times does the one-way hash run again?Response: One, brainiac.
275
Bullets: Cryptosystem
Hardware or software implementation of cryptography that contains all the necessary software, protocols, algorithms, and keys
276
Bullets: Symmetric algorithm
Encryption method where the sender and receiver use an instance of the same key for encryption and decryption purposes.
277
Bullets: CBC-MAC
Cipher block chaining message authentication code uses encryption for data integrity and data origin authentication.
278
Explanation Bullets: • The following are examples of asymmetric key algorithms:
* The following are examples of asymmetric key algorithms:
279
Emphasis: Polarization
In quantum cryptography, photon polarization is commonly used to represent bits (1 or 0). Polarization is the orientation of electromagnetic waves, which is what photons are. Photons are the particles that make up light. The electromagnetic waves have an orientation of horizontal or vertical, or left hand or right hand. Think of a photon as a jellybean. As a jellybean flies through the air, it can be vertical (standing up straight), horizontal (lying on its back), left handed (tilted to the left), or right handed (tilted to the right). (This is just to conceptually get your head around the idea of polarization.)
280
Bullets: Payload
The information that is to be concealed and transmitted
281
Bullets: Key mixing
Using a portion (subkey) of a key to limit the exposure of the key. Key schedules are used to generate subkeys from master keys.
