Cryptography Flashcards
Cryptography
The primary objective is to provide many fundamental security properties we covered earlier: confidentiality, integrity, non-repudiation, and authentication.
Confidentiality in Cryptography
The fundamental security service provided by cryptography. It helps keep information from an unauthorised person, often referred to as privacy or secrecy. One way of achieving confidentiality is by using mathematical algorithms for data encryption.
Integrity
The data may get modified by an unauthorised entity intentionally or accidentally. Provides a means for detecting whether data has been manipulated by an unauthorised user.
Authentication
Confirms to the receiver that the data has been sent only by an identified and verified sender.
Two variants; message and entity authentication.
What is message authentication?
Identifies the originator of the message without any regard to the system that has sent the message
What is entity authentication?
Assurance that data has been received from a specific entity, say a particular website.
Protecting Passwords
Very important to prevent unauthorised access. Common technique is hashing.
Hashing is the transformation of string or characters into a value that represents the original string; hashing the same string outputs the same hash value.
Hashing vs Encryption
Hashing and encryption are two terms that are often confused or used incorrectly. The key difference is that hashing is a one way function (it is not possible to decrypt and obtain original value), where encryption is a two way function.
Encryption should only be used where it is necessary to obtain the original password as the ability to decrypt is a serious security risk.
Salting a Password
Protect against hackers cracking a password hash by using a salt - randomly generated string that is added to each password. Unique for every user so an attacker has to crack hashes one at a time using the salt.
Makes cracking large amounts of data harder as time grows in proportion to number of hashes.
