Lec 3: Basic Cryptography I Flashcards by Lea Lacson

What is cryptography?

Greek for “secret writing”

How well did you know this?

Not at all

Perfectly

What do you do with Cryptography?

Confidentiality - obscure a message from eavesdroppers
Integrity - assure recipient that a message was not altered
Authentication - verify that a message was sent by a certain identity
Non-repudiation - convince a 3rd party that what was said is accurate

How well did you know this?

Not at all

Perfectly

What is a cryptographer?

invents cryptosystems

How well did you know this?

Not at all

Perfectly

What is a cryptanalyst?

breaks cryptosystems

How well did you know this?

Not at all

Perfectly

What is cryptology?

the study of crypto systems

How well did you know this?

Not at all

Perfectly

What is a cipher?

mechanical way of encrypting text

How well did you know this?

Not at all

Perfectly

What is code?

semantic translation - e.g. “eat breakfast tomorrow” = “attack on Thursday”

How well did you know this?

Not at all

Perfectly

What do we mean when we say a cryptosystem is “secure”?

1- if enemy intercepts ciphertext, cannot recover plaintext

How well did you know this?

Not at all

Perfectly

What is the issue in making cryptosystem’s secure precise?

1, What else might your enemy know?

-The kind of encryption function you are using?

— Kerckhoffs’ principle: assume everything except key is public knowledge

Some plaintext-ciphertext pairs from last year?
Ciphertext for plaintext the enemy selected?
Some information about how you choose keys?
2. What do we mean by “cannot recover plaintext” ?
Ciphertext contains no information about plaintext, or
No efficient computation could make a reasonable guess

How well did you know this?

Not at all

Perfectly

What are the kinds of cryptographic analysis?

How well did you know this?

Not at all

Perfectly

What is the caesar cipher? What are the advantages and disadvantages?

How well did you know this?

Not at all

Perfectly

What is a monoalphabetic ciphers?

How well did you know this?

Not at all

Perfectly

What is the cryptanalysis of monoalphabetic ciphers?

How well did you know this?

Not at all

Perfectly

What is the order of frequency of single letters in English (the first 5)?

How well did you know this?

Not at all

Perfectly

How to break monoalphabetic ciphers?

How well did you know this?

Not at all

Perfectly

What are the most used digrams and trigrams?

How well did you know this?

Not at all

Perfectly

What is the problem with monoalphabetic ciphers?

How well did you know this?

Not at all

Perfectly

How does polyalphabetic substitutions?

How well did you know this?

Not at all

Perfectly

What is the Vigenère Tableau?

Multiple substitutions
- Can choose “complimentary” ciphers so that the frequency distribution flattens out
- More generally: more substitutions means flatter distribution
Vigenère Tableau
- Invented by Blaise de Vigenère for the court of Henry III of France (c. 1500’s)
- Collection of 26 permutations
- Usually thought of as a 26 x 26 grid
- Key is a word

How well did you know this?

Not at all

Perfectly

What is the weakness of polyalphabetic substituion ciphers?

How well did you know this?

Not at all

Perfectly

What is that Kasiski method?

How well did you know this?

Not at all

Perfectly

What is variance?

How well did you know this?

Not at all

Perfectly

How do you estimate variance from frequency?

How well did you know this?

Not at all

Perfectly

What is the index of coincidence?

How well did you know this?

Not at all

Perfectly

What is index of coincidence used for?

How was polyalphabetics cracked circa 1900?

What is Enigma?

What are perfect substitution ciphers?

What are one-time pads?

What are the problems with perfect substitution?

What are perfect ciphers like in practice?

What assumption do we make about attackers on ciphers?

What are key crypto-primitives?

Encryption, one-way hash functions, digital signatures

What determines who knows what keys?

shared key vs public key

What is the granularity of operation?

block ciphers vs stream ciphers

What terms in the cryptosystem describe the difficulty of breaking?

empirical hardness vs computational complexity

How does shared key cryptography work?

1. sender & receiver use the same key 2. key must remain private (i.e. secret) 3. also called symmetric or secret key cryptography 4. Examples: DES, AES ...

Shared key notation

Show secure channel in shared key notation

Stream ciphers vs block ciphers

What are the design goals of the typical stream cipher: RC4?

Where has the typical stream cipher RC4 been used?

How does the RC4 algorithm work?

How random is "random" bitstream?

Goal: given part of the output stream, would like it to be impossible to distinguish from a random string? What does random mean here? - pseudorandom can still derive some of the output stream

What is the history and problems of RC4 security? How do we handle them?

How do block ciphers work?

What are Feistel networks?

How do Feistel networks work?

● What if plaintext \< blocksize? - Padding ● What if plaintext \> blocksize? - Need to encrypt multiple blocks - But how? Block cipher modes

What are the different block cipher modes?

How does the Electronic Code Book (ECB) work?

How does the Cipher Block Chaining (CBC) work?

What is the value of CBC?

What was the issue with the Deibold voting machine?

● Initialization vector (IV) in CBC is supposed to be chosen randomly ● Code from Deibold voting machine DesCBCEncrypt((des\_c\_block\*)tmp, des\_c\_block\*)record.m\_Data, totalSize, DESKEY, NULL, DES\_ENCRYPT) ● Consequence? could make it do anything

What are the general problems with Shared Key Crypto?