Week 3

Question 1

What is Public Key Encryption?

Answer 1

Two keys - one for encryption (public), one for decryption (private).

Can derive public from private, but not the other way around.

Question 2

Explain m^-1 mod n?

Answer 2

Multiplicative inverse mod n.

Denotes number m’ such that m * m’ = 1 mod n.

m^-1 exists if m and n share no common factors.

Question 3

How does Diffie-Hellman work?

Answer 3

Uses two public parameters: generator g (often 160 bits long) and prime p (often 1024 bits long).

Two random numbers picked and find:

tA = g^rA mod p, tB = g^rB mod p

Exchange these numbers and key = g^rArB = tB^rA = tA^rB mod p

Question 4

What are the benefits and drawbacks of Diffie-Hellman?

Answer 4

Benefit: Cannot work out rA and rB from tA and tB.

          No keys shared at the start.

Drawback: Additional authentication required.

Question 5

What is Elgamal?

Answer 5

Diffie-Hellman as a public key scheme, with fixed g and p.

rA picked as private key, tA = g^rA mod p as public key.

Message encrypted by choosing rB and sending (g^rB mod p, M * tA^rB mod p).

Question 6

What is RSA?

Answer 6

Public key system, which carefully generates e, d and n.

n is the product of two large primes, have (m^e)^d = m mod n for every m.

Public key is (e,n) and private key is (d,n).

Question 7

How does encryption and decryption work in RSA?

Answer 7

Encrypt m: c = m^e mod n

Decrypt c: m = c^d mod n

Security depends on difficulty of finding prime factors of n.

Question 8

How does Public Key Crypto work?

Answer 8

Ekp(KS), {M}ks

Make new symmetric key.
Encrypt that with the public key.
Encrypt message with the symmetric key.

Question 9

Explain signatures?

Answer 9

Using RSA: Epub(Dpriv(M)) = M

Sign message with private key, can be verified with public key.

Question 10

What is a hash?

Answer 10

Short string generated from a message.

Any small change makes hash different.

Question 11

What are hashes used for?

Answer 11

Verification of message download.

Tying parts of a message together.

Signatures.

Protect passwords.

Question 12

What is a Preimage attack?

Answer 12

Find a message with a given hash - very hard.

Question 13

What is a Collision attack?

Answer 13

Finding two messages with the same hash.

Question 14

What is a Prefix Collision attack?

Answer 14

Attacker picks a message prefix?

Question 15

Name an attack on MAC?

Answer 15

Add data without knowing key.

Question 16

How does CCM mode work?

Answer 16

Calculate AES CBC-MAC on the data.

Encrypt the message followed by the MAC using same key and CTR mode.

Question 17

What is the purpose of hashes?

Answer 17

To give reasonable assurance (many-to-one) of quality between two strings.

Question 18

Explain Timestamps in Signatures?

Answer 18

Included to prevent reuse of signature and document.

Question 19

What attack are Public-Key Algorithms susceptible to?

Answer 19

Chosen-Ciphertext attack.

With access to decryption of chosen messages with the private key, deduce the key/algorithm.