




















Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Lecture notes for a university course on cryptography and cryptanalysis (cs 436/636/736), covering topics such as key goals, nomenclature, key ideas, common cryptographic attacks, simple ciphers, attacking simple ciphers, theoretical math, key-based cryptography, security protocols, and digital signatures.
Typology: Study notes
1 / 28
This page cannot be seen from the preview
Don't miss anything!





















โ
โ
โ
โ
โ
โ
โ
โ
โ
โ
โ (^) All secrecy must lie with the keys โ Secrecy within an algorithm is illusory (always assume your algorithm is public and has been studied, for maximum assurance, otherwise make it public!) โ Algorithms must be strong enough to prevent decryption for the useful lifetime of the secrets, given today's and anticipated future computing technology โ (^) Algorithms must be scalable enough to use as widely as needed for a given application at an acceptable cost for the level of assurance โ Cheaters and dishonesty abound between people and computers and each other, make systems work anyway
โ NP hard, exponential problems with large exponents can't be solved in acceptable time limits for arbitrary inputs โ Quantum computing is fundamentally a different technology than a Turing machine โ Quantum computing makes some NP hard problems solvable easily, including in cryptographic problems (O(1) time) โ (^) Quantum encryption would replace some current methods, if Quantum computing becomes a reality โ (^) The approximate age of the Universe is 10^18 seconds, as one measure of a long period of time
โ
โ
โ
โ
โ
โ
โ
โ
โ
โ Entropy of data in bits, means redundancy exists (you don't need eight bits per letter to encode a poem, or your essay, not even 6 bits per letter probably) โ Frequency of letters in a language (like 'E' in English) โ Frequency of letter pairs in a language (e.g., 'HE' vs 'HY' vs 'EH' vs. 'YH') โ Knowledge in general of what plaintext contains โ (^) Index of coincidence (e.g., find key lengths) โ (^) Correlation by offset/xor (e.g., to find key lengths)
โ One-way function practical irreversibility โ (^) Factorization of large numbers difficult โ Computation of discrete logarithms difficult โ This and other computations that can or cannot be done tractably control whether or not there is sufficient assurance to key encryption algorithms โ (^) Researchers are trying to learn how to stretch what can be computed, some information is irreducible โ (^) Elusiveness of Randomness, pseudo-random sequences โ Some aspects closely related to Turing halting problem, Godel incompletness theorem, axiom vs. provability, etc
โ
โ
โ
โ
โ
โ
โ
โ
โ
โ
โ
Security Protocol Top-Billed Dramatis Personae* (Schneier) โ Alice โ the first party in a protocol โ (^) Bob โ the second partyin a two or more way protocol โ Trent โ The trusted arbiter for arbitrated protocols โ Mallory (female or male?) - hacker/active attacker โ (^) Eve (the person in the middle) โ passive attacker โ Carol โ third party in a three party or more protocol โ Dave โ fourth party in a four way or more protocol