















































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A lecture note on computer network security and applied cryptography. It covers topics such as security and cryptography concepts, classical encryption techniques, security objectives, security mechanisms, and classification of encryption algorithms. The document also introduces shared-key and public-key protocols, and computation security. The note is suitable for university students studying computer science, cybersecurity, or network security.
Typology: Lecture notes
1 / 55
This page cannot be seen from the preview
Don't miss anything!
















































Outline
Security objectives (contd)
A lice (^) B ob
Internet
by Caesar with k=
C onfidentiality (^) Encryption
by DES, 3DES, AES, etc
E
Confidentiality : the protection of transmitted data from passive attacks (release of message contents and traffic analysis)
Insecure Channel
The “secret” can be viewed by a 3rd party
The data has not been viewed by a 3rd party
UGETGV
SECRET
Shift 2
secret (^) How? UGETGV
Security objectives (contd)
A lice (^) B ob
Internet
E
The data has not been modified in transit
I ntegrity Crytographic Hash func.
Inputs (e.g., msgs)
One way hash
Fixed-size output
Use HMAC(Hashed message authentication code), such as HMAC-MD5, HMAC-SHA
I ntegrity: the assurance that data received are exactly as sent by an authorized entity (i.e., contain no modification, insertion, deletion, or replay)
Security objectives (contd)
Alice (^) Bob
Internet
E
For any information system to serve its purpose, the information must be available when it is needed
Distributed Denial of Service (DDoS) attacks
Source: http://memeburn.com
A vailability
Security objectives : summary
Alice (^) Bob
Internet
The data can not been viewed by a 3rd party
The data has not been modified in transit
The data must be available when it is needed
C onfidentiality
I ntegrity
A vailability
Authentication
Encryption
Hash func.
Encryption Message Authentication code (MAC)
Hash func.
Non-repudiation
Cryptography
Security objectives (contd)
Alice in South Island
Bob in North island
Internet
E
The claimed sender is the true sender (^) A uthentication Encryption
Message Authentication code (MAC)
Hash func.
A uthentication : the assurance that the communicating entity is the one that it claims to be.
Security objectives (contd)
Security objectives summary
Confidentiality
Integrity
Availability
These objectives have different specific
interpretations in different contexts
CryptologyCryptology
Cryptography Cryptanalysis
Shared-key Cryptography
Public-key Cryptography Protocols^
TCP/IP protocol -> SSL, IPsec, etc RFID authentication protocol
Computationally secure vs. information-theoretically secure
Arizona State University
Cryptography (ciphers only)Cryptology
Cryptography Cryptanalysis
Shared-key Cryptography
Public-key Cryptography Protocols
Source: Prof. Baktier’s lecture at WPI
Classification of encryption algorithmsEncryption algorithms
Private key Public key
Block Stream
Feistel SPN etc random (^) randomPseudo
Later…
e.g., DES, Triple-DES SEED, Blowfish
e.g., AES
Symmetric key Asymmetric key
64 bits, 128 bits, etc
1 bit (or 1 byte)
conventional, secret-key, single key
Encryption Decryption
Plaintext ciphertext Plaintext
Key Key
Encryption Decryption
Plaintext ciphertext Plaintext
Encryption Key Decryption Key