Message Integrity Protocols - Advanced Computer Networks - Lecture Slides, Slides of Computer Networks

The main points are: Message Integrity Protocols, Digital Signature, Decrypts Signature, Authentication, Session Key Communication, Key Distribution Center, Kerberos, Man-In-The-Middle Attack, Diffie-Hellman, Certification Authority

Typology: Slides

2012/2013

Uploaded on 04/17/2013

pampaaaa
pampaaaa 🇮🇳

5

(1)

47 documents

1 / 30

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
1
Lecture No. 41
Docsity.com
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e

Partial preview of the text

Download Message Integrity Protocols - Advanced Computer Networks - Lecture Slides and more Slides Computer Networks in PDF only on Docsity!

1

Lecture No. 41

2

Message Integrity Protocols

  • Digital signature using RSA
    • Special case of a message integrity where the code can only have been generated by one participant
    • Compute signature with private key and verify with public key

4

Message Integrity Protocols

  • MD5 with RSA signature
    • Sender: m + E(MD5( m ), private )
    • Receiver
      • Decrypts signature with sender’s public key
      • Compares result with MD5 checksum sent with message

5

Authentication

7

Session Key Communication

8

Key

Distribution

Center

10

Man-in-the-Middle Attack

in Diffie-Hellman

11

Key Distribution

  • Certificate
    • Special type of digitally signed document: “I certify that the public key in this document belongs to the entity named in this document, signed X.”
    • The name of the entity being certified
    • The public key of the entity
    • The name of the certification authority
    • A digital signature

13

Tree-structured CA Hierarchy

14

Key Distribution (cont)

  • Chain of Trust
    • If X certifies that a certain public key belongs to Y , and Y certifies that another public key belongs to Z , then there exists a chain of certificates from X to Z
    • Someone that wants to verify Z ’s public key has to know X ’s public key and follow the chain
  • Certificate Revocation List

16

PGP Message Encryption

Decrypt message using DES with secret key k

Decrypt E( k ) using RSA with my private key k

Convert ASCII message

Encrypt k using RSA with recipient s public key

Encode message + E( k ) in ASCII for transmission

Encrypt message using DES with secret key k

Original message

Transmitted message

Create a random secret key k

17

Example (PGP)

19

Secure Transport Layer

Application (e.g. HTTP) Secure transport layer TCP IP Subnet

20

TLS Handshake Protocol

Client Server