Security Attacks, Services and Mechanisms To ase te su seis af an eraiton effete te maser pune fr 1 securly an charerzton conser sap of orm scciy aces some ys wy of efi the rene fappactesto say ose egies. One apres Security attach — Any scion dt compris te security of information nna by at Security serie ~ serie tha ote the sess of he at passing ems a the Basie Concepts (Cryptogrphy Theat cescine encompaning the prvss and mets of stig Plintet The vga inteligie nesage Cipher text The sores esas ‘eatpeiton ad aban mechsKey Some critical information wed by the cipher, known only tothe senders receiver Encipher (encode) The process of converting plaintext to ciphertext using a cipher and a key Decipher (de ode) the process of converting ciphertext back into plaintext using acipher anda key Cryptanalysis The study of principles and methods of tunsforming an uniteligile message back into an ineligible message withous knowledge ofthe key. Also called code breaking (Cryptology Both eryptography and eryptanalysis ‘Code An algorithm fo transforming an intelligible message into an unintelligible one using a code- book Cryptography Cryptographic ystems are generally classified along 3 independent dimensions: ‘Type of operations used for transforming plain text to cipher text eral principles: substitution, in which each All the encryption algorithms are based on two clement in the plainiext is mapped into another element, and transposition, in whieh elements In de plaintext are rearanged.The number of keys used Ifthe sender and reiver uses same key then it s sad tobe symmetric Key (or) Single Key (or) conventional encryption, We Ie the sends c different keys then its said to be public key encryption, ‘The way in which the pain texts processed AA block cipher process the input and block of elements at atime, pricing output block for ech input block A stream cipher processes the input elements continuously, producing output clement one at atime, asi goes along, Cryptanal The process of attempting o discover Xor K or bath is known as cryptanalysis, The strategy vsed by the exyptanalysis depends on the nature of the encryption scheme and the information available wo the erypiamalyst ‘There sre various types of eryptanalytic attacks based on the amount of information known to the crypranalyst Cipher text on A copy of ciphertext alone is known tothe exyptanalys Known plaintext The cryptanalyst has copy of the cipher text and the corresponding plaintextChosen plaintext ~ The cryptanalysts gains temporary access to the encryption machine, They cannot open it 10 find the key, however; they can enerypt a large amber of suitably chosen plaintexts and try to use the resulting cipher texts to deduce the key Chosen cipher text — The eryptanalyst obtains temporary access to the decryption machine, ‘ses it to deerypt several string of symbols, and tris to use the results to deduce the key STEGANOGRAPHY A plaintext message may be hidden in any one of the two ways. The methods of steganography conceal the existence of the message, whereas the methods of cryptography render the messige unintelligible to outsiders by various transformations of thetext. A simple form of steganography, butone thats time consuming o constructs one in which anarrangementof words or letters within an apparently innocuous text spells out the real message eg. (i) the sequence of firs letters of each word of the overall message spells out the real (Hidden) message, (Gi) Subset of the words of the overall message is used to convey the hidden message.‘Various ater techniques have been used historically, some of them are ‘Character masking selected lester of printed or typewriten text are overwrite in pencil, The ‘marks are oninaily not visible unless the paper is eld to an ange wo bight Hight. Invisible ink ~ numberof substances ean be used for writing but leave no visible ace until heat ‘or some chemical is applied tothe paper. Pin punctures small pin punctures on selected leters are ordinarily not visible unless the paper is held in fron ofthe light. Typewritten eoeretion ribbon ~ used between the lines typed with a black ribbon the ests of typing ith the correction tape are visible only under a strong light. Drawbacks of steganography Regie ot of overeat ide relatively few bits oF information ‘Ones the system is incoverd, it becomes vewally worthless SECURITY SERVICES ‘Thcclasiiaton of seaity services ea Follows Confidentiality: Ensures that the information ina computer system and transmitted information re accessible only tor reading by authorized parties, xg, Printing, displaying and other forms of disclosure,Authentication: Ensues that the erin of «message o leewonie document is comely detitied with an assurance that the deity snot fase, Integrity: Ensures that only sutorized parties are able ty modify computer system eset a unsuited iafoonsaion, Modiicaion includes vetiog- changing tus deleting teting a Selaying replaying of tansmited messes, ‘Non repudiation: Reyes hat etter the sender nor the sever ofa message De abe to deny he Access control: Reqits tht accesso infomation resources may be comtlled by o the target system, Avaiabtit: Rogirs tht comptersyslem asst be avaiable to stthonzed paris when need ‘SECURITY MECHANISMS ‘Oneo the nor specific ecuiy mechani inuse is eryplogaphic techniques. Enerypion ‘or encrypiomike transformations of information ate tae most commen means of providing ly. Some ofthe mechani ae Eneipherment Digital Signature Access CanteatSECURITY ATTACKS. There are four general categories of attack which ae liste below. Interrupt An asset ofthe system is demyed or becomes imaalable or unsabe. Tiss an attack on availabilty ex, destrvction of piece of hardware, cuting ofa commanicaton line or Disabling of file management system. Interception [An unaithoried party guns accesso an asset. This is an ttack om confidential Unauthorized party could be a person, program or a computer... wite tapping wo capture data inthe a Sender RecciverEnmescpper ot frp Modification ‘A wah party a only gine cent bul pes witha. Tica ata on iene charging vloes in data ile aerng a progr wong the corte of imesages tring smite ina networks se O—y 4 ee Esvsdhoppr oforger Fabrication An nastorz par inserts counts objects nto the stem. This sa atck om athe goin of spusous messag in. atwork edn of recurs ie Q Eaveshoppr rhageCryptographic Attacks Passive Attacks Pani tacks tein th ate evening ceo orig of tansison. The zl ihe oppmet mck of 0 ype Release of message contents A telene cman il saad tons file gy comin eo cea cto, We cd HR ve te oGpE ro lean the cme of these mrss aficanalys ve had onerpten rtcon ie pon pons mia sl Rea oobne the pater of the mewige, The oppenea cold detemine de heaton and Wy of communication ht andcold obser he fateney and gt ef megs berg eck Paniveatacks ae very iu wo tet became hey do ot invoe any alison of a Hower asl reset he ces ew aacMeee -Cae ay cece ts ely sie et a a ape sam i at ‘antl seal ot oni nc ie eer seinen wt eng ane rem Iie dtc ere ae aaa abet, No oa ie sl srr tomar ha wees ten Symmetry ets ete mh ws mo pe Symciley rates eee ep pn nnn hr es Ts tn Hate dyn ayy end en ty cn cept dpa ee tne Tame ey oes pe hey ek te MH copesae aa na A mesa sw be true fom ene pty Want across some ot af mere, The 100 ri, he ipl i hi ramon, nt cooper forthe exchange woke pie. A ogc iafration chanel is established by dining a ote dona einer fr see 1 a ‘Using this model requires so: = sign enti slgrli fr the ecw eee pact the srt infra = dest ath dsb nl shar te senor hey sey thal asec senice[MODEL FOR NETWORK ACCESS SECURITY | “4 =. | ery = imple scot 1+ Tred computer tem can he we phe his dtCONVENTIONAL ENCRYPTION ‘Ania ey pit aw te uty pp ein ply 1 Preece “tr tert tec age hme anton eset etary pes 1 Ritts set + meas fan pcre = prone ite in eg opie eel bags 7 7 e-{s]-=(a)— he mera lo ite ceed es akehe yk abe Indeed of ae. Che he ey ogee opto ihe fou san ean bck oe egal pal yap get a snc triad rent Te sry dept ener ai Fy tain te nel eae El Up A eae he Stein De Ue ype oF be SY Ee Bye a EY = Asem expe setae = Aveo ey aor ny sender xeon + Asam caypin ith hn + Imp sce chad debt Aver aces meng pen X= [852.204] whee Batethenembr of ee ‘aio esge ey of oe K= (KL KD. Sti he ey i gece the th th mesg at enya Km nh te yt grt rte tei Y 171.12, 9 Pascoe ee ‘Aeopona being at et ain at Kf, my tang wiser X or oth Wis md topo ae erp an dpi geyi pln ash pn iil ng eo CLASSICAL ENCRYPTION TECHSIQUES SUBSTITUTION TECHNIQUES pg pan pe er pe aa her her ‘ea eer in pr de ln hy in Co Th easel tessa te ing Spam fe cate bite: my mo ony Ne setcaabahgpsirendsotleniiey 2h" engines iu pnts cere ete{shift my be any sown so that gemral Caer agin Pasir Thehet town mali ker ene cper she far, nich tram ir inept 1 ie oie and mine hn ti it tet dpa ‘The plficlgsih ic ted on he ef 55 main of ts sonst ing eyo Lat thr heyworse anoocy’ Te met is onset by lie inh tes ofthe ewer ios pst et gx an am op tex nen ling he ree of ear ‘heer and cous see te hint i encrypt tesa Repeat sie ees th Wald fl in te save pu septs with ile ee sbhs Pinot ts te alla saw of ee ne ach coped ty eer oe sg 4 col filling te last cel pied yh ther linet ete7 Selig ta 2 = oe tm Ew ls x Concentra = CL KLCLRSPDIL HY AV APHEX Strength of plate eper Payfucpher ie agra aac nr inp emo HO pes, poh, Palate ower ay wens om he ole emo he ow ec ‘onsale tins comarca rash the pin eng The gel ane fo ‘hs och lye he eigenen ton Ave of rated moult attested Ate rene wi parc remeronVigenere cipher In this scheme, the set of related monoalphabetic substitution rules consisting of 26 caesar ciphess with shifts of O through 25, Each cipher is denoted by a key leter. e.g., Gaesar cipher with a shift of 3 is, denoted by the key value "(since known as vigenere tableau is Constructed 1, ¢=2 and so on), To aid in understanding the schem matrix Each of the 26 ciphers is laid out horizontally, with the key letter for each cipher to its [eft A normal alphabet for the plaintext runs across the top. The process of PLAINTEXT hPPERPPE DP K RPP ABC DEF oR ik YZKEE r¥EE E z I aaaaG ree} F fF k pepe EM x is DE i ¥ i F _Enerypin is sip: Given a hey tor X and linet eth pore at th Instn ofthe yea xl cla ibe yin thc, he ein. To onerype a message, kay ie med a along ae sags Ul te by 8 epating hey ce. key vevourselfCT =ZICVIWONGRZGVTWAVZIICOYGLMG ‘Decryption i equaly spe Te hey ter sin ees he wow. he posi fe sipber tx ern that ow dri he slum, ad the lien eter a the to of hat eceptivedeceptivedeceptivert =wearediscoveredsa‘Susur ter Thee a uli cipe et ener fr paimeateer © Leter ee Iafrmatin Isobe ‘One Time Pad Cipher Iissnuntwshble cgpiogstenHhepesenshemesage as seqpence of sn 1s this «abe oxo by iting all anes in Bina Fr example, ory ang ASCH Thee i anon sauce 2a "sesame length a te sage, ace hey ied ecard =P cma aor eotarer pny ae ot Diainesc Kt tnay dii of hey Ese OR operation ‘Ts tho cpr et genre by pofoming be ive NOR ofthe pie a he hy. cryin ues he se key. Heese ofthe ro A KOR, derH08 SN veeprorapr Advantase: Ercole ncomplee ure for aipheeat oy tack Dioramas rou ry ng ey whichis expensive to pode and epee w smi ‘neo shay Is wad dangerous Fee For «sso msg: ay knowles onthe nt mone nal ge bnowltgefthesecmnd. ‘TRANSPOSITION TECHNIQUES [each cami so frst vasion oie Wt yo fr pnt sym very fie ind of apie i shleved by pvooniag some sn of Demin oe pin eter. This tess refers sa ransposnnciner Ra fence ‘ssl of ch cigs, in wich te plates ewe down ata snaeeeo dingo ned ‘hen eff as ase of om ‘Toco this mew with i oct of Soph we tthe mess 4 fll‘To encipher this message with a rail fence of depth 2, we write the message as follows: meatecolos etthshohue The encrypted message is MEATECOLOSETTHSHOHUE Row Transposition Ciphers- A more complex scheme is to write the message in a rectangle, row by row, and read the message off, column by column, but permute the order of the columns. The order of columns then becomes the key of the algorithmA more complee ene sso rte the mews a ectngle 0 by row, and read the menage ‘lca by column ut pemut he eer the comin. The order of couas thes Besos te bey ofthe slot, oe Plantes = mst atthe shoo Rowse get gy 12 5 67 hoe fs eho 1 he use (CT =ESOTCUGENMINLARSTOETO ‘he crgial pie, Ts trnpncphe cn a mn igure aie yp, more than one stage of anposon, The elt moe complex pertain that st xily reconsrtd‘Existel cipher structure “The ipt oh norton aloe linet lk olen 2 is ay K, ‘he psn sks divine wove Lan RO. The wo anes ofthe ata pan th ound of processing th combine ode the gate ck Ea onda inputs [Unt and Re, dived fam he pres ud x wll a th sey Ki, dive fom he neal ay K in gone. the shops Ki ae dire from Kan om eachother allude have same sacar Asubtitons perms lethal fhe daa iar ‘wS-DES). This dost aplyeg.a mn into Fo hl afte ds he king the NOR of usp of ht etn and te othe dt THe ou arto she sae sete seat for ach tou Bis practic by the eon sb hey ki Flowing this sn pion performs thc of he Imrcangs cf te two Haves he da. This sree i pacar form ofthe subsp network, The cst ‘Blok ste Irceasing sia gree Ba ls ip sip aero eomds- cing mnie inroveseoy bt save ir ‘ube generation - Grete complexity can rake anal hark, but slows ip Round funtion - Greater copexity wn oe anlar bows itFat starter tol te rou ea amet a ig: Che Fie NeveTere ern esis teen een een Seta he nl en ed Frye in ia ctveg tate ga Tene Ssrepming inet ewmin ges i ne ee EL aie OOH LDIAir the last iteration of the encryption process, the two halves of the output are ‘swapped, so that the ciphertext REL6 | LEV6, The output of that round isthe cipher text Nove take the cipher text and use it as input to the same is REIS crithms, The input o the First sound || LE16, which is equal tothe 32-bit swap ofthe eutpal of the sixteenth round of the cncryption process. [Now we will see how the outa of the Fest round ofthe decryption proces is qual 1 32-bit swap of the inp to the sixteenth round of the encryption process. First consider the encryption proces, LEI6 = REIS REI6=LEIS © F(REIS, K16)On the decryption side, LD] =RD0= LEI6 =RELS RDI=LD0 F(RDO.KI6) ® REIG F(REIS, Kis) ® ILEISF(REIS,KI6)) F(REIS.KI6) ° LEIS Trerefoe, DI =REISRDI =LE!S Ingen. forthe ietiom of th esryation leith LE = REAIRE=LELI FIRE: Kit Fialy he opr ofthe astound o the esryption process REO J LED, A 32-tswap| rece te eigieal pane. BLOCK CIPHER PRINCIPLES \Viraly all symmetric bloc enerypion gorithms in eon ms ae Bas on structure refered wo as Fests lok cg, Forth reason, it is np exe the ‘design pice ofthe Fest cipher. We hein wth compara of exm cipher with lock cipher. Astream eipher is oa tat sry gal dts steam on iter one byte aa tine ‘ignore cpher. A block ciphers one in which sk of pints sted aa whole and wad produce iper tex bos xual gh. Tyla Hock ie ot 6 128 bits wet ‘Block cipher principles nox symmetric ck sphere ona Feel Cipher Structure ns inser be fe wo deerypt cipher uo recover mesg een). Plo cher 10k Ke at ‘rely age seston + would aed abe of 264 ens fora ic back + Instead ste from sme bling blocksusing ides oa product cipher in 1949 Clade Shanon ined idea of substi ton ermstaton ($"P) nesorks cll modern sabstistion transposon produc cipiet ‘hse form the si of redem block ciphers '-P networks are based on the evo primitive cryploraphic operations we have sentefere: + substintion ($08) + permurion (P0) + provide cunfsion and difsion of message fusion ~disipates statistical rte of plaintext over bulk of cinhertext + confusion ~ makes ratonship between ciphertext and key as complex as posible Block Ciphers in block cipher the message is broken ito blocks, each of whic then eneryped (like 2 substiution on very big characters -64-its oF move) ot modern ciphers we wil tc aco this form peb-$Shannons Theory of Secrecy Spstems © Cae Stannon wrote some ofthe iva papers om modern yp shear in 194: In these he develope the concept of 7 cnopy ofamessaze redundancy in alanguag, thoores about how much nfrmaon snes wo ea cipher : etna ie concepts of computationally secure vs nsondnaly secure ciphers © bre showed thu ihe Veram cipher ith only curently own uncoitonally secute eps, provided the hey sly anon © aso showed that i uy to enerype English text by adding wo other English txt (e 3 Book cipher) this is ot secure sine Enos s SE redundant giving eiperest with 6% redundancy, enough Wo break (© asimtar etnigue can aso be wo ifthe sme random key steam is wed ties 08 ‘ferent wessiges, he rsa im the mesages a safcen to beak this © sxdicuned cartier, exhaustive hey search isthe most endamentl alae, is lett proportional othe ie ofthe key © catbulate these fr reasonsble sumptions shou the nares of operations posible (8 pall esKeySiae (bs) Tene totes) Tine (latex) x tae saver oo “sin00 y. Ors (© ate sina inion te shown fom eeysonntion onde he the uninu er fone cement opescone gems ab 421095) © Svat on tow mar assy 10s ee norton be ts pus nba of tu strabe ws lune ce he tn DNS) © alters rent cracks sar this 2 oestll posible Er heys ia Lucier takes about 3 10°18) ernst 10°C yeas Sulit Permutation Cipher (© an SPaetwacs the mse fm fon anon pra cipher (© Serer a ben the wo rive rei operations We Rane ee tele © abu werd ierpied by meri word ‘owl stn fon ome te ky © een ot the ey 2a roe lyRg 2 etn Option can also think of this as a large lookup table, with n address lines (hence 24(n) addresses), each n bits wide being the output value will call them S-boxes Permutation Operation a binary word has its bits reordered (permuted)the monlering forms the hey if mit won, te ey ati, which grows moe oly, tnd hence fs ss secure than substation this scquivlen tire erosing in practise Who s much ade to do insane) wil eal ose P-banes Swbtitton- Permutation Network ‘Spannon combines these twa primitives I calle thse miving transformations ‘Sanons mining wastes ae a spel Foon of fodut phe whete Boxes oxide confusion of inp bis P.Boxs provide diffusionDATA ENCRYPTION STANDARD (DI In May 1973, and again in Aug 1974 the NBS (now NIST) called for possible encryption algorithms for use in unclassified government applications response was mostly disappointing, however IBM submitted their Lucifer design following a period of rede ‘and comment it became the Data Encryption Standard (DES) one of the largest users of the DES is the banking industry, particularly with EFT, and EFTPOS it is for this use that the DES has primarily been standardized, with ANSI having t recontirmed its recommended use for 5 year periods - a further extension is not expected however although the standard is public, the design criteria used are classified and have yet to be released there has been considerable controversy over the design, particularly in the choice of a 56-bit key‘Overview othe DES Pry pion Asotin {he sc prces in eigen» Gt data Mack using the DE consis cr) 16 oun o s sommplen key dependent caution Sina permutatlon ein the inverse ofin more detail the 16 rounds of f consist of: Gao Ca this can be described functionally asL@=RE-1 RG) =L(H1) (+) PS ERG yO KO) and forms one round in an $-P network the subkeys used by the 16 rounds are formed by the key schedule which consists of: an initial permutation ofthe key (PC1) which selects S6-bits in two 28-bit halves 16 stages consisting of selecting 24-bits from each half and permuting them by PC2 for use in function f, rotating each half either 1 or 2 places depending on the key rotation schedule KS PCAKS(PCI(K).i)) this can be described functionally as: K(i) the key rotation schedule KS is specitied as Round 1 2.3 4 5 6 7 8 9 101112131415 16 KS 112 D221 22 9222 of TowlRot 1 24 6 8 10121415 719 21 23 25 27 28DES Modes of Use DES enerypt bit blocks of at, using ¢ 36-bit key swe noe some way of seething how 1 use an arbitrary amowst of iormation fo exept In practise, given tha we wsuly have the way we une blk ciphers called its Made of Use nd far have been define forthe DES by ANSI in the standard: ANSI XS.106 1983 Medes of Us) rest iter Block Modes Splits messages in locks (ECB, CBC) lectronie Codebook Book (ECB) ‘Whore the message broken int independent sbi hooks which are encrypted C_()= DES (KI) (Pi) Cipher Block Chaining (CRE) Again the message is broken into Gti lock, bot they ate inked together in the ‘nerypion operation with an IV € ()=DES (1) (P (NHC (it) D=IV Stream Modes ‘On bit steam messages (CFB, OFB)Gir Feamacs Cth Pies DES ke ene Chet pu easback (OF ‘Sack eg inden ote mscage CE Pains. 0.1) = DES IRTHO.LHI)O.CD=V Paste Tengu lnproving DES © ripe esipnng wn DES cna te Key guns cbon egle ES vari eck nue wih ny DES hoes (C= DES RI) BRE DESC) OBES. LAP) > men pec ats inten acs ed 256) PC ps pare‘TRODUCTION Computer data often travels from one computer to another, leaving the safety ofits protected physical surroundings. Once the data is out of hand, people with bad intention could modify or forge ‘your data, either for amusement or for their own benefit, Cryptography can reformat and transform our data, making it safer on its trip between computers. The technology is based on the essentials of secret codes, augmented by modem ‘mathematics that protects our data in powerful ways. ‘Computer Security generic name for the collection of tools designed to protect data and to thwart hackers Network Security - measures to protect data during their tr smission Internet Security - measures to protect data during their transmission over a collection of interconnected networks