IT5703 Cryptography

and Network Security

Dr.G.Geetha M.E.,Ph.D
Women scientist
Qualified Patent Agent, IP Consultant
Deputy Director -Centre for Intellectual Property Rights
Associate Professor,
Department of Information Science and Technology,
College of Engineering, Guindy,
Anna University, CEG Campus, Chennai
UNIT I : INTRODUCTION TO SECURITY AND
NUMBER THEORY
Basics of Security – CIA Triad – Threats, Attacks and Services –
Classical Cryptography –Substitution – Transposition – One-time
Pad – Cryptanalysis – Number Theory – Modular Arithmetic –
Euclidean Theorem – Extended Euclidean Theorem – Algebraic
Structures –Galois Field – Prime Numbers – Fermat’s Theorem –
Euler’s Phi function – Euler's Theorem– Chinese Remainder theorem
– Modular Exponentiation –Logarithms – Elliptic Curve Arithmetic.
UNIT II: SYMMETRIC CRYPTOGRAPHY

Modern Cryptography – Symmetric Cipher – Block and Stream

Cipher – Feistel Ciphers –Data Encryption Standard (DES) – DES
Structure – Key Generation – Simplified DES –Linear and
Differential cryptanalysis –Triple DES – Advanced Encryption
Standard (AES) – Basic Structure – Transformations – Key
Expansions Process – Analysis of AES – Modes of operation –
RC4
UNIT III: ASYMMETRIC KEY
CRYPTOGRAPHY
Public Key Cryptosystems – RSA Algorithm – ElGamal
Cryptosystems – Diffie-Hellman key exchange – Elliptic curve
cryptography – Hash functions – Hash algorithms – Secure Hash
Algorithm SHA – MD5 – Message Authentication Codes –
Quantum Cryptography –Quantum Key Distribution – Threshold
Cryptography
UNIT IV: SECURITY APPLICATIONS

Digital Signatures Schemes– Digital Certificate – Key

Management – Kerberos – Key Agreement and Distribution – PKI
– X.509 Certificate – E-Mail Security – PGP – S/MIME –IP
security – Virtual Private Network (VPN) – Web Security –
Secure Socket Layer (SSL) –Transport Layer Security – Secure
Electronic Transaction (SET) – Blockchain
UNIT V: FIREWALL & WIRELESS SECURITY

Buffer Overflow and Malicious Software – Password

Management – Introduction to Firewall – Firewall Generations –
Intrusion Detection System – Types of IDS – Intrusion Prevention
System – Wireless LAN – Wireless LAN Security – Network
Access Control and Cloud Security.
UNIT IV: SECURITY APPLICATIONS

Digital Signatures Schemes– Digital Certificate – Key

Management – Kerberos – Key Agreement and Distribution – PKI
– X.509 Certificate – E-Mail Security – PGP – S/MIME –IP
security – Virtual Private Network (VPN) – Web Security –
Secure Socket Layer (SSL) –Transport Layer Security – Secure
Electronic Transaction (SET) – Blockchain
Digital Signatures Schemes
Key Management
Key Agreement and Distribution
PKI – X.509 Certificate
Email Security
email is one of the most widely used and regarded network
services
currently message contents are not secure
may be inspected either in transit
or by suitably privileged users on destination system
Email Security Enhancements
confidentiality
protection from disclosure
authentication
of sender of message
message integrity
protection from modification
non-repudiation of origin
protection from denial by sender
Pretty Good Privacy (PGP)
widely used de facto secure email
developed by Phil Zimmermann
selected best available crypto algs to use
integrated into a single program
on Unix, PC, Macintosh and other systems
originally free, now also have commercial versions available
PGP Operation – Authentication
1. sender creates message
2. make SHA-1160-bit hash of message
3. attached RSA signed hash to message
4. receiver decrypts & recovers hash code
5. receiver verifies received message hash
PGP Operation – Confidentiality
1. sender forms 128-bit random session key
2. encrypts message with session key
3. attaches session key encrypted with RSA
4. receiver decrypts & recovers session key
5. session key is used to decrypt message
PGP Operation – Confidentiality & Authentication
can use both services on same message
create signature & attach to message
encrypt both message & signature
attach RSA/ElGamal encrypted session key
PGP Operation – Compression
by default PGP compresses message after signing but before
encrypting
so can store uncompressed message & signature for later verification
& because compression is non deterministic
uses ZIP compression algorithm
PGP Operation – Email Compatibility
when using PGP will have binary data to send (encrypted
message etc)
however email was designed only for text
hence PGP must encode raw binary data into printable ASCII
characters
uses radix-64 algorithm
maps 3 bytes to 4 printable chars
also appends a CRC
PGP also segments messages if too big
PGP Operation – Summary
PGP Session Keys
need a session key for each message
of varying sizes: 56-bit DES, 128-bit CAST or IDEA, 168-bit Triple-DES
generated using ANSI X12.17 mode
uses random inputs taken from previous uses and from
keystroke timing of user
PGP Public & Private Keys
since many public/private keys may be in use, need to identify
which is actually used to encrypt session key in a message
could send full public-key with every message
but this is inefficient
rather use a key identifier based on key
is least significant 64-bits of the key
will very likely be unique
also use key ID in signatures
PGP Message Format
PGP Key Rings
each PGP user has a pair of keyrings:
public-key ring contains all the public-keys of other PGP users known
to this user, indexed by key ID
private-key ring contains the public/private key pair(s) for this user,
indexed by key ID & encrypted keyed from a hashed passphrase
security of private keys thus depends on the pass-phrase
security
PGP Key Rings
PGP Message Generation
PGP Message Reception
PGP Key Management
rather than relying on certificate authorities
in PGP every user is own CA
can sign keys for users they know directly
forms a “web of trust”
trust keys have signed
can trust keys others have signed if have a chain of signatures to them
key ring includes trust indicators
users can also revoke their keys
PGP Trust Model Example
Summary
have considered:
secure email
PGP
Chapter 19 – IP Security

If a secret piece of news is divulged by a spy

before the time is ripe, he must be put to death,
together with the man to whom the secret was
told.
—The Art of War, Sun Tzu
IP Security
• have a range of application specific security mechanisms
• eg. S/MIME, PGP, Kerberos, SSL/HTTPS
• however there are security concerns that cut across protocol
layers
• would like security implemented by the network for all
applications
IP Security
• general IP Security mechanisms
• provides
• authentication
• confidentiality
• key management
• applicable to use over LANs, across public &
private WANs, & for the Internet
• need identified in 1994 report
• need authentication, encryption in IPv4 & IPv6
IP Security Uses
Benefits of IPSec
in a firewall/router provides strong security to all traffic crossing
the perimeter
in a firewall/router is resistant to bypass
is below transport layer, hence transparent to applications
can be transparent to end users
can provide security for individual users
secures routing architecture
 IP Security Architecture
• specification is quite complex, with groups:
• Architecture
• RFC4301 Security Architecture for Internet Protocol
• Authentication Header (AH)
• RFC4302 IP Authentication Header
• Encapsulating Security Payload (ESP)
• RFC4303 IP Encapsulating Security Payload (ESP)
• Internet Key Exchange (IKE)
• RFC4306 Internet Key Exchange (IKEv2) Protocol
• Cryptographic algorithms
• Other
IPSec Services
• Access control
• Connectionless integrity
• Data origin authentication
• Rejection of replayed packets
• a form of partial sequence integrity
• Confidentiality (encryption)
• Limited traffic flow confidentiality
Transport and Tunnel Modes
• Transport Mode
• to encrypt & optionally authenticate IP data
• can do traffic analysis but is efficient
• good for ESP host to host traffic
• Tunnel Mode
• encrypts entire IP packet
• add new header for next hop
• no routers on way can examine inner IP header
• good for VPNs, gateway to gateway security
Transport
and
Tunnel
Modes
Transport
and
Tunnel
Mode
Protocols
Security Associations
• a one-way relationship between sender & receiver that affords
security for traffic flow
• defined by 3 parameters:
• Security Parameters Index (SPI)
• IP Destination Address
• Security Protocol Identifier
• has a number of other parameters
• seq no, AH & EH info, lifetime etc
• have a database of Security Associations
Security Policy Database
relates IP traffic to specific SAs
match subset of IP traffic to relevant SA
use selectors to filter outgoing traffic to map
based on: local & remote IP addresses, next layer
protocol, name, local & remote ports
Encapsulating Security Payload (ESP)
• provides message content confidentiality, data origin
authentication, connectionless integrity, an anti-replay service,
limited traffic flow confidentiality
• services depend on options selected when establish Security
Association (SA), net location
• can use a variety of encryption & authentication algorithms
Encapsulating Security Payload
Encryption & Authentication
Algorithms & Padding
• ESP can encrypt payload data, padding, pad
length, and next header fields
• if needed have IV at start of payload data
• ESP can have optional ICV for integrity
• is computed after encryption is performed
• ESP uses padding
• to expand plaintext to required length
• to align pad length and next header fields
• to provide partial traffic flow confidentiality
Anti-Replay Service
• replay is when attacker resends a copy of an
authenticated packet
• use sequence number to thwart this attack
• sender initializes sequence number to 0 when a
new SA is established
• increment for each packet
• must not exceed limit of 232 – 1
• receiver then accepts packets with seq no within
window of (N –W+1)
Combining Security Associations
• SA’s can implement either AH or ESP
• to implement both need to combine SA’s
• form a security association bundle
• may terminate at different or same endpoints
• combined by
• transport adjacency
• iterated tunneling
• combining authentication & encryption
• ESP with authentication, bundled inner ESP & outer
AH, bundled inner transport & outer ESP
Combining Security Associations
IPSec Key Management
• handles key generation & distribution
• typically need 2 pairs of keys
• 2 per direction for AH & ESP
• manual key management
• sysadmin manually configures every system
• automated key management
• automated system for on demand creation of keys for SA’s in large
systems
• has Oakley & ISAKMP elements
Oakley
• a key exchange protocol
• based on Diffie-Hellman key exchange
• adds features to address weaknesses
• no info on parties, man-in-middle attack, cost
• so adds cookies, groups (global params), nonces, DH key exchange
with authentication
• can use arithmetic in prime fields or elliptic curve fields
ISAKMP
• Internet Security Association and Key Management
Protocol
• provides framework for key management
• defines procedures and packet formats to
establish, negotiate, modify, & delete SAs
• independent of key exchange protocol, encryption
alg, & authentication method
• IKEv2 no longer uses Oakley & ISAKMP terms, but
basic functionality is same
IKEV2 Exchanges
ISAKMP
IKE Payloads & Exchanges
have a number of ISAKMP payload types:
Security Association, Key Exchange, Identification, Certificate,
Certificate Request, Authentication, Nonce, Notify, Delete, Vendor ID,
Traffic Selector, Encrypted, Configuration, Extensible Authentication
Protocol
payload has complex hierarchical structure
may contain multiple proposals, with multiple protocols &
multiple transforms
Cryptographic Suites
• variety of cryptographic algorithm types
• to promote interoperability have
• RFC4308 defines VPN cryptographic suites
• VPN-A matches common corporate VPN security using
3DES & HMAC
• VPN-B has stronger security for new VPNs implementing
IPsecv3 and IKEv2 using AES
• RFC4869 defines four cryptographic suites
compatible with US NSA specs
• provide choices for ESP & IKE
• AES-GCM, AES-CBC, HMAC-SHA, ECP, ECDSA
Summary
• have considered:
• IPSec security framework
• IPSec security policy
• ESP
• combining security associations
• internet key exchange
• cryptographic suites used