CLICK HERE TO DOWNLOAD PPT ON Cryptography
Cryptography Presentation Transcript
1.Cryptography
2.Cryptography is an often misunderstood and misused security tool. Today more than ever, privacy is a necessary part of business communications. The following is an overview of public key cryptography and one of its more widely-used implementations, Pretty Good Privacy (PGP).
3.The simplest and oldest way to send a secret message to someone. The code must be known to the sender or recipient.
4.Substitution ciphers are the simplest type of cipher system.
Each letter of the alphabet is assigned to a number or different letter.
ROT13 is a commonly used cipher.
Each letter of the alphabet is assigned to a number or different letter.
ROT13 is a commonly used cipher.
5.One-Time Pads uses a different key for a specific time period.
Truly secure, no patterns evolve.
Most vulnerabilities due to human carelessness.
Truly secure, no patterns evolve.
Most vulnerabilities due to human carelessness.
6.A single key is used to both encrypt and decrypt a message. A secure channel must be in place for users to exchange this common key.
7.Two keys are used for this method, the public key is used to encrypt. The private key is used to decrypt. This is used when it isn’t feasible to securely exchange keys.
8.One-way functions:
Used to generate a fixed-length hash (also known as a message-digest) of a file. This hash is essentially a ‘digital fingerprint’ of the file that would be sent along with a document. The recipient would use the same method to generate a hash. If the hashes do not match the file has been altered.
Used to generate a fixed-length hash (also known as a message-digest) of a file. This hash is essentially a ‘digital fingerprint’ of the file that would be sent along with a document. The recipient would use the same method to generate a hash. If the hashes do not match the file has been altered.
9.Pretty Good Privacy
PGP or Pretty Good Privacy is as the name suggest a package that guarantees privacy or in other words it is an encryption package. PGP was developed by Phil Zimmermann.
PGP is a dual-key or public-key cryptosystem (also known as asymmetric cipher). One key is kept secret, the other key is made public. To communicate with the owner of the secret key a message is encrypted with the corresponding public key, this message can only be decrypted using the secret key.
When a user encrypts plaintext with PGP, PGP first compresses the plaintext
Data compression saves modem transmission time and disk space and, more importantly, strengthens cryptographic security.
10.Compression reduces these patterns in the plaintext, thereby greatly enhancing resistance to cryptanalysis. (Files that are too short to compress or which don't compress well aren't compressed.)
PGP then creates a session key, which is a one-time-only secret key. This key is a random number generated from the random movements of your mouse and the keystrokes you type.
This session key works with a very secure, fast conventional encryption algorithm to encrypt the plaintext; the result is cipher text.
Once the data is encrypted, the session key is then encrypted to the recipient's public key. This public key-encrypted session key is transmitted along with the cipher text to the recipient.
11.Decryption works in the reverse. The recipient's copy of PGP uses his or her private key to recover the temporary session key, which PGP then uses to decrypt the conventionally-encrypted cipher text.
PGP or Pretty Good Privacy is as the name suggest a package that guarantees privacy or in other words it is an encryption package. PGP was developed by Phil Zimmermann.
PGP is a dual-key or public-key cryptosystem (also known as asymmetric cipher). One key is kept secret, the other key is made public. To communicate with the owner of the secret key a message is encrypted with the corresponding public key, this message can only be decrypted using the secret key.
When a user encrypts plaintext with PGP, PGP first compresses the plaintext
Data compression saves modem transmission time and disk space and, more importantly, strengthens cryptographic security.
10.Compression reduces these patterns in the plaintext, thereby greatly enhancing resistance to cryptanalysis. (Files that are too short to compress or which don't compress well aren't compressed.)
PGP then creates a session key, which is a one-time-only secret key. This key is a random number generated from the random movements of your mouse and the keystrokes you type.
This session key works with a very secure, fast conventional encryption algorithm to encrypt the plaintext; the result is cipher text.
Once the data is encrypted, the session key is then encrypted to the recipient's public key. This public key-encrypted session key is transmitted along with the cipher text to the recipient.
11.Decryption works in the reverse. The recipient's copy of PGP uses his or her private key to recover the temporary session key, which PGP then uses to decrypt the conventionally-encrypted cipher text.
12.Digital Signature
Digital Signature and Verification
Digital signature is a mechanism by which a message is authenticated i.e. proving that a
message is effectively coming from a given sender, much like a signature on a paper
document. For instance, suppose that Alice wants to digitally sign a message to Bob. To do
so, she uses her private-key to encrypt the message; she then sends the message along with
her public-key (typically, the public key is attached to the signed message). Since Alice’s
public-key is the only key that can decrypt that message, a successful decryption constitutes
a Digital Signature Verification, meaning that there is no doubt that it is Alice’s private key
that encrypted the message.
Digital Signature and Verification
Digital signature is a mechanism by which a message is authenticated i.e. proving that a
message is effectively coming from a given sender, much like a signature on a paper
document. For instance, suppose that Alice wants to digitally sign a message to Bob. To do
so, she uses her private-key to encrypt the message; she then sends the message along with
her public-key (typically, the public key is attached to the signed message). Since Alice’s
public-key is the only key that can decrypt that message, a successful decryption constitutes
a Digital Signature Verification, meaning that there is no doubt that it is Alice’s private key
that encrypted the message.
Posts
0 comments