Implementing-cryptography-using-python

Recommendations

Info

Chapter 2 ■ Cryptographic Protocols and Perfect Secrecy 37establish mutual authentication between two parties, A and B; the protocolassumes that an adversary may intercept, delay, read, copy, or forge the messagein transit. The protocol also assumes that each party (Alice and Bob) hasreceived secret keys from a trusted third party (TTP). The protocol uses sharedkeys for both the encryption and decryption process.Use Table 2.1 to analyze the following exchange:Let us assume that Alice needs to send a communication to Bob. Alice willneed to generate a random number R A and send a message to the TTP:A➔ TTP(A, B, r A )The TTP generates a session key K A,B for secure communications between Aliceand Bob and responds to Alice: TTP ➔ A: {r A , B, K A,B , {K A,B , A} KB, TTP } KA, TTPAlice decrypts the message and extracts K A,B . She confirms that r A is identicalto the number generated by her in the first step; this informs her that thereply from the TTP is fresh.Alice sends the message to Bob: A➔B: {K A,B , A} KB, TTPBob decrypts the message and obtains K A,B . He then generates a randomnumber r B and replies to Alice: B ➔ A: {r B } KA,BAlice decrypts the message and verifies that it contains r B -1.Table 2.1: Notation of Cryptographic ProtocolsNOTATIONACA ‐ AR At AMEANINGName of A, analogous to B, E, TTP, CAThe certification authority for AA random value chosen by AThe timestamp generated by A(m 1, . . . , m n) The concatenation of messages m 1, . . . , m nA ➔ B: mK A,BA sends message m to BThe secret key, only known to A and B+K A The public key of A-K A The private key of A{m} K The message m encrypted with the key K, synonym for E(K, m)H(m)A[m]Cert -CK CA( +K A )Modification detection code (MDC) over message m, computed withfunction HShorthand notation for (m, {H(m)} –KAThe certification authority certificate for public key +K A of A, signed withthe private certification key -CK CACA<<A>> Shorthand notation for Cert -CK CA( +K A )
38 Chapter 2 ■ Cryptographic Protocols and Perfect SecrecyThe protocol exchanges r B and r B -1 in an effort to ensure that an attacker,Eve, cannot impersonate Bob by replaying messages from Alice. However, asold session keys K A,B remain valid, Eve may manage to get to a known sessionkey K A,B and impersonate Alice:E ➔ B: {K A,B , A} KB, TTPB ➔ A: {r B } K(A, B) *Eve has to intercept this messageE ➔ B: {r B -1} K(A, B)In short, even if Eve does not know K A,TTP or K B, TTP , she can impersonate Alice.The Otway-Rees ProtocolThe Needham and Schroeder public-key solution has a number of similaritiesto a protocol proposed by Otway and Rees. Use Table 2.1 to analyze the followingexchange:Alice generates a message containing an index number i A , her name (A), andBob’s name (B), plus an additional random number R A encrypted with thekey K A, TTP she shares with the TTP, and sends the following message to Bob:A➔B: (i A , A, B, {r A , i A , A, B} K(A,TTP) )Bob generates a random number, r B , and uses it to encrypt i A , A, and B usingthe key K B, TTP . Bob shares the message with the TTP:B ➔ TTP(i A , A, B, {r A , i A , A, B} K(A,TTP) , {r B, i A, A, B} K(B,TTP) )The TTP generates a new session key K A,B and creates two encrypted messages,one for Alice and one for Bob. The TTP sends them both to Bob:TTP ➔ B: (i A , {r A , K A,B }K A,TTP , {r B , K A,B } K(B,TTP) )Bob then decrypts his part of the message and verifies R B . Bob sends part ofthe message to Alice:B ➔ A: (i A , {r A , K A,B } K(A, TTP) )Alice decrypts the message and checks i A and R A to verify that they have notbeen modified since the message exchange started. If they have not changed,she can be sure that the TTP has sent her a fresh session key K A,B for communicationswith Bob. If she uses the key in an encrypted communication withBob, she can be sure of his authenticity.A benefit of the Otway-Rees protocol is that the index number, i A , furtherprotects against replay attacks. However, this requires that the TTP checks ifi A is bigger than the last i A he received from Alice. The TTP will generate thetwo messages if both parts of the message contain the same index number i Aand names A, B. If both are true, then Alice and Bob can be sure that they haveauthenticated to the TTP during the encrypted communication.
Page 2 and 3:
ImplementingCryptography UsingPytho
Page 4 and 5: To Stephanie, Eden, Hayden, and Ken
Page 6 and 7: viAbout the Authorbook, Shannon is
Page 8 and 9: Contents at a GlanceIntroductionxvi
Page 10 and 11: xiiContentsUsing Conditionals 16Usi
Page 12 and 13: xivContentsPseudorandomness115Break
Page 14 and 15: xviContentsInstalling and Testing W
Page 16 and 17: xviiiIntroductionprivacy advocates.
Page 18 and 19: CHAPTER1Introduction to Cryptograph
Page 20 and 21: Chapter 1 ■ Introduction to Crypt
Page 48 and 49: CHAPTER2Cryptographic Protocolsand
Page 50 and 51: Chapter 2 ■ Cryptographic Protoco
Page 82 and 83: 66 Chapter 3 ■ Classical Cryptogr
Page 104 and 105:
88 Chapter 3 ■ Classical Cryptogr
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
CHAPTER4Cryptographic Mathand Frequ
Page 112 and 113:
Chapter 4 ■ Cryptographic Math an
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139:
Page 140 and 141:
Page 142 and 143:
Page 144 and 145:
Page 146 and 147:
Page 148 and 149:
Page 150 and 151:
Page 152 and 153:
Page 154 and 155:
CHAPTER5Stream Ciphers and Block Ci
Page 156 and 157:
Chapter 5 ■ Stream Ciphers and Bl
Page 158 and 159:
Page 160 and 161:
Page 162 and 163:
Page 164 and 165:
Page 166 and 167:
Page 168 and 169:
Page 170 and 171:
Page 172 and 173:
Page 174 and 175:
Page 176 and 177:
Page 178 and 179:
Page 180 and 181:
Page 182 and 183:
Page 184 and 185:
Page 186 and 187:
CHAPTER6Using Cryptography with Ima
Page 188 and 189:
Chapter 6 ■ Using Cryptography wi
Page 190 and 191:
Page 192 and 193:
Page 194 and 195:
Page 196 and 197:
Page 198 and 199:
Page 200 and 201:
Page 202 and 203:
Page 204 and 205:
Page 206 and 207:
Page 208 and 209:
Page 210 and 211:
Page 212 and 213:
Page 214 and 215:
200 Chapter 7 ■ Message Integrity
Page 216 and 217:
Page 218 and 219:
Page 220 and 221:
Page 222 and 223:
Page 224 and 225:
Page 226 and 227:
Page 228 and 229:
Page 230 and 231:
Page 232 and 233:
Page 234 and 235:
Page 236 and 237:
Page 238 and 239:
224 Chapter 8 ■ Cryptographic App
Page 240 and 241:
Page 242 and 243:
Page 244 and 245:
Page 246 and 247:
Page 248 and 249:
Page 250 and 251:
Page 252 and 253:
Page 254 and 255:
Page 256 and 257:
Page 258 and 259:
Page 260 and 261:
CHAPTER9Mastering CryptographyUsing
Page 262 and 263:
Chapter 9 ■ Mastering Cryptograph
Page 264 and 265:
Page 266 and 267:
Page 268 and 269:
Page 270 and 271:
Page 272 and 273:
Page 274 and 275:
Page 276 and 277:
Page 278 and 279:
Page 280 and 281:
Page 282 and 283:
Page 284 and 285:
Page 286 and 287:
Page 288 and 289:
Page 290 and 291:
IndexSYMBOLS\ (backslash), 10- oper
Page 292 and 293:
Index ■ D-D 279CIA Triad, 35-36ci
Page 294 and 295:
Index ■ I-M 281hashlib module, 28
Page 296 and 297:
Index ■ Q-S 283Preneel, Bart, 145
show all

Implementing-cryptography-using-python

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?