View
0
Download
0
Category
Preview:
Citation preview
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Fun with Certificates part Ia Deep Dive into Cryptography and RSA for all ages
Brian Epstein(he/him/his)
Institute for Advanced Study
Computer Manager, Network and Security
Information Security Officer
bepstein@ias.edu - @epepepep
https://security.ias.edu 2
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
The Institute for Advanced Study
https://security.ias.edu 3
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
https://security.ias.edu 6
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Topics● Cryptography
● History and Concepts● Symmetric and Asymmetric (RSA/ECC)
● Certificates● Trust● Key Size (bit-length)
● Lab and Demonstrations
https://security.ias.edu 7
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Cryptography
Goal: pass messages secretly between entities through an insecure medium
https://security.ias.edu 8
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
https://security.ias.edu 9
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Symmetric Cryptography● Cereal box decoder ring/Cryptograms● Decode secret message (“zsad”).● Translate each letter with decoder ring● Secret message is (“easy”).● Reverse to encode.● Fast.
https://security.ias.edu 10
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
tpuud JimmyJimmJimJiJttptputpuutpuud
https://security.ias.edu 11
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Symmetric Box Demo
https://security.ias.edu 12
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Symmetric Key Cryptography
n*(n-1)/2 = 6*(5-1)/2 = 30/2 = 15 unique keys
https://security.ias.edu 13
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
https://security.ias.edu 14
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
https://security.ias.edu 15
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
https://security.ias.edu 16
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
One way function
X
https://security.ias.edu 17
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Asymmetric Keys● Private key that you keep to yourself● Public key that you give to everyone
https://security.ias.edu 18
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Asymmetric Box Demo
https://security.ias.edu 19
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Math
https://security.ias.edu 20
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
51
3 17
1 3 1 17
41
1 41
Prime Numbers
1 * 41 = 41
1 * 3 * 1 * 17 = 3 * 17 = 51
https://security.ias.edu 21
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Exponents
27 = 2*2*2*2*2*2*2 = 128
2^7 = 128
https://security.ias.edu 22
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Modulus
55 1282
11018
r 18 128 ÷ 55 = 2 r 18128 mod 55 = 18128 ≡ 18 (mod 55)
55 1282
11018
r 18
https://security.ias.edu 23
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Modulus 5 r 05 25 25 0
5 r 15 26 25 1
5 r 25 27 25 2
5 r 35 28 25 3
5 r 45 29 25 4
6 r 05 30 30 0
6 r 15 31 30 1
mod 5
https://security.ias.edu 24
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
https://security.ias.edu 25
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Modulus● Think of modulus like a circle● Examples
● clock - 59 minutes becomes 0 minutes : (mod 60)● date - 365th day of the year becomes the 1st : (mod
365)● numbers - ones column goes from 9 to 0 : (mod 10)● circular degrees - 359° goes to 0° : (mod 360)
https://security.ias.edu 26
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
RSA Private Key Contents● Two large Prime Numbers (p and q)● Modulus (n = p*q)● Private exponent (d)
https://security.ias.edu 27
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Private Exponent● Private exponent (d) must solve
(d*e) mod φ(n) = 1
Fun with Certificates
Fun with Certificates
Fun with Certificates
Fun with Certificates
Fun with Certificates
https://security.ias.edu 33
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
RSA Public Key Contents● Modulus (n)● Public exponent (e)
Fun with Certificates
https://security.ias.edu 35
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Public Exponent● Public exponent (e) must be relatively
prime to p-1 for all primes p which divide the modulus
https://security.ias.edu 38
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Jimmy 1414 1314 13 1814 13 18 1814 13 18 18 36
One way function for RSA
https://security.ias.edu 39
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
14 13 18 18 36
One way function for RSA
14 13 18 18 36
https://security.ias.edu 40
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
14 13 18 18 36
One way function for RSA
14
13
18
18
36
https://security.ias.edu 44
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
One way function for RSA
14
13
18
18
36
147 mod 55
137 mod 55
187 mod 55
187 mod 55
367 mod 55
= 105413504 mod 55= 9 = “g”
= 7
= 17
= 17
= 31
= “e”
= “l”
= “l”
= “v”
E(Jimmy) = gellv
https://security.ias.edu 45
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
One way function for RSA
9
7
17
17
31
923 mod 55
723 mod 55
1723 mod 55
1723 mod 55
3123 mod 55
= 14 = “J”
= 13
= 18
= 18
= 36
= “i”
= “m”
= “m”
= “y”
D(gellv) = Jimmy
https://security.ias.edu 46
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Asymmetric Key Demo
Modulo Calculatorhttps://tinyurl.com/rsacalc
https://security.ias.edu 47
Fun with Certificates part IRSA Cryptography
May 13, 2019
Network SecurityInstitute for Advanced Study
Asymmetric Key Cryptography
2*n = 2 * 6 = 12 unique keys
Recommended