Chapter 4: Modes of Operation - PowerPoint PPT Presentation

1 / 23
About This Presentation
Title:

Chapter 4: Modes of Operation

Description:

Only the same portion of mn 1 as what was garbled in cn will be garbed. ... If one block is lost, the rest of the blocks will be garbled. ... – PowerPoint PPT presentation

Number of Views:93
Avg rating:3.0/5.0
Slides: 24
Provided by: muk1
Learn more at: https://www.cs.odu.edu
Category:

less

Transcript and Presenter's Notes

Title: Chapter 4: Modes of Operation


1
Chapter 4 Modes of Operation
  • CS 772/872 Fall 2007

2
Encrypting a Large Massage
  • Electronic Code Book (ECB)
  • Cipher Block Chaining (CBC)
  • Output Feedback Mode (OFB)
  • Cipher Feedback Mode (CFB)

3
Electronic Code Book (ECB)
  • Break the message into 64-bit blocks (padding the
    last one) and encrypt each block with the secret
    key.
  • Two problems
  • 1. two identical plain text block produce two
    identical cipher blocks 2. blocks can be
    rearranged or modified.
  • Example See Figure 4-3 where an eavesdropper
  • 1. can see which sets of employees have
    identical or similar salaries and 2. he can
    alter his own salary to match another employee
    with higher salary.

4
(No Transcript)
5
Cipher Block Chaining (CBC)
  • Two identical plain messages produce two
    different cipher messages. (e.g., continue
    holding, continue holding, ....., start attach)
    This prevents Chosen plain text attack.

6
(No Transcript)
7
CBC Threat 1
  • Modifying Cipher Blocks Fig. 4-3You can modify
    the contents of one cipher block  (c6) to make
    the plain text (m7) as you wish, however the
    preceding block (m6) will be garbled, as shown

8
Thus  if cn is garbled then mn will be completely
garbed. Only the same portion of mn1 as what
was garbled in cn will be garbed. This can be
solved by attaching a CRC to the plain text
before encryption.
9
CBC Threat 2 Rearranging Ciphertext Blocks
  • If a hacker knows the plain text and the
    corresponding cipher text i.e., m1, m2, ,mn and
    c1,c2,,cn and IV.
  • By rearranging c1, c2, , cn, the intruder can
    garble the message.
  • Solution Use a 64-bit CRC

10
Output Feedback Mode (OFB)
  • It is a stream cipher
  • Encryption/decryption is performed by ing the
    message with one-time pad generated as follows
     
  • 1. A 64-bit random IV is generated (and is
    transmitted with the encrypted message). 2. b1
    is the DES encryption of IV with the secret key.
    3. bi , i gt 1, is the  DES encryption of bi-1
    with secret key. 4. The resulting one-time pad
    is b1 b2 b3 ....... 5.  ci bi   mi for
    i 1, 2, ...

11
Output Feedback Mode (OFB)
12
  • Major  advantages of OFB  
  • The pad can be generated in advance and used when
    the message arrive. If some bits of cipher text
    get garbled, only the corresponding bits in the
    plain text get garbled.
  • Major disadvantages of OFB  
  • if the ltplaintext P, ciphertext (PK) gt are known
    by Trudy, she can modify the plain text into
    anything she wants (P') since ((P K) P) P'
    ) K P'
  • If one block is lost, the rest of the blocks will
    be garbled.
  • If data is stored on disk, you can not randomly
    read any block unless you decrypt all the
    preceding blocks.
  • To solve the last  two problems, we use CFB
    below, where if one block is lost, only the next
    block is  garbled and the rest of the blocks will
    decrypt properly.

13
Cipher Feedback Mode (CFB)
  • . A 64-bit random IV is generated (and is
    transmitted with the encrypted message). 2. b1
    is the DES encryption of IV with the secret key.
    3. bi , i gt 1, is the  DES encryption of ci-1
    with secret key.    (Thus you can't generate a
    one-time pad in advance like OFB) 4.  ci bi  
    mi for i 1, 2, ...

14
(No Transcript)
15
(No Transcript)
16
Counter Mode (CTR)
  • See Figure 4-10,   CTR have the following
    advantages
  • You can generate the one-time pad in advance.
  • You can randomly access any block without
    decrypting all the preceding  blocks

17
(No Transcript)
18
Generating MACs
  • A secret key system can be used to generate a
    cryptographic checksum MAC (message
    authentication code) or MIC (message integrity
    code).

19
Ensuring Integrity Only
  • Send  Plain text CBC residue (figure 4-11) The
    receiver computes the CBC residue from the plain
    text and compare it with the received CBC
    residue.

20
Ensuring Privacy Integrity Together
  • Use CRC (figure 4-14), CRC is generally is known
    to be vulnerable to attacks.
  • Use a different key to encrypt the message (the
    two keys can be independent or related)

21
(No Transcript)
22
Multiple Encryption DES
  • It is called 3DES or EDE (encrypt-decrypt-encrypt)
     
  • mgtgtgtgt E gtgtgtgt D gtgtgtgt E gtgtgtgtc               
                                          
    K1         K2        K1               
                              c gtgtgtgt E gtgtgtgt D
    gtgtgtgt E gtgtgtgt m
  • CBC is used for stream encryption as shown in
    Figure 4-15  

23
(No Transcript)
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2025 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Chapter 4: Modes of Operation" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!