Information sharing may be great for your team, but not so great when it comes to your valuable, sensitive data. This talk is an introduction to cryptography - the art and science of keeping information secret. We'll gently introduce core concepts like steganography, codes, ciphers, and lexical analysis by reviewing the history of making (and breaking) secret writing systems from ancient times to World War 2, and finish with a discussion about modern symmetric and asymmetric (aka public key) encryption.

1. Cryptography 101
Nolan Egly

2. Code Camp 2013 Sponsors
Gold
Silver
Bronze

4. Agenda
• Branches and types of cryptography
• Early crypto systems and cryptanalysis
• Mechanization of cryptosystems

5. Agenda (cont.)
• Security Problems Cryptography Does Not Solve
• What Is Secure?
• Symmetric Encryption and Modes
• Asymmetric Encryption

6. Agenda (cont.)
• Quantum Cryptography
• Resources
• Open questions and discussion

7. Oh dear, this
isn’t going to
be my cup of
tea…
Image credit: http://supercutekittens.blogspot.com/2011_07_01_archive.html
Image credit: http://fanumusic.com/wp-content/uploads/2012/10/Free.jpg

8. Secret Writing
Cryptography
• Greek etymology
– Kryptos: secret
– Graphia: writing
• Scrambling a message in
plain sight
Steganography
• Greek etymology
– Steganos: covered
– Graphia: writing
• Hiding a message so it
cannot be seen

9. STEGANOGRAPHY
PAST AND PRESENT

10. Steganography - Ancient
Photo credit: http://en.wikipedia.org/wiki/File:Wachstafel_rem.jpg

11. Steganography - Historical
Invisible Ink

12. Steganography - Historical
Microdots
Photo credit: http://www.racq.com.au/__data/assets/image/0006/34908/microdot_cropped.jpg

13. Steganography - Modern
• Hiding messages in low order bits of media

14. Tool Demo
Steganography with Hide in Picture

15. Steganography Usage Today
• Digital watermarking intellectual property
– General copyright infringement detection
– Watermark per digital copy for data leak detection
Image source: http://www.amazon.com/Kerosene/dp/B001C79S0S/

16. Steganography Usage Today
• Underground communities
– Need to communicate covertly

17. What questions do you have?

18. CRYPTOGRAPHY
PRINCIPLES AND PAST HISTORY

19. Primary Two Methods of Cryptography
Transposition (Diffusion)
• Changing the position of the
characters
Substitution (Confusion)
• Changing the characters
from one into another

20. Transposition - Ancient
Photo credit: “The Code Book” by Simon Singh

21. Transposition – Route Cipher
Write the message in vertical rows in a grid, and
then transcribe according to a pattern
T A W I 2
H N E S X
E S R 4 Z
The answer is 42 EHT ANS REW IS4 ZX2
Plaintext Ciphertext

22. Transposition – Columnar Cipher
Write message in rows, and then scramble columns
in alphabetical order of a key
T H E A N
S W E R I
S 4 2 X Z
The answer is 42 HW4 NIZ ARX EE2 TSS
P A N I CKey
Plaintext Ciphertext

23. Transposition Today
Transposition is used as a component of more
complex ciphers, but is not strong enough to be
used by itself

24. What questions do you have?

25. Strategies of Substitution
Codes
• Substitute words or phrases
Ciphers
• Substitute letters
Ace => DFH
Bad => EDG
Caeser Shift Cipher
Plain A B C D E
Cipher D E F G H
TOP SECRET
Word Code Word
Ace Mushroom
Bad Pink
Image credit (paper background): http://www.flickr.com/photos/boston_public_library/4460136656

26. Secret Communication
Steganography Cryptography
Codes Ciphers
Transposition Substitution
Interlude: Complete Family Tree

27. Substitution - Ancient
• Oldest known cipher – Caeser cipher
• Shift characters by 3
Caeser Cipher
Cipher D E F G H I J K L M N O P Q R S T U V W X Y Z A B C
Plain A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Plaintext Ciphertext
The answer is 42! WKH DQVZHU LV 42!

28. Kerckhoff’s Principle
"The security of a crypto-system must
not depend on keeping secret the
crypto-algorithm. The security depends
only on keeping secret the key."

29. Cryptography by Secret Key
Image credit: http://i.msdn.microsoft.com/dynimg/IC168364.gif

30. Shift cipher with key
• Improves the shift cipher by adding a secret key
• Just knowing the algorithm is useless without the
key
Shift Cipher With Key “Xylophone”
Cipher X Y L O P H N E A B C D F G I J K M Q R S T U V W Z
Plain A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
Plaintext Ciphertext
The answer is 42! REP XGQUPM OU 42!

31. What questions do you have?

32. We have secure communications.
Life is good.
Isn’t it?
Photo credit: http://www.flickr.com/photos/lorensztajer/4181632414/

33. Not quite.
Someone could use cryptanalysis
to break our cipher.
Photo credit: http://www.flickr.com/photos/85941395@N00/2190485197/

34. Cryptanalysis:
Lexical Frequencies
Image credit: http://en.wikipedia.org/wiki/File:English_letter_frequency_(alphabetic).svg

35. Lexical Frequency Analysis Example
LIVITCSWPIYVEWHEVSRIQMXLEYVEOIEWHRXEXIPFEM
VEWHKVSTYLXZIXLIKIIXPIJVSZEYPERRGERIMWQLMG
LMXQERIWGPSRIHMXQEREKIETXMJTPRGEVEKEITREWH
EXXLEXXMZITWAWSQWXSWEXTVEPMRXRSJGSTVRIEYVI
EXCVMUIMWERGMIWXMJMGCSMWXSJOMIQXLIVIQIVIXQ
SVSTWHKPEGARCSXRWIEVSWIIBXVIZMXFSJXLIKEGAE
WHEPSWYSWIWIEVXLISXLIVXLIRGEPIRQIVIIBGIIHM
WYPFLEVHEWHYPSRRFQMXLEPPXLIECCIEVEWGISJKTV
WMRLIHYSPHXLIQIMYLXSJXLIMWRIGXQEROIVFVIZEV
AEKPIEWHXEAMWYEPPXLMWYRMWXSGSWRMHIVEXMSWMG
STPHLEVHPFKPEZINTCMXIVJSVLMRSCMWMSWVIRCIGX
MWYMX
Monoalphabetic ciphertext

36. E Freq. D
I 58
E 48
X 41
W 35
M 34
V 31
S 30
R 27
L 22
P 21
G 16
H 16
Y 13
E Freq. D
T 12
Q 12
C 9
K 9
J 9
C 6
F 6
A 5
O 3
B 2
U 1
N 1
D 0
Trigrams Freq. D
XLI 9
EWH 7
MWY 4
IVI 4
Analysis Counts

37. E Freq. D
I 58 E
E 48
X 41 T
W 35
M 34
V 31
S 30
R 27
L 22 H
P 21
G 16
H 16
Y 13
E Freq. D
T 12
Q 12
C 9
K 9
J 9
C 6
F 6
A 5
O 3
B 2
U 1
N 1
D 0
Trigrams Freq. D
XLI 9 THE
EWH 7
MWY 4
IVI 4
Analysis Counts

38. E Freq. D
I 58 E
E 48 A
X 41 T
W 35
M 34
V 31
S 30
R 27
L 22 H
P 21
G 16
H 16
Y 13
E Freq. D
T 12
Q 12
C 9
K 9
J 9
C 6
F 6
A 5
O 3
B 2
U 1
N 1
D 0
Trigrams Freq. D
XLI 9 THE
EWH 7
MWY 4
IVI 4
Analysis Counts

39. Applying Our Conjectures
heVeTCSWPeYVaWHaVSReQMthaYVaOeaWHRtatePFaM
VaWHKVSTYhtZetheKeetPeJVSZaYPaRRGaReMWQhMG
hMtQaReWGPSReHMtQaRaKeaTtMJTPRGaVaKaeTRaWH
atthattMZeTWAWSQWtSWatTVaPMRtRSJGSTVReaYVe
atCVMUeMWaRGMeWtMJMGCSMWtSJOMeQtheVeQeVetQ
SVSTWHKPaGARCStRWeaVSWeeBtVeZMtFSJtheKaGAa
WHaPSWYSWeWeaVtheStheVtheRGaPeRQeVeeBGeeHM
WYPFhaVHaWHYPSRRFQMthaPPtheaCCeaVaWGeSJKTV
WMRheHYSPHtheQeMYhtSJtheMWReGtQaROeVFVeZaV
AaKPeaWHtaAMWYaPPthMWYRMWtSGSWRMHeVatMSWMG
STPHhaVHPFKPaZeNTCMteVJSVhMRSCMWMSWVeRCeGt
MWYMt

40. More Conjecturing
heVeTCSWPeYVaWHaVSReQMthaYVaOeaWHRtatePFaM
VaWHKVSTYhtZetheKeetPeJVSZaYPaRRGaReMWQhMG
hMtQaReWGPSReHMtQaRaKeaTtMJTPRGaVaKaeTRaWH
atthattMZeTWAWSQWtSWatTVaPMRtRSJGSTVReaYVe
atCVMUeMWaRGMeWtMJMGCSMWtSJOMeQtheVeQeVetQ
SVSTWHKPaGARCStRWeaVSWeeBtVeZMtFSJtheKaGAa
WHaPSWYSWeWeaVtheStheVtheRGaPeRQeVeeBGeeHM
WYPFhaVHaWHYPSRRFQMthaPPtheaCCeaVaWGeSJKTV
WMRheHYSPHtheQeMYhtSJtheMWReGtQaROeVFVeZaV
AaKPeaWHtaAMWYaPPthMWYRMWtSGSWRMHeVatMSWMG
STPHhaVHPFKPaZeNTCMteVJSVhMRSCMWMSWVeRCeGt
MWYMt

41. Applying i, m, and r
hereTCSWPeYraWHarSReQithaYraOeaWHRtatePFai
raWHKrSTYhtmetheKeetPeJrSmaYPaRRGaReiWQhiG
hitQaReWGPSReHitQaRaKeaTtiJTPRGaraKaeTRaWH
atthattimeTWAWSQWtSWatTraPiRtRSJGSTrReaYre
atCriUeiWaRGieWtiJiGCSiWtSJOieQthereQeretQ
SrSTWHKPaGARCStRWearSWeeBtremitFSJtheKaGAa
WHaPSWYSWeWeartheSthertheRGaPeRQereeBGeeHi
WYPFharHaWHYPSRRFQithaPPtheaCCearaWGeSJKTr
WiRheHYSPHtheQeiYhtSJtheiWReGtQaROerFremar
AaKPeaWHtaAiWYaPPthiWYRiWtSGSWRiHeratiSWiG
STPHharHPFKPameNTCiterJSrhiRSCiWiSWreRCeGt
iWYit

42. And so on, and so forth
hereuponlegrandarosewithagraveandstatelyai
randbroughtmethebeetlefromaglasscaseinwhic
hitwasencloseditwasabeautifulscarabaeusand
atthattimeunknowntonaturalistsofcourseagre
atprizeinascientificpointofviewthereweretw
oroundblackspotsnearoneextremityofthebacka
ndalongoneneartheotherthescaleswereexceedi
nglyhardandglossywithalltheappearanceofbur
nishedgoldtheweightoftheinsectwasveryremar
kableandtakingallthingsintoconsiderationic
ouldhardlyblamejupiterforhisopinionrespect
ingit

43. With Spacing and Punctuation
Hereupon Legrand arose, with a grave and stately air, and
brought me the beetle from a glass case in which it was
enclosed. It was a beautiful scarabaeus, and, at that time,
unknown to naturalists—of course a great prize in a scientific
point of view. There were two round black spots near one
extremity of the back, and a long one near the other. The
scales were exceedingly hard and glossy, with all the
appearance of burnished gold. The weight of the insect was
very remarkable, and, taking all things into consideration, I
could hardly blame Jupiter for his opinion respecting it.
This is an excerpt from the short story “The Gold Bug” by Edgar Allen Poe.
Decrypting a simple cipher by frequency analysis is part of the plot.

44. What questions do you have?

45. The Cryptographers Strike Back
• Polyalphabetic ciphers
– Uses many alphabets of substitution instead of 1
– Hides letter frequencies
– Credit is generally given to Vigenere

46. Vigenere Square

47. Plaintext The sun and the man in the moon
Ciphertext DPR YEV NTN BUK WIA OX BUK WWBT
Polyalphabetic Cipher
• This plaintext is encrypted with Vigenere and
a pass phrase “King”

48. The Return of the Cryptanalysts
• Key cycle detection
• Find repeated sequences and estimate
possible key lengths
• Divide ciphertext in to groups by key length
• Analyze as a monoalphabetic cipher

49. Key Cycle Detection
Plaintext The sun and the man in the moon
DPRYEVNTNBUKWIAOXBUKWWBT
Alphabet 1 D E N W X W
Alphabet 2 P V B I B W
Alphabet 3 R N U A U B
Alphabet 4 Y T K O K T

50. Mechanization of Ciphers - Enigma
Image credit: http://www.oliverrobinson.net/photos/bletchley/index.html

51. Enigma Rotors and Plugboard
Image credit: http://www.ilord.com/enigma.html

52. What questions do you have?

53. SECURITY PROBLEMS
CRYPTOGRAPHY DOES NOT SOLVE

54. Cryptography

55. Infrastructure Vectors
Packet sniffers, key loggers, and malware – oh my!
Image credit:
http://3.bp.blogspot.com/-I0mI7eWkiiE/UVZ6KhVUqcI/AAAAAAAANAw/h7PNvdk9zXs/s320/WiresharkDissector.png
http://www.keelog.com/images/wifi_hardware_keylogger_03.jpg
http://www.thechromesource.com/wp-content/uploads/2011/07/download.jpg

56. User Confusion
Image credit: http://www.d00med.net/uploads/0d832c77559a2070a766f899e7efb783.png

57. Image credit: http://ctworkingmoms.com/wp-content/uploads/2013/06/bribery.jpg

58. Image credit: https://xkcd.com/538/

59. CRYPTOGRAPHY
TODAY

60. What is “Secure”?
Image credits: http://upload.wikimedia.org/wikipedia/commons/8/87/WinonaSavingsBankVault.JPG

61. What is “Secure”?
• Unconditionally secure
– Impossible to break, even with infinite resources
• Computationally secure
– Impossible to break without infinite resources

62. Unconditionally Secure
• Theorized to only be possible when the key is
as long as the message
• Every key is equally likely and denies pattern
matching
• Only known system is the one time pad

63. One Time Pads
Pros
• Completely unbreakable
Cons
• Must be as long as message
• Must be completely random
• Cannot be reused
• Need secure distribution
Image credits: http://www.ranum.com/security/computer_security/papers/otp-faq/otp.jpg
http://commons.wikimedia.org/wiki/File:OneTimePadExcerpt.agr.jpg

64. Computationally Secure
• Cipher cannot be broken with limited
computing resources
– E.g. a calculation that will take longer than the age
of the universe
– What most practical cryptography strives for

65. Things We Ask Crypto To Do
Algorithm Confidentiality Authentication Integrity
Symmetric encryption Yes No No
Asymmetric encryption Yes No No
Digital Signatures No Yes Yes
One-way hash functions No No Yes

66. Symmetric Encryption
• Uses a series of complex transformations with
the secret key to scramble the plaintext
• Let’s look at DES as an example

67. F: Feistel function
Crossed circle: XOR
Data is operated on in blocks by
alternating between the left and right
sides going through function F and
then XORing the function output with
the other half of the block. This is
done for 16 rounds.
Image credit: http://en.wikipedia.org/wiki/File:DES-main-network.png
DES algorithm - Overview

68. DES algorithm - Feistel function
Crossed circle: XOR
S: Substitution function
P: Permutation function
(transposition)
The half block is XORed with
a subset of the encryption
key, and then run through a
series of fixed substitutions
and permutations.
Image credit: http://en.wikipedia.org/wiki/File:DES-f-function.png

69. What questions do you have?

70. MAYBE.
This is great and all, but since the
substitutions and permutations are
constant, if I keep using the same key
can someone cryptanalyze my
ciphertexts?

71. Modes
• Modes are types of additional protection
when using a key on multiple messages
• Does not encrypt by itself, but affects the
input into the cryptographic functions

72. Electronic Codebook Mode (ECB)
• No modification to input process
• Susceptible to frequency analysis with
multiple ciphertexts
• Susceptible to replay attacks from malicious
sources without timestamps (blocks look the
same every time)

73. Cipher Block Chaining Mode (CBC)
• Plaintext block is XORed with previous block’s
cipher text
• First block XORed with an Initialization Vector
(IV)
• The IV is not sensitive and can be transmitted
as plaintext with the encrypted message

74. Cipher Feedback Mode (CFB)
• Similar to CBC, but operates on streams
instead of blocks
• Very useful for some communications
– Imagine a remote desktop session waiting for 4 to
8 keypresses before sending the text

75. Output-Feedback Mode (OFB)
• Streamed like CFB but uses the key itself,
encrypted by the algorithm, to XOR the text
• Transmission errors affect only a single byte
instead of an entire block since the feedback
stream is independent of the cipher block

76. And others…
Image credit last 4 slides: http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation

77. Final Thoughts on Modes
• Some standards dictate the mode. If you
don’t use the specified mode, you aren’t using
that encryption standard.

78. What questions do you have?

79. Symmetric Disadvantages
• Key distribution must be done secretly
• Keys needed between each party
– Keys required = (n*(n-1)/2), n is number of users
Image credit: http://www.petri.co.il/images/Planning%20a%20DFS%20Architecture%20Part%202%20-2.jpg

80. Asymmetric Encryption
• Also called public key encryption
• Conceived by Diffie and Hellman in 1976
• Uses a public key to encrypt and a private key
to decrypt
• Benefits: solves the secret key distribution
problem, enables digital signature protocols
• Drawbacks: it’s much slower than symmetric

81. Asymmetric Encryption - Overview
Image credit: http://i.msdn.microsoft.com/dynimg/IC21919.gif

82. Asymmetric Encryption - RSA
• First usable algorithm, and the most popular
• Uses product of two large prime numbers as
one way function

83. What questions do you have?

84. CRYPTOGRAPHY
IN THE FUTURE

85. Quantum Cryptography
• Quantum cracking
– Calculate all states at once with quantum bits
– Schrodinger’s Cat Hypothesis
• Quantum encryption
– Transmit particles that cannot be measured with
affecting the value
– Heisenberg Uncertainty Principle

86. RESOURCES

87. Recommended Books - Heavy
• Bruce Schneier
– “Cryptography Engineering”
• A great critique of some perceived shortcomings is at
http://sockpuppet.org/blog/2013/07/22/applied-
practical-cryptography/
– “Applied Cryptography”
• dated but very comprehensive and interesting

88. Recommended Books - Light
• Simon Singh - “The Code Book”
– Covers history of cryptography
– Very accessible, even to nontechnical readers
• David Kahn
– Several historical books about cryptography
• Steven Levy – “Crypto”
– Covers discovery of public key cryptography

89. Online Courses
• (I haven’t taken any of these myself)
• Coursera
– https://www.coursera.org/course/crypto
• Udacity
– https://www.udacity.com/course/cs387

90. Community
• Schneir on Security
– http://www.schneier.com
• Stack Exchange
– http://crypto.stackexchange.com

92. Thanks for coming!
• Email: nolan@nolanegly.com
• Twitter: @nolanegly