SlideShare a Scribd company logo

Encryption

Dorothea Salo
Dorothea Salo

Lecture for LIS 644 "Digital Trends, Tools, and Debates." Not my strong point, so I won't swear there are no errors. If you reuse, please respect the CC-BY-NC-SA license on the photo.

TechnologyEducation
1 of 10
Download to read offline
Encryption can’t talk about the NSA until you understand what they broke!
Alice, Bob, and Eve Eve Maler/Rich Salz, “Eve [Maler] eavesdropping on Alice and Bob [DuCharme]’s conversation.” http://www.flickr.com/photos/xmlgrrl/966601078/ CC-BY-NC-SA
Cryptography: why, what? •Guard against threats to communication: •eavesdropping •tampering •impersonation •“I didn’t say that!” or “That isn’t what I said!” •“Cryptographic algorithm” or “cipher” •Way to turn plaintext (or other content) into “ciphertext” that is unreadable without special knowledge (i.e. a key) •“Encrypt” = code the message. “Decrypt” = decode. •This is all math! Remember that a message is 1’s and 0’s, a big number. •“In the clear” “cleartext” “plaintext” = not encrypted •If you hear “passwords stored in the clear,” RUN AWAY.
The easy but wrong way •Alice and Bob want to say something secret. •Assume that Eve can watch everything they say to each other. •Alice sends Bob a special key she will use to lock her messages. Bob sends Alice another special key that he will use for his. •They “encrypt” (lock) subsequent messages with those keys and send them. •They have each other’s keys, so they can unlock the messages on arrival. •Where’s the problem here? What can Eve do to eavesdrop further?
Problem: key exchange in the clear! •Physical analogy: Alice putting her housekey in the mail to Bob, and vice versa. •Eve can easily steal the mail, go to a locksmith, and copy the keys! So Alice and Bob’s homes are not safe from Eve. •Ugh. But what if a house worked like a bank safety-deposit box? •TWO keys, one at the bank, one with Alice (and a copy with Bob). BOTH keys needed to open the box! •The bank is told only to use its key if Alice or Bob is present (with a valid ID). •Even if Eve copies Alice’s key, or Bob’s, the bank won’t let her in! •Aha. So we need to split the key, and keep half of it safe and secret! (It can’t travel.)
Solution: public-key cryptography •Paired keys: “public” and “private” •A message ENCRYPTED (locked) with one of these keys must be DECRYPTED (unlocked) with the OTHER KEY! •Anybody can have your public key. ONLY YOU have your private key, and you never, ever send it anywhere! •Alice and Bob •Each has the other person’s public key. So does Eve. Because it’s public! •Alice sends Bob a message encrypted with Bob’s public key. •Only Bob’s private key can decrypt it! The same works in reverse. •There is no opportunity for Eve to grab a private key in transit. She’ll have to hack Alice’s or Bob’s machine to get their private keys! •Not totally foolproof: if somebody gets your private key, you’re toast. •Or if someone can crack the encryption algorithm. Algorithms evolve over time, as computing power grows.
Used on websites and for email connections too •SSL: Secure Socket Layer •TLS: Transport Layer Security •newer and better than SSL •This is what causes the little lock in your browser for https:// sites! •Weak link: “certificate authorities.” •Long and complicated story, but short version: these are how a lot of attacks on encryption happen. •If you hear about “certificate spoofing”... yeah.
Digital signature •Uses public-private key pairs to prove that a message comes from you. •Encrypt the message with your PRIVATE key. •Send out the encrypted message. •It can only be decrypted with your PUBLIC key. So if they can figure out how to read it, you must have sent it! •In actual fact, this is cumbersome, with larger messages especially. •So usually a message is “hashed” (put through a computer program) and the result (“hash”) is encrypted and sent along with the message. The recipient rehashes the message, decrypts the sent hash, and compares; if they’re not the same, there’s a problem. •But it’s basically the same idea.
“Backdoor” •Alice and Bob have two-key systems on their house’s front door. •What about the back door? If it isn’t protected the same way... •So a “backdoor” is a secret vulnerability in a security system or encryption algorithm that allows those in the know to bypass the usual security.
Encrypting email •“Pretty Good Privacy” (PGP) is the best thing out there. •Should integrate with most email services. •Unless you are using encryption, email should NEVER EVER be considered secure communication. NOT EVER. •(And maybe not even if you are. May be stored in the clear, even if it traveled encrypted! And is the other person using encryption too?) •HIPAA, FERPA, etc. NO. NOT EVER. •Yes, your boss CAN and WILL read your email. Do not do personal business from a work email account. EVER.

Recommended

Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...
Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...
Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...Andrew Schwabe
 
Open Sesame (and other open movements)
Open Sesame (and other open movements)Open Sesame (and other open movements)
Open Sesame (and other open movements)Dorothea Salo
 
Metadata
MetadataMetadata
MetadataDorothea Salo
 
So are we winning yet?
So are we winning yet?So are we winning yet?
So are we winning yet?Dorothea Salo
 
Occupy Copyright!
Occupy Copyright!Occupy Copyright!
Occupy Copyright!Dorothea Salo
 
Soylent Semantic Web Is People! (with notes)
Soylent Semantic Web Is People! (with notes)Soylent Semantic Web Is People! (with notes)
Soylent Semantic Web Is People! (with notes)Dorothea Salo
 
Preservation and institutional repositories for the digital arts and humanities
Preservation and institutional repositories for the digital arts and humanitiesPreservation and institutional repositories for the digital arts and humanities
Preservation and institutional repositories for the digital arts and humanitiesDorothea Salo
 
Manufacturing Serendipity
Manufacturing SerendipityManufacturing Serendipity
Manufacturing SerendipityDorothea Salo
 

Recommended

Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...
Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...
Reigning in the Data (FOSSCON 2014) - Ephemeral Messaging and Privacy In Post...Andrew Schwabe
 
Open Sesame (and other open movements)
Open Sesame (and other open movements)Open Sesame (and other open movements)
Open Sesame (and other open movements)Dorothea Salo
 
Metadata
MetadataMetadata
MetadataDorothea Salo
 
So are we winning yet?
So are we winning yet?So are we winning yet?
So are we winning yet?Dorothea Salo
 
Occupy Copyright!
Occupy Copyright!Occupy Copyright!
Occupy Copyright!Dorothea Salo
 
Soylent Semantic Web Is People! (with notes)
Soylent Semantic Web Is People! (with notes)Soylent Semantic Web Is People! (with notes)
Soylent Semantic Web Is People! (with notes)Dorothea Salo
 
Preservation and institutional repositories for the digital arts and humanities
Preservation and institutional repositories for the digital arts and humanitiesPreservation and institutional repositories for the digital arts and humanities
Preservation and institutional repositories for the digital arts and humanitiesDorothea Salo
 
Manufacturing Serendipity
Manufacturing SerendipityManufacturing Serendipity
Manufacturing SerendipityDorothea Salo
 
RDF, RDA, and other TLAs
RDF, RDA, and other TLAsRDF, RDA, and other TLAs
RDF, RDA, and other TLAsDorothea Salo
 
I own copyright, so I pwn you!
I own copyright, so I pwn you!I own copyright, so I pwn you!
I own copyright, so I pwn you!Dorothea Salo
 
So are we winning yet?
So are we winning yet?So are we winning yet?
So are we winning yet?Dorothea Salo
 
Alice and bob: Love & the most important crypto on the net
Alice and bob: Love & the most important crypto on the netAlice and bob: Love & the most important crypto on the net
Alice and bob: Love & the most important crypto on the netChris Hammond-Thrasher
 
Cryptography (under)engineering
Cryptography (under)engineeringCryptography (under)engineering
Cryptography (under)engineeringslicklash
 
Modeling complex system
Modeling complex systemModeling complex system
Modeling complex systempriyanka1078
 
Alice & bob public key cryptography 101
Alice & bob public key cryptography 101Alice & bob public key cryptography 101
Alice & bob public key cryptography 101Joshua Thijssen
 
Enterprise architecture for complex system of-systems contexts
Enterprise architecture for complex system of-systems contextsEnterprise architecture for complex system of-systems contexts
Enterprise architecture for complex system of-systems contextsBoxer Research Ltd
 
Security and protection
Security and protectionSecurity and protection
Security and protectionNital Shingala
 
Introduction to cryptography
Introduction to cryptographyIntroduction to cryptography
Introduction to cryptographySuresh Thammishetty
 
Escaping Datageddon
Escaping DatageddonEscaping Datageddon
Escaping DatageddonDorothea Salo
 
Who owns our work?
Who owns our work?Who owns our work?
Who owns our work?Dorothea Salo
 
Even the Loons are Licensed
Even the Loons are LicensedEven the Loons are Licensed
Even the Loons are LicensedDorothea Salo
 
Solving Problems with Web 2.0
Solving Problems with Web 2.0Solving Problems with Web 2.0
Solving Problems with Web 2.0Dorothea Salo
 
A Successful Failure: Community Requirements Gathering for DSpace
A Successful Failure: Community Requirements Gathering for DSpaceA Successful Failure: Community Requirements Gathering for DSpace
A Successful Failure: Community Requirements Gathering for DSpaceDorothea Salo
 
Lipstick on a Pig: Integrated Library Systems
Lipstick on a Pig: Integrated Library SystemsLipstick on a Pig: Integrated Library Systems
Lipstick on a Pig: Integrated Library SystemsDorothea Salo
 
So you think you know libraries
So you think you know librariesSo you think you know libraries
So you think you know librariesDorothea Salo
 
Grab a bucket! It's raining data!
Grab a bucket! It's raining data!Grab a bucket! It's raining data!
Grab a bucket! It's raining data!Dorothea Salo
 
Save the Cows! Cyberinfrastructure for the Rest of Us
Save the Cows! Cyberinfrastructure for the Rest of UsSave the Cows! Cyberinfrastructure for the Rest of Us
Save the Cows! Cyberinfrastructure for the Rest of UsDorothea Salo
 
Network Security
Network SecurityNetwork Security
Network Securityhj43us
 
The security of quantum cryptography
The security of quantum cryptographyThe security of quantum cryptography
The security of quantum cryptographywtyru1989
 
Cryptography 101
Cryptography 101Cryptography 101
Cryptography 101jessepollak
 

More Related Content

Viewers also liked

RDF, RDA, and other TLAs
RDF, RDA, and other TLAsRDF, RDA, and other TLAs
RDF, RDA, and other TLAsDorothea Salo
 
I own copyright, so I pwn you!
I own copyright, so I pwn you!I own copyright, so I pwn you!
I own copyright, so I pwn you!Dorothea Salo
 
So are we winning yet?
So are we winning yet?So are we winning yet?
So are we winning yet?Dorothea Salo
 
Alice and bob: Love & the most important crypto on the net
Alice and bob: Love & the most important crypto on the netAlice and bob: Love & the most important crypto on the net
Alice and bob: Love & the most important crypto on the netChris Hammond-Thrasher
 
Cryptography (under)engineering
Cryptography (under)engineeringCryptography (under)engineering
Cryptography (under)engineeringslicklash
 
Modeling complex system
Modeling complex systemModeling complex system
Modeling complex systempriyanka1078
 
Alice & bob public key cryptography 101
Alice & bob public key cryptography 101Alice & bob public key cryptography 101
Alice & bob public key cryptography 101Joshua Thijssen
 
Enterprise architecture for complex system of-systems contexts
Enterprise architecture for complex system of-systems contextsEnterprise architecture for complex system of-systems contexts
Enterprise architecture for complex system of-systems contextsBoxer Research Ltd
 
Security and protection
Security and protectionSecurity and protection
Security and protectionNital Shingala
 
Even the Loons are Licensed
Even the Loons are LicensedEven the Loons are Licensed
Even the Loons are LicensedDorothea Salo
 
Solving Problems with Web 2.0
Solving Problems with Web 2.0Solving Problems with Web 2.0
Solving Problems with Web 2.0Dorothea Salo
 
A Successful Failure: Community Requirements Gathering for DSpace
A Successful Failure: Community Requirements Gathering for DSpaceA Successful Failure: Community Requirements Gathering for DSpace
A Successful Failure: Community Requirements Gathering for DSpaceDorothea Salo
 
Lipstick on a Pig: Integrated Library Systems
Lipstick on a Pig: Integrated Library SystemsLipstick on a Pig: Integrated Library Systems
Lipstick on a Pig: Integrated Library SystemsDorothea Salo
 
So you think you know libraries
So you think you know librariesSo you think you know libraries
So you think you know librariesDorothea Salo
 
Grab a bucket! It's raining data!
Grab a bucket! It's raining data!Grab a bucket! It's raining data!
Grab a bucket! It's raining data!Dorothea Salo
 
Save the Cows! Cyberinfrastructure for the Rest of Us
Save the Cows! Cyberinfrastructure for the Rest of UsSave the Cows! Cyberinfrastructure for the Rest of Us
Save the Cows! Cyberinfrastructure for the Rest of UsDorothea Salo
 

Viewers also liked (19)

RDF, RDA, and other TLAs
RDF, RDA, and other TLAsRDF, RDA, and other TLAs
RDF, RDA, and other TLAs
 
I own copyright, so I pwn you!
I own copyright, so I pwn you!I own copyright, so I pwn you!
I own copyright, so I pwn you!
 
So are we winning yet?
So are we winning yet?So are we winning yet?
So are we winning yet?
 
Alice and bob: Love & the most important crypto on the net
Alice and bob: Love & the most important crypto on the netAlice and bob: Love & the most important crypto on the net
Alice and bob: Love & the most important crypto on the net
 
Cryptography (under)engineering
Cryptography (under)engineeringCryptography (under)engineering
Cryptography (under)engineering
 
Modeling complex system
Modeling complex systemModeling complex system
Modeling complex system
 
Alice & bob public key cryptography 101
Alice & bob public key cryptography 101Alice & bob public key cryptography 101
Alice & bob public key cryptography 101
 
Enterprise architecture for complex system of-systems contexts
Enterprise architecture for complex system of-systems contextsEnterprise architecture for complex system of-systems contexts
Enterprise architecture for complex system of-systems contexts
 
Security and protection
Security and protectionSecurity and protection
Security and protection
 
Introduction to cryptography
Introduction to cryptographyIntroduction to cryptography
Introduction to cryptography
 
Escaping Datageddon
Escaping DatageddonEscaping Datageddon
Escaping Datageddon
 
Who owns our work?
Who owns our work?Who owns our work?
Who owns our work?
 
Even the Loons are Licensed
Even the Loons are LicensedEven the Loons are Licensed
Even the Loons are Licensed
 
Solving Problems with Web 2.0
Solving Problems with Web 2.0Solving Problems with Web 2.0
Solving Problems with Web 2.0
 
A Successful Failure: Community Requirements Gathering for DSpace
A Successful Failure: Community Requirements Gathering for DSpaceA Successful Failure: Community Requirements Gathering for DSpace
A Successful Failure: Community Requirements Gathering for DSpace
 
Lipstick on a Pig: Integrated Library Systems
Lipstick on a Pig: Integrated Library SystemsLipstick on a Pig: Integrated Library Systems
Lipstick on a Pig: Integrated Library Systems
 
So you think you know libraries
So you think you know librariesSo you think you know libraries
So you think you know libraries
 
Grab a bucket! It's raining data!
Grab a bucket! It's raining data!Grab a bucket! It's raining data!
Grab a bucket! It's raining data!
 
Save the Cows! Cyberinfrastructure for the Rest of Us
Save the Cows! Cyberinfrastructure for the Rest of UsSave the Cows! Cyberinfrastructure for the Rest of Us
Save the Cows! Cyberinfrastructure for the Rest of Us
 

Similar to Encryption

Network Security
Network SecurityNetwork Security
Network Securityhj43us
 
The security of quantum cryptography
The security of quantum cryptographyThe security of quantum cryptography
The security of quantum cryptographywtyru1989
 
Cryptography 101
Cryptography 101Cryptography 101
Cryptography 101jessepollak
 
Basic Cryptography Overview
Basic Cryptography OverviewBasic Cryptography Overview
Basic Cryptography Overviewereddick
 
Cryptography & Digital certificate
Cryptography & Digital certificateCryptography & Digital certificate
Cryptography & Digital certificateDeepak Kumar (D3)
 
enkripsi and authentication
enkripsi and authenticationenkripsi and authentication
enkripsi and authenticationahmad amiruddin
 
Suppose Bob sends an encrypted document to Alice. To be verifiable, .pdf
Suppose Bob sends an encrypted document to Alice. To be verifiable, .pdfSuppose Bob sends an encrypted document to Alice. To be verifiable, .pdf
Suppose Bob sends an encrypted document to Alice. To be verifiable, .pdfLalkamal2
 
Workshop on Cryptography - Frequency Analysis (basic)
Workshop on Cryptography - Frequency Analysis (basic)Workshop on Cryptography - Frequency Analysis (basic)
Workshop on Cryptography - Frequency Analysis (basic)Andrea Tino
 
2009 01-21-mit-media-presentation
2009 01-21-mit-media-presentation2009 01-21-mit-media-presentation
2009 01-21-mit-media-presentationAndrew Lewman
 
Chapter 8 - Security in Computer Networks
Chapter 8 - Security in Computer NetworksChapter 8 - Security in Computer Networks
Chapter 8 - Security in Computer NetworksAndy Juan Sarango Veliz
 

Similar to Encryption (14)

Network Security
Network SecurityNetwork Security
Network Security
 
The security of quantum cryptography
The security of quantum cryptographyThe security of quantum cryptography
The security of quantum cryptography
 
Cryptography 101
Cryptography 101Cryptography 101
Cryptography 101
 
Crypt
CryptCrypt
Crypt
 
Basic Cryptography Overview
Basic Cryptography OverviewBasic Cryptography Overview
Basic Cryptography Overview
 
Cryptography & Network Security
Cryptography & Network SecurityCryptography & Network Security
Cryptography & Network Security
 
Cryptography & Digital certificate
Cryptography & Digital certificateCryptography & Digital certificate
Cryptography & Digital certificate
 
enkripsi and authentication
enkripsi and authenticationenkripsi and authentication
enkripsi and authentication
 
lesson
lessonlesson
lesson
 
Cryptography.
Cryptography.Cryptography.
Cryptography.
 
Suppose Bob sends an encrypted document to Alice. To be verifiable, .pdf
Suppose Bob sends an encrypted document to Alice. To be verifiable, .pdfSuppose Bob sends an encrypted document to Alice. To be verifiable, .pdf
Suppose Bob sends an encrypted document to Alice. To be verifiable, .pdf
 
Workshop on Cryptography - Frequency Analysis (basic)
Workshop on Cryptography - Frequency Analysis (basic)Workshop on Cryptography - Frequency Analysis (basic)
Workshop on Cryptography - Frequency Analysis (basic)
 
2009 01-21-mit-media-presentation
2009 01-21-mit-media-presentation2009 01-21-mit-media-presentation
2009 01-21-mit-media-presentation
 
Chapter 8 - Security in Computer Networks
Chapter 8 - Security in Computer NetworksChapter 8 - Security in Computer Networks
Chapter 8 - Security in Computer Networks
 

More from Dorothea Salo

Soylent SemanticWeb Is People!
Soylent SemanticWeb Is People!Soylent SemanticWeb Is People!
Soylent SemanticWeb Is People!Dorothea Salo
 
Privacy and libraries
Privacy and librariesPrivacy and libraries
Privacy and librariesDorothea Salo
 
Risk management and auditing
Risk management and auditingRisk management and auditing
Risk management and auditingDorothea Salo
 
The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)
The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)
The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)Dorothea Salo
 
Is this BIG DATA which I see before me?
Is this BIG DATA which I see before me?Is this BIG DATA which I see before me?
Is this BIG DATA which I see before me?Dorothea Salo
 
MARC and BIBFRAME; Linking libraries and archives
MARC and BIBFRAME; Linking libraries and archivesMARC and BIBFRAME; Linking libraries and archives
MARC and BIBFRAME; Linking libraries and archivesDorothea Salo
 
Research Data and Scholarly Communication
Research Data and Scholarly CommunicationResearch Data and Scholarly Communication
Research Data and Scholarly CommunicationDorothea Salo
 
Research Data and Scholarly Communication (with notes)
Research Data and Scholarly Communication (with notes)Research Data and Scholarly Communication (with notes)
Research Data and Scholarly Communication (with notes)Dorothea Salo
 
Librarians love data!
Librarians love data!Librarians love data!
Librarians love data!Dorothea Salo
 
Taming the Monster: Digital Preservation Planning and Implementation Tools
Taming the Monster: Digital Preservation Planning and Implementation ToolsTaming the Monster: Digital Preservation Planning and Implementation Tools
Taming the Monster: Digital Preservation Planning and Implementation ToolsDorothea Salo
 
Avoiding the Heron's Way
Avoiding the Heron's WayAvoiding the Heron's Way
Avoiding the Heron's WayDorothea Salo
 
Manufacturing Serendipity
Manufacturing SerendipityManufacturing Serendipity
Manufacturing SerendipityDorothea Salo
 
Databases, Markup, and Regular Expressions
Databases, Markup, and Regular ExpressionsDatabases, Markup, and Regular Expressions
Databases, Markup, and Regular ExpressionsDorothea Salo
 

More from Dorothea Salo (18)

Soylent SemanticWeb Is People!
Soylent SemanticWeb Is People!Soylent SemanticWeb Is People!
Soylent SemanticWeb Is People!
 
Privacy and libraries
Privacy and librariesPrivacy and libraries
Privacy and libraries
 
Paying for it
Paying for itPaying for it
Paying for it
 
Risk management and auditing
Risk management and auditingRisk management and auditing
Risk management and auditing
 
The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)
The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)
The Canonically Bad (Digital) Humanities Proposal (and how to avoid it)
 
Is this BIG DATA which I see before me?
Is this BIG DATA which I see before me?Is this BIG DATA which I see before me?
Is this BIG DATA which I see before me?
 
MARC and BIBFRAME; Linking libraries and archives
MARC and BIBFRAME; Linking libraries and archivesMARC and BIBFRAME; Linking libraries and archives
MARC and BIBFRAME; Linking libraries and archives
 
Library Linked Data
Library Linked DataLibrary Linked Data
Library Linked Data
 
FRBR and RDA
FRBR and RDAFRBR and RDA
FRBR and RDA
 
Research Data and Scholarly Communication
Research Data and Scholarly CommunicationResearch Data and Scholarly Communication
Research Data and Scholarly Communication
 
Research Data and Scholarly Communication (with notes)
Research Data and Scholarly Communication (with notes)Research Data and Scholarly Communication (with notes)
Research Data and Scholarly Communication (with notes)
 
What We Organize
What We OrganizeWhat We Organize
What We Organize
 
Librarians love data!
Librarians love data!Librarians love data!
Librarians love data!
 
Taming the Monster: Digital Preservation Planning and Implementation Tools
Taming the Monster: Digital Preservation Planning and Implementation ToolsTaming the Monster: Digital Preservation Planning and Implementation Tools
Taming the Monster: Digital Preservation Planning and Implementation Tools
 
Avoiding the Heron's Way
Avoiding the Heron's WayAvoiding the Heron's Way
Avoiding the Heron's Way
 
Manufacturing Serendipity
Manufacturing SerendipityManufacturing Serendipity
Manufacturing Serendipity
 
Open Content
Open ContentOpen Content
Open Content
 
Databases, Markup, and Regular Expressions
Databases, Markup, and Regular ExpressionsDatabases, Markup, and Regular Expressions
Databases, Markup, and Regular Expressions
 

Recently uploaded

Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfOverkill Security
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingEdi Saputra
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Zilliz
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024The Digital Insurer
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native ApplicationsWSO2
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMESafe Software
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...apidays
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesrafiqahmad00786416
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MIND CTI
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024The Digital Insurer
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...apidays
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelDeepika Singh
 

Recently uploaded (20)

Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024Manulife - Insurer Transformation Award 2024
Manulife - Insurer Transformation Award 2024
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Architecting Cloud Native Applications
Architecting Cloud Native ApplicationsArchitecting Cloud Native Applications
Architecting Cloud Native Applications
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
Apidays Singapore 2024 - Scalable LLM APIs for AI and Generative AI Applicati...
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot ModelNavi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
Navi Mumbai Call Girls 🥰 8617370543 Service Offer VIP Hot Model
 

Encryption

  • 1. Encryption can’t talk about the NSA until you understand what they broke!
  • 2. Alice, Bob, and Eve Eve Maler/Rich Salz, “Eve [Maler] eavesdropping on Alice and Bob [DuCharme]’s conversation.” http://www.flickr.com/photos/xmlgrrl/966601078/ CC-BY-NC-SA
  • 3. Cryptography: why, what? •Guard against threats to communication: •eavesdropping •tampering •impersonation •“I didn’t say that!” or “That isn’t what I said!” •“Cryptographic algorithm” or “cipher” •Way to turn plaintext (or other content) into “ciphertext” that is unreadable without special knowledge (i.e. a key) •“Encrypt” = code the message. “Decrypt” = decode. •This is all math! Remember that a message is 1’s and 0’s, a big number. •“In the clear” “cleartext” “plaintext” = not encrypted •If you hear “passwords stored in the clear,” RUN AWAY.
  • 4. The easy but wrong way •Alice and Bob want to say something secret. •Assume that Eve can watch everything they say to each other. •Alice sends Bob a special key she will use to lock her messages. Bob sends Alice another special key that he will use for his. •They “encrypt” (lock) subsequent messages with those keys and send them. •They have each other’s keys, so they can unlock the messages on arrival. •Where’s the problem here? What can Eve do to eavesdrop further?
  • 5. Problem: key exchange in the clear! •Physical analogy: Alice putting her housekey in the mail to Bob, and vice versa. •Eve can easily steal the mail, go to a locksmith, and copy the keys! So Alice and Bob’s homes are not safe from Eve. •Ugh. But what if a house worked like a bank safety-deposit box? •TWO keys, one at the bank, one with Alice (and a copy with Bob). BOTH keys needed to open the box! •The bank is told only to use its key if Alice or Bob is present (with a valid ID). •Even if Eve copies Alice’s key, or Bob’s, the bank won’t let her in! •Aha. So we need to split the key, and keep half of it safe and secret! (It can’t travel.)
  • 6. Solution: public-key cryptography •Paired keys: “public” and “private” •A message ENCRYPTED (locked) with one of these keys must be DECRYPTED (unlocked) with the OTHER KEY! •Anybody can have your public key. ONLY YOU have your private key, and you never, ever send it anywhere! •Alice and Bob •Each has the other person’s public key. So does Eve. Because it’s public! •Alice sends Bob a message encrypted with Bob’s public key. •Only Bob’s private key can decrypt it! The same works in reverse. •There is no opportunity for Eve to grab a private key in transit. She’ll have to hack Alice’s or Bob’s machine to get their private keys! •Not totally foolproof: if somebody gets your private key, you’re toast. •Or if someone can crack the encryption algorithm. Algorithms evolve over time, as computing power grows.
  • 7. Used on websites and for email connections too •SSL: Secure Socket Layer •TLS: Transport Layer Security •newer and better than SSL •This is what causes the little lock in your browser for https:// sites! •Weak link: “certificate authorities.” •Long and complicated story, but short version: these are how a lot of attacks on encryption happen. •If you hear about “certificate spoofing”... yeah.
  • 8. Digital signature •Uses public-private key pairs to prove that a message comes from you. •Encrypt the message with your PRIVATE key. •Send out the encrypted message. •It can only be decrypted with your PUBLIC key. So if they can figure out how to read it, you must have sent it! •In actual fact, this is cumbersome, with larger messages especially. •So usually a message is “hashed” (put through a computer program) and the result (“hash”) is encrypted and sent along with the message. The recipient rehashes the message, decrypts the sent hash, and compares; if they’re not the same, there’s a problem. •But it’s basically the same idea.
  • 9. “Backdoor” •Alice and Bob have two-key systems on their house’s front door. •What about the back door? If it isn’t protected the same way... •So a “backdoor” is a secret vulnerability in a security system or encryption algorithm that allows those in the know to bypass the usual security.
  • 10. Encrypting email •“Pretty Good Privacy” (PGP) is the best thing out there. •Should integrate with most email services. •Unless you are using encryption, email should NEVER EVER be considered secure communication. NOT EVER. •(And maybe not even if you are. May be stored in the clear, even if it traveled encrypted! And is the other person using encryption too?) •HIPAA, FERPA, etc. NO. NOT EVER. •Yes, your boss CAN and WILL read your email. Do not do personal business from a work email account. EVER.