登錄
登入

心智圖資源庫 Chapter 6-Block Cipher Operation

Chapter 6-Block Cipher Operation

區塊密碼和五種模式，區塊密碼（Block Cipher）是對稱加密的一種常見形式，通常用於加密大段資料。其基本原理是將明文分成多個等長的區塊（blocks），然後使用同一個金鑰對每個區塊進行加密，得到密文區塊。

編輯於2024-01-22 23:28:01

WSCoUtCI

最近的作品檢視更多>>

Microbiologia medica Infezione batterica e immunità
Microbiologia medica, Infezioni batteriche e immunità riassume e organizza i punti di conoscenza per aiutare gli studenti a comprendere e ricordare. Studia in modo più efficiente!
teoria cinetica dei gas
La teoria cinetica dei gas rivela la natura microscopica dei fenomeni termici macroscopici e le leggi dei gas trovando la relazione tra quantità macroscopiche e quantità microscopiche. Dal punto di vista del movimento molecolare, vengono utilizzati metodi statistici per studiare le proprietà macroscopiche e modificare i modelli di movimento termico delle molecole di gas.
Breve História do Tempo
Este é um mapa mental sobre uma breve história do tempo. "Uma Breve História do Tempo" é um trabalho científico popular com influência de longo alcance. Ele não apenas introduz os conceitos básicos da cosmologia e da relatividade, mas também discute os buracos negros e a expansão. Do universo. questões científicas de ponta, como inflação e teoria das cordas.

Chapter 6-Block Cipher Operation

WSCoUtCI

最近的作品檢視更多>>

推薦給您
大綱

軟體系統測試知識點總結
- 19
PlotWizard
Lumion10.0基本特效使用
- 8
Deu-Martina
LaTeX
- 11
Deu-Martina
【學習筆記】資料結構-樹
- 8
슈퍼직장인
售前技術方案
- 7
WSCoUtCI
系統分析師—軟體需求工程
- 17
슈퍼직장인
FamiSafe V8.0
- 10
WSUJfrxa
UNIMES系統
- 9
WSCoUtCI
軟體框架設計的藝術
- 8
WSUJfrxa
Nignx
- 7
WSCoUtCI

Chapter 6-Block Cipher Operation

double-DES

issue of reduction to single stage

have "meet-in middle" attack

encrypting P with all keys and store

decrypt C with all keys and match X value

can show takes O(2^56) steps

Triple DES

with 2 keys

structure

use 2 keys with E-D-E sequence

security

if k1=k2 then can work with single DES

no current known practical attacks, but several proposed impractical attacks might become basis of future attacks

with 3 keys

structure

application

has been adopted by some Internet applications

PGP

MIME

Modes of Operation

intro

block ciphers encrypt fixed size blocks: eg.DES encrypts 63 bits blocks with 56-bits key

NIST SP 800-38A defines 5 modes

Block Modes

Electronic Codebook Book(ECB)

uses

sending a few blocks of data

Limitations

現象

message repetition may show in ciphertext

particularly with data such graphics

原因

due to the encrypted message blocks independent

structure

Cipher Block Chaining(CBC)

structure

use Initial Vector(IV to start process)

uses

bulk data encryption,authentication

advantages

密文塊的依賴性

a ciphertext block depends on all blocks before it

變動的影響

any change to a block affects all following ciphertext blocks

limitation

need Initiation Vector(IV)

must be known to sender & reciever

if sent in clear, attack can change bits of first block, and change IV to compensate(抵消)

sent encrypted in ECB mode

Message Padding(訊息填充)

def

當資訊末尾不足以構成一個加密區塊是需要採取措施處理它

方法

pad either with known non-data valus(eg nulls)

pad last block along with count od pad size

XTS-AES Mode

intro

for block oriented storage use

加密函數

T is tweak(調整值)，H is a Hash function

Stream Modes

Cipher Feedback(CFB)

uses

stream data encryption, authentication

process

1. message is treated as a stream of bits

2. added to the output of the block ciphert

3. result is fed back for next stage

standard allows any number of bit(1,8,64,128 etc)

structure

advantages

appropriate when data arrives in bit/bytes

block cipher is used in encryption mode at both ends to yield ps-random bitstream

errors propagate for several blocks after the error(but not indefinitely遙遙無期地)

Limitation

need to stall(暫停) while do block encryption after every-bits

Output Feed Back(OFB)

intro

outpu tof cipher is added to message

output is then feedback

feedback is independent of message

can be computed in advance

uses

stream encryption on noisy channels

structure

advantages

bit errors do not propagate

more vulnerable to message stream modification

Limitation

needs an IV which is unique for each use if ever reuse attacker can recover propagate

sender& reciever must remian in sync

Only full block feedback(ie CFB-64 or CFB-128) should be used

Counter(CTR)

intro

與OFB相似

similar to OFB

加密計數器值

but enctypts counter value rather than any feedback value

每個區塊需要不同的counter value 和 key value，且不重複使用

加密方程

uses

high-speed network encryptions

structure

advantages

efficiency

can do parallel encryptions in h/w or s/w

can preprocess in advance of need

good for bursty high speed links

allow random access to encrypted data blocks

provable security(good as other modes)

Limitation

ensure never reuse key/counter values, otherwise could break(cf. OFB)

Feedback Characteristics