securityofdistributedsystem.docVIP

(1).What is the security goals? ■Confidentiality: ? □Data transmitted or stored should only be disclosed to those entitled ? □Confidentiality of entities is also referred to as anonymity ■Data Integrity: ? □It should be possible to detect any modification of data ? □This requires to be able to identify the creator of some data ■Accountability: ? □It should be possible to identify the entity responsible for any communication event ■Availability: ? □Services should be available and function correctly ? ■Controlled Access: ? □Only authorized entities should be able to access certain services or information (2).What is difference between asymmetric and symmetric cryptography? Symmetric cryptography using one key for en-/decryption or signing/checking Asymmetric cryptography using two different keys for en-/decryption or signing/checking Public key for encryption Private key for decryption Symmetric Encryption General Description The same key is used for enciphering and deciphering of messages Asymmetric Cryptography ■General idea: ? □Use two different keys -K and +K for encryption and decryption ? □Given a random ciphertext c = E(+K, m) and +K it should be infeasible to compute m = D(-K, c) = D(-K, E(+K, m)) ? ▲This implies that it should be infeasible to compute -K when given +K ? □The key -K is only known to one entity A and is called A’s private key -KA ? □The key +K can be publicly announced and is called A’s public key +KA ■Applications: ? □Encryption: ? ▲If B encrypts a message with A’s public key +KA, he can be sure that only A can decrypt it using –KA ■Signing: ? ▲If A encrypts a message with his own private key -KA, everyone can verify this signature by decrypting it with A’s public key +KA! (3).How is the management of keys done in asymmetric cryptography? ■Design of asymmetric cryptosystems: ? □Difficulty: Find an algorithm and a method to construct two keys -K, +K such that it is not possible to decipher E(+K, m) with the knowledge of +K ? □Cons