Ch04 Crypto7e

Cryptography and
Network Security
Seventh Edition, Global Edition
by William Stallings
© 2017 Pearson Education, Ltd., All rights reserved.

Chapter 4
Block Ciphers and the Data
Encryption Standard
Stream Cipher
For practical reasons the bit-
In the ideal case, a one-time
stream generator must be
pad version of the Vernam
Encrypts a digital data implemented as an
cipher would be used, in
stream one bit or one byte algorithmic procedure so
which the keystream is as
at a time that the cryptographic bit
long as the plaintext bit
stream can be produced by
stream
both users
Examples: If the cryptographic It must be
•Autokeyed Vigenère cipher keystream is random, computationally
•Vernam cipher then this cipher is impractical to predict
unbreakable by any future portions of the
means other than bit stream based on
acquiring the previous portions of
keystream the bit stream
•Keystream must be
provided to both users in
advance via some
independent and secure
channel The two users need
•This introduces
insurmountable logistical
only share the
problems if the intended generating key and
data traffic is very large each can produce the
keystream

Block Cipher
A block of
plaintext is treated
Typically a block
as a whole and
size of 64 or 128
used to produce a
bits is used
ciphertext block of
equal length
The majority of
As with a stream network-based
cipher, the two symmetric
users share a cryptographic
symmetric applications make
encryption key use of block
ciphers

Table 4.1
Encryption and Decryption Tables for Substitution Cipher of Figure
4.2

Feistel Cipher
• Feistel proposed the use of a cipher that
alternates substitutions and permutations
•Each plaintext element or group of elements
Substitutions is uniquely replaced by a corresponding
ciphertext element or group of elements
•No elements are added or deleted or replaced

Permutation in the sequence, rather the order in which the
elements appear in the sequence is changed
• Is a practical application of a proposal by Claude

Shannon to develop a product cipher that
alternates confusion and diffusion functions
• Is the structure used by many significant
symmetric block ciphers currently in use
Diffusion and Confusion
• Terms introduced by Claude Shannon to capture
the two basic building blocks for any
cryptographic system
• Shannon’s concern was to thwart cryptanalysis
based on statistical analysis
Diffusion
•The statistical structure of the plaintext is dissipated into long-range statistics of the
ciphertext
•This is achieved by having each plaintext digit affect the value of many ciphertext
digits
Confusion
•Seeks to make the relationship between the statistics of the ciphertext and the value
of the encryption key as complex as possible
•Even if the attacker can get some handle on the statistics of the ciphertext, the way in
which the key was used to produce that ciphertext is so complex as to make it
difficult to deduce the key

Feistel Cipher Design Features
• Block size
• Larger block sizes mean greater • Round function F
security but reduced • Greater complexity generally
encryption/decryption speed for a means greater resistance to
given algorithm cryptanalysis
• Key size • Fast software

• Larger key size means greater security encryption/decryption
but may decrease • In many cases, encrypting is
encryption/decryption speeds embedded in applications or
utility functions in such a way as
to preclude a hardware
• Number of rounds implementation; accordingly, the
• The essence of the Feistel cipher is that speed of execution of the
a single round offers inadequate algorithm becomes a concern
security but that multiple rounds offer
increasing security
• Ease of analysis
• If the algorithm can be concisely
• Subkey generation algorithm and clearly explained, it is easier
• Greater complexity in this algorithm to analyze that algorithm for
should lead to greater difficulty of cryptanalytic vulnerabilities and
cryptanalysis therefore develop a higher level
of assurance as to its strength
Feistel Example

Data Encryption Standard (DES)
• Issued in 1977 by the National Bureau of Standards (now

NIST) as Federal Information Processing Standard 46
• Was the most widely used encryption scheme until the
introduction of the Advanced Encryption Standard
(AES) in 2001
• Algorithm itself is referred to as the Data Encryption
Algorithm (DEA)
• Data are encrypted in 64-bit blocks using a 56-bit key
• The algorithm transforms 64-bit input in a series of steps
into a 64-bit output
• The same steps, with the same key, are used to reverse
the encryption

Table 4.2
DES
Example
(Table can be found on

page 114 in textbook)
Note: DES subkeys are shown as eight 6-bit values in hex format
Table 4.3 Avalanche Effect in DES: Change in Plaintext
Table 4.4 Avalanche Effect in DES: Change in Key
Table 4.5
Average Time Required for Exhaustive Key Search

Strength of DES
• Timing attacks
• One in which information about the key or the
plaintext is obtained by observing how long it takes
a given implementation to perform decryptions on
various ciphertexts
• Exploits the fact that an encryption or decryption
algorithm often takes slightly different amounts of
time on different inputs
• So far it appears unlikely that this technique will
ever be successful against DES or more powerful
symmetric ciphers such as triple DES and AES

Block Cipher Design Principles:
Number of Rounds
In general, the
criterion should be
If DES had 15 or
that the number of
The greater the fewer rounds,
rounds is chosen so
number of rounds, differential
that known
the more difficult it cryptanalysis would
cryptanalytic efforts
is to perform require less effort
require greater
cryptanalysis than a brute-force
effort than a simple
key search
brute-force key
search attack

Design of Function F
• The heart of a Feistel The algorithm should have good
block cipher is the avalanche properties
function F
• The more nonlinear F, Bit
the more difficult any Strict avalanche
independence
type of cryptanalysis will criterion (SAC)
criterion (BIC)
be
States that output bits
• The SAC and BIC States that any output
bit j of an S-box should j and k should change
criteria appear to change with probability independently when
any single input bit i is
strengthen the 1/2 when any single input
bit i is inverted for all i , j inverted for all i , j ,
effectiveness of the and k
confusion function

Key Schedule Algorithm
• With any Feistel block cipher, the key is used to
generate one subkey for each round
• In general, we would like to select subkeys to
maximize the difficulty of deducing individual
subkeys and the difficulty of working back to the
main key
• It is suggested that, at a minimum, the key
schedule should guarantee key/ciphertext Strict
Avalanche Criterion and Bit Independence
Criterion
Summary
• Traditional Block Cipher • The strength of DES
Structure • Use of 56-bit keys
• Stream ciphers • Nature of the DES
• Block ciphers algorithm
• Motivation for the • Timing attacks
Feistel cipher structure
• Feistel cipher • Block cipher design
principles
• The Data Encryption • Number of rounds
Standard (DES) • Design of function F
• Encryption • Key schedule algorithm
• Decryption
• Avalanche effect

Ch04 Crypto7e

Uploaded by

Copyright:

Available Formats

Ch04 Crypto7e

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Ch04 Crypto7e

Uploaded by

Copyright:

Available Formats

Cryptography and

© 2017 Pearson Education, Ltd., All rights reserved.

© 2017 Pearson Education, Ltd., All rights reserved.

© 2017 Pearson Education, Ltd., All rights reserved.

© 2017 Pearson Education, Ltd., All rights reserved.

•No elements are added or deleted or replaced

• Is a practical application of a proposal by Claude

© 2017 Pearson Education, Ltd., All rights reserved.

• Key size • Fast software

© 2017 Pearson Education, Ltd., All rights reserved.

• Issued in 1977 by the National Bureau of Standards (now

© 2017 Pearson Education, Ltd., All rights reserved.

(Table can be found on

© 2017 Pearson Education, Ltd., All rights reserved.

© 2017 Pearson Education, Ltd., All rights reserved.

© 2017 Pearson Education, Ltd., All rights reserved.

© 2017 Pearson Education, Ltd., All rights reserved.

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.