Unit 2

Introduced to the concepts, theory, and practical

aspects of cryptography.
• specifically relevant in the context of the
blockchain technology.
• the theoretical foundation will be discussed
and then relevant practical experiments
will be introduced.
 Cryptography
• Cryptography is the science of making information
secure in the presence of adversaries.
• It provides a means of secure communication in
the presence of adversaries with assumed
limitless resources.
• Ciphers are used to encrypt data so that if
intercepted by an adversary, the data is
meaningless to them without +++++decryption,
which requires the secret key.
Confidentiality
• Confidentiality is the assurance that
information is only
• available to authorized entities.
Integrity
• Integrity is the assurance that information is
modifiable
• only by authorized entities.
Authentication
• Authentication provides assurance about the
identity of an entity
• or the validity of a message. There are two
types of authentications, discussed here.
ENTITY AUTHENTICATION
• Entity authentication is the assurance that an entity
is currently involved and active in a communication
• session. Traditionally, users are issued a username
and password, which are used to gain access to the
platforms they are using. This is called single factor
authentication
• This type of authentication is not very secure
• The use of additional techniques for user identification is known or
two-factor authentication
example :biometric
• More than 2 factors-- multifactor authentication

DATA ORIGIN AUTHENTICATION:

• message authentication, this is an assurance that the source of

information is verified.
• Data origin authentication implies data integrity because if a
source is corroborated, then data must not have been
altered.
Various methods, such as Message Authentication Codes (MACs)
and digital signatures are most commonly used
Non-repudiation
• Non-repudiation is the assurance that an
entity cannot deny a previous commitment or
action by providingunforgeable evidence
• it is a security service that provides
unforgeable evidence that a particular action
has occurred
• Non-repudiation has been an active research
area for many years.
Accountability
• Accountability is the assurance that actions
affecting security can be traced to the
responsible party.
• This is usually provided by logging and audit
mechanisms in systems where a detailed audit
is required due to the nature of the business,
for example, in electronic trading systems.
 Cryptographic primitives
• Cryptographic primitives are the basic building blocks
of a security protocol or system.
• A security protocol is a set of steps taken in
order to achieve required security goals by utilizing
appropriate security mechanisms.
• Various types of security protocols are in use, such as
authentication protocols, non-repudiation protocols,
and key management protocols.
 Symmetric cryptography
• secret key cryptography
• Shared key
• Before data exchange key need to generated and
exchanged
• There are two types of symmetric ciphers, stream
ciphers and block ciphers. Data Encryption Standard
(DES) and Advanced Encryption Standard (AES) are
common examples of block ciphers, whereas RC4 and
A5 are commonly used stream ciphers.
Message authentication modes
• In this mode, a message authentication code is
computed as a result of an encryption
function. MAC is basically a cryptographic
checksum that provides an integrity service.
The most common method to generate MAC
using block ciphers is CBC-MAC, where some
part of the last block of the chain is used as a
MAC.
 12/11/21
• Unit 2
 Cryptographic hashes

• Hash functions are basically used to compress a

message to a fixed length digest. In this mode,
block ciphers are used as a compression function
to produce a hash of plain text.
Examples related to cryptography have been
developed using the OpenSSL 1.0.2g 1 Mar
2016 command-line tool.
Asymmetric cryptography
• Asymmetric cryptography refers to a type of

cryptography whereby the key that is used to encrypt the

data is different from the key that is used to decrypt the
data.
• Various asymmetric cryptography schemes are in use, such
as RSA, DSA, and El-Gammal.
• Security mechanisms offered by public key cryptosystem
include key establishment, digital signatures, identification,
encryption, and decryption.
• Key establishment mechanisms are concerned with the design
of protocols that allow setting up of keys over an insecure
channel
• Sometimes, it is important to not only authenticate a user, but
to also identify the entity involved in a transaction; this can also
be achieved by a combination of digital signatures and
challenge-response protocols.
• The encryption mechanism to provide confidentiality can also
be realized using public key cryptosystems, such as RSA, ECC, or
El-Gammal.
• They are usually used to exchange keys for symmetric
algorithms and once the keys are established securely,
symmetric key algorithms can be used to encrypt the data.
Hash functions
• Hash functions are used to create fixed length digests of
arbitrarily long input strings. Hash functions are keyless

provide the data integrity service.

• Various families of hash functions are available, such as
MD, SHA1, SHA-2,SHA-3, RIPEMD, and Whirlpool.
• Hash functions are commonly used in digital signatures
and message authentication codes, such as HMACs.
• They have three security properties, namely pre-image
resistance, second pre-image resistance, and collision
resistance
• Hash functions are typically used to provide data integrity
services. These can be used as one-way functions and to
construct other cryptographic primitives, such as MACs and
digital signatures
• There are two practical and three security properties of hash
functions that must be met depending on the level of
requirements of integrity.
 COMPRESSION OF ARBITRARY MESSAGES INTO FIXED LENGTH DIGEST

• A hash function must be able to take a long input text of any

length and output a fixed length compressed message.
• Hash functions produce a compressed output in various bit
sizes, usually between 128-bits and 512-bits.
• Hash functions are efficient and fast one-way functions.
• The requirement is that they be very quick to compute
regardless of the message size.
 security property
1. PRE-IMAGE RESISTANCE
Consider an equation:
h(x) = y
Here, h is the hash function, x is the input, and y is the
hash.
The first security property requires that y cannot
be reverse computed to x. x is considered a pre-image of
y, hence the name pre-image resistance.
This is also called one-way property.
 SECOND PRE-IMAGE RESISTANCE

• This property requires that given x and h(x) , it is

almost impossible to find any other message m ,
where m != x hash of m = hash of x.
h(m) = h(x). This property is also known as weak
collision resistance.
 COLLISION RESISTANCE

• This property requires that two different input messages

should not hash to the same output. In other words, h(x)!=
h(z). This property is also known as strong collision
resistance
• Avalanche effect specifies that a small change, even a single
character change in the input text, will result in a totally
different hash output.
• A popular type of iterated hash function is Merkle-Damgard
construction. This construction is based on the idea of
dividing the input data into equal sizes of blocks and then
feeding them through the compression functions in an
iterative manner.
• The collision resistance of the property of compression
functions ensures that the hash output is also collision-
resistant.
 MESSAGE DIGEST (MD)

Message Digest functions were very popular in early

1990s. MD4 and MD5 are members of this category.

Both MD functions are found to be insecure and not

recommended for use any more.

MD5 is a 128-bit hash function that was commonly used

for file integrity checks
 SECURE HASH ALGORITHMS (SHAS)

SHA-0: This is a 160-bit function introduced by NIST in 1993.

SHA-1: SHA-1 was introduced later by NIST as a replacement of SHA-0.

This is also a 160-bit hash function.

SHA-1 is used commonly in SSL and TLS implementations.
Note : That SHA-1 is now considered insecure and is being deprecated
by certificate authorities.
• SHA-2: This category includes four functions defined by the number
of bits of the hash: SHA-224, SHA-256, SHA-384 and SHA-512.
• SHA3 is a NIST-standardized version of Keccak.
RIPEMD: RIPEMD is the acronym for RACE Integrity Primitives
Evaluation Message Digest. It is based on the design ideas
used to build MD4. There are multiple versions of RIPEMD,
including 128-bit, 160-bit, 256-bit,and 320-bit.
In blockchain, hash functions play a very vital role. Especially,
the proof of work function uses SHA-256 twice in order to
verify the computational effort spent by miners. RIPEMD 160
is used to produce bitcoin addresses.
Design of Secure Hash Algorithms (SHA)
In the following section, you will be
introduced to the design of SHA-256 and SHA-3.
Both of these are used in bitcoin and
Ethereum, respectively.
 SHA-256

• SHA-256 has the input message size < 2^64-bits.

• Block size is 512-bits and has a word size of 32-bits. Output is

256-bit digest.
• The compression function processes a 512-bit message block
and a 256-bit intermediate hash value.
• There are two main components of this function:
compression function and a message schedule.
Pre-processing:

1. Padding of the message, which is used to make the length of a block to 512-
bits if it is smaller than the required block size of 512-bits.

2. Parsing the message into message blocks that ensure that the message and
its padding is divided into equal blocks of 512- bits.

3. Setting up the initial hash value, which is the eight 32-bit words obtained by
taking the first 32-bits of the fractional parts of the
square roots of the first eight prime numbers.

4. These initial values are randomly chosen in order to initialize the process
and gives a level of confidence that no backdoor exists in the
algorithm.
 Hash computation:

1. Each message block is processed in a sequence and requires

64 rounds to compute the full hash output. Each round uses slightly
different constants to ensure that no two rounds are the same.

2. First, the message schedule is prepared.

3. Then, eight working variables are initialized.

4. Then, the intermediate hash value is calculated.

5. Finally, the message is processed and the output hash is produced:

• In the previous diagram, a, b, c, d, e, f, g, and h
are the registers. Maj and Ch are applied
bitwise.
• performs bitwise rotation. Round constants
are W and K , which are added mod 2^32.
 Design of SHA3 (Keccak)

• The structure of SHA-3 is very different from the usual SHA-

1 and SHA-2. The key idea behind SHA-3 is based on un-
keyed permutations as opposed to other usual hash
functions' constructions that used keyed permutations.

• A newer approach called sponge and squeeze

construction is used in Keccak, which is basically a

random permutation model.

• Different variants of SHA3 have been standardized, such as
SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHAKE128, and
SHAKE256.
• The following diagram shows the sponge and squeeze
model that is the basis of SHA3 or Keccak.
As an analogy to sponge,
1. first, the data is captivated into the sponge after applying
padding, where it is then changed into a subset of
permutation state using XOR and then the output is
squeezed out of the sponge function that represents the
transformed state.
2. Rate is the input block size of a sponge function, whereas
capacity determines the generic security level:
SHA-3 absorbing and squeezing function in
SHA3
• Note that even a small change in the text,
such as changing the case of H, results in a big
change in the output hash. This is known as
avalanche effect