Upload File

encryption, integrity and non-repudiation

7
Encryption, Integrity and Non- repudiation Simplified Mahendra Pratap Singh MS Cyber Law & Security, Lead Auditor ISO 27001 Team Whitehat People Email: [email protected] LinkedIn: www.linkedin.com/in/mpsingrathore Facebook: www.facebook.com/mpsinghrathore1 Website: www.mpsinghrathore.com Twitter: @mpsinghrathore

Upload: mahendra-pratap-singh

Post on 15-Aug-2015

190 views

Category:

Technology


0 download

Report

TRANSCRIPT

Page 1: Encryption, Integrity and non-repudiation

Encryption, Integrity and Non-repudiationSimplified

Mahendra Pratap SinghMS Cyber Law & Security, Lead Auditor ISO 27001Team Whitehat People

Email: [email protected]: www.linkedin.com/in/mpsingrathoreFacebook: www.facebook.com/mpsinghrathore1Website: www.mpsinghrathore.comTwitter: @mpsinghrathore

mailto:[email protected]
http://www.linkedin.com/in/mpsingrathore
http://www.facebook.com/mpsinghrathore1
http://www.mpsinghrathore.com/
http://twitter.com/mpsinghrathore
Page 2: Encryption, Integrity and non-repudiation

Confidentiality

Symmetric encryption:-

In this encryption, a secret key is shared between both the parties to encrypt and decrypt message at source and destination respectively.

Asymmetric encryption:- (aka PKI)

This encryption requires 2 separate keys; one is private and another is public. In next slides usage of public and private keys is explained by flow chart to achieve confidentiality, integrity and non-repudiation.

Page 3: Encryption, Integrity and non-repudiation

Confidentiality

Sender (S) Recipient (R)

Sender encrypts message using recipient’s Public key at source.

Message is decrypted at destination using recipient's Private key

01011100100110110

Page 4: Encryption, Integrity and non-repudiation

Authenticity & Non-repudiation

Sender (S) Recipient (R)

Sender encrypts message using sender’s Private key at source.

Message is decrypted at destination using sender’s Public key

Page 5: Encryption, Integrity and non-repudiation

Integrity: Digital Signature

Message Message Hash

Encrypted Hash

Hash Algorithm

Digital Signature

Encrypted by private key of signer.

Transmission

Encrypted Hash

Message Hash

Decrypted by public key of signer.

Page 6: Encryption, Integrity and non-repudiation

Integrity: Digital Signature

If decrypted message hash value at destination matches with second message hash computed at destination, Integrity is ensured.

Page 7: Encryption, Integrity and non-repudiation

By

Mahendra Pratap SinghMS Cyber Law & Security, Lead Auditor ISO 27001

Team Whitehat People

Email: [email protected]: www.linkedin.com/in/mpsingrathoreFacebook: www.facebook.com/mpsinghrathore1Website: www.mpsinghrathore.comTwitter: @mpsinghrathore

Content in slides is best of my understanding with the source.

Thank You

mailto:[email protected]
http://www.linkedin.com/in/mpsingrathore
http://www.facebook.com/mpsinghrathore1
http://www.mpsinghrathore.com/
http://twitter.com/mpsinghrathore

Cyber Attacks and Cryptography Overview. Security Objectives Confidentiality Integrity Availability Authentication Non-repudiation Internet Security -

EM Analysis of ECC Computations on Mobile Devicescgebotys/NEW/Simon_thesis.pdf · Many secured applications use public key cryptography for providing authentication, integrity, non-repudiation

Block Level Data Integrity Assurance Using Matrix Dialing ... · vious approaches of data security using encryption and decryption algorithms and data integrity assurance using TPA

Non-repudiation | Authentication | Integrity | Confidentiality · Non-repudiation | Authentication | Integrity | Confidentiality. 03 ... growing demand for qualified digital signature

VIRTUAL PRIVATE NETWORKS (VPN) · PDF file · 2012-10-07transported. Data Integrity – ensuring that the data has not been altered . Encryption Encryption -- is a method of “scrambling”

SEC325 BitLocker™ Drive Encryption Deployment Laura Benofsky Lead Program Manager Windows Security-System Integrity

Operation Repudiation

Symmetric Encryption 2: Integrity - University Of Marylandcs.umd.edu/class/fall2017/cmsc414-0201/slides/15-symmetric2.pdf · Symmetric Encryption 2: Integrity With material from Dave

myspot.mona.uwi.edumyspot.mona.uwi.edu/dlis/sites/default/files/dlis/uploads/LIBS 3501 Automation in...(b) Access control (c) Data confidentiality (d) Data integrity (e) Non-repudiation

Symmetric Encryption Lesson Introduction ●Block cipher primitives ●DES ●AES ●Encrypting large message ●Message integrity

New European Schemes for Signature, Integrity and ... · PDF fileNew European Schemes for Signature, Integrity and Encryption (NESSIE): ... (New European Schemes for Signature, Integrity,

Breach Repudiation and Terminating a Contract Repudiation and Terminating a Contract Michael Bennett Barrister Seven Wentworth Chambers !"#$%&'$()'*#"+,($-,(.'$'/0(-"$%-' ' ' ' '

Repudiation of Contract - The Post-Restatement Cases

Non Repudiation in Online Transaction

Affidavit Of Repudiation Of Citizenship ncix

Time/Date Stamp Time/Date Stamp Authorization Secure Non- repudiation Secure Non- repudiation Key Recovery Key Recovery Message Confidentiality Message

Authenticated Encryption - COSIC · Authenticated Encryption (AE) Security goals: Confidentiality and integrity of messages exchanged between Alice and Bob. Adversarial capabilities:

Securing Mobile Agents by Integrity-Based Encryption

Chapter 2 Basic Encryption and Decryption. csci5233 computer security & integrity 2 Encryption / Decryption encrypted transmission AB plaintext ciphertext

Department of the Navy Information Assurance Program Manuals1/5239.1.pdf · controls in a manner that promotes confidentiality, integrity, availability, non-repudiation, and authentication

Controlled Substance Ordering System (CSOS)€¢ Improved Security Measures • Order originator authentication through CSOS Certificate • Order content integrity •Non-repudiation

CONFIDENTIALY USING CONVENTIONAL ENCRYPTION Chapter 7 Historically Conventional Encryption Recently Authentication, Integrity, Signature, Public-key

In Copyright - Non-Commercial Use Permitted Rights ...504/eth-504-01.pdf · rity [32]. Amongst its objectives are confidentiality, integrity, authentication and non-repudiation

15-1 Last time Internet Application Security and Privacy Public-key encryption Integrity

Breaking Message Integrity of an End-to-End Encryption ... · encryption break. Key words: E2EE, LINE, key exchange, group message, authenticated encryption 1 Introduction 1.1 Background

Australian Government · Web viewThe purpose of cryptography is to provide confidentiality, integrity, authentication and non-repudiation of information. Confidentiality protects

1. 2 Requirements and Safeguards for ECommerce Entity authentication Message integrity Payment non-repudiation Effective audit mechanism Privacy

Business Case Valuation Worn... · 2015. 3. 31. · documents to provide non-repudiation and message integrity. Digital certificate on the card that supports electronic verification

CipherMail email encryption gateway administration guide · OpenPGP and PDF encryption. S/MIME and OpenPGP provides authentica-tion, message integrity and non-repudiation and protection

Authentication, Integrity, and Encryption - Cisco Systems, Inc

TECHNICAL BRIEF MOVEit File Non-Repudiation · MOVEit™: File Non-Repudiation TECHNICAL BRIEF Benefits The ability to provide end-to-end file non-repudiation is an essential part

CS 6401 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls

Message Authentication Codesjain/cse571-17/ftp/l_12mac.pdfMessage authentication = Integrity + Source Authentication (with or without encryption) 2. Double public key encryption can

Information Integrity and Message Digests CSCI 5857: Encoding and Encryption

Message Authentication Codesjain/cse571-11/ftp/l_12mac.pdf · Message authentication = Integrity + Source Authentication (with or without encryption) 2. Double public key encryption