ScholarQuill logoScholarQuillUniversity Notes
  • Notes
  • Past Papers
  • Blogs
  • Todo
Login
ScholarQuill logoScholarQuillUniversity Notes
Login
NotesPast PapersBlogsTodo
More
SubjectsDiscussionCGPA CalculatorGPA CalculatorStudent PortalCourse Outline
About
About usPrivacy PolicyReportContact
Notes
Past Papers
Blogs
Todo
Analytics
    Current Subject
    🧩
    Cyber Security
    ITEC3125
    Progress0 / 39 topics
    Topics
    1. Introduction: Fundamental Concepts of Security2. Types of Attacks3. Social Engineering Attacks4. Classification Traits of Malwares5. Circulation6. Infection7. Concealment8. Payload Capabilities9. Web Application Attacks: SQL Injection10. Web Application Attacks: Cross Site Scripting11. Security Management & Cryptography12. Client Side Attacks: Cookies13. Client Side Attacks: DoS14. Client Side Attacks: Man in the Middle15. Client Side Attacks: Replay16. Developing Security Policy17. Deploy and Manage Security Settings18. Security Through Design19. Security Through Anti Malware20. Fundamentals of Cryptography21. OSI Reference Model22. AES23. Standard Network Devices24. Network Security Hardware25. Firewalls26. Types of Firewalls27. Spam Filters28. Virtual Private Networks29. Intrusion Detection and Prevention Study30. DNS31. Network Security: Network Address Translation (NAT)32. Network Access Control (NAC)33. Network Protocols34. TCP/IP35. Wireless Network Security: Wireless Network Attacks36. Wireless Network Security: Types of Attacks37. Mobile Devices Security38. Cloud Security Challenges and Solution39. IoT Security Challenges
    ITEC3125›Fundamentals of Cryptography
    Cyber SecurityTopic 20 of 39

    Fundamentals of Cryptography

    8 minread
    1,336words
    Intermediatelevel

    Fundamentals of Cryptography

    Cryptography is the science and art of protecting information by transforming it into an unreadable format (ciphertext) to prevent unauthorized access. It involves a set of techniques used to secure communication, verify identities, ensure data integrity, and maintain confidentiality in the face of potential adversaries. Cryptography is a cornerstone of modern information security and underpins technologies like online banking, e-commerce, VPNs, and secure communications.

    Key Concepts in Cryptography

    1. Encryption and Decryption
    2. Cryptographic Keys
    3. Symmetric vs. Asymmetric Cryptography
    4. Cryptographic Hash Functions
    5. Digital Signatures
    6. Public Key Infrastructure (PKI)
    7. Key Exchange Protocols
    8. Common Cryptographic Algorithms
    9. Applications of Cryptography
    10. Cryptographic Attacks and Security Considerations

    1. Encryption and Decryption

    • Encryption: The process of converting plaintext (readable data) into ciphertext (unreadable data) using an algorithm and a cryptographic key. Encryption ensures that only authorized parties can read the data.

      • Example: If you want to send a confidential message, you would encrypt it with a key, making it unreadable to anyone who intercepts it.

    • Decryption: The process of converting ciphertext back into plaintext using a decryption key. The decryption key can either be the same as the encryption key (symmetric encryption) or different (asymmetric encryption).

      • Example: The recipient of the encrypted message uses their decryption key to convert the ciphertext back into the original message.

    2. Cryptographic Keys

    Cryptographic keys are fundamental to the encryption and decryption process. A key is a string of data used by an algorithm to encrypt or decrypt information. The security of an encrypted message depends on the strength and secrecy of the key used.

    • Symmetric Key: A single key is used for both encryption and decryption. Both the sender and the receiver must share the same key.

      • Example: AES (Advanced Encryption Standard) is a common symmetric-key encryption algorithm.

    • Asymmetric Key: Two separate keys are used—one for encryption (public key) and one for decryption (private key). Only the recipient’s private key can decrypt messages encrypted with their public key.

      • Example: RSA (Rivest-Shamir-Adleman) is a widely used asymmetric encryption algorithm.

    3. Symmetric vs. Asymmetric Cryptography

    • Symmetric Cryptography (Private Key Cryptography):
      In symmetric cryptography, the same key is used for both encryption and decryption. The key must remain secret, and it is shared between the sender and the receiver.

      • Advantages:

        • Fast and efficient for encrypting large amounts of data.
        • Less computationally intensive than asymmetric methods.

      • Disadvantages:

        • Key distribution problem: securely sharing the key between parties is challenging.
        • If the key is compromised, all communications encrypted with it are at risk.

      • Common Algorithms:

        • AES (Advanced Encryption Standard): A widely used symmetric algorithm that supports key sizes of 128, 192, and 256 bits.
        • DES (Data Encryption Standard): An older algorithm that is now considered insecure due to its small key size.

    • Asymmetric Cryptography (Public Key Cryptography):
      Asymmetric cryptography uses a pair of related keys: a public key, which can be shared openly, and a private key, which is kept secret. The public key encrypts the data, and only the corresponding private key can decrypt it, and vice versa.

      • Advantages:

        • Solves the key distribution problem since the public key can be shared openly without compromising security.
        • Allows for digital signatures and authentication.

      • Disadvantages:

        • Slower than symmetric encryption due to the complexity of the algorithms.
        • Computationally more intensive.

      • Common Algorithms:

        • RSA: The most widely used asymmetric algorithm, particularly for encrypting small amounts of data, such as keys or certificates.
        • ECC (Elliptic Curve Cryptography): Offers similar security to RSA but with shorter key lengths, making it more efficient.

    4. Cryptographic Hash Functions

    A cryptographic hash function is a mathematical algorithm that takes an input (or 'message') and returns a fixed-size string of characters, which is typically a digest. This hash is a "digital fingerprint" of the input data, and it should be computationally infeasible to reverse the hash back into the original input.

    • Properties of Cryptographic Hash Functions:

      • Deterministic: The same input will always produce the same hash.
      • Fast to compute: The hash value is quickly computed for any input.
      • Pre-image resistance: Given a hash, it should be infeasible to find the original input.
      • Collision resistance: It should be infeasible to find two different inputs that produce the same hash.
      • Avalanche effect: A small change in the input (even one bit) results in a significantly different hash.

    • Common Hash Functions:

      • SHA-256 (Secure Hash Algorithm 256-bit): Commonly used in digital certificates, blockchain, and SSL/TLS.
      • MD5 (Message Digest Algorithm 5): Once widely used but now considered insecure due to vulnerabilities in collision resistance.

    • Applications: Cryptographic hashes are used in digital signatures, data integrity checks, and password storage.

    5. Digital Signatures

    A digital signature is a cryptographic mechanism used to verify the authenticity and integrity of digital messages or documents. It ensures that the message was sent by the claimed sender (authentication) and that it has not been altered in transit (integrity).

    • How Digital Signatures Work:

      1. The sender hashes the message and encrypts the hash with their private key to generate the signature.
      2. The recipient can verify the signature by decrypting it with the sender's public key and comparing the resulting hash with the hash of the received message.

    • Applications: Digital signatures are widely used in email encryption, software distribution, and electronic contracts.

    • Common Algorithms: RSA, DSA (Digital Signature Algorithm), and ECDSA (Elliptic Curve Digital Signature Algorithm).

    6. Public Key Infrastructure (PKI)

    Public Key Infrastructure (PKI) is a framework that manages the creation, distribution, and management of public-key encryption. It provides the necessary tools for implementing asymmetric cryptography, including digital certificates, key management, and certificate authorities (CAs).

    • Key Components of PKI:

      • Digital Certificates: Certificates are issued by trusted entities (CAs) to verify the identity of the holder of a public key. They contain the public key and other information about the entity.
      • Certificate Authorities (CAs): Trusted organizations that issue digital certificates. CAs verify the identity of the entities requesting certificates.
      • Registration Authorities (RAs): Entities that act as intermediaries between users and CAs, responsible for accepting requests for digital certificates and authenticating the entity making the request.
      • Key Management: PKI systems handle key creation, storage, renewal, revocation, and distribution.

    • Applications: PKI is used in HTTPS (SSL/TLS), email encryption, VPNs, and secure communications.

    7. Key Exchange Protocols

    Key exchange protocols are used to securely exchange cryptographic keys over a public channel. The goal is to ensure that two parties can securely share a key without an adversary intercepting it.

    • Diffie-Hellman Key Exchange: A method for two parties to securely share a secret key over an insecure channel by exchanging public values and computing a shared secret. This protocol is widely used in securing SSL/TLS sessions.

    • Elliptic Curve Diffie-Hellman (ECDH): A variant of Diffie-Hellman that uses elliptic curve cryptography for more efficient key exchange.

    • RSA Key Exchange: Although RSA is primarily used for encryption, it can also be used for securely exchanging symmetric keys.

    8. Common Cryptographic Algorithms

    • AES (Advanced Encryption Standard): A symmetric encryption algorithm widely used for securing data. It supports key lengths of 128, 192, and 256 bits.
    • RSA (Rivest-Shamir-Adleman): A widely used asymmetric encryption algorithm for secure data transmission, particularly for encrypting small pieces of data, such as keys or digital signatures.
    • ECC (Elliptic Curve Cryptography): An asymmetric encryption method that uses the mathematics of elliptic curves to offer strong security with smaller key sizes than RSA, making it more efficient.
    • SHA-256 (Secure Hash Algorithm 256-bit): A cryptographic hash function used in digital certificates, blockchain, and data integrity verification.

    9. Applications of Cryptography

    Cryptography is used in a wide range of applications to ensure data privacy, integrity, and authenticity:

    • Secure Communication: Cryptography underpins secure messaging systems, email encryption (e.g., PGP, S/MIME), and SSL/TLS (for securing web traffic).
    • Digital Signatures: Ensuring the authenticity of digital documents, software, and contracts.
    • Data Integrity: Verifying that data has not been tampered with using cryptographic hashes.
    • Authentication: Verifying the identity of
    Previous topic 19
    Security Through Anti Malware
    Next topic 21
    OSI Reference Model

    Past Papers

    Open this section to load past papers

    Click on Show Past Papers to see past papers.
    On This Page
      Reading Stats
      Est. reading time8 min
      Word count1,336
      Code examples0
      DifficultyIntermediate