Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
2006/2007
Security
Johan Lukkien
or more precisely,
– openness:
• can reach –almost- any machine
• information can be overheard upon passing
• A: The concepts of
View on State
environ
ment
Environment communication
and interaction state
changer
• The black box changes its state and interacts with the environment
based on the old state and the view on the environment
• Human being
– view on environment
• through senses
– internal ‘state’
• knowledge obtained over time
• Examples:
– the lack of security in the original design of the IP protocol stack
• Repudiation issues
– non-repudiation: party cannot deny having sent or received a
message
– plausible deniability: receiver of message knows sender sent it but
cannot prove it
• Anonimity
– replay (replacement)
• Question:
– what about the above mechanisms with respect to white- or
blacklisting?
• Middleware
– derives trust from trust assumptions and trust anchors
• Two applications
– encryption: used for authentication and secrecy
• encryption method public; parameterized by key
– hashing: used for authentication
• Block ciphers
– encrypt fixed sized blocks into same sized blocks
• Data Encryption Standard
• AES, Advanced Encryption Standard
– Rijndael algorithm
• ‘Deduction’
– learn from identical blocks
• Hence
– don’t want to have same input blocks encrypted same
– don’t want to reveal encryption of known parts
• Solution: chaining
– xor with previous encrypted block (to avoid drastic effects of loss)
– need an intialization vector for the first
ticket
27-Nov-06 Johan J. Lukkien, j.j.lukkien@tue.nl 45
TU/e Computer Science, System Architecture and Networking
The Needham-Schroeder authentication
(symmetric key)
• Use session keys for the actual communication rather than the
authentication keys
– limit wear & tear
• establishing authentication keys is expensive
– avoid replay
– limits the risk of revealing old sessions
• forward secrecy
• Enough?
– changed or stolen keys?
– message length – use a hash function
• ACM implemented
– as a subject list per object
– as a capability list per subject (“ticket”); protected by signature
• Electronic payment
– electronic money
– privacy
• IP-secure
– framework, leaving encryption, authentication and hashing
functions open