# Computer Security
## Homework 2

### Exercise 1:

**1. Suppose a password is chosen as a concatenation of seven lower-case dictionary words. Each word is selected uniformly at random from a dictionary of size 50,000. An example of such a password is "mothercathousefivenextcrossroom". How many bits of entropy does this have?**

7 words, 50,000 words in dictionary  
50,000^7 = 7.6*10^35 possible passwords  
log2(50,000^7) = 7*15.6 = 109.2 bits of entropy  

**2. Consider an alternative scheme where a password is chosen as a sequence of 10 random alphanumeric characters (including both lower-case and upper-case letters). An example is "dA3mG67Rrs". How many bits of entropy does this have?**

62^10 = 839299365868340224 combinations  
62^10 = 2^59.7  
2^59.7 = 59.7 bits of entropy  

**3. Which password is better, the one from 1. or 2.?**

1) 50,000^7 = 7.888609e+34  
2) 62^10 = 8.392996e+17 - is better

### Exercise 2:

**1. Design a data verification system using hash functions. Explain the steps involved in the process.**  

A data verification system using hash functions ensures data integrity and security. It involves the following steps:  

Data Preparation: Choose the data you want to verify. Generate a hash function, such as SHA-256 or MD5, to create a fixed-length hash value.  

Hashing: Apply the selected hash function to the data, which converts it into a fixed-length hash value. The hash value is a unique representation of the data.  

Storage: Store the hash value securely, ideally in a separate location from the data. This hash value serves as the reference point for data verification.  

Data Transmission or Storage: Transfer the data, whether through a network or to long-term storage. Ensure the data is secure during transmission and storage.  

Data Retrieval: When you need to verify the data's integrity, retrieve it from the source.  

Hash Calculation: Calculate the hash value for the retrieved data using the same hash function used during data preparation.  

Comparison: Compare the newly calculated hash value with the stored hash value. If they match, the data is likely intact and has not been tampered with. If they don't match, the data may have been altered, and it should be treated with caution.  

**2. Discuss the advantages and disadvantages of using hash functions for data verification.**  
Advantages:  
Data Integrity: Hash functions provide a way to verify if data has been tampered with during transmission or storage.  
Fast Processing: Hash functions are computationally efficient, making them suitable for real-time data verification.  
Fixed-Size Output: Hashes always produce fixed-length outputs, making them convenient for comparison.  
Cryptographic Strength: Some hash functions are designed to be cryptographically secure, providing a high level of protection against data tampering.  

Disadvantages:  
Collision Vulnerability: Hash functions may produce the same hash for different inputs, known as collisions, although this is rare with strong hash functions.  
Pre-image Attacks: In some cases, attackers can reverse-engineer the original data from its hash value, depending on the hash function's properties.  
Dependence on Hash Function Quality: The security of the verification system relies on the quality and cryptographic strength of the chosen hash function.  
Storage of Hashes: Storing hash values securely is crucial; if an attacker gains access to both the data and its corresponding hash, the system's integrity is compromised.  

**3. Provide an example of a real-world application where a data verification system using hash functions is used.**  
Blockchain Technology:  
Blockchain is a decentralized and distributed ledger technology used in various applications like cryptocurrencies (e.g., Bitcoin) and supply chain management.  
Each block in a blockchain contains a hash of the previous block's data, creating a chain of blocks with hashed references.  
The hash values ensure the integrity of data within each block and the entire chain. If someone tries to alter the data in a block, it will change the hash, alerting the network to the tampering attempt.  
This use of hash functions makes blockchain a secure and tamper-evident ledger system, ensuring the authenticity and integrity of data across a network of nodes.  

### Exercise 3:

**1. Define what a Message Authentication Code (MAC) is and how it is used in cryptography.**  
A Message Authentication Code (MAC) is a cryptographic technique used to ensure the integrity and authenticity of a message or piece of data. It is a specific type of hash-based code generated from the message and a secret key. MACs are primarily used for verifying that a message has not been altered during transmission and that it originates from a legitimate source.  

**2. Explain the process of generating and verifying a MAC.**  
Generating a MAC:  
Input Data: The sender has a message (M) and a secret key (K).  
MAC Generation Algorithm: The sender uses a MAC generation algorithm (typically based on a cryptographic hash function) that takes both the message (M) and the secret key (K) as input to produce the MAC (MAC_M).  
Sending the MAC: The sender sends both the message (M) and the MAC (MAC_M) to the recipient.

Verifying a MAC:  
Input Data: The recipient receives the message (M) and the MAC (MAC_M) along with the secret key (K).  
MAC Verification Algorithm: The recipient applies the same MAC generation algorithm with the received message (M) and the secret key (K) to compute a new MAC (MAC'_M).  
Comparison: The recipient compares the newly computed MAC (MAC'_M) with the received MAC (MAC_M).  
Decision: If MAC'_M matches MAC_M, it indicates that the message has not been altered and is authentic. The recipient can trust the message's integrity and source. If the MACs do not match, it signifies that the message may have been tampered with, and the recipient should be cautious.  

**3. Discuss the importance of using MACs in secure communication systems.**  
Message Authentication Codes play a critical role in secure communication systems for several reasons:  
Data Integrity: MACs ensure that data has not been modified during transmission. If any unauthorized changes occur, the MAC verification process will detect them.  
Authentication: MACs help authenticate the source of a message or data. By using a shared secret key, only authorized parties can generate valid MACs, which helps verify the sender's identity.  
Data Confidentiality: While MACs are primarily used for integrity and authenticity, they can also be combined with encryption techniques to provide confidentiality. This combination is often seen in secure communication protocols.  
Protection Against Replay Attacks: By using timestamps or unique nonces (random numbers), MACs can protect against replay attacks, where an attacker resends a previously intercepted message.  
Secure Network Communication: In secure network protocols like TLS/SSL and IPsec, MACs are used to ensure the integrity of data exchanged over the network, making them essential for secure internet communication.  
Complement to Encryption: While encryption ensures data confidentiality, MACs complement this by adding data integrity and authenticity checks. The combination of encryption and MACs provides a robust framework for secure communication.

### Exercise 4:

**Given the values of p = 17 and q = 23, generate a pair of keys for RSA.**

p = 17  
q = 23  

n = p*q = 17*23 = 391
phi = (p-1)*(q-1) = (17-1)*(23-1) = 352

e - public key (gcd(e,phi)≠1)
gcd(e, 352) ≠ 1

d - private key (e x d = 1 mod phi)
(e*d) = 1 mod 352
(e*d) mod 352 = 1
e*d = 352 
d = e/352 = 

Public key = (n,e) = (391,7)
Private key = (n,d) = (391,7)

### Exercise 5:

**1. Design a public key infrastructure (PKI) system. Explain the components and their roles in the system.**    
A Public Key Infrastructure (PKI) system is a framework for managing digital keys and certificates to secure communications and verify the authenticity of entities in a network. It comprises several components:  

Certificate Authority (CA): The CA is a trusted entity responsible for issuing digital certificates. It verifies the identity of users or devices and binds their public keys to their identities. It signs certificates with its private key, which can be used to verify the authenticity of certificates.  

Registration Authority (RA): The RA is an optional component that assists the CA in identity verification. It collects and verifies user information before passing it to the CA for certificate issuance.  

End Entities (Users or Devices): These are individuals, devices, or entities that require digital certificates for secure communication. They generate public-private key pairs, request certificates, and use them for encryption, authentication, and digital signatures.  

Certificate Repository: A repository stores issued certificates and makes them publicly accessible for verification purposes. It allows users to look up certificates and public keys to verify identities and encrypt data securely.  

Certificate Revocation List (CRL): A CRL is a list of certificates that have been revoked before their expiration dates. It helps users and systems identify certificates that should not be trusted.  

Public and Private Keys: Users and devices generate key pairs consisting of a public key (known to others) and a private key (kept secret). The public key is included in the certificate, while the private key is used for decryption and digital signatures.  

**2. Discuss the advantages and challenges of implementing a PKI system.**  
Advantages:  
Security: PKI provides a robust framework for securing digital communications, data integrity, and user authentication.  
Data Confidentiality: Encryption using PKI ensures data privacy, preventing unauthorized access.
Authentication: PKI verifies the identities of entities, reducing the risk of impersonation or fraudulent activities.  
Digital Signatures: PKI enables digital signatures, ensuring data integrity and non-repudiation.  
Interoperability: PKI standards facilitate compatibility between different systems and organizations.  
Scalability: PKI systems can scale to accommodate a growing number of users and devices.  

Challenges:  
Complexity: Implementing and managing a PKI system can be complex and resource-intensive.  
Cost: Setting up and maintaining a PKI system can be expensive due to hardware, software, and administrative costs.  
Key Management: Safeguarding private keys is critical. A compromised private key can undermine the entire PKI.  
Certificate Revocation: Maintaining an up-to-date CRL is essential, and handling revoked certificates can be challenging.  
User Education: Users need to understand how to use digital certificates, which requires training and awareness programs.  
Regulatory Compliance: Compliance with industry and government regulations can be demanding, especially in sensitive sectors like healthcare and finance.  

**3. Provide an example of a real-world application where a PKI system is used.**  
A common real-world application of PKI is in Secure Sockets Layer/Transport Layer Security (SSL/TLS) protocols, which are used to secure web communications. When you visit a website using HTTPS (e.g., online banking or e-commerce sites), PKI is involved:  

Certificate Authority (CA): Certificate authorities like DigiCert, Let's Encrypt, and Comodo issue digital certificates for web servers. These certificates contain the website's public key and its identity information.  

End Entities (Web Servers): Website operators generate a key pair, request a certificate from a CA, and install it on their web servers. The private key remains securely stored.  

Public Key Retrieval: When you access an HTTPS website, your browser retrieves the web server's public key from the server's certificate.  

Secure Communication: Your browser uses the server's public key to encrypt data sent to the server. The server decrypts this data using its private key.  

Authentication: The digital certificate also assures you that you are connecting to the legitimate website, preventing man-in-the-middle attacks.  

This application of PKI ensures secure and authenticated communication between your web browser and the web server, making it a fundamental part of online security.  

### Exercise 6:

Design a system for digital signatures based on public-key cryptography. Explain the steps involved in the process and the role of each component.

1. Key Pair Generation:  

Components:  

User or Entity: The entity wishing to create digital signatures.  
Key Generator: Software or hardware responsible for generating a key pair.  
Role: The first step is to generate a key pair consisting of a private key and a corresponding public key. The private key must be kept secret and is used to create digital signatures. The public key is openly available for verification.  

2. Signature Creation:  

Components:  

User or Entity: The same entity with the private key.  
Signing Algorithm: A cryptographic algorithm used to create the digital signature.  
Role: To sign a document or message, the user or entity uses their private key and the signing algorithm to produce a unique digital signature. The signature is a function of the document and the private key and is appended to the document.  

3. Document Transmission:  

Components:  

Sender: The entity who signed the document.  
Recipient: The entity who will receive and verify the document.  
Role: The signed document, along with the digital signature, is transmitted from the sender to the recipient through a secure channel, such as email or a secure network connection.  

4. Signature Verification:  

Components:  

Recipient: The entity receiving the signed document.  
Verification Algorithm: A cryptographic algorithm used to verify the digital signature.  
Public Key Repository: A repository where public keys of entities are stored.  
Role: The recipient uses the public key of the sender (obtained from a public key repository) and the verification algorithm to verify the digital signature. The algorithm checks if the signature matches the document and confirms that the signature was created using the private key corresponding to the provided public key.  

5. Verification Result:  

Components:  

Recipient: The entity verifying the signature.  
Role: The verification process results in one of the following outcomes:  

If the signature is valid, the recipient can trust the authenticity and integrity of the document.  
If the signature is invalid (doesn't match the document or was not generated with the corresponding private key), the document may have been tampered with or is not from the claimed sender.  
6. Secure Storage of Keys:  

Components:  

User or Entity: Responsible for managing and securely storing their private key.  
Role: To maintain the security of the digital signature system, the user or entity must securely store the private key to prevent unauthorized access and potential misuse.  

7. Revocation and Key Management:  

Components:  

User or Entity: Responsible for managing the key pair.  
Certificate Authority (CA): In some systems, a CA may manage key revocation.  
Role: If a private key is compromised, the user should revoke their certificate and obtain a new key pair. The CA may assist with this process in some PKI-based systems.