# Swiss Security Man staring COMP2420 Radcliffe

What is security important?

> "Infosec is a priority for us. We've been doing stupid stuff for a while we'd like to keep secret"

When thinking about security the first things you need to consider are:

- What is the risk
- What is the asset
- What sort of means do you have at your disposal to mitigate that risk for that asset

Security itself has 3 main components:

1. Confidentiality: preventing unauthorized disclosure
2. Integrity: information can only be modified when it is supposed to
3. Availability: only available to authorised users

These make up the "CIA" triad which is a model designed to guide policies for information security within large organisations.

There's also a 4th unofficial main component of security:

Authenticity. Authenticity is the proof that the person accessing your system is who they say they are.

## Different types of threats

- Interruption: attack on availability
- Interception: attack on confidentiality
- Modification: attack on integrity
- Fabrication: attack on authenticity

Each of these attacks can be categorised in one of two ways:

1. Passive attacks (snooping, monitoring, etc.) -- where you're merely listening to what is happening
2. Active attacks (packet modification, message replay, DDOS) -- where you're actively doing something to the network

## Components of security

- Encryption: protect information
- Signature: a method of authentication
- Protocol: a standardised way of communicating

## Basic model of secure communications

![images/basic-secure-communications.png](images/basic-secure-communications.png)

## Symmetric Key Cryptography

Both the sender and receiver have the same key.

Encryption:
> c = E<sub>k</sub>(m)

Decryption:

> m = D<sub>k</sub>(c)

Always true:
> D<sub>k</sub>(E<sub>k</sub>(m)) = m

Not always true:

> E<sub>k</sub>(D<sub>k</sub>(m)) = m

### Selecting a cipher

- Security
- Speed (hardware and software implementation)
- Ease of implementation (is it simple?)
- Flexibility (can I use different keys?)

### DES

- A symmetrics key cipher
- Developed by government, in use from 1970 until 2000.
- Superseded by AES

- Uses a 56-bit key (initially was supposed to use a 128-bit key, but that changed at some point... _conspiracy?_)
- The security of AES is based on the strength of the key because the algorithm is public.

Process:

- Input is re-ordered using an initial permutation
- Block is then split into two sub-blocks
- It then follows 16 rounds of encryption
- In each round of encryption the left half is the old right half, and the right half is generated using an aglorithm.
- Each round a 48-bit subm key is generated and used.

How hard is it to break DES?

- Because the key is 56 bit, there are 2^56 possible keys. You could _just_ try all of them.
- In July 1998 it took 4.5 days and 250000 dollars
- By January 1999 it took 100000 pcs and 22 hours and 15 minutes.

Some people make DES more secure by doing a thing called "Double-DES" and "Triple DES". This is essentially piping DES into DES, or DES into DES into DES, respectively. Each time with different keys.

### AES

- Adopted in October 2000
- Became the US government standard in 2002.
- Keys vary from:
    - 128
    - 192
    - 256 bits
- Block size of 128 bits
- Number of iterations (respective for different key lengths):
    - 9
    - 11
    - 13

### AES vs DES

- AES is faster than DES
- AES is more secure than DES given its larger key size
- AES is more flexible for differing security requirements (given three key  size choices)
- But AES may not be the best at any aspect compared to other block ciphers. It just meets the requirements of the US government.

## Diffie Hellman key exchange

Motivation: traditionally, the only way to share a secret key was to meet up in person and hand it over.

The DH key exchange was invented as a solution to this problem.

| Alice         | Public        | Bob |
| ------        | ------        | --- |
| a             | g, n          | b    |
| g^a mod n     |  <- shared -> | g^b mod n |
| (g^b)^a mod n |    _          | (g^a)^b mod n |

1. Small prime `g` and large prime `n` are public numbers
2. Alice chooses her secret, a
3. Bob chooses his secret, b
4. They do `g^a mod n` and `g^b mod n` respectively, and share those numbers into the public space
5. Alice takes Bob's number and takes it to the power of a, Bob does the same but with Alice's key and `b`.
6. Now they both have the same secret number: `g^(ab) mod n`. It can be used for a reliable symmetric secret.

### The Problem with DH

- Man in the middle attack

![images/dg-mitm.png](images/dh-mitm.png)

Mallory stands in between Alice and Bob and acts as their partner in their respective DH key exchanges. This means she can read anything sent between the two and can record it (_or modify it_) as she likes! Yikes.

## RSA

- What is a public key?
    - your public key is a _publicly available_ key which is _hopefully_ tied to your identity
- What is a private key?
    - another key (read: _not the same as your public key_), which you keep very very secret.

Setup:
1. Choose large primes `p` and `q`, take `n = p*q`
2. Choose random number e satisfying `gcd(e, (p-1)(q-1)) = 1` and `1 < e < (p-1)(q-1)`. Our public key is now (e, n)
3. Choose random number d satisfying `ed mod (p-1)(q-1) = 1` (ie. `d` is a modulo inverse of `e`).
4. Take the message `m`, `m < n` must be true (split into `m` into chunks if false

To encrypt: `c = m^e mod n`

To decyrpt: `m = c^d mod n`

### Key points of security

- If factorisation of n can be done, the RSA is now broken.
- Breaking the RSA system is no harder than the factorisation of n, but it's publicly believed that is is no easier either.
- Practically, we use 2048 bit or 4096 bits in our keys.

## RSA vs DES

- RSA is about 100 times slower than DES.
    - Making DES suitable for bulk encryption, and DES suitable for short messages 
- DES is based on tricky design as opposed to "mathematical toughness", like RSA

## Fixing DH with RSA

To fix DHs MITM vulnerability we can do something like the following:

- Alice and Bob both generate a public/private key pair, put the public key somewhere publicly accessible, and keep the private key to themselves.
- Before they share their `g^a mod n` and `g^b mod n` numbers, they encrypt them using the recipients public key.
- Because the only way the messages can now be decrypted is through the recipients private key, MITM attacks are no longer viable (assuming everyone keeps their keys secret)

## Other types of public key systems

- ElGamal: discrete logarithm based system
- Rabin: Similar to RSA, with security equivalent to factorisation
- McEliece: base on error-correcting codes

Yeah, I don't know what any of those mean either.