Upload File

ece509 cyber security : concept, theory, and practice

  • Home
  • Documents
  • ECE509 Cyber Security : Concept, Theory, and Practice
12
ECE509 Cyber Security : Concept, Theory, and Practice Key Management Spring 2014

Upload: marlo

Post on 12-Jan-2016

47 views

Category:

Documents


0 download

Report

Tags:

DESCRIPTION

ECE509 Cyber Security : Concept, Theory, and Practice. Key Management Spring 2014. Key Management. addresses key distribution problems Two issues are handled distribution of public keys using public-key encryption to distribute secret keys. Distribution of Public Keys. - PowerPoint PPT Presentation

TRANSCRIPT

Cyber Security

ECE509 Cyber Security :Concept, Theory, and PracticeKey ManagementSpring 20141Key Managementaddresses key distribution problems

Two issues are handleddistribution of public keysusing public-key encryption to distribute secret keys

Distribution of Public KeysPublic announcementPublicly available directoryPublic-key authorityPublic-key certificates

Public AnnouncementUsers distribute public keys to recipients

Problems:Authentication: anyone can create a key claiming to be someone elsePublic-Key DirectoryRegistering keys to a public directoryRequired Properties:Continuous UpdateAuthentication before adding or changing keysIdentification {ID, public-key} entryAllow to change key at any timeAPI to access the directoryProblems:Tampering or forgeryPublic-Key AuthorityThis is an improvement on the public key-directory. It constricts the access to the distribution of public keys. Users access in real-time the directory and obtain the public keys by securely interacting with it and by using the directorys public key.Public-Key CertificatesSimilar to the Public-Key Authority but not in real-time. It uses certificates to allow public key exchange. The authority for certificates is called Certificate Authority(CA).A certificate is binds an identity to a public key. It may also have other information.The certificate can be checked by any one who has the public key of the CA.Public-Key Distribution MethodsThey are used to obtain public-key

The rarely are used for encryption because public-key algorithms are slow

Symmetric key encryption are used to protect message contents. And those are changed based on the concept of sessions.Simple Secret Key DistributionMerkle in 1979Alice generates a new temporary public key pairAlice sends Bob the public key and its identityBob generates a session key K sends it to Alice encrypted using the supplied public keyAlice decrypts the session key and both useProblem:The adversary can intercept and impersonate any of the participants.Diffie-Hellman Key ExchangeThe first public-key technique that was proposed by Diffie & Hellman in 1976.

It is a very practical method for public exchange of a secret key

It is commercially used10The idea of public key schemes, and the first practical scheme, which was for key distribution only, was published in 1977 by Diffie & Hellman. The concept had been previously described in a classified report in 1970 by James Ellis (UK CESG) - and subsequently declassified in 1987. See History of Non-secret Encryption (at CESG).Diffie-Hellman Key ExchangeIt is used for public-key distribution

The value of the key depends on the participants

It is based on exponentiation in a Galois field (modulo a prime or a polynomial)

It is depends on time and on the difficulty of computing discrete logarithmsSource: [ https://www.youtube.com/watch?v=3QnD2c4Xovk ]


QHA5201 QHA Certified Cyber Law & Corporate Liability Programme · 2018-05-24 · Cyber Law and its Need Tracing the development of Cyber law in India (2000 – 2018) Concept of Authentication

CF Cyber Operations in the Future Cyber Environment Concept › PDFS › unc92 › p532776.pdf · 2012-08-03 · CF Cyber Operations in the Future Cyber Environment Concept Melanie

Moscow American - Travis Lee Bailey, Esq.moscowamerican.com/images/0/02/Cyber_Range_EoA_Study_Guidan… · Given vour role in the Cyber Command and Control concept and overall cyber

AN OFFERING FROM BDO’S CYBERSECURITY PRACTICE BDO CYBER … · 2019-11-18 · The concept of cyber-attacks targeting organizations, healthcare included, for profit and espionage

FedRAMP Concept Of Operations · Web viewCoordinate cyber security operations and incident response Develop continuous monitoring standards for ongoing cyber security of Federal Information

Cyber Defence Strategy of the Czech Republic · cyber defence is an autonomous and specific branch of a wider cyber security concept. In this context, cyber defence is perceived as

Cyber power is changing the concept of war

Cyber City Concept

Cyber Threat Intelligence - Cyber Security Academy · an informed decision on which countermeasures to deploy first, a new concept called Cyber Threat Intelligence (CTI) is often

The Cyber Defence Unit of the Estonian Defence League · The Cyber Defence Unit of the Estonian Defence League, ... other nations, and that it will offer input to the concept improvement

Jabotabek Cyber Spot Deployment Concept

 · A National Cyber Security Framework ... concept introduced in this document is the notion of Framework contextualization. A company

Automatically generated PDF from existing images.ceoharyana.nic.in/docs/vidhansabha2014/expenditure/... · Kanpur Concept Software 1298, Jawaqhar Colony, NIT Faridabad Rashi Cyber

2012 DHS/ACT-IAC Cybersecurity Awards The “Fed Cyber Cup” Concept Overview Cheryl Soderstrom, Programs Chair, Cybersecurity SIG

Cyber, cyber Vous avez dit cyber - penseemiliterre.fr

Cyber-enabled Competitive Data Theft - Brookings … · 2016-07-31 · We begin by developing a framework to unpack the concept of “cyber-enabled competitive data theft” ... and

Just War, Cyber War, and the Concept of Violence · 2018. 8. 23. · cyber-attacks with war reflects basic misconceptions about both. Yet, the advent of cyber-threats of various kinds

Robonomics: platform for integration of cyber physical ... · surrounding physical world, appear to be the concept of cyber-physical systems (CPS)[7]. The main technological trends

3 - Cyber City Concept

Managing Your Risk...In effect early cyber threats have provided proof of concept to hackers. Enabling toolkits are now widely available on the internet. Hacking and cyber attacks

Cyber-Conflict, Cyber-Crime, and Cyber-Espionage

Business concept proposal cyber flick

Cyber Security Concept of the Slovak Republic...Cyber security is one of the defi ning elements of the security environment of the Slovak Republic and a subsystem of national security

Cyber-Physical Systems - Concept, Challenges and Research Areas

AGENDAAGENDA Army Cyberspace Task Force Army Forces Cyber Command (ARFORCYBER) Network Enterprise Concept Capability Plan 211 June 2010 AMERICA'S

CHAPTER-III MEANING, CONCEPT AND CLASSIFICATION OF CYBER

NATIONAL CYBER CONCEPT FOR CRISIS PREPAREDNESS AND … · state cyber-security organizations and for the entire economy. It also serves as a tool that every organization can use in

2016 December -- Cyber-attacks & The Concept of Political Infrasture

Security Aspects of Cyber Physical Systems and Services · Security Aspects of Cyber Physical Systems and Services M.Eng. Marco Niemeyer 13 | 21 r 2016 -d Security concept Authentication

Chapter 8: Basic Cryptography - University of Arizonaacl.ece.arizona.edu/classes/ece509/styled-2/downloads/files/04-Crypto II.pdf · Chapter 8: Basic Cryptography •Classical Cryptography

INTEgRATED ADVICE FOR YOUR CYBER SECURITY LANDSCAPE · Own Cyber Defense Center as a control center for the early ... Included: Security concept, VoIP readiness of hardware, planned

Building a Threat-Based Cyber Team - conf. · PDF fileBuilding a Threat-Based Cyber Team Anthony Talamantes ... •Proof of concept ... Sub-Search limitations

NATIONAL CYBER CONCEPT FOR CRISIS ......a preparedness “toolbox”, the cyber crisis management concept, and actions that will help contend adequately with the crisis. Considering

CHAPTER-III MEANING, CONCEPT AND …...57 CHAPTER-III MEANING, CONCEPT AND CLASSIFICATION OF CYBER CRIMES 3.1. Introduction “It is very essential to emphasis here that the world

ECE509 Cyber Security : Concept, Theory, and Practice Key Management Spring 2014