Chapter 4 modes of operation
This presentation is the property of its rightful owner.
Sponsored Links
1 / 23

Chapter 4: Modes of Operation PowerPoint PPT Presentation


  • 80 Views
  • Uploaded on
  • Presentation posted in: General

Chapter 4: Modes of Operation. CS 472: Fall 2012. Encrypting a Large Massage. Electronic Code Book (ECB) Cipher Block Chaining (CBC) Output Feedback Mode (OFB) Cipher Feedback Mode (CFB ). Electronic Code Book (ECB).

Download Presentation

Chapter 4: Modes of Operation

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -

Presentation Transcript


Chapter 4 modes of operation

Chapter 4: Modes of Operation

CS 472: Fall 2012


Encrypting a large massage

Encrypting a Large Massage

  • Electronic Code Book (ECB)

  • Cipher Block Chaining (CBC)

  • Output Feedback Mode (OFB)

  • Cipher Feedback Mode (CFB)


Electronic code book ecb

Electronic Code Book (ECB)

  • Break the message into 64-bit blocks (padding the last one) andencrypt each block with the secret key.

  • Two problems:

  • 1. two identical plain text block produce two identical cipher blocks2. blocks can be rearranged or modified.

  • Example: See Figure 4-3 where an eavesdropper:

    1. can see which sets of employees have identical or similar salaries and2. he can alter his own salary to match another employee with higher salary.


Cipher block chaining cbc

Cipher Block Chaining (CBC)

  • Two identical plain messages produce two different cipher messages.(e.g., continue holding, continue holding, ....., start attach)This prevents Chosen plain text attack.


Cbc threat 1

CBC Threat 1

  • Modifying Cipher Blocks: Fig. 4-3You can modify the contents of one cipher block  (c6) to make the plain text (m7) as you wish, however the preceding block (m6) will be garbled, as shown:


Chapter 4 modes of operation

Thus  if cn is garbled then mn will be completely garbed.Only the same portion of mn+1 as what was garbled in cn will be garbed.

This can be solved by attaching a CRC to the plain text before encryption.


Cbc threat 2 rearranging ciphertext blocks

CBC Threat 2: Rearranging Ciphertext Blocks

  • If a hacker knows the plain text and the corresponding cipher text; i.e., m1, m2, …,mn and c1,c2,…,cn; and IV.

  • By rearranging c1, c2, …, cn, the intruder can garble the message.

  • Solution: Use a 64-bit CRC


Output feedback mode ofb

Output Feedback Mode (OFB)

  • It is a stream cipher

  • Encryption/decryption is performed by ®ing the message with one-time pad generated as follows:

  • 1. A 64-bit random IV is generated (and is transmitted with the encrypted message).2. b1 is the DES encryption of IV with the secret key.3. bi , i > 1, is the  DES encryption of bi-1 with secret key.4. The resulting one-time pad is: b1 | b2 | b3 | .......5.  ci = bi ®  mi for i =1, 2, ...


Output feedback mode ofb1

Output Feedback Mode (OFB)


Chapter 4 modes of operation

Major  advantages of OFB:

  • The pad can be generated in advance and used when the message arrive. If some bits of cipher text get garbled, only the corresponding bits in the plain text get garbled.

  • Major disadvantages of OFB:

  • if the <plaintext P, ciphertext (P®K) > are known by Trudy, she can modify the plain text into anything she wants (P') since:((P ® K) ® P) ® P' ) ® K = P'

  • If one block is lost, the rest of the blocks will be garbled.

  • If data is stored on disk, you can not randomly read any block unless you decrypt all the preceding blocks.

  • To solve the last  two problems, we use CFB below, where if one block is lost,only the next block is  garbled and the rest of the blocks will decrypt properly.


Cipher feedback mode cfb

Cipher Feedback Mode (CFB)

  • . A 64-bit random IV is generated (and is transmitted with the encrypted message).2. b1 is the DES encryption of IV with the secret key.3. bi , i > 1, is the  DES encryption of ci-1 with secret key.(Thus you can't generate a one-time pad in advance like OFB)4.  ci = bi ®  mi for i =1, 2, ...


Counter mode ctr

Counter Mode (CTR)

  • See Figure 4-10,   CTR have the following advantages:

  • You can generate the one-time pad in advance.

  • You can randomly access any block without decrypting all the preceding  blocks


Generating macs

Generating MACs

  • A secret key system can be used to generate a cryptographic checksumMAC (message authentication code) or MIC (message integrity code).


Ensuring integrity only

Ensuring Integrity Only

  • Send  Plain text + CBC residue: (figure 4-11)The receiver computes the CBC residue from the plain textand compare it with the received CBC residue.


Ensuring privacy integrity together

Ensuring Privacy & Integrity Together

  • Use CRC (figure 4-14), CRC is generally is known to be vulnerable to attacks.

  • Use a different key to encrypt the message(the two keys can be independent or related)


Multiple encryption des

Multiple Encryption DES

  • It is called 3DES or EDE (encrypt-decrypt-encrypt):

  • m>>>> E >>>> D >>>> E >>>>c               |             |             |             K1         K2        K1               |             |             |c >>>> E >>>> D >>>> E >>>>m

  • CBC is used for stream encryption as shown in Figure 4-15:


  • Login