Abstract image of a woman sitting on books and studying on a laptop

Cryptography for Smalltalkers 2

E
ESUG

Public Key Cryptography provides confidentiality, integrity, authentication, and non-repudiation through techniques like asymmetric encryption, digital signatures, hashes, and key exchange. It uses public/private key pairs based on hard mathematical problems like factoring and discrete logarithms. Common algorithms include RSA for encryption/signatures and Diffie-Hellman for key exchange. Signatures are generated with the private key and verified with the public key to authenticate messages and identities.

TechnologyEducation
1 of 25
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
Public Key CryptographyPublic Key Cryptography Martin Kobetic Cincom Smalltalk Development ESUG 2006
Public Key Algorithms Encryption (RSA) Key Establishment (RSA, DH) Signing Hashes (SHA, MD5) MACs (HMAC, CBC-MAC) Digital Signatures (RSA, DSA)
public and private key hard to compute private from the public sparse key space => much longer keys based on hard problems factoring, discrete logarithm much slower RSA, DSA, DH, ElGamal elliptic curves: ECDSA, ECDH,
provides: confidentiality symmetric (secret) key ciphers same (secret) key => encrypt and decrypt DES, AES, RC4 asymmetric (public) key ciphers public key => encrypt private key => decrypt RSA,ElGammal
RSA Security, PKCS #1 modulus n = product of 2 large primes p, q public: e = relatively prime to (p-1)(q-1) private: d = e-1 mod ((p-1)(q-1)) C = Pe mod n [ P < n ] P = Cd mod n small e => faster encryption
keys := RSAKeyGenerator keySize: 512. alice := RSA new publicKey: keys publicKey. ctxt := alice encrypt: 'Hello World' asByteArray. ctxt asHexString bob := RSA new privateKey: keys privateKey. (bob decrypt: ctxt) asString
keys := RSAKeyGenerator keySize: 512. alice := RSA new publicKey: keys publicKey. msg := 'Hello World' asByteArrayEncoding: # utf8. msg := alice encrypt: msg. bob := RSA new privateKey: keys privateKey. msg := bob decrypt: msg. msg asStringEncoding: # utf8
public key too slow for bulk encryption public key => secure symmetric key symmetric key => bulk encryption key exchange (RSA) generate one-time symmetric key public key => encrypt the symmetric key key agreement (DH) parties cooperate to generate a shared secret
key := DSSRandom default byteStream next: 40. msg := 'Hello World!' asByteArray. msg := (ARC4 key: key) encrypt: msg. alice := RSA new publicKey: keys publicKey. key := alice encrypt: key. bob := RSA new privateKey: keys privateKey. key := bob decrypt: key ((ARC4 key: key) decrypt: msg) asString.
shared secret over unprotected channel http://www.ietf.org/rfc/rfc2631.txt modulus p: large prime (>=512b) order q: large prime (>=160b) generator g: order q mod p private x: random 1 < x < q - 1 public y: g^ x mod p public y : other party s y = g^ x (mod p) shared secret: y ^ x = y^ x (mod p)
gen := DHParameterGenerator m: 160 l: 512. alice := DH p: gen p q: gen q g: gen g. ya := alice publicValue. bob := DH p: alice p q: alice q g: alice g. yb := bob publicValue. ss := bob sharedSecretUsing: ya ss = (alice sharedSecretUsing: yb)
bob := DH newFrom: gen. yb := bob publicValue. alice := DH newFrom: gen. ya := alice publicValue. ss := (alice sharedSecretUsing: yb) asByteArray. msg := 'Hello World!' asByteArray. msg := (ARC4 key: ss) encrypt: msg. ss := (bob sharedSecretUsing: ya) asByteArray. ((ARC4 key: ss) decrypt: msg) asString.
Provides: integrity (tamper evidence) authentication non-repudiation Hashes (SHA, MD5) Digital Signatures (RSA, DSA)
provides: data fingerprinting unlimited input size => fixed output size must be: one-way: h(m) => m collision resistant: m1,m2 => h(m1) = h(m2) MD2, MD4, MD5, SHA, RIPE-MD
compression function: M = M1, M2, hi = f(Mi, hi-1) MD-strengthening: include message length (in the padding) doesn t completely prevent length extension
http://www.ietf.org/rfc/rfc1321.txt (Ron Rivest) digest: 128-bits (16B) block: 512-bits (64B) padding: M | 10...0 | length (64bits) broken in 2004, avoid MD5!
(MD5 hash: 'Hello' asByteArray) asHexString (MD5 hash: # [1 2 3 4 5] from: 2 to: 4) asHexString input := # [1 2 3 4 5 6 7 8 9] readStream. (MD5 hashNext: 3 from: input) asHexString (MD5 hashFrom: input) asHexString
SHS - NIST FIPS PUB 180 digest: 160 bits (20B) block: 512 bits (64B) padding: M | 10...0 | length (64bits) FIPS 180-1: SHA-1 (1995) FIPS 180-2: SHA-256, 384, 512 (2002) SHA-1 broken in 2005!
input := 'Hello World!' asByteArray readStream. sha := SHA new. sha updateWithNext: 5 from: input. sha digest asHexString. sha updateFrom: input. sha digest asHexString. input reset. (SHA256 hashFrom: input) asHexString.
authentic, non-reusable, unalterable signing uses the private key message, key => signature verification uses the public key message, key, signature => true/false
signing: hash the plaintext encode digest encrypt digest with private key verifying: decrypt digest with public key decode digest hash the plaintext compare the digests
alice := RSA new privateKey: keys privateKey. msg := 'Hello World' asByteArray. sig := alice sign: msg. sig asHexString bob := RSA new publicKey: keys publicKey. bob verify: sig of: msg
NIST FIPS PUB 186 p prime (modulus): (512 + k* 64 <= 1024) q prime factor of p 1 (160 bits) g > 1; g^ q mod p = 1 (g has order q mod p) x < q (private key) y = g^ x mod p (public key) FIPS 186-1 (1998): RSA(X9.31) FIPS 186-2 (2001): ECDSA(X9.62) FIPS 186-3 (?2006): bigger keys up to 15K bits
keys := DSAKeyGenerator keySize: 512. alice := DSA new privateKey: keys privateKey. sig := alice sign: 'Hello World' asByteArray bob := DSA new publicKey: keys publicKey. bob verify: sig of: 'Hello World' asByteArray
[1] Anderson: Security Engineering [2] Ferguson, Schneier: Practical Cryptography [3] Kahn: The Codebreakers [4] Menezes, van Oorschot, Vanstone: Handbook of Applied Cryptography [5] Schneier: Applied Cryptography

More Related Content

PDF
AREA41 - Anatomy of attacks aimed at financial sector by the Lazarus group
SeongsuPark8
 
PDF
Cryptography for Smalltalkers
ESUG
 
PPTX
State of the art logging
BalaBit
 
PDF
SCaLE 2016 - syslog-ng: From Raw Data to Big Data
BalaBit
 
PDF
VisualWorks Security Reloaded - STIC 2012
Martin Kobetic
 
PDF
syslog-ng: from log collection to processing and information extraction
BalaBit
 
PDF
2015. Libre Software Meeting - syslog-ng: from log collection to processing a...
BalaBit
 
PDF
LOADays 2015 - syslog-ng - from log collection to processing and infomation e...
BalaBit
 
AREA41 - Anatomy of attacks aimed at financial sector by the Lazarus group
SeongsuPark8
 
Cryptography for Smalltalkers
ESUG
 
State of the art logging
BalaBit
 
SCaLE 2016 - syslog-ng: From Raw Data to Big Data
BalaBit
 
VisualWorks Security Reloaded - STIC 2012
Martin Kobetic
 
syslog-ng: from log collection to processing and information extraction
BalaBit
 
2015. Libre Software Meeting - syslog-ng: from log collection to processing a...
BalaBit
 
LOADays 2015 - syslog-ng - from log collection to processing and infomation e...
BalaBit
 

What's hot (20)

PDF
Apache Commons ソースリーディングの会:Codec
moai kids
 
PDF
0 to 31337 Real Quick: Lessons Learned by Reversing the Flare-On Challenge
Blaine Stancill
 
PDF
Native or External?
ESUG
 
PPTX
Blockchain Cryptography for Developers (Nakov @ BGWebSummit 2018)
Svetlin Nakov
 
PPTX
Big Data Day LA 2015 - Compiling DSLs for Diverse Execution Environments by Z...
Data Con LA
 
PDF
Redis - for duplicate detection on real time stream
Codemotion
 
PPTX
“Technical Intro to Blockhain” by Yurijs Pimenovs from Paybis at CryptoCurren...
Dace Barone
 
PDF
Paris Redis Meetup Introduction
Gregory Boissinot
 
PPTX
Cybersecurity cyberlab3
rayborg
 
PPTX
Blockchain Cryptography for Developers (Nakov @ BlockWorld 2018, San Jose)
Svetlin Nakov
 
PPTX
Cryptography for Java Developers: Nakov jProfessionals (Jan 2019)
Svetlin Nakov
 
PDF
Centralized Logging with syslog
amiable_indian
 
PPTX
Cryptography for Absolute Beginners (May 2019)
Svetlin Nakov
 
PPTX
Monero Presentation by Justin Ehrenhofer - Stockholm, Sweden 2017
Justin Ehrenhofer
 
PPTX
Monero Presentation by Justin Ehrenhofer - Copenhagen, Denmark 2017
Justin Ehrenhofer
 
PDF
RedisConf17 - Redis as a JSON document store
Redis Labs
 
PDF
Redis — The AK-47 of Post-relational Databases
Karel Minarik
 
PDF
Password Storage And Attacking In PHP - PHP Argentina
Anthony Ferrara
 
PPTX
Monero Presentation by Justin Ehrenhofer - Oslo, Norway 2017
Justin Ehrenhofer
 
PDF
Password Storage and Attacking in PHP
Anthony Ferrara
 
Apache Commons ソースリーディングの会:Codec
moai kids
 
0 to 31337 Real Quick: Lessons Learned by Reversing the Flare-On Challenge
Blaine Stancill
 
Native or External?
ESUG
 
Blockchain Cryptography for Developers (Nakov @ BGWebSummit 2018)
Svetlin Nakov
 
Big Data Day LA 2015 - Compiling DSLs for Diverse Execution Environments by Z...
Data Con LA
 
Redis - for duplicate detection on real time stream
Codemotion
 
“Technical Intro to Blockhain” by Yurijs Pimenovs from Paybis at CryptoCurren...
Dace Barone
 
Paris Redis Meetup Introduction
Gregory Boissinot
 
Cybersecurity cyberlab3
rayborg
 
Blockchain Cryptography for Developers (Nakov @ BlockWorld 2018, San Jose)
Svetlin Nakov
 
Cryptography for Java Developers: Nakov jProfessionals (Jan 2019)
Svetlin Nakov
 
Centralized Logging with syslog
amiable_indian
 
Cryptography for Absolute Beginners (May 2019)
Svetlin Nakov
 
Monero Presentation by Justin Ehrenhofer - Stockholm, Sweden 2017
Justin Ehrenhofer
 
Monero Presentation by Justin Ehrenhofer - Copenhagen, Denmark 2017
Justin Ehrenhofer
 
RedisConf17 - Redis as a JSON document store
Redis Labs
 
Redis — The AK-47 of Post-relational Databases
Karel Minarik
 
Password Storage And Attacking In PHP - PHP Argentina
Anthony Ferrara
 
Monero Presentation by Justin Ehrenhofer - Oslo, Norway 2017
Justin Ehrenhofer
 
Password Storage and Attacking in PHP
Anthony Ferrara
 
Ad

Viewers also liked (6)

PDF
Tide - The missing web framework
Esteban Lorenzano
 
PDF
Voyage by example
ESUG
 
PDF
Advanced Seaside
ESUG
 
PDF
MongoTalk/Voyage
ESUG
 
PDF
Why do *you* need a strong open-source Smalltalk!
Pharo
 
PDF
Make It Better Together: コミュニティを主体としたLibreOffice翻訳 / : Community-centered Lib...
Naruhiko Ogasawara
 
Tide - The missing web framework
Esteban Lorenzano
 
Voyage by example
ESUG
 
Advanced Seaside
ESUG
 
MongoTalk/Voyage
ESUG
 
Why do *you* need a strong open-source Smalltalk!
Pharo
 
Make It Better Together: コミュニティを主体としたLibreOffice翻訳 / : Community-centered Lib...
Naruhiko Ogasawara
 
Ad

Similar to Cryptography for Smalltalkers 2 (20)

PPT
Cryptography for Smalltalkers 2 - ESUG 2006
Martin Kobetic
 
PPT
Cryptography and SSL in Smalltalk - StS 2003
Martin Kobetic
 
PPT
introduction to cryptography
Priyamvada Singh
 
PPT
crypto1.ppt
tommychauhan
 
PPT
crypto.ppt
Ganesh Chavan
 
PPT
introduction to cryptography (basics of it)
neonaveen
 
PPT
needed.ppt
faizalkhan673954
 
PPT
6.hash mac
Virendrakumar Dhotre
 
PPTX
Django cryptography
Erik LaBianca
 
PDF
Everything I always wanted to know about crypto, but never thought I'd unders...
Codemotion
 
PDF
Python Cryptography & Security
Jose Manuel Ortega Candel
 
PDF
TLS/SSL Internet Security Talk
Nisheed KM
 
PPTX
Hashfunction
Tony Nguyen
 
PPTX
Hashfunction
Young Alista
 
PPTX
Hash function
Harry Potter
 
PPTX
Hashfunction
David Hoen
 
PPTX
Hashfunction
Luis Goldster
 
PPTX
Hashfunction
James Wong
 
PPTX
Hashfunction
Fraboni Ec
 
PPT
Ch12
Joe Christensen
 
Cryptography for Smalltalkers 2 - ESUG 2006
Martin Kobetic
 
Cryptography and SSL in Smalltalk - StS 2003
Martin Kobetic
 
introduction to cryptography
Priyamvada Singh
 
crypto1.ppt
tommychauhan
 
crypto.ppt
Ganesh Chavan
 
introduction to cryptography (basics of it)
neonaveen
 
needed.ppt
faizalkhan673954
 
6.hash mac
Virendrakumar Dhotre
 
Django cryptography
Erik LaBianca
 
Everything I always wanted to know about crypto, but never thought I'd unders...
Codemotion
 
Python Cryptography & Security
Jose Manuel Ortega Candel
 
TLS/SSL Internet Security Talk
Nisheed KM
 
Hashfunction
Tony Nguyen
 
Hashfunction
Young Alista
 
Hash function
Harry Potter
 
Hashfunction
David Hoen
 
Hashfunction
Luis Goldster
 
Hashfunction
James Wong
 
Hashfunction
Fraboni Ec
 
Ch12
Joe Christensen
 

More from ESUG (20)

PDF
ShowUs: Pharo Stream Deck (ESUG 2025, Gdansk)
ESUG
 
PDF
Micromaid: A simple Mermaid-like chart generator for Pharo
ESUG
 
PDF
Directing Generative AI for Pharo Documentation
ESUG
 
PDF
Even Lighter Than Lightweiht: Augmenting Type Inference with Primitive Heuris...
ESUG
 
PDF
Composing and Performing Electronic Music on-the-Fly with Pharo and Coypu
ESUG
 
PDF
Gamifying Agent-Based Models in Cormas: Towards the Playable Architecture for...
ESUG
 
PDF
Analysing Python Machine Learning Notebooks with Moose
ESUG
 
PDF
FASTTypeScript metamodel generation using FAST traits and TreeSitter project
ESUG
 
PDF
Migrating Katalon Studio Tests to Playwright with Model Driven Engineering
ESUG
 
PDF
Package-Aware Approach for Repository-Level Code Completion in Pharo
ESUG
 
PDF
Evaluating Benchmark Quality: a Mutation-Testing- Based Methodology
ESUG
 
PDF
An Analysis of Inline Method Refactoring
ESUG
 
PDF
Identification of unnecessary object allocations using static escape analysis
ESUG
 
PDF
Control flow-sensitive optimizations In the Druid Meta-Compiler
ESUG
 
PDF
Clean Blocks (IWST 2025, Gdansk, Poland)
ESUG
 
PDF
Encoding for Objects Matters (IWST 2025)
ESUG
 
PDF
Challenges of Transpiling Smalltalk to JavaScript
ESUG
 
PDF
Immersive experiences: what Pharo users do!
ESUG
 
PDF
ChatPharo: an Open Architecture for Understanding How to Talk Live to LLMs
ESUG
 
PDF
Cavrois - an Organic Window Management (ESUG 2025)
ESUG
 
ShowUs: Pharo Stream Deck (ESUG 2025, Gdansk)
ESUG
 
Micromaid: A simple Mermaid-like chart generator for Pharo
ESUG
 
Directing Generative AI for Pharo Documentation
ESUG
 
Even Lighter Than Lightweiht: Augmenting Type Inference with Primitive Heuris...
ESUG
 
Composing and Performing Electronic Music on-the-Fly with Pharo and Coypu
ESUG
 
Gamifying Agent-Based Models in Cormas: Towards the Playable Architecture for...
ESUG
 
Analysing Python Machine Learning Notebooks with Moose
ESUG
 
FASTTypeScript metamodel generation using FAST traits and TreeSitter project
ESUG
 
Migrating Katalon Studio Tests to Playwright with Model Driven Engineering
ESUG
 
Package-Aware Approach for Repository-Level Code Completion in Pharo
ESUG
 
Evaluating Benchmark Quality: a Mutation-Testing- Based Methodology
ESUG
 
An Analysis of Inline Method Refactoring
ESUG
 
Identification of unnecessary object allocations using static escape analysis
ESUG
 
Control flow-sensitive optimizations In the Druid Meta-Compiler
ESUG
 
Clean Blocks (IWST 2025, Gdansk, Poland)
ESUG
 
Encoding for Objects Matters (IWST 2025)
ESUG
 
Challenges of Transpiling Smalltalk to JavaScript
ESUG
 
Immersive experiences: what Pharo users do!
ESUG
 
ChatPharo: an Open Architecture for Understanding How to Talk Live to LLMs
ESUG
 
Cavrois - an Organic Window Management (ESUG 2025)
ESUG
 

Recently uploaded (20)

PDF
The influence of sentiment analysis in enhancing early warning system model f...
IAESIJAI
 
PDF
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
PDF
Flame analysis and combustion estimation using large language and vision assi...
IAESIJAI
 
PDF
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
PDF
A Late Bloomer's Guide to GenAI: Ethics, Bias, and Effective Prompting - Boha...
Mindy Bohannon
 
DOCX
search engine optimization ppt fir known well about this
StandardCodeLearning
 
PDF
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
PPTX
Microsoft Excel 365/2024 Beginner's training
frank yeboah
 
PDF
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
PDF
OpenACC and Open Hackathons Monthly Highlights July 2025
OpenACC
 
PPTX
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
PDF
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
PPT
What is a Computer? Input Devices /output devices
GulJan8
 
PDF
A contest of sentiment analysis: k-nearest neighbor versus neural network
IAESIJAI
 
PDF
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
PDF
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
PPTX
Chapter 5: Probability Theory and Statistics
RandyFin
 
PDF
Taming the Chaos: How to Turn Unstructured Data into Decisions
Safe Software
 
PDF
Convolutional neural network based encoder-decoder for efficient real-time ob...
IAESIJAI
 
The influence of sentiment analysis in enhancing early warning system model f...
IAESIJAI
 
How ambidextrous entrepreneurial leaders react to the artificial intelligence...
IAESIJAI
 
Flame analysis and combustion estimation using large language and vision assi...
IAESIJAI
 
Hybrid horned lizard optimization algorithm-aquila optimizer for DC motor
IAESIJAI
 
A Late Bloomer's Guide to GenAI: Ethics, Bias, and Effective Prompting - Boha...
Mindy Bohannon
 
search engine optimization ppt fir known well about this
StandardCodeLearning
 
STKI Israel Market Study 2025 version august
Dr. Jimmy Schwarzkopf
 
Microsoft Excel 365/2024 Beginner's training
frank yeboah
 
Enhancing emotion recognition model for a student engagement use case through...
IAESIJAI
 
OpenACC and Open Hackathons Monthly Highlights July 2025
OpenACC
 
Final SEM Unit 1 for mit wpu at pune .pptx
anishtilekar08
 
1 - Historical Antecedents, Social Consideration.pdf
tuazon2030627
 
What is a Computer? Input Devices /output devices
GulJan8
 
A contest of sentiment analysis: k-nearest neighbor versus neural network
IAESIJAI
 
Hindi spoken digit analysis for native and non-native speakers
IAESIJAI
 
NewMind AI Weekly Chronicles – August ’25 Week III
NewMind AI
 
ENT215_Completing-a-large-scale-migration-and-modernization-with-AWS.pdf
ssuser28425f
 
Chapter 5: Probability Theory and Statistics
RandyFin
 
Taming the Chaos: How to Turn Unstructured Data into Decisions
Safe Software
 
Convolutional neural network based encoder-decoder for efficient real-time ob...
IAESIJAI
 

Cryptography for Smalltalkers 2

  • 1. Public Key CryptographyPublic Key Cryptography Martin Kobetic Cincom Smalltalk Development ESUG 2006
  • 2. Public Key Algorithms Encryption (RSA) Key Establishment (RSA, DH) Signing Hashes (SHA, MD5) MACs (HMAC, CBC-MAC) Digital Signatures (RSA, DSA)
  • 3. public and private key hard to compute private from the public sparse key space => much longer keys based on hard problems factoring, discrete logarithm much slower RSA, DSA, DH, ElGamal elliptic curves: ECDSA, ECDH,
  • 4. provides: confidentiality symmetric (secret) key ciphers same (secret) key => encrypt and decrypt DES, AES, RC4 asymmetric (public) key ciphers public key => encrypt private key => decrypt RSA,ElGammal
  • 5. RSA Security, PKCS #1 modulus n = product of 2 large primes p, q public: e = relatively prime to (p-1)(q-1) private: d = e-1 mod ((p-1)(q-1)) C = Pe mod n [ P < n ] P = Cd mod n small e => faster encryption
  • 6. keys := RSAKeyGenerator keySize: 512. alice := RSA new publicKey: keys publicKey. ctxt := alice encrypt: 'Hello World' asByteArray. ctxt asHexString bob := RSA new privateKey: keys privateKey. (bob decrypt: ctxt) asString
  • 7. keys := RSAKeyGenerator keySize: 512. alice := RSA new publicKey: keys publicKey. msg := 'Hello World' asByteArrayEncoding: # utf8. msg := alice encrypt: msg. bob := RSA new privateKey: keys privateKey. msg := bob decrypt: msg. msg asStringEncoding: # utf8
  • 8. public key too slow for bulk encryption public key => secure symmetric key symmetric key => bulk encryption key exchange (RSA) generate one-time symmetric key public key => encrypt the symmetric key key agreement (DH) parties cooperate to generate a shared secret
  • 9. key := DSSRandom default byteStream next: 40. msg := 'Hello World!' asByteArray. msg := (ARC4 key: key) encrypt: msg. alice := RSA new publicKey: keys publicKey. key := alice encrypt: key. bob := RSA new privateKey: keys privateKey. key := bob decrypt: key ((ARC4 key: key) decrypt: msg) asString.
  • 10. shared secret over unprotected channel http://www.ietf.org/rfc/rfc2631.txt modulus p: large prime (>=512b) order q: large prime (>=160b) generator g: order q mod p private x: random 1 < x < q - 1 public y: g^ x mod p public y : other party s y = g^ x (mod p) shared secret: y ^ x = y^ x (mod p)
  • 11. gen := DHParameterGenerator m: 160 l: 512. alice := DH p: gen p q: gen q g: gen g. ya := alice publicValue. bob := DH p: alice p q: alice q g: alice g. yb := bob publicValue. ss := bob sharedSecretUsing: ya ss = (alice sharedSecretUsing: yb)
  • 12. bob := DH newFrom: gen. yb := bob publicValue. alice := DH newFrom: gen. ya := alice publicValue. ss := (alice sharedSecretUsing: yb) asByteArray. msg := 'Hello World!' asByteArray. msg := (ARC4 key: ss) encrypt: msg. ss := (bob sharedSecretUsing: ya) asByteArray. ((ARC4 key: ss) decrypt: msg) asString.
  • 14. provides: data fingerprinting unlimited input size => fixed output size must be: one-way: h(m) => m collision resistant: m1,m2 => h(m1) = h(m2) MD2, MD4, MD5, SHA, RIPE-MD
  • 15. compression function: M = M1, M2, hi = f(Mi, hi-1) MD-strengthening: include message length (in the padding) doesn t completely prevent length extension
  • 16. http://www.ietf.org/rfc/rfc1321.txt (Ron Rivest) digest: 128-bits (16B) block: 512-bits (64B) padding: M | 10...0 | length (64bits) broken in 2004, avoid MD5!
  • 17. (MD5 hash: 'Hello' asByteArray) asHexString (MD5 hash: # [1 2 3 4 5] from: 2 to: 4) asHexString input := # [1 2 3 4 5 6 7 8 9] readStream. (MD5 hashNext: 3 from: input) asHexString (MD5 hashFrom: input) asHexString
  • 18. SHS - NIST FIPS PUB 180 digest: 160 bits (20B) block: 512 bits (64B) padding: M | 10...0 | length (64bits) FIPS 180-1: SHA-1 (1995) FIPS 180-2: SHA-256, 384, 512 (2002) SHA-1 broken in 2005!
  • 19. input := 'Hello World!' asByteArray readStream. sha := SHA new. sha updateWithNext: 5 from: input. sha digest asHexString. sha updateFrom: input. sha digest asHexString. input reset. (SHA256 hashFrom: input) asHexString.
  • 20. authentic, non-reusable, unalterable signing uses the private key message, key => signature verification uses the public key message, key, signature => true/false
  • 21. signing: hash the plaintext encode digest encrypt digest with private key verifying: decrypt digest with public key decode digest hash the plaintext compare the digests
  • 22. alice := RSA new privateKey: keys privateKey. msg := 'Hello World' asByteArray. sig := alice sign: msg. sig asHexString bob := RSA new publicKey: keys publicKey. bob verify: sig of: msg
  • 23. NIST FIPS PUB 186 p prime (modulus): (512 + k* 64 <= 1024) q prime factor of p 1 (160 bits) g > 1; g^ q mod p = 1 (g has order q mod p) x < q (private key) y = g^ x mod p (public key) FIPS 186-1 (1998): RSA(X9.31) FIPS 186-2 (2001): ECDSA(X9.62) FIPS 186-3 (?2006): bigger keys up to 15K bits
  • 24. keys := DSAKeyGenerator keySize: 512. alice := DSA new privateKey: keys privateKey. sig := alice sign: 'Hello World' asByteArray bob := DSA new publicKey: keys publicKey. bob verify: sig of: 'Hello World' asByteArray
  • 25. [1] Anderson: Security Engineering [2] Ferguson, Schneier: Practical Cryptography [3] Kahn: The Codebreakers [4] Menezes, van Oorschot, Vanstone: Handbook of Applied Cryptography [5] Schneier: Applied Cryptography