Internet Security

Topics Covered: Intro Cryptography, Digital Signature, TLS

Brief Overview

The basic idea of internet security is to ensure that only the sender and receiver can read and write messages to each other. No third-party is able to hijack their secure connection by intercepting or spoofing messages.

Cryptography

Image Not Showing Possible Reasons

The image was uploaded to a note which you don't have access to
The note which the image was originally uploaded to has been deleted

Learn More →

The basic goal of the asynmmetric cryptography field is to come up with "keys" belonging to the sender and the receiver such that

m = K_{B} (K_{A} (m))

where

A

and

B

are the sender and receiver respectively and

m

is the message.

K_{A}

encrypts the message, and

K_{B}

decrypts it.

Why Not Symmetric?

Symmetric encryption is usually faster, and you only generate one key. Why don't we use it?

Say we choose to use it. How do we generate it? Maybe the sender can generate it and share it with the receiver. But how do we get it to the receiver when we don't have a secure connection set up? We can't encrypt it, because the receiver can't decrypt it yet.

Public Key Encryption

In this form of asymmetric encryption, both

A

and

B

must create a private key

K_{A}

and

K_{B}

, as well as a public key

K_{P}

which they will share with each other. Both will create their own public keys and share them with each other, but we focus on one of them only for our examples.

A

does not know

B

's private key, and vice versa. Two requirements need to be fulfilled:

choose
$K_{A}, K_{B}, K_{P}$ s.t.
$K_{B} (K_{P} (m)) = m$ , or
$K_{A} (K_{P} (m)) = m$
given
$K_{P}$ ,
$K_{A}$ and
$K_{B}$ should be impossible to figure out

RSA

The important part about RSA is that

K_{P} (K_{B} (m)) = K_{B} (K_{P} (m))

we can use our private key to encrypt something for
$A$ , and
$A$ can use the public key to decrypt it, proving that
$B$ sent it
encrypting with public key means
$B$ can read it with their private key
issue: computationally expensive for large
$m$ (won't go into algorithm here, based on factoring large prime numbers)

Establishing a Session

The lecture 9 slides offer the exchange in writing. I'll try writing it down symbolically for anyone that found the slide as confusing as I did.

$A$ generates random session key
$k_{S}$ , computes
$K_{P} (k_{S})$ . Send to
$B$ .
$B$ computes
$K_{B} (K_{P} (k_{S}))$ . By our first property, this is
$k_{S}$ .
Now
$A$ and
$B$ know
$k_{S}$ . Great. Now we just need to ensure that if
$B$ receives
$k_{S}$ , then it must have come from
$A$ .

Digital Signature

The digital signature is a hashed session key, signed by the private key. So in our above terminology, let

H (m)

be a hash function satisfying the basic ideas of a hash function

Deterministic (for given
$m$ ,
$H (m)$ always produces the same result)
Given
$H (m)$ , cannot figure out what
$m$ is.
Computationally difficult/impossible to find
$m_{1}, m_{2}$ such that
$H (m_{1}) = H (m_{2})$ .

Digital Signature = K_{B} (H (k_{S}))

Why does this guarantee that

k_{S}

came from our connection? Let's say

B

sends this signature along with the signature (and message)

k_{S}

A

A

can use the public key

K_{P} (K_{B} (H (k_{S}))) = H (k_{S})

. If

A

hashes

k_{S}

, they should obtain

H (k_{S})

, meaning

k_{S}

was not altered, and it comes from

B

TLS

TLS (Transport Layer Security) uses symmetric key crypto, and ensures integrity using MAC (Message Authentication Checksum). Receiver checks the MAC and the associated data as it arrives. It functions similarly to the digital signature, where a key is shared between sender and receiver, and the tag is generated using this key and a hash function. A few notes:

A session key is still generated, similarly to RSA as discussed above, and shared.
MAC is generated from the session key using a hash function
Receiver verifies the MAC to ensure data integrity

TLS Protocol:
Sender:

retrives message
$m$
fragments message into chunks, each chunk gets a MAC
encrypt the chunks
transmit

Receiver:

read received data
decrypt the chunks
verify MAC for each chunk
reassmble chunks and deliver message
$m$ to next protocol layer (HTTP for example)

From Cloudflare Blog,

A TLS certificate is issued by a certificate authority to the person or business that owns a domain. The certificate contains important information about who owns the domain, along with the server's public key, both of which are important for validating the server's identity.

Servers adhering to HTTPS are using TLS with HTTP, and are run usually on port 443.

For extra reference material, here is the TCP handshake modified to include TLS exchange. The client provides the server with what hash functions and ciphers it can use, the server will choose which they will use and send the client the certificate, which the client will verify. The session keys are either determined by a random number (as in example above) or using Diffie Hellman, which is described in depth on the lecture 9 slides.

Image Not Showing Possible Reasons

The image was uploaded to a note which you don't have access to
The note which the image was originally uploaded to has been deleted

Learn More →

Internet Security

Brief Overview

Cryptography

Why Not Symmetric?

Public Key Encryption

RSA

Establishing a Session

Digital Signature

TLS

Read more

BGP and OSPF: Enabling Autonomous Systems Communication

Wireless, Mobility, and Putting it all Together

S24 CS 118

Link Layer and Switching