Académique Documents
Professionnel Documents
Culture Documents
3/25/2019 1
Sender Receiver
Encryption Decryption
Key Key
Transmitted
Cleartext Cleartext
Message
Message Message
3/25/2019 2
40-Bit Key
3 1/2 hours
to break code
56-Bit Key
22 hours 15 minutes
to break code
Less than 1 rotation of the earth
64-Bit Key
33-34 days
to break code
33-34 rotations of the earth
128-Bit Key
more than 2,000 years
to break code
Recipient’s Recipient’s
Public Private
Key Key
I have to obtain
Ashok’s public key. Milind
Ashok’s Public
Key
An application of
Encryption: Public/Private Key
Plaintext
+ =
Symmetric Ciphertext
key
Ashok’s Public
Key
An application of Public/Private Key
Encryption of symmetric key
Ciphertext
=
+
Ashok’s Public Symmetric Wrapped
Key key Symmetric Key
An application of
Public/Private Key
Digital Envelope
Wrapped
Ciphertext Symmetric Key Ciphertext
Wrapped
Symmetric Key
An application of
Decryption Public/Private Key
Ashok’s
= Private Key +
Wrapped
Symmetric Wrapped
Ciphertext
Ciphertext Symmetric Key
key Symmetric Key
+ =
Symmetric
Ciphertext
key Plaintext
How Secure is the Private Key?
Smart card
How does PKI work?
Sender’s
Digital
Hash Code Private Key Signature
Original
Message
Recipient’s
Public Key Symmetric Key
Encrypted
Encrypted
Symmetric
& Signed
Sender Key
3/25/2019 13
How does PKI work?
Recipient’s Recipient
Private Key
Original
Message
Digital Sender’s Hash Code
Encrypted Signature Public Key
& Signed
3/25/2019 14
General PKI Requirements
Certification Authority
Cross-certification Key Histories
Support for
non-repudiation Key Backup
& Recovery
Timestamping
Certificate
Revocation
Certificate
Automatic
Repository Application
Key Update
software
3/25/2019 15
What is in a certificate?
A Digital Certificate is a digitally signed document
that associates a public key with a user.
Certificate ties a
participant to public key Public Key:
Certificate Issuance
or
Certificate Validation
Key Usage
Key Expiry
Key Update
3/25/2019 18