Differences

This shows you the differences between two versions of the page.

--- mywiki:encryption:encryption:start [2015/11/24 07:18] – [Ciphers] shaoguoh
+++ mywiki:encryption:encryption:start [2019/09/15 18:55] (current) – external edit 127.0.0.1
@@ Line 1: / Line 1: @@
 Encryption
-^ Reference | [[https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation | Block Cipher mode]] |
+^ Reference | [[https://en.wikipedia.org/wiki/Block_cipher_mode_of_operation | Cipher Introduction in simple way]] |
 ====== Ciphers ======
-^ Ciphers | Description | Example |
+^ Ciphers By type of key | Description | Example |
 | Block Cipher | Break messages into fixed length blocks, and encrypt each block using the same key | (3)DES, AES/Rijndael, IDEA|
 | Stream Cipher | Break message into fixed length blocks, but use a sequence of keys to encrypt the blocks | Vigenère cipher, RC4, SEAL |
@@ Line 12: / Line 12: @@
 | Synchronous Stream Ciphers | generates the key string from a source other than the message itself |
 | Self-Synchronous Stream Ciphers | obtain a key from the message itself |
+^ Cipher by the type of input data | Description |
+| symmetric key algorithms | the same key is used for encryption and decryption | DES, AES |
+| asymmetric key algorithms | two different keys are used for encryption and decryption | RSA |
@@ Line 20: / Line 24: @@
 | Output Feedback Mode (OFB Mode) |
+| Cryptographic hash functions |
+| digital signatures |
+| message authentication codes (MACs) |
+====== Default Hash vs HMAC ======
+| Default hash | without key |
+| HMAC | with key |
+If you're using a simple hash of a file to guarantee file-integrity, then an attacker could modify the file, re-calculate the hash of the modified file, and replace the old hash with the modified one.
+With a HMAC, a key is used when calculating the hash value, so unless the attacker has the key, they're unable to calculate a valid hash value of the modified data.
 ====== IPSEC ======
@@ Line 26: / Line 44: @@
   - encryption algorithms
-authentication algorithms: use a shared **key** to verify the identity of the sending IPsec device. The IPsec protocol suite defines two authentication algorithms: **MD5** and **SHA-1**. The Services Router uses an **HMAC** variant of MD5 and SHA-1 algorithms that provide an additional level of hashing.
+authentication: use a shared **key** to verify the identity of the sending IPsec device. The IPsec protocol suite defines two authentication algorithms: **MD5** and **SHA-1**. The Services Router uses an **HMAC** variant of MD5 and SHA-1 algorithms that provide an additional level of hashing.
+Encryption algorithms: use a shared **key** to verify the authenticity of the IPsec devices.
+  - DES, 3DES,
+  - AES-CBC 128, 192, and 256,
+  - AES-GCM 128, 192, and 256.
+  -
+Note: AES-GCM is both an integrity and encryption algorithm and is described in the Integrity algorithms section.
+Authentication methods: Authentication methods define the way in which a computer or user can securely assert identity to a remote computer. The methods involve sharing credentials that can be cryptographically verified, proving that the sending computer or user is who it claims to be.
+  - Preshared key
+  - Kerberos V5
+  - Certificate
+  - NTLMv2
+  - Certificate with ECDSA P-256 and ECDSA P-384
+Integrity algorithms:Data integrity algorithms help ensure that a network packet received from a remote computer was not modified in transit. The sending computer calculates a hash value from the data payload of the network packet. This hash is then cryptographically signed and attached to the network packet. The receiving computer performs the same calculation on the data payload of the packet and compares it to the hash that was attached by the sender. If the hashes match, then the data is the same as it was transmitted and the receiving computer accepts the packet. If the hash values do not match, then the packet was altered between the source and the destination and the receiving computer drops the packet. Data integrity algorithms do not encrypt the data; encryption protocols must be used for that purpose.
+    - MD5
+    - SHA-1, SHA-256, and SHA-384
+    - AES-GMAC 128, 192, and 256
+    - AES-GCM 128, 192, and 256
+IPSEC features:
+  - Data confidentiality—The IPSec sender can encrypt packets before transmitting them across a network.
+  - Data integrity—The IPSec receiver can authenticate packets sent by the IPSec sender to ensure that the data has not been altered during transmission.
+  - Data origin authentication—The IPSec receiver can authenticate the source of the IPSec packets sent. This service is dependent upon the data integrity service.
+  - Antireplay—The IPSec receiver can detect and reject replayed packets.
+===== IPSEC anti-replay in Linux =====
+static int xfrm_replay_overflow(struct xfrm_state *x, struct sk_buff *skb)
-Encryption algorithms: use a shared **key** to verify the authenticity of the IPsec devices
@@ Line 47: / Line 98: @@
 | cryptanalysis (codebreaking) | the study of principles/ methods of deciphering ciphertext without knowing key |
 | cryptology | the field of both cryptography and cryptanalysis |
+    Authentication—The assurance to one entity that another entity is who he/she/it claims to be.
+    Integrity—The assurance to an entity that data has not been altered (intentionally or unintentionally) between "there" and "here," or between "then" and "now."
+    Confidentiality—The assurance to an entity that no one can read a particular piece of data except the receiver(s) explicitly intended.