1 / 22

IELM 511: Information System design

IELM 511: Information System design. Introduction. Part 1. ISD for well structured data – relational and other DBMS. Info storage (modeling, normalization) Info retrieval (Relational algebra, Calculus, SQL) DB integrated API’s. Part 2. ISD for systems with non-uniformly structured data.

fbrown
Download Presentation

IELM 511: Information System design

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. IELM 511: Information System design Introduction Part 1. ISD for well structured data – relational and other DBMS Info storage (modeling, normalization) Info retrieval (Relational algebra, Calculus, SQL) DB integrated API’s Part 2. ISD for systems with non-uniformly structured data Basics of web-based IS (www, web2.0, …) Markup’s, HTML, XML Design tools for Info Sys: UML Part III: (subset of) API’s for mobile apps Security, Cryptography IS product lifecycles Algorithm analysis, P, NP, NPC

  2. Agenda Basics of secure communications in Information Systems Private key (symmetric key) IS Asymmetric keys and their uses in IS Encryption algorithms and how they work (basics) The mathematical basis for encryption Concluding remarks

  3. Communications basics In many applications, we use a secret ‘password’ to ‘log in’ and communicate securely How does the IS exchange data securely between the client and server? Data encryption  transmit encrypted data  decrypt data on server How to encrypt/decrypt ? Shared secret password: Symmetric keys Asymmetric keys (uses Secure Sockets Layer protocol), or SSL

  4. Web security background 1. Passive attacks: Attacker monitors data traffic on the web, and collects some information not sent to him (using ‘packet sniffers’) 2. Active attacks: (a) Attacker gains access to some computer using security loopholes (typically using virus, worms, trojan horse, etc.) (b) Spoofing: attacker pretends to be a trusted system, to make the user believe it is safe to send them some secure data. (c) Cryptographic attack: attacker captures encrypted data an decrypts it (e.g., repeatedly trying many possible passwords) 3. Denial of service attacks: Attacker overloads your server with too many requests, blocking other users from accessing it. 4. Social engineering: Attacker uses personal communication/phone call to cheat you into telling them some secret information (e.g. password, credit card pin)

  5. Data encryption: symmetric-key encryption sender, receiver share a secret key via email/phone/letter 1 sender encrypts data, sends receiver decrypts data, reads 2 @#r% data data decryption algorithm data encryption algorithm @#r% @#r% Usually, the encryption and decryption uses same key (password) Common examples: DES algorithm (chops data into 64 bit ‘blocks’, encrypting each with a 56 bit key.) Feistel cipher

  6. data @#r% data data @#r% data pub pri pub pri Data encryption: asymmetric-key (private key, public key) Each party wishing to communicate has two keys: - Public key: a password that is released to everyone - Private key: a secret password that is not told to anyone Properties of Public, Private keys: - must be different from each other - mathematically related - impossible to determine one from the other Two common uses of Asymmetric keys: Secure communications: sending encrypted data Identity verification: digital signatures

  7. s_pub s_pub s_pri r_pri r_pub Data encryption: asymmetric-key (private key, public key) Secure communications Sender encrypts data with receiver’s public key Receiver decrypts data with receiver’s private key reads sends @#r% data decryption algorithm data encryption algorithm @#r% Receivers decrypt data with sender’s public key Digital signatures reads @#r% Sender encrypts data with sender’s private key decryption algorithm data sends data encryption algorithm @#r% @#r% decryption algorithm data

  8. Asymmetric keys: user verification Problem: how will the a user know whether the public key they ‘fetch’ over the internet is really from the party they are communicating, or it’s been altered by some malicious party? Solution: use of a “trusted” intermediary (third party), who is in charge of (a) providing keys to all interacting parties (b) physically checking that the each party is who they claim to be Implementation - Use of a Public Key Infrastructure (PKI), which usually involves a - 3rd party Certificate Authority (CA) who issues and manages key’s to the applications that are communicating. Some common CA’s - VeriSign, CoModo, GoDaddy, DigiCert, …

  9. Two common technologies for secure web communication Using TLS (Transport Layer Security) - A set of functions written in the transport layer - URL is of the form: https://host/path/file - Connection on server is typically on port 443 - When a secure page is requested, TLS protocol will - verify identity of both parties - use symmetric-key encryption in the rest of the session Using SHTTP - Implemented as a set of functions in application layer - URL is of the form: shttp://host/path/file - Used by very few systems

  10. encrypts rc: *rc rc c_pri c_pri c_pub c_pub client requests secure page: https://host/page includes: (a) list of cipher funcs, (b) *rc s_pri s_pri s_pri s_pub s_pub s_pub TLS connections (simplified) server client client generates a random number: rc rc *rc rc server generates a random number: rs rs encrypts rs: *rs rs *rs encrypts server certificate: sc *sc rs server sends requested page, + *rs *sc *sc client contacts CA to verify server identity sc next page… sc

  11. c_pri c_pri c_pub c_pub s_pri s_pri s_pub s_pub TLS connections (simplified) server client client contacts CA to verify server identity sc encrypts client certificate: cc *cc rs rc rc sends encrypted certificate *cc rs *cc sc cc server contacts CA to verify client identity cc client generates a random number (pre-password): pms encrypts pre-password: pms *pms *pms pms pms rc rs client, server independently calculate password pass pms rc rs pass pass Secure, symmetric-key session with password: pass

  12. Basics of encryption Encryption is essential for many IS applications. How do encryption algorithms work ?

  13. Simplest example: Shift cipher Main idea: Shift letters using mod 26 arithmetic Input: set of characters from the alphabet, P {a, b, …, z} Input: shift size, key{1, ..., 25} Output: cipher text, C {a, b, c, … , x, y, z} Encryption and decryption functions encrypt(key, letter) = letter + key (mod 26) decrypt(key, letter) = letter - key (mod 26) Note: the ‘mod’ function is applied to the numerical equivalent of each character, a = 1, b = 2, … z = 26. Example: encrypt(3, play) = sodb

  14. Shift Cipher (or similar permutation ciphers) Advantages encrypt, decrypt: very efficient Ciphertext appears unreadable Disadvantages Only 25 possible keys (easy to crack!) Regular pattern  we can use letter-frequency tables, etc [Beker and Piper] analysis of frequency of letters in English:

  15. 0 1 0 1 1 1 1 1 0 0 1 1 0 0 0 0 0 0 1 1 0 1 0 1 0 0 0 0 0 0 0 1 1 0 1 1 0 0 1 1 1 1 More sophisticated cipher: One time pad Secret-key encryption scheme (symmetric) Main idea: Encrypt plaintext by xor with key (= sequence of bits) Decrypt ciphertext by xor with same key (= bit sequence) Plaintext Key Ciphertext Ciphertext Key Plaintext  =  =

  16. One time pad Advantages Easy to compute encrypt, decrypt from key, text Secure: Given a plaintext and random key, all possible ciphertexts are equally likely. Disadvantages Key is as long as the plaintext

  17. Even more sophisticated ciphers: Block ciphers Basic algorithms for Block ciphers were developed at IBM Examples: Feistel: source code is available for many languages; DES (Data Encryption Standard): commonly used. Main idea: 1. Permute input bits 2. Repeat application of a Feistel-style function 3. Apply inverse permutation to produce output  Simple, computationally efficient, secure (at least to date!)

  18. L i-1 L i = Ri-1 R i-1 R i L0 [0..31] R0 [0..31] F( key, input) x 16 times L16 [0..31] R16 [0..31] DES basics Plain text (64 bits) Initial permutation IP [0..63] Two halves F K i Ki = permutation of key K XOR Inverse Initial permutation Cipher text (64 bits)

  19. DES basics.. Function F(Ri-1 ,Ki) Block E: expands 32-bit Ri-1 into 48bits XOR with Ki Divide into 8 6-bit blocks Apply “S-box” table-lookup functions to each block Permute resulting bits S-box table-lookup functions: Non-linear mapping; main reason why DES function is not invertible. [source: wikipedia] This website gives a numerical example of DES encryption steps

  20. RSA algorithm DES uses same key for encryption and decryption. The theoretical basis for Public key encryption systems are developed from the RSA algorithm. RSA algorithm: based on number theory (prime numbers). [an excellent introduction is Prof Deng Xiaotie’s lectures, City U.]

  21. Practical matters Private key algorithms: Easy to implement in your own IS Open source code available for many ciphers (Feistel, TEA) Public key algorithms: Requires purchase of service from PKI vendor (e.g. Verisign,…) Expensive to implement, manage, but standard for most businesses

  22. References and Further Reading Simon Singh, The Code Book, pub. Anchor press, 2000 PDF article giving brief introduction to RSA maths (Utah State, Prof Moon) Wikipedia cryptography portal Prof Deng Xiaotie/Prof Frances Yao’s lecture notes (City Univ, HK) Next: Mobile Applications Design

More Related