23
TCP/IP Protocol Suite 1 A digital signature uses a pair of private- public keys. Note

DigitalSignature_Forouzan

Tags:

Embed Size (px)

DESCRIPTION

Digital Signature Content

Citation preview

PowerPoint Presentation

TCP/IP Protocol Suite1

A digital signature uses a pair of private-public keys.

Note

1

2Digital signature process

2

TCP/IP Protocol Suite3

A digital signature needs a public-key system.The signer signs with her private key; the verifier verifies with the signers public key.

Note

3

TCP/IP Protocol Suite4

A cryptosystem uses the private and public keys of the receiver:a digital signature uses the private and public keys of the sender.

Note

4

5Signing the digest

5

TCP/IP Protocol Suite6Using a trusted center for non-repudiation

6

13.7

13.5.1 RSA Digital Signature Scheme

Figure 13.6 General idea behind the RSA digital signature scheme

7

13.8

Signing and Verifying13.5.1 ContinuedFigure 13.7 RSA digital signature scheme

8

13.9

RSA Signature on the Message Digest13.5.1 ContinuedFigure 13.8 The RSA signature on the message digest

9

13.10

13.5.1 Continued

When the digest is signed instead of the message itself, the susceptibility of the RSA digital signature scheme depends on the strength of the hash algorithm.

Note

10

13.11

13.5.2 ElGamal Digital Signature SchemeFigure 13.9 General idea behind the ElGamal digital signature scheme

11

13.12

Key GenerationThe key generation procedure here is exactly the same as the one used in the cryptosystem. 13.5.2 Continued

In ElGamal digital signature scheme, (e1, e2, p) is Alices public key; d is her private key.

Note

12

13.13

Verifying and Signing13.5.2 ContinuedFigure 13.10 ElGamal digital signature scheme

13

13.14

13.5.1 ContinuedHere is a trivial example. Alice chooses p = 3119, e1 = 2, d = 127 and calculates e2 = 2127 mod 3119 = 1702. She also chooses r to be 307. She announces e1, e2, and p publicly; she keeps d secret. The following shows how Alice can sign a message.Example 13.2Alice sends M, S1, and S2 to Bob. Bob uses the public key to calculate V1 and V2.

14

13.15

13.5.1 ContinuedNow imagine that Alice wants to send another message, M = 3000, to Ted. She chooses a new r, 107. Alice sends M, S1, and S2 to Ted. Ted uses the public keys to calculate V1 and V2.Example 13.3

15

13.16

13.5.3 Schnorr Digital Signature SchemeFigure 13.11 General idea behind the Schnorr digital signature scheme

16

13.17

Key Generation13.5.3 ContinuedAlice selects a prime p, which is usually 1024 bits in length.Alice selects another prime q.Alice chooses e1 to be the qth root of 1 modulo p. Alice chooses an integer, d, as her private key.Alice calculates e2 = e1d mod p.Alices public key is (e1, e2, p, q); her private key is (d).

In the Schnorr digital signature scheme, Alices public key is (e1, e2, p, q); her private key (d).

Note

17

13.18

Signing and Verifying13.5.3 ContinuedFigure 13.12 Schnorr digital signature scheme

18

13.19

Signing1. Alice chooses a random number r. 2. Alice calculates S1 = h(M|e1r mod p). 3. Alice calculates S2 = r + d S1 mod q.4. Alice sends M, S1, and S2.13.5.3 ContinuedVerifying Message

1. Bob calculates V = h (M | e1S2 e2S1 mod p).2. If S1 is congruent to V modulo p, the message is accepted;

19

13.20

13.5.1 ContinuedHere is a trivial example. Suppose we choose q = 103 and p = 2267. Note that p = 22 q + 1. We choose e0 = 2, which is a primitive in Z2267*. Then (p 1) / q = 22, so we have e1 = 222 mod 2267 = 354. We choose d = 30, so e2 = 35430 mod 2267 = 1206. Alices private key is now (d); her public key is (e1, e2, p, q).Example 13.4Alice wants to send a message M. She chooses r = 11 and calculates e2 r = 35411 = 630 mod 2267. Assume that the message is 1000 and concatenation means 1000630. Also assume that the hash of this value gives the digest h(1000630) = 200. This means S1 = 200. Alice calculates S2 = r + d S1 mod q = 11 + 1026 200 mod 103 = 35. Alice sends the message M =1000, S1 = 200, and S2 = 35. The verification is left as an exercise.

20

13.21

13.5.4 Digital Signature Standard (DSS)Figure 13.13 General idea behind DSS scheme

21

13.22

Verifying and Signing13.5.4 ContinuedFigure 13.14 DSS scheme

22

13.23

13.5.1 ContinuedAlice chooses q = 101 and p = 8081. Alice selects e0 = 3 and calculates e1 = e0 (p1)/q mod p = 6968. Alice chooses d = 61 as the private key and calculates e2 = e1d mod p = 2038. Now Alice can send a message to Bob. Assume that h(M) = 5000 and Alice chooses r = 61:Example 13.5

Alice sends M, S1, and S2 to Bob. Bob uses the public keys to calculate V.

23


1 시스템분석입문

1 시스템분석입문

Documents
Cakes Recipes

Cakes Recipes

Documents
Introduction to Six Sigma

Introduction to Six Sigma

Documents
Bodybuilding - The Rock Hard Challenge (Month 1 Training)

Bodybuilding - The Rock Hard Challenge (Month 1 Training)

Documents
Bhagavad Gita

Bhagavad Gita

Documents
Rubik's cube solution

Rubik's cube solution

Documents
The Dutch Republic In International Trade

The Dutch Republic In International Trade

Documents
United States Constitution

United States Constitution

Documents
How Computer Monitors Work

How Computer Monitors Work

Documents
Explore The Levels of Creation

Explore The Levels of Creation

Documents
xCDC14a

xCDC14a

Documents
Star Wars Original Trilogy Trivia (Episodes IV-VI)

Star Wars Original Trilogy Trivia (Episodes IV-VI)

Documents
Venture Capital

Venture Capital

Documents
Chapter 23

Chapter 23

Documents
Compressing And Decompressing Folders

Compressing And Decompressing Folders

Documents
(Tesla) - The Tesla Magnetic Car Engine

(Tesla) - The Tesla Magnetic Car Engine

Documents
The Best American Humorous Short Stories

The Best American Humorous Short Stories

Documents
Plato - Symposium

Plato - Symposium

Documents
Minne hävisivät soneran rahat

Minne hävisivät soneran rahat

Documents
Physical Modelling Synthesis Overview

Physical Modelling Synthesis Overview

Documents
The Last Carnival I Ever Saw

The Last Carnival I Ever Saw

Documents
Effective Parenting: Establishing Boundaries

Effective Parenting: Establishing Boundaries

Documents
Star Wars Trivia!

Star Wars Trivia!

Documents
Heidegger Kritik

Heidegger Kritik

Documents
Aesops Fables

Aesops Fables

Documents
Acetone Peroxide

Acetone Peroxide

Documents
Oedipus The King: The Ideal Tragic Play

Oedipus The King: The Ideal Tragic Play

Documents
Algorithms

Algorithms

Documents
Keyboard Shortcuts for the Opera Browser for Mac OS X

Keyboard Shortcuts for the Opera Browser for Mac OS X

Documents
European Colinization of Latin America

European Colinization of Latin America

Documents