Data Security And Algorithms

Transcript

1. Data Security Encryption and Hashing Algorithms

2. Topics 1. Cryptographic terms 2. AES (Advanced Encryption Standard) 3.

   HMAC 4. RSA Public-Private Key Algo 5. Data breach 6. Use case and bank requirements discussion

3. “We have an illusion of security, we don't have security.”

4. Introduction Encryption Salt Hashing Pepper HMAC AES Symmetric key algorithms

   Asymmetric key algorithms Key Security Public key Private key Integrity Authenticity Secure Hash (SHA) Collision Preimage

5. [3] Google spent 6500 CPU years and 110 GPU years

   to convince everyone we need to stop using SHA-1 for security critical applications. Also because it was cool.

6. Brief Evolution of today’s hashing algorithms Hashing Global Salting Individual

   Salting Add pepper to it Simple comparison on multiple passwords Again comparison but now with new unknowns Really complex to crack by read only - peek only breach Peppering adds two layered security SLOW IT DOWN
7. None

8. AES (Advanced Encryption Algorithm) 1. popular and widely adopted symmetric

   encryption algorithm 2. replacement for DES 3. 128-bit data, 128/192/256-bit keys No. of rounds Key Length 10 128 bit 12 192 bit 14 256 bit

9. Steps in AES Algorithm 1. Pre-round Transformation 2. Substitution 3.

   Shift Rows: Circular Right Shift 4. Mix Column 5. Add Round Key
10. None
11. None

12. Known Attacks 1. Side Channel Attacks

13. Message Authentication Code

14. HMAC - Hash-based Message Authentication Code Data Integrity Authentication

15. RSA - Ron Rivest, Adi Shamir and Len Adleman Asymmetric

    Key Encryption