Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Secure Communication over insecure network

Tejas Bubane
February 12, 2019
Programming
0
46

Secure Communication over insecure network

A look at the land of Cryptography and how it affects our online life. We won't be diving into cryptography algorithms - instead we will treat them as “black boxes” - and see how they fit together given the right input. A bird's eye look at TLS handshake.

Mostly requires just logical thinking of how all these different pieces fit together.

Tejas Bubane

February 12, 2019
Tweet

More Decks by Tejas Bubane

See All by Tejas Bubane
Learnings from POODR - part 1
tejasbubane
0
54
Purely Functional Data Structures
tejasbubane
0
87
Typechecking in Javascript using Flow
tejasbubane
0
61
Effective Git
tejasbubane
0
140
Contributing to Opensource
tejasbubane
0
80
The hidden features of ActiveRecord
tejasbubane
0
56

Other Decks in Programming

See All in Programming
Flutterを言い訳にしない!アプリの使い心地改善テクニック5選🔥
kno3a87
1
140
とにかくAWS GameDay!AWSは世界の共通言語! / Anyway, AWS GameDay! AWS is the world's lingua franca!
seike460
PRO
1
860
What’s New in Compose Multiplatform - A Live Tour (droidcon London 2024)
zsmb
1
470
Snowflake x dbtで作るセキュアでアジャイルなデータ基盤
tsoshiro
2
520
Realtime API 入門
riofujimon
0
150
WebフロントエンドにおけるGraphQL(あるいはバックエンドのAPI)との向き合い方 / #241106_plk_frontend
izumin5210
4
1.4k
エンジニアとして関わる要件と仕様(公開用)
murabayashi
0
280
TypeScript Graph でコードレビューの心理的障壁を乗り越える
ysk8hori
2
1.1k
Pinia Colada が実現するスマートな非同期処理
naokihaba
4
220
Less waste, more joy, and a lot more green: How Quarkus makes Java better
hollycummins
0
100
Jakarta EE meets AI
ivargrimstad
0
120
2024/11/8 関西Kaggler会 2024 #3 / Kaggle Kernel で Gemma 2 × vLLM を動かす。
kohecchi
5
910

Featured

See All Featured
The Invisible Side of Design
smashingmag
298
50k
Building Applications with DynamoDB
mza
90
6.1k
Building a Scalable Design System with Sketch
lauravandoore
459
33k
The Art of Programming - Codeland 2020
erikaheidi
52
13k
Docker and Python
trallard
40
3.1k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
28
8.2k
Statistics for Hackers
jakevdp
796
220k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
665
120k
A Tale of Four Properties
chriscoyier
156
23k
Navigating Team Friction
lara
183
14k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
93
16k

Transcript

  1. SECURE COMMUNICATION HOW OUR LIVES DEPEND ON CRYPTOGRAPHY TEJAS BUBANE

    TUESDAY TALKS AT CYBRILLA
  2. None

  3. Communication?

  4. ! Communication?

  5. " ! Communication?

  6. " ! Communication?

  7. " ! Communication?

  8. Secure? " ! Communication?

  9. Secure? " ! #$ Communication?

  10. Secure? " ! #$ 1. Confidentiality Communication?

  11. Secure? " ! #$ 1. Confidentiality 2. Identity Communication?

  12. PROBLEM 1

  13. PROBLEM 1

  14. PROBLEM 1

  15. PROBLEM 1

  16. PROBLEM 1

  17. PROBLEM 1

  18. PROBLEM 1

  19. PROBLEM 1

  20. PROBLEM 1 Man in the middle attack

  21. PROBLEM 1 Man in the middle attack Incorrect identity

  22. PROBLEM 2

  23. PROBLEM 2

  24. PROBLEM 2

  25. PROBLEM 2

  26. PROBLEM 2

  27. PROBLEM 2

  28. PROBLEM 2

  29. PROBLEM 2 Eavesdropping attack

  30. PROBLEM 2 Eavesdropping attack No Secrecy

  31. E(text, key) = cipher D(cipher, key) = text cipher

  32. E(text, key) = cipher D(cipher, key) = text cipher Symmetric

    Key Cryptography

  33. E(text, key) = cipher D(cipher, key) = text cipher Symmetric

    Key Cryptography 1.Caesar Cipher (44 BC)

  34. E(text, key) = cipher D(cipher, key) = text cipher Symmetric

    Key Cryptography 1.Caesar Cipher (44 BC) CYBRILLA => FBEULOOD

  35. E(text, key) = cipher D(cipher, key) = text cipher Symmetric

    Key Cryptography 1.Caesar Cipher (44 BC) CYBRILLA => FBEULOOD 2. Vigenère Cipher (1553)

  36. E(text, key) = cipher D(cipher, key) = text cipher Symmetric

    Key Cryptography 1.Caesar Cipher (44 BC) CYBRILLA => FBEULOOD 2. Vigenère Cipher (1553) Plaintext: ATTACKATDAWN Key: LEMONLEMONLE Ciphertext: LXFOPVEFRNHR
  37. None
  38. None
  39. None
  40. None

  41. Enigma machine

  42. Enigma machine Bombe

  43. Enigma machine Bombe

  44. E(text, pubkey) = cipher D(cipher, privkey) = text pubkey hello!

    cipher

  45. E(text, pubkey) = cipher D(cipher, privkey) = text pubkey Public

    Key Cryptography hello! cipher

  46. Identity Certificate Binds Identity with public key OS/Mozilla Root certificates

    Browser verifies signature, matches URL

  47. SSL/TLS •SSL (Netscape, 1995) •TLS 1.0 (IETF 1999) •TLS 1.1

    (2006) •TLS 1.2 (2008) •TLS 1.3 (2018) Cryptographic Protocol

  48. TLS Handshake

  49. TLS Handshake

  50. ClientHello TLS Handshake Nc

  51. ClientHello ServerHello TLS Handshake Nc Ns

  52. ClientHello ServerHello ServerCertificate TLS Handshake Public Key (pk) Nc Ns

  53. ClientHello ServerHello ServerCertificate ServerHelloDone TLS Handshake Public Key (pk) Nc

    Ns

  54. ClientHello ServerHello ServerCertificate ServerHelloDone TLS Handshake Public Key (pk) kbs,

    ksb counter mk = RSA(pmk, Nc, Ns) Nc Ns

  55. ClientHello ServerHello ServerCertificate ServerHelloDone ClientKeyExchange PreMasterSecret = Enc(pmk) TLS Handshake

    Public Key (pk) kbs, ksb counter mk = RSA(pmk, Nc, Ns) Nc Ns

  56. ClientHello ServerHello ServerCertificate ServerHelloDone ClientKeyExchange PreMasterSecret = Enc(pmk) TLS Handshake

    Public Key (pk) kbs, ksb counter mk = RSA(pmk, Nc, Ns) Nc Ns kbs, ksb counter mk = RSA(pmk, Nc, Ns

  57. ClientHello ServerHello ServerCertificate ServerHelloDone ClientKeyExchange PreMasterSecret = Enc(pmk) Finished Encrypted

    ChangeCipherSpec TLS Handshake Public Key (pk) kbs, ksb counter mk = RSA(pmk, Nc, Ns) Nc Ns kbs, ksb counter mk = RSA(pmk, Nc, Ns

  58. ClientHello ServerHello ServerCertificate ServerHelloDone ClientKeyExchange PreMasterSecret = Enc(pmk) Finished Encrypted

    ChangeCipherSpec Decrypt TLS Handshake Public Key (pk) kbs, ksb counter mk = RSA(pmk, Nc, Ns) Nc Ns kbs, ksb counter mk = RSA(pmk, Nc, Ns

  59. ClientHello ServerHello ServerCertificate ServerHelloDone ClientKeyExchange PreMasterSecret = Enc(pmk) ChangeCipherSpec Finished

    Encrypted ChangeCipherSpec Decrypt Finished Encrypted TLS Handshake Public Key (pk) kbs, ksb counter mk = RSA(pmk, Nc, Ns) Nc Ns kbs, ksb counter mk = RSA(pmk, Nc, Ns
  60. None

  61. What now?

  62. What now? ‣Client & Server both have has ksb, kbs

  63. What now? ‣Client & Server both have has ksb, kbs

    ‣Use symmetric key encryption (AES) for all further communications

  64. What now? ‣Client & Server both have has ksb, kbs

    ‣Use symmetric key encryption (AES) for all further communications ‣Why not use public key everywhere?

  65. What now? ‣Client & Server both have has ksb, kbs

    ‣Use symmetric key encryption (AES) for all further communications ‣Why not use public key everywhere? ‣Public key encryption is slow - use it for key exchange (handshake) and use fast symmetric encryption thereafter
  66. None

  67. How secure?

  68. How secure? RSA based on prime factorization problem. 768 RSA

    = 1500 CPU years (2yrs realtime on many hundreds of computers) We use 1024/2048 bits RSA.

  69. How secure? RSA based on prime factorization problem. 768 RSA

    = 1500 CPU years (2yrs realtime on many hundreds of computers) We use 1024/2048 bits RSA. AES with a 128 bit key requires storing 288 bits of data = 38 trillion terabytes of space > all the data stored on all the computers on the planet in 2016.
  70. None

  71. Trust CAs

  72. Trust CAs Trust IETF

  73. Trust CAs Thanks! Trust IETF