tailieunhanh - Lecture TCP-IP protocol suite - Chapter 29: Internet security

In this chapter, you will learn to: Differentiate between two categories of cryptography schemes; understand four aspects of security; understand the concept of digital signature; understand the role of key management in entity authentication; know how and where IPSec, TLS, and PPG provide security. | Chapter 29 Internet Security CONTENTS INTRODUCTION PRIVACY DIGITAL SIGNATURE SECURITY IN THE INTERNET APPLICATION LAYER SECURITY TRANSPORT LAYER SECURITY: TLS SECURITY AT THE IP LAYER: IPSEC FIREWALLS INTRODUCTION Figure 29-1 Aspects of security PRIVACY Figure 29-2 Secret-key encryption In secret-key encryption, the same key is used by the sender (for encryption) and the receiver (for decryption). The key is shared. Secret-key encryption is often called symmetric encryption because the same key can be used in both directions. Secret-key encryption is often used for long messages. We discuss one secret-key algorithm in Appendix E. KDC can solve the problem of secret-key distribution. Figure 29-3 Public-key encryption Public-key algorithms are more efficient for short messages. A CA can certify the binding between a public key and the owner. Figure 29-4 Combination To have the advantages of both secret-key and public-key encryption, we can encrypt the secret key using the public key and encrypt the message using the secret key. DIGITAL SIGNATURE Figure 29-5 Signing the whole document Digital signature cannot be achieved using only secret keys. Digital signature does not provide privacy. If there is a need for privacy, another layer of encryption/decryption must be applied. Figure 29-6 Signing the digest Figure 29-7 Sender site Figure 29-8 Receiver site SECURITY IN THE INTERNET APPLICTION LAYER SECURITY Figure 29-9 PGP at the sender site Figure 29-10 PGP at the receiver site TRANSPORT LAYER SECURITY (TLS) Figure 29-11 Position of TLS Figure 29-12 Handshake protocol SECURITY AT THE IP LAYER (IPSec) Figure 29-13 Authentication Figure 29-14 Header format Figure 29-15 ESP Figure 29-16 ESP format FIREWALLS Figure 29-17 Firewall Figure 29-18 Packet-filter firewall A packet-filter firewall filters at the network or transport layer. Figure 29-19 Proxy firewall A proxy firewall filters at the application layer. | Chapter 29 Internet Security CONTENTS INTRODUCTION PRIVACY DIGITAL SIGNATURE SECURITY IN THE INTERNET APPLICATION LAYER SECURITY TRANSPORT LAYER SECURITY: TLS SECURITY AT THE IP LAYER: IPSEC FIREWALLS INTRODUCTION Figure 29-1 Aspects of security PRIVACY Figure 29-2 Secret-key encryption In secret-key encryption, the same key is used by the sender (for encryption) and the receiver (for decryption). The key is shared. Secret-key encryption is often called symmetric encryption because the same key can be used in both directions. Secret-key encryption is often used for long messages. We discuss one secret-key algorithm in Appendix E. KDC can solve the problem of secret-key distribution. Figure 29-3 Public-key encryption Public-key algorithms are more efficient for short messages. A CA can certify the binding between a public key and the owner. Figure 29-4 Combination To have the advantages of both secret-key and public-key encryption, we can encrypt the secret

• Quản trị mạng
• TCP IP protocol suite
• Lecture TCP IP protocol suite
• Network layer
• Internet protocol
• Internet security
• Digital signature
• The digital signature category
• Parallel Multiple Signature
• Digital signature and multiple signature
• Different cases for different purposes
• The Multiple signature
• Multiple signature schemes examples
• The Elliptic Curve Digital Signature Algorithm
• Elliptic curve cryptosystems
• Elliptic curve discrete logarithm problem
• Elliptic Curve Digital Signature Algorithm
• Digital Signature Schemes
• Digital Signature Algorithm
• Digital signature algorithm based
• Expanded root problems
• Practical applications
• Digital signature scheme
• Root problem
• Discrete logarithm problem
• Digital signature scheme based
• Algorithm for verifying signature
• Digital signature algorithms
• Classical and modified ElGamal signature
• ElGamal signature scheme
• ElGamal based digital signature algorithms
• Testing and evaluation
• The domain of gaussian integers
• Smartcards without coprocessor
• The Digital signature
• The RSA and ESIGN
• The Implementation of Digital Signature Algorithms
• An 8 bit smart card
• Expanded root problem
• Digital signature scheme in data transfer
• Lược đồ chữ ký số
• Thuật toán chữ ký số
• Digital signature standard
• The Secretary of Commerce
• The DSA dsa parameters
• DSA signature generation
• DSA signature verification
• Blind Signature Protocols
• Based on Russian Standards
• Digital Signature Standards
• Correctness proof of the protocol
• Blind Collective Signature Scheme
• Russian DS Stan dards
• Digital Signature Schema
• Type signature scheme
• Construction of problem analysis
• Problem analysis
• International Journal of Computer Networks and Communications Security
• Offline digital signature recognition classification techniques
• Signature verification methods
• Offline Digital Signature
• Extracting several features
• Signature scheme
• High requirements
• Blind signature
• Original author of a message
• Check the signature
• The Mathematical Background
• The Digital Signature Standard
• Definition of a Signature Scheme
• Classification of Attacks
• A Quick Overview
• Digital Signature Information Security
• Authentication information Security
• Digital Signature theme
• Hash Function Research
• New construction method
• Algorithm for formation of signature
• Blind signature scheme
• Lược đồ chữ ký số mù
• Thuật toán chữ ký số mù
• Chữ ký số
• An toàn thông tin
• Xác thực thông tin
• Bảo mật thông tin
• Đề tài Digital Signature
• Nghiên cứu Hash Function
• International Journal of computer science & communication networks
• Embedded digital signature based data sharing scheme in cloud computing
• Embedded digital signature
• Data sharing scheme in cloud computing
• Users’ private keys
• Discrete logarithmic problem
• Hash Function
• DSA digital signature scheme
• Key distribution systems
• New key schemes