5 hours 49 minutes
Hello, everybody. And welcome to the I t security. Yep. It's up number 20. Cryptography, one of one of Miami's 100 men. And now breach instructor for today's session.
Learning archetypes is to understand the main and basic concepts off photography.
Well, here we have two will. All guys were really know which is your barf in alleys we have right here,
really loved alleys. So cryptography, most people think that cryptography is only used to guarantee confidentiality. And that's one of the things that cryptography does. Eso Let's, sir, for that.
Cryptography can help you with tree basic
principles. Remember the CIA principles. Which us? Which is
confidentiality, integrity and inviolability.
Well, uh, cryptography helps you with confidentiality. It helps you with, um, integrity. And it can help you with availability. But there's people that you don't argue that it doesn't directly help you. It will help
it help you, but not not directly of you.
You can't think like that. Um,
but it does help you with a thing called not repudiation. Are you? Can you can call it? Call it authentication, But no repudiation on repudiation. It will be the term. So how does he help you? Well, let's start with confidentially,
um, cryptographic health through in this principle by using encryption encryption? Is that Let's say that about wants to send
Xu Al is,
uh, doesn't want you doesn't want that Anybody outside this suit person from him and I always,
um, actually knows what they're talking about. So it uses encryption
to actually masquerade the message. So instead of hello, you know, it passes through an encryption algorithm. Let's say, uh, say
or a s, which is an example of both cement reconnect. Asymmetric algorithms will cover that in the next section.
And after passing that true, the algorithm and the key, of course you get next war No x d z Another w
Andi will send out to all this all this inter turn will pass it to the you know, if it's cement from through the same hour breath minty. And if it is asymmetric with different keep, they say the same algorithm.
And you know, if I was hacker intercept this communication right here, I will not be able to actually see what they were talking about because I mean egg X y z w doesn't make any sense to me.
But that's, you know, encryption and self. So encryption health. You, uh,
guarantee confidentiality? In Terry, we have the hash is the same hushes. They're also algorithms for hashes.
Ah, but remember, hash function doesn't use a key, you know? So it's just an algorithm. For example,
you know the other algorithms and you can pass it through here
on, then generate a house function, which will be another. You know,
A B C d
um, And then we'll send that to Ali's. But you will. Also in this case from with cash, is you'll also need to send the original message
which is, you know, hello message.
So if a hacker actually intercepts this, it will be able to see and the message itself, which is Hello.
Okay, right here s O. This obviously doesn't provide confidentiality, but it does provide integrity, meaning that we're now they received the hello message. It will have to pass the same message for for, uh, with this for the same
algorithm used. Remember, he doesn't use any keys, just the algorithm. And if it gives you the same I'm output. You can say that the message wasn't modified in in the way,
but it gives you something different, For example, and law B C D E f on Lee. You can tell the message was Marty five. And, you know, the integrity of the message was lost, and you cannot trust
anymore in that message. So this is hash function. Then will come the digital signatures, which is a combination off using cryptography. And I'm sort of using encryption and hash functions. It doesn't provide confusion, shall any, but it does provide
integrity. And I think all non repudiation, which is
you. Okay, there, Ryan here.
So the nano beauty ation means that bath in this case cannot deny it, haven't send the helo message. So if I send us a message, did you digitally signed?
Um, you know, again,
Uh, from buff to Ali's. All this king guaranteed that the, uh,
message the message integrity by using the harsh. So the interview's guarantee here, but also guaranteed a long repudiation, meaning that there's a way off Bischoff. You know, knowing for sure that
park was the one that sent the message, which is the digital signature
So this is the bizarre. You know, I believe the tree main components off cryptography, which will provide you with comfort and Charlotte interrogating non repudiation,
um, again, availability. There's a case to be made of whether
from a cryptography directly help you. But, you know, most people will tell you that it does not. And there sometime. Okay, somehow, right. But again, there's a case we make. You know, we'll cover that in the next sections.
Okay, So what are the dream? Main solutions after photography? Well, our confidentiality, integrity and non repudiation.
What does not repudiation mean? It means that center where percents dimension the message cannot deny, haven't send it.
I mean, if I say hello to ah friend, then I cannot say you know what? I didn't send the message because there's a way to prove that I was the originator. Or, you know, there's there's no other way or there's no so nobody else can,
you know, haven't have sent the message because there's a thing that I have only to myself, which is the private key. But, you know, we'll cover that in the next sections.
What is the random number generator generator use it for all. This is our number that is used to add entropy, Thio, the crypto, the cryptographic process. Meaning that, for example, if I if I hashed the war Hilo
too many times, there's a chance the hackers, you know, maybe with a necessary sikota it will guess the world. Or if I used
again the same ward to encrypt it over and over and over again. There's a way that the hacker might be able to decrypt the word within the statistical analysis. Um,
so the run, the number is something that you used to attach into the beginning of the end of the message toe to add entropy. So if I encrypt hello the first time, maybe I will want to treat it the beginning of the message. And if I incredibly again, maybe I will not add one to drip on ABC.
And if I acquitted again, maybe I don't have a DC people. I don't know X y Z or something like that.
So this is a random number generation I mean, in short of being short words, Obviously there is something else that we will discuss further in the next video, which you know, south seeds and all this stuff
well, in today's brief lecture would talk about basic concept of cryptography.
It's always there the Phipps publications is to go to when we talk about cryptography. So there's no other, um,
material. I can actually recommend you that, you know, it will not go
then to the Phipps. Poor location off them basically are based in dr locations. So quite. Don't you go to the root ofall that off the articles I can put here
looking forward to the next video cover a symmetric algorithms off cryptography.
Well, that's it for today, folks. I hope you enjoyed the video and talk to you soon.