Welcome to Cyber Aires. Video Siris on the comedy A Security Plus 5 +01 Certification and Exam.
I'm Your Instructor, Round Werner
in the first section for Domain six on Cryptography and P. K I. We just scratched the surface talking about the basic terms and concepts
in this section, we dive deeper into cryptographic algorithms and their basic characteristics.
Cryptographic algorithms could be divided into three following groups. Symmetric,
asymmetric and hash functions.
Crypto systems are made up of a combination of these algorithms, providing capabilities to ensure the confidentiality and integrity of data and files and network streams.
Be sure that you understand the differences in the various algorithms and their operations that you can select strong and appropriate crypto systems.
Given the number of topics, this section will be divided into two videos.
The first video for section six dot to I'll cover obfuscation, symmetric algorithms and cipher modes.
And the second part I'll cover asymmetric algorithms hashing and key stretching
before diving into the details of cryptographic algorithms. It's worth exploring the means of obfuscation.
Recall fromthe last video. That reputation by itself usually doesn't provide strong security.
However, obfuscation techniques play a role in many of the crypto algorithms used.
A common obfuscation technique is a substitution cipher. For example, R. O. T. 13 rotate 13 rotates 13 places in the alphabet. You see the example on your screen.
There are many other types of substitution sze ciphers that provides that level of confusion. Obvious cation.
The exclusive or or X or function is often used in cryptography with other streaming operations.
The X or operation usually comes before or follows another encryption operation
because X or works bit by bit in a stream. It lends itself well to working with different, different cryptographic modes of operations to turn block ciphers into stream ciphers.
I'll explain how it works.
The true value number one
is derived on, Lee won. The two comparisons are mutually exclusive or different.
They are exclusive or they're not, in which case the output is false. The number zero
see some examples on your screen, so if we have zero and zero, so two of the same should be false. Same thing with two of the same one. But if it's a 011 or zero, each of those produces the output of true or one
the way this works with encryption, you see, is a secret key, and that secret key could be some type of a pseudo random bit value. Using Byner,
To create the safer text,
you can use the same key, same binary key
going backwards to get the initial value.
Be familiar with X, or there's about its heavy of math, as you may see with the security. Plus,
we use this a lot, not only within cryptography
but also within networking.
The first set of videos in this domain introduced you to the concept of symmetric encryption,
in which the sender and receiver used the same shared key or an identical key. Symmetric
Smith Trick algorithms could be classified as either block ciphers or stream ciphers. As the name implies, Stream cipher encrypts the message bit by bit, one at a time,
while the block cipher encrypted messages in chunks. Known sets
go back to that previous video
to review the idea of stream cipher versus block cipher.
Several symmetric key algorithms are in use today.
More commonly used algorithms include Triple Dez and A S. I'll talk about D s, the data encryption standard,
and then tripled as on this slide and eight yes, on the next light
does is the first symmetric algorithm I'll discuss.
It was first adopted by the U. S National Institute of Standards and Technology, or Nest in 1977. It's a block cipher using 64 bit blocks,
a 56 bit key with eight bits of parody.
Be familiar with those numbers. I've often seen test questions that refer to them.
So Dez 64 bit blocks 56 bit key
has a short key length, which is subject to brute force attacks.
Therefore, n'est had to come up with a different algorithm, but it's based on death. It's called Triple Dez.
It's the Dez algorithm, computed three times. You see an example on your screen.
It uses a key bundle that comprises three different days keys each 56 bits with a total *** strength of 100 and 68 bits
known as three t D E. A.
There are options to reuse the keys, but that reduces the key Strength.
Triple does is still in use. Today,
A yes or the advanced encryption standard has replaced. As as the current standard, it uses the right stall algorithm based on the names of the people who developed it.
A s is the product used by U. S government. Endorsed by the National Institute of Standards and Technology.
It supports key size of 128 192 and 256 bits.
for any use, public or private, commercial or non commercial.
Your call from an earlier video
knowing the algorithm is perfectly acceptable. It's keys that need to be kept secret.
It uses multiple encryption rounds,
10 rounds for 128 bit keys, 12 rounds for 100 and 92 big keys
and 14 rounds for 256 bit keys.
It's a block cipher using 128 bit block sizes
rather than me explaining all of the intricate details associated with A S. I recommend you go to the website shown on the screen.
The creators not only do a good job of educating on a yes, it's also rather entertaining how they use stick figures and humor to explain very deep concepts. With the advanced encryption standard,
I recommend you check it out.
There are other symmetric algorithms that you need to be familiar with
first being R C four, named after Ron Riv EST Ron Cipher or Rive est ciphers. It's the fourth iteration.
It was popular with Webb and W. P. A encryption used in wireless.
RC four is a streaming cipher that worked with key sizes between 40 and 2048 bits,
and he used with S S, L and T L s with network level encryption
Blowfish. It is an encryption system invented by team, led by Bruce Schneier, that performs a 64 bit block cipher at very fast speeds.
It is a symmetric block cipher that uses a variable length key from 32 bits to 4 48 bits
to fish is quite similar and works on 128 bits blocks
three other symmetric algorithms you should be familiar with. First being idea. The international data encryption algorithm
this is used over in Europe has 128 bit key,
and it's similar to Dez. But it's more secure because it has a longer key
used within the application. Pretty good privacy, which we'll talk about in the future. Video.
A one time pad is the most secure cryptographic implementation it uses a key that as long as the plain text message. So let's say you're plain text. Message is one page in length.
The key would be one page and length.
not very efficient, too, though
one time pad is used once and then it's destroyed.
The third algorithm is Skipjack. It was developed by the N S A. It's a block cipher that was used in the Clipper chip but mostly historical reference.
It uses an 80 bit key to encrypt 64 bit blocks of data.
Be familiar with each of the symmetric algorithms. You'll see them out in the world and potentially on the security plus exam.
We'll now talk about cipher modes. Recall from earlier stream versus block. Ciphers will block ciphers, have many different modes of operation.
The following gives some of the more common mode, especially the ones you should be familiar with.
First, being CTR Counter Mode turns a block cipher into a stream cipher.
It's used to generate a key stream.
Aqui Stream is a stream of random or pseudo random characters that are combined with a plain text message to produce an encrypted message or the cipher text
the characters in the key stream can be bids by its numbers or actual characters like a through Z, depending on the use case.
Each block combined a nonce or initialization vector with a sequentially assigned a number to produce a unique counter block
that is then encrypted
cipher block Chaining uses that initialization vector ivy with the first block
they're after. Each block of plain text is obvious. Skated with the cipher text from the previous block before it is encrypted, so it's using blocks and taking from the first to go to the next.
It introduces Maur diffusion
and reduces effects of blame of plain text attacks.
GCM Gail Oi counter mode provides both integrity and confidentiality. It's a cipher boat
they uses CTR, but with 128 bit blocks. Each block is then given an encrypted number. That result is obfuscated with the plain text producing the cipher text
G Mac or Careless Message. Authentication code is an authentication on Lee Variant of GCM, which is which can be used with an incremental message authentication mode,
E. C B or Elektronik who'd book divides the message into blocks
and then encrypt each block.
It's no longer recommended because the same plain text block is encrypted in the same safer text block each time, so it's easily compromised.
Review these different types of cipher modes to prepare yourself for the security plus exam.
We've talked about just a few of the symmetric algorithms, cipher modes and talked about a few station.
Let's practice on a few quiz questions.
This block Cypher uses a key bundle that comprises three different days. Keys
This cryptographic algorithm works by generating a key stream block by encrypting sequential values of some counter and is used to convert a block cipher into a stream cipher.
You call. We just talked about seif remote, so the answer is B C T R.
This is the end of part one, where we're explaining cryptography algorithms and their basic characteristics.
Part two will continue this discussion on section six dot too