10 hours 32 minutes
welcome back to the second part of section 6.1 on comparing and contrasting basic concepts of cryptography.
In the first part, I started discussing numerous terms associated with cryptography.
Many of these terms you see on your screen such a symmetric versus asymmetric encryption and the difference between diffusion confusion stream versus block.
I'll continue talking about these concepts in this video.
is a digital fingerprint, where you take a string of any length and create a fixed length string for output that's always should be unique
for the file. So, for example, I provide you with a file and I provide hash associated with it.
If I change the file, the hash will also change. Their numerous hashing algorithms will talk about in a future video.
You see examples on your screen, though, with input working through a hash algorithm, providing a hash, some hash them again. It's always the fixed length. Some of the rules associated with hash the speed should be seen. New me. It matter that data size, no matter how large of a block of data I used for the hash
speed, should be consistent.
I should not be able to generate the original message based on the hash summer hash value.
To avoid those hash collisions that's having the same hash value for two different files or documents.
Each message should have its own half,
and changing the original
should change that end hash value. So even if I change one character,
it'll completely alter the hash value.
We'll talk a lot more about hashing in future videos.
There are numerous issues associated when computing hashing.
If I'm able to determine that hash value based on common words such as a rainbow table, remember the discussion on that tax. Rainbow Table is a list of common words and their computed hash values. They tend to be very large in size.
Defeat that use what's known as assault salting uses a prefix consisting of a random string of characters,
say, adding them to passwords before their hashed
collision attacks. We try to find to input strings of a hash. Functions have the same hash value. Same output.
Collision attacks have been known with some of the earlier hashing algorithms, something to be aware of.
Cryptography continues to be a changing field. It's based on ancient ideas,
but even the mathematics are changing based on new computational power and abilities.
The first to be aware of is E. C C. Elliptical curve cryptography. It's an asymmetric public key, so public and private key asymmetric crypto system
based on very complex mathematical structures. If you ever took calculus and physics,
limp sees elliptical curve
E. C. C is able to use a lot smaller key sizes. It's more efficient and fast.
Quantum cryptography uses physics rather than math to base cryptography,
the idea of photons and how they work.
It is also known to be more secure
a lot more.
You'll see a lot more about quantum cryptography in future years as their new developments occurring all of the time.
As you're working with cryptography, you should always use proven crypto algorithms. Don't try to create your own, as we call it. Roll your own
missed National Institute of Standards and Technology documents and publishes known good krypto and hashing algorithm, so you should leverage those
some ideas for crypto best practices. Mentioned used known approved algorithms here to AH required minimum key guidance for the that chosen algorithm. Use approved cryptographic modes. Don't try to generate your own. Lastly, you strong random number generators
we talked about earlier. The idea of pseudo random numbers.
I want that to be a strong as possible
and associated concept with cryptography is obfuscation and steganography.
Obfuscation is the act of making something difficult to understand or to find maybe like hiding with in plain sight.
It should rely on something not known or widely discovered.
Security through obscurity is only a partial solution, but it's something to consider as your studying cryptography.
By the way,
obscurity does not provide strong security
common method for obscuring data within other data files. It's steganography. Steganography means hidden writing. It's hiding messages in other media. So could hiding a message within a word document or within a picture
so that the unintended recipients are not even where there's a message.
It's actually how terrorists share Information will post a picture on Facebook using steganography with a hidden message. In it, they have the algorithm and the key to pull out that hidden message. It's a fascinating science. I recommend you dive into it, learn more about steganography.
Steganography is one
use case. It's important, understand the three states of data
data at rest say, within a flat file or a database did it in transit across the network, and then data in use were being processed. Each of those could have some crypto algorithms to protect it. While it's in the that state.
Cryptography has other use cases associated with that. C I. A. Confidentiality, integrity, availability of security.
So confidentiality might be the most obvious. Ensuring the privacy of data
by encrypting it so it can't be read by anybody without that key
integrity. Making short data does not change. Hashing proves integrity of data for hash that file. And then that file changes. The hash will change
digital signatures proving who sent that
document that file
mostly authentication. How do we prove identity so digital certificates can be used for authentication?
Also, passwords are hashed that way. We send the hash of the password over the network
rather than the actual password itself.
We'll cover a few other use cases.
Security systems are often about managing and making appropriate tradeoffs.
Cryptography, for example, consumes additional resource is in the system and carries a cost. Modern computing systems and algorithms need to be efficient. Low Leighton see is one of the concerns I want to make sure does not increase the late and say, say across a network.
High resiliency make sure can survive types of attacks
previously mentioned. Supporting confidentiality, integrity, authentication.
It's that balance of resource is and security that were always challenged with
in cyber security.
Be familiar with these and other use cases found in your study materials.
This concludes my discussion of common terms associated with cryptography, encryption and P K I. Let's practice on a few sample quiz questions.
You're using asymmetric encryption. Want to sign a file to prove you sent it
and that it hasn't been altered?
Which key do you use? Use your public in your private Kenya recipients public. He or your recipients? Private key.
The answer is, you sign it with your private key,
which then can be validated with your public key
Which type of cipher encrypts data and fixed length group of bits?
The answer is B. A block cipher.
We'll talk a lot more about encryption and algorithms in future videos.
This concludes two videos on Section six, that one where you need to compare and contrast basic concepts of cryptography
work through each of these terms, become very familiar with them because we'll be talking about them again through each of the videos in the six domain of Security, plus
refer to your study material for Maur information.
CompTIA Security Plus certification is a great place to start learning IT or cybersecurity. Take advantage of Cybrary's free Security+ training.