Crypto U8 (part 2), Freshness

Description

IYM002 (Unit 8 - randomness, freshness, AKE) Mind Map on Crypto U8 (part 2), Freshness, created by jjanesko on 23/04/2013.
jjanesko
Mind Map by jjanesko, updated more than 1 year ago
jjanesko
Created by jjanesko over 11 years ago
81
10

Resource summary

Crypto U8 (part 2), Freshness
  1. freshness mechanism
    1. techniques used to provide assurance that a message is new
      1. i.e. a message is not a replay of an old message
      2. not assurance of "aliveness" of sender because message could be delayed
      3. 3 kinds
        1. sequence number
          1. sender looks up a sequence number (counter) from a database & sends with message
            1. receiver looks up sequence number in DB and compares with sent sequence number
            2. challenges
              1. sender and receiver must have databases
                1. DBs must be synchronized
                  1. communication delays matter only if messages get mixed up
                    1. need a way to ensure integrity of sequence #
                      1. often a MAC is used to ensure that the sequence # has not been altered
                  2. clock based
                    1. message sent with a time stamp
                      1. receiver checks to see if time is within "window of acceptability"
                      2. challenges
                        1. sender and receiver must have clocks
                          1. clocks must be synchronized
                            1. problem with "clock drift"
                              1. need clock resync method
                              2. not useful for scenarios with big communication delays
                                1. needs a way to ensure the integrity of timestamp
                                  1. often a MAC is used to ensure the timestamp has not been altered
                              3. nonce based
                                1. nonce = "number used only once"
                                  1. sender creates nonce and sends to receiver with message
                                    1. receiver sends response along with originally sent nonce
                                    2. challenges
                                      1. freshness requires 2 communication passes
                                        1. does not required synchronization of clocks or DBs
                                          1. sender must have access to a random number generator
                                            1. does not provide message authentication
                                              1. attacker may have guessed the nonce (unlikely)
                                        Show full summary Hide full summary

                                        Similar

                                        Crypto U8, example dynamic password scheme
                                        jjanesko
                                        Crypto U8 (part 3), entity authentication
                                        jjanesko
                                        Crypto U8 (part 1), Randomness
                                        jjanesko
                                        Crypto U4, Block Cipher, Cipher Feedback Mode (CFB)
                                        jjanesko
                                        Crypto U4, Block Cipher, Cipher Block Chaining Mode (CBC)
                                        jjanesko
                                        Crypto U1, Basic Principles
                                        jjanesko
                                        Crypto U3, Theoretical vs. Practical Security
                                        jjanesko
                                        Crypto U4, Stream Cipher
                                        jjanesko
                                        Crypto U4, Block Cipher, Electronic Codebook Mode (ECB)
                                        jjanesko
                                        Crypto U4, Block Cipher, Counter Mode
                                        jjanesko
                                        Crypto U2, Crypto design principles
                                        jjanesko