Professional Documents
Culture Documents
RECALL:
BOB SHULD SHARE PUBLIC KEY TO ALICE
ONLY PERSON WHO CAN DECRYPT IS BOB
DIFFIE HELLMAN
SECURING THE KEYS WITHOUT STORING THEM
RSA – PUBLIC PRIVATE KEY
TAKE X,Y WHICH SHULD BE A PRIME NUMBER
SHARE WITHOUT ENCRYPTION TO BOB
EVE ALSO KNOWS X AND Y
23 mod 7
8%7
Hash collision
When two inputs have same hash format
MD5 a type of hash algorithm 32 characters
SHA1 40 characters
SHA2 64 characters
in bob
compare the hash of new file with sent file using cat
drawback
similarly
Use HMAC
DIGITAL SIGNATURE
Hash encrypted with private key – digital signature
Sh sendfile.sh
Send public key to bob
Sh sign.sh
Use private key
Bob
Sh verify.sh
29.3.23
Digital certifiicate
Proof
DNS
DOMAIN NAME SYSTEM
HTTP AND HTTPS
S -secure
Gives encryption - confidentiality
Nslookup- command prompt command to get ip address of a website
DNS spoofing
Http -> plain text is transferred
Https to protect user data
Authenticity- the user shuld know the website is real or fake
FILES
1. Private key
1. Get public key and put In CSR
2. PURPOSE
Newtabterminal
Cat ng.csr.cnf
Enter ng.csr.cnf
Give ng_req.csr
Cat ng_req.csr
Base 64
************************************
CA device
Sh gen privatekey
Privatekey_ca.pem
sh generate selfsign certificate
Name it as cert_ca.crt
Days of validity 3650
Common name : www.letsencrypt.org
Cat cert_ca.crt
Sh sign certifcate
Ng_req.csr
Ext file name - ng_v3.ext
Sign
Ng web server
*****************************************************8
Go to windows
https://networkgeek.in
Go to ftp application
Login to CA
Download cert ca
Diffie hellman
HMAC