Professional Documents
Culture Documents
Data Security
Applied Cryptogr phy
2
How to keep your data secret?
Web
Browser Data sent in plaintext in HTTP
Server
Web
Browser Data encrypted in HTTPS
Server
3
Encryptions
4
Symmetric Encryption
5
Troubles when using symmetric key
6
How many keys should Google server keep?
Google
Server
Shared key K1
Shared key Kn
Shared key K2
7
How about 2 keys system?
Alice Bob
Lock with K1.
(1) Put the secret message in the box
(2) Lock the box with key K1.
Lock with both K1 and K2. (3) Lock the box with key K2.
8
The Yellow Pages Idea
9
Alice Bob
• NOPE
• Public key algorithm runs… too slow compared to symmetric
key encryption
E(KS , data_from_browser)
E(KS , data_from_server)
How to distribute the public key???
(1) Post public key on the Key Server, e.g. pgp.mit.edu
f
How do we trust the public key inside a certi icate??
• Certi icate containing the public key is SIGNED (digitally) by an
issuer (a trusted party)
f
f
Digital Signature Signature veri ication with PUBLIC key