INFORMATION SECURITY AND AUDIT
1. Overview of information security
2. Information and Network Security Policies
3. Cryptography and PKI
4. Network security applications
5. Design Principles
6. Compliance, Evaluation system and Law
7. Malicious logic and attacks
8. Vulnerability analysis and IT Audit
9. Intrusion detection and log analysis
LAB WORK -ISA
SOLVED PRACTICE QUESTIONS
NEXT

ENCRYPTION- SYMMETRIC AND ASSYMETRIC ENCRYPTION

Encryption is the process of converting data into a code to prevent unauthorized access. It ensures data confidentiality, integrity, and security, making it a cornerstone of modern digital communication. There are several types of encryption, broadly categorized into two main types: symmetric and asymmetric encryption.

1. SYMMETRC ENCRYPTION

Symmetric encryption is a type of encryption where the same key is used for both encryption and decryption. This method is known for its speed and efficiency, making it suitable for encrypting large amounts of data.

  • Block Ciphers vs. Stream Ciphers:
    • Block Ciphers: Encrypt data in fixed-size blocks (e.g., 128 bits). Examples include AES and DES.
    • Stream Ciphers: Encrypt data as a stream of bits or bytes. Examples include RC4.

Working of Symmetric Encryption

  • Key Generation: A secret key is generated, which will be used for both encryption and decryption. The key must be securely shared between the sender and the recipient.

  • Encryption Process:

    • Plaintext: The original readable data that needs to be encrypted.
    • Encryption Algorithm: The symmetric encryption algorithm (e.g., AES, DES, Blowfish) processes the plaintext and the secret key to produce ciphertext.
    • Ciphertext: The encrypted, unreadable data resulting from the encryption process.

  • Decryption Process:

    • Ciphertext: The encrypted data received by the recipient.
    • Decryption Algorithm: The same symmetric algorithm used for encryption processes the ciphertext and the secret key to retrieve the original plaintext.
    • Plaintext: The decrypted, readable data that is the same as the original plaintext.

Advantages of Symmetric Encryption

  1. Speed and Efficiency: Generally faster than asymmetric encryption, making it suitable for encrypting large amounts of data.
  2. Lower Computational Overhead: Requires less computational power, which is beneficial for performance-sensitive applications.

Challenges and Considerations

  1. Key Distribution: Securely sharing the symmetric key between parties is a critical challenge. If the key is intercepted, the security is compromised.
  2. Scalability: Managing a large number of keys can be complex, especially in environments with many users or devices.
  3. Security of Keys: The strength of symmetric encryption relies entirely on the secrecy of the key. If the key is exposed, the encrypted data can be easily decrypted.

SOME SYMMETRIC ALGORITHM

  1. AES (Advanced Encryption Standard): A widely used symmetric encryption algorithm, known for its speed and security. It supports key sizes of 128, 192, and 256 bits.
  2. DES (Data Encryption Standard): An older symmetric encryption algorithm with a key size of 56 bits. It has largely been replaced by more secure algorithms.
  3. 3DES (Triple DES): An enhancement of DES, which applies the DES algorithm three times to each data block, increasing security but also computational overhead.
  4. Blowfish: A symmetric encryption algorithm known for its speed and effectiveness, with a variable key length from 32 to 448 bits.
  5. RC4: A stream cipher known for its simplicity and speed but has vulnerabilities that make it less secure than other modern algorithms.

ASSYMETRIC ENCRYPTION

Asymmetric encryption, also known as public-key cryptography, uses a pair of keys for encryption and decryption: a public key and a private key. The public key is freely distributed, while the private key is kept secret. This method allows secure communication even if the public key is widely known.

Key Concepts

  1. Public Key: Used to encrypt data. It can be shared openly without compromising security.
  2. Private Key: Used to decrypt data that was encrypted with the corresponding public key. It must be kept confidential.
  3. Key Pair: The combination of a public key and a private key, uniquely associated with an entity (e.g., a person or an organization).
  4. One-Way Functions: Mathematical functions that are easy to compute in one direction but difficult to reverse without specific information (the private key).

Working of Asymmetric Encryption

  • Key Pair Generation:

    • A pair of keys is generated: a public key and a private key. These keys are mathematically linked.
    • The public key can be distributed widely, while the private key remains confidential.

  • Encryption Process:

    • Plaintext: The original readable data that needs to be encrypted.
    • Encryption Algorithm: The sender uses the recipient’s public key and an asymmetric encryption algorithm (e.g., RSA, ECC) to encrypt the plaintext.
    • Ciphertext: The encrypted, unreadable data produced by the encryption algorithm.

  • Decryption Process:

    • Ciphertext: The encrypted data received by the recipient.
    • Decryption Algorithm: The recipient uses their private key and the same asymmetric encryption algorithm to decrypt the ciphertext.
    • Plaintext: The decrypted, readable data that is the same as the original plaintext.

Advantages of Asymmetric Encryption

  1. Key Distribution: Simplifies key management because the public key can be openly shared, eliminating the need for a secure channel to distribute the key.
  2. Scalability: More scalable in environments with many users or devices since each entity only needs a single key pair.
  3. Digital Signatures: Enables digital signatures, which provide authentication, integrity, and non-repudiation.

Challenges and Considerations

  1. Computational Overhead: Generally slower and more computationally intensive than symmetric encryption, making it less suitable for encrypting large amounts of data.
  2. Key Size: Requires larger key sizes to achieve the same level of security as symmetric encryption, leading to increased processing requirements.
  3. Security of Private Keys: The security relies on keeping the private key confidential. If the private key is compromised, the encryption and digital signatures are no longer secure.

ASYMMETRIC ALGORITHM

  • RSA (Rivest-Shamir-Adleman): One of the first public-key cryptosystems and widely used for secure data transmission. It relies on the computational difficulty of factoring large numbers.
  • ECC (Elliptic Curve Cryptography): Provides the same level of security as RSA but with shorter key sizes, making it more efficient.
  • DSA (Digital Signature Algorithm): Mainly used for digital signatures, ensuring the authenticity and integrity of a message.
NEXT