:

-

(plaintext)
C
(cipher text) K

Ek: M C

Dk: C M

Dk c,

m
m c


Ek c, m
c,
Dk(c)
M
,

-

:
,
: .

:

: ,
, (
)
, ,
, (
: , , )
()

1

. : bits bytes



:


.





,

m




= (25413) (1)
(2)
m (3)
c

: (, )

: ,
, 6 5 3 9 4 1 7 2 8

6 5 3 9 4 1 7 2 8
,


...
>>

:

.

Vernam
,
, , ..

-


,


:
Plaintext
,


(, ) Ciphertext

:



HAL HALIBMJCN (.. )

ABBA ABBA

,
, Alan Turing

3

Vernam ( )

bits

0 1

0 0 1

1 1 0

1, 2, ... ,
bits
: Ek(M1)Ek(M2) ( )
:



:
plaintext ciphertext
Ci = Ek(Mi XOR Ci-1)
Ci Ck i < k

DES DES
64 bit
56 bits DES
19 : 98 56
Li = Ri-1 and Ri = Li-1 AND f(Ri-1, Ki) 300.000
Ki 56 bit
28 DES:
, i ((, 1), 2)
f(Ri-1, Ki) : ;
Ri-1 48 bits E ,
TMP = E XOR Ki ((, ), ) =
CHUNKS[1..8] = Split(TMP, 6) ,
SUBSTCHUNKS[1..8] = MAP(CHUNKS[1..8]) E (E(, 1), 2) =
4 bits ...
,

4
 DES
C = E(D(E(M, K1), K2), K3) (DES-EDE)
C = E((E(M, K1), K2), K3) (DES-EE) :
, (public) (private)
1 1 256 - Known plaintext ,
1 1 238 238 Chosen plaintext
1 1 - 256 Known plaintext

2 2 2212 - Chosen plaintext
-
2 2 256 256 Known plaintext
2 2 - 2112 Chosen plaintext
(E, D) :
3 2 2212 - Known plaintext
D(E(M, Pub), Priv) = M
3 2 256 256 Chosen plaintext D(E(M, Priv), Pub) = M
3 2 2120-t 2t Known plaintext ,
3 2 - 256 Chosen plaintext
3 3 2112 256 Known plaintext
3 3 256 2112 Chosen plaintext

: :
, bits


:


,
,

(..
)

RSA
RSA

p
q
n = p * q
(n) = (p 1) * (q 1)
e 3 e (n)
(n)
d
d * e mod (n) = 1
e, n
p, q, d, (n)

5
 RSA Advanced Encryption Standard
:
C = Me mod n MARS
: , ,
= Cd mod n RC6
: , ,
p = 251, q = 269, n = p * q = 67519, (n) = 67000 Serpent
e = 50253, d = inv(e) mod67000 = 27917 , ,
n = 67619 0 67618 Twofish
,
ASCII Bytes 256 * b1 + b2 C = Me mod n bytes ASCII
, ,
RS 82 83 21075 48469 189 85 U
Rijndael
A 65 32 16672 14579 56 243 8 , ,
wo 119 111 30575 26195 102 83 fS ,
rk 114 107 29291 58005 226 149 ~ ,
s! 115 33 29473 30141 117 189 u

Advanced Encryption Standard -

Rijndael
128, 192 256 bits
128, 192 256 bits +



255
149
128 bits Digest

20

- +

Digest


,

=;

,
D
=;
Digest

6

,
,
.
:


(
, , ..)
: , (
(certificate authority) )

:
(directory).
,

, ,
, .. ,

. ; (
, )
.
(CRLs) 1:
. (ARLs) (

)
.

7





,













,

: .

:
1 2
2
/2
:
: [02/2002, 05/2002]
: 32540
:

/2/2

:
CLOPYSOFT
CLOPYSOFT SA

: . 1 . 2 /2 /2/2

-

Version: 1 (0x0)
Serial Number: 04:60:00:00:02 ( !)
Signature Algorithm: md2WithRSAEncryption
Issuer: C=US, O=CREN/Corp for Research and Educational Networking,

OU=Education and Research Client CA
Validity
Not Before: Nov 17 00:00:00 1999 GM
Not After : Nov 17 00:00:00 2003 GMT
Subject: C=US, O=CREN/Corp for Research and Educational
Networking, OU=Education and Research Client CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption (
RSA Public Key: (2048 bit) )
Modulus (2048 bit): ( )
Signature Algorithm: md2WithRSAEncryption ( )
Certificate: ( )

8

SSL
#
openssl genrsa 1024 > host.key
chmod 400 host.key SSL
# host.cert TCP/IP :
# "" .
openssl req -new -x509 -nodes -sha1 -days 365 \
-key host.key > host.cert
Country Name (2 letter code) [AU]:GR
State or Province Name (full name) [Some-State]:Attica
Locality Name (eg, city) []:Athens
Organization Name (eg, company) [SomeComp]:ClopySoft
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []: www.clopysoft.gr
HTTP SMTP LDAP
Email Address []: info@clopysoft.gr
# " "
# Secure Socket Layer
openssl x509 -noout -fingerprint -text < host.cert > host.info
#
cat host.cert host.key > host.pem TCP/IP
#
chmod 400 host.pem

SSL SSL
Client Hello
Server Hello
SSL Certificate (opt)
SSL Certificate Request (opt)

Server key exchange (opt)

Server Hello Done

Certificate (opt)
Client key exchange
, Certificate verify (opt)
Change cipher spec
Finished

Change cipher spec

Finished

Encrypted data

SSL (1) SSL (2)

Client Hello : Certificate - (,
SSL )

.
... .
.
Server Hello
SSL
Certificate request - (,

)


.

9
 SSL (3) SSL (4)
Server key exchange - (, Client key exchange

) (premaster secret) ,

Server Hello Done .

Certificate verify (,
)
Certificate (,
o
certificate request)
,

SSL (5) SSL

Change cipher spec



Finished



Change cipher spec


Finished
SessionKey = genKey(premasterSecret, cipher, keyLen)

10