Sesión 12: Escuela Profesional de Ingeniería de Sistemas Sede Ate

SESIÓN 12
Temática 12 Sistemas de Encriptación
Escuela profesional de Ingeniería de Sistemas

Sede Ate
Upon completion of this section, you should be able to:
• Explain the requirements of secure communications including integrity,
authentication, and confidentiality.
• Explain cryptography.
• Describe cryptoanalysis.
• Describe cryptology.
© 2013 Cisco and/or its affiliates. All rights reserved. Cisco Public 2
Ciphertext can be creating using several methods:
• Transposition
• Substitution
• One-time pad
xxxx
Methods used for cryptanalysis:
• Brute-force method
• Ciphertext method
• Known-Plaintext method
• Chosen-Plaintext method
• Chosen-Ciphertext method
• Meet-in-the-Middle method
Frequency Analysis of the
English Alphabet
Deciphering Using Frequency

Analysis
Upon completion of the section, you should be able to:
• Describe the purpose of cryptographic hashes.
• Explain how MD5 and SHA-1 are used to secure data communications.
• Describe authenticity with HMAC.
• Describe the components of key management.
Types of cryptographic keys:
• Symmetric keys
• Asymmetric keys
• Digital signatures
• Hash keys
• Explain how encryption algorithms provide confidentiality.
• Explain the function of the DES, 3DES, and the AES algorithms .
• Describe the function of the Software Encrypted Algorithm (SEAL) and the
Rivest ciphers (RC) algorithms.
SEAL has several restrictions:
• The Cisco router and the peer must support IPsec.
• The Cisco router and the other peer must run an IOS image that supports
encryption.
• The router and the peer must not have hardware IPsec encryption.
• Explain the differences between symmetric and asymmetric encryptions and
their intended applications.
• Explain the functionality of digital signatures.
• Explain the principles of a public key infrastructure (PKI).
Four protocols that use asymmetric key algorithms:
• Internet Key Exchange (IKE)
• Secure Socket Layer (SSL)
• Secure Shell (SSH)
• Pretty Good Privacy (PGP)
P
Fi
G
st
Alice Encrypts Message Using Bob’s Alice Encrypts A Hash Using Bob’s
Public Key Public Key
Bob Uses Alice’s Public Key to Bob Uses His Public Key to Decrypt
Decrypt Hash Message
Digital Signature Properties:
• Signature is authentic
• Signature is unalterable
• Signature is not reusable
• Signature cannot be repudiated
Digitally signing code provides several assurances about the code:
• The code is authentic and is actually sourced by the publisher.
• The code has not been modified since it left the software publisher.
• The publisher undeniably published the code.
Sending a Digital Certificate
Receiving a Digital Certificate
DSA Scorecard
RSA Scorecard
Elements of the
PKI Framework
PKI Example
Single-Root PKI Topology
Cross Certified CA
Hierarchical CA
Retrieving CA Certificates
Submitting Certificate
Requests to the CA
Peers Authenticate Each Other
Chapter Objectives:
• Explain the areas of cryptology.
• Explain to two kinds of encryption algorithms.

Sesión 12: Escuela Profesional de Ingeniería de Sistemas Sede Ate

Enviado por

Dados do documento

Título original

Direitos autorais

Formatos disponíveis

Compartilhar este documento

Compartilhar ou incorporar documento

Opções de compartilhamento

Você considera este documento útil?

Este conteúdo é inapropriado?

Direitos autorais:

Formatos disponíveis

Sesión 12: Escuela Profesional de Ingeniería de Sistemas Sede Ate

Enviado por

Direitos autorais:

Formatos disponíveis

SESIÓN 12

Temática 12 Sistemas de Encriptación

Escuela profesional de Ingeniería de Sistemas

Deciphering Using Frequency

• Describe authenticity with HMAC.

• Describe the components of key management.

• Explain the principles of a public key infrastructure (PKI).

• Secure Socket Layer (SSL)

• Secure Shell (SSH)

• Pretty Good Privacy (PGP)

• Signature is not reusable

• Signature cannot be repudiated

• The publisher undeniably published the code.

Receiving a Digital Certificate

• Explain to two kinds of encryption algorithms.

Você também pode gostar