Lecture 16 Outline

Reading: text, 11.1*–11.2*, 11.4*, 12.1*, 12.3*, 12.4.1*
Assignments: Homework 3, due Nov. 4; Lab 3, due Nov. 4

  1. Greetings and felicitations!
  2. Puzzle of the Day
  3. Key Exchange
    1. Needham-Schroeder and Kerberos
    2. Public key; man-in-the-middle attacks
  4. Key Generation
    1. Cryptographically random numbers
    2. Cryptographically pseudorandom numbers
    3. Strong mixing function
  5. Cryptographic Key Infrastructure
    1. Certificates (X.509, PGP)
    2. Certificate, key revocation
  6. Digital Signatures
    1. Judge can confirm, to the limits of technology, that claimed signer did sign message
    2. RSA digital signatures: sign, then encipher
  7. Networks and ciphers
    1. Where to put the encryption
    2. Link vs. end-to-end
  8. PEM, PGP
    1. Goals: confidentiality, authentication, integrity, non-repudiation (maybe)
    2. Design goals: drop in (not change), works with any RFC 821-conforment MTA and any UA, and exchange messages without prior interaction
    3. Use of Data Exchange Key, Interchange Key
    4. Review of how to do confidentiality, authentication, integrity with public key IKs

You can also obtain a PDF version of this. Version of October 25, 2016 at 11:48PM