{"id":1176,"date":"2010-11-02T15:34:55","date_gmt":"2010-11-02T19:34:55","guid":{"rendered":"http:\/\/www.acarlstein.com\/?p=1176"},"modified":"2010-11-04T15:01:11","modified_gmt":"2010-11-04T19:01:11","slug":"introduction-to-network-security-part-6","status":"publish","type":"post","link":"http:\/\/blog.acarlstein.com\/?p=1176","title":{"rendered":"Introduction to Network Security – Part 6"},"content":{"rendered":"

NOTIFICATION:<\/strong><\/span> <\/strong>These examples are provided for educational purposes. The use of this code and\/or information is under your own responsibility and risk. The information and\/or code is given \u2018as is\u2019. I do not take responsibilities of how they are used.<\/p>\n

Poly-alphabetic Cipher<\/strong><\/p>\n

In the previous posting, we say that the mono-alphabetic cipher instead of shifting the alphabet a number of letters (Caesar cipher), its substitute each letter arbitrarily by mapping the plaintext letter map to a random arranged ciphertext. The only requirement for the ciphertext was that the letters must not be repeated. Now we are going to see a cipher that uses a set of related mono-alphabetic rules plus a key to determine which rule will be use to perform a transformation.<\/p>\n

Vigen\u00e8re Cipher<\/strong><\/p>\n

Encryption:<\/span>
\n<\/strong><\/p>\n

This cipher is similar to the Caesar cipher for the use of the 26 letters alphabet with the only different that we create a table in which:<\/p>\n

    \n
  1. The columns represent the plain text<\/li>\n
  2. The rows represent the key<\/li>\n
  3. The alphabet inside the table is shifted to the right one letter one time for each letter of the alphabet key.<\/li>\n<\/ol>\n

    To be more clear, let take a quick look of the Caesar cipher table:
    \n<\/a>\"\"<\/a>In this example, We started the alphabet on the letter ‘E’ because the key was 5.<\/p>\n

    Now, the Vigen\u00e8re Cipher will apply this shifting 26 times, one time per row, for each letter of the alphabet that correspond to the key as follow:<\/p>\n

    \"\"<\/a>Lets say that you have the following key “THIS\u00a0 MESSAGE WAS FOR YOU”, and your key is “HELLO” then using the table:<\/p>\n

    \"\"<\/a>We would obtain:<\/p>\n

    \"\"<\/a><\/p>\n

    From a mathematical point of view we have:<\/p>\n

      \n
    1. Lets assume that we take the letters of the alphabet from A to Z and be replace them with number starting from 0, for example: A = 0, B = 1, …, Z = 25.<\/li>\n
    2. Since we have 26 letters in the alphabet, lets perform module of 26 on this equation.<\/li>\n
    3. If ‘i’ is the letter position, P indicate the plaintext, K indicate the key, and C indicate the ciphertext then:
      \n\"C_i
      \n(For more information about the algebra involved in the Vigen\u00e8re cipher:       http:\/\/en.wikipedia.org\/wiki\/Vigen%C3%A8re_cipher<\/a>)<\/li>\n<\/ol>\n

      Decryption<\/span><\/p>\n

      For decryption we only need to use a letter of the key to identify the row and the letter of the ciphertext in the row to identify the column, the letter designated to the column give us the plaintext letter.<\/p>\n

      \"\"<\/a><\/p>\n

      From a mathematical point of view we have:<\/p>\n

        \n
      1. Lets assume that we take the letters of the alphabet from A to Z and be replace them with number starting from 0, for example: A = 0, B = 1, …, Z = 25.<\/li>\n
      2. Since we have 26 letters in the alphabet, lets perform module of 26 on this equation.<\/li>\n
      3. If ‘i’ is the letter position, P indicate the plaintext, K indicate the key, and C indicate the ciphertext then:
        \n\"P_i
        \n(For more information about the algebra involved in the Vigen\u00e8re cipher:         http:\/\/en.wikipedia.org\/wiki\/Vigen%C3%A8re_cipher<\/a>)<\/li>\n<\/ol>\n

        Security<\/span><\/p>\n

        This cipher is not secure. If two or more sequences are identical inside the plaintext, we run the risk that identical ciphertext sequence will be generated. The attacker can use these repetition in the ciphertext to make a deduction about what is the plaintext. The more plaintext is needed to encrypt, the more chances that the ciphertext can be broken or the key found.<\/p>\n

        As an example, lets assume we have the following:
        \nPlaintext:\u00a0\u00a0 WE RUN WHEN WE WERE DISCOVER BY THEM
        \nKey: \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 RUNNING NO RUNNING NO RUNNING NO<\/p>\n

        This would give us a ciphertext in which we can spot the repetitions:<\/p>\n

        \"\"<\/a><\/p>\n

        The only way around this problem is by using the Autokey cipher.<\/p>\n

        Autokey Cipher<\/strong><\/p>\n

        An auto-key cipher is the concept of generating a key that does not have a repetition cycle.<\/p>\n

        Instead of having a plaintext and a key such as this example:
        \nPlaintext:\u00a0\u00a0 WE RUN WHEN WE WERE DISCOVER BY THEM
        \nKey: \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 RUNNING NO RUNNING NO RUNNING NO<\/p>\n

        We could have the following key:
        \nPlaintext:\u00a0\u00a0 WE RUN WHEN WE WERE DISCOVER BY THEM
        \nKey: \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 RUNNING IS NOT THE SOLUTION THIS<\/p>\n

        This would give us a ciphertext with no repetitions:<\/p>\n

        <\/a><\/a>\"\"<\/a><\/p>\n

        One-Time Pad Cipher
        \n<\/strong><\/p>\n

        The One-Time Pad cipher use a similar concept as the Auto-Key Cipher; however, the difference is the generation of a random key which is as long as the message. Also, it is required that at the end of the transmission, the random key generated must be destroyed.<\/p>\n

        The only problem is to find a secure way to distribute the random generated key between the principals.<\/p>\n\n