An Toan Bao Mat Thong Tin

AN TON V BO
MT THNG TIN
GVTH: ThS. Trn Phng Nhung
Ni dung
Chng 1: Tng quan v an ton v bo mt thng tin.
Chng 2: Cc phng php m ha c in
Chng 3: Chun m d liu DES
Chng 4: Mt m cng khai
Chng 5: Cc s ch k s
Chng 6: Hm bm

Chng 1: Tng quan v an
ton v bo mt thng tin.
Thng tin l mt b phn quan trng v l ti sn thuc
quyn s hu ca cc t chc

S thit hi v lm dng thng tin khng ch nh hng
n ngi s dng hoc cc ng dng m n cn gy ra
cc hu qu tai hi cho ton b t chc

Thm vo s ra i ca Internet gip cho vic truy
cp thng tin ngy cng tr nn d dng hn
1. Ti sao phi bo v thng tin
2. Khi nim h thng v ti sn
cua h thng
Khai nim h thng :H thng la mt tp hp cac may tinh bao gm
cc thanh phn, phn cng, phn mm va d liu lam vic c tich
luy qua thi gian.
Ti sn cua h thng bao gm:
Phn cng
Phn mm
D liu
Cac truyn thng gia cac may tinh ca h thng
Mi trng lam vic
Con ngi

3. Cc mi e do i vi mt h
thng v cac bin phap ngn chn
Co 3 hinh thc chu yu e doa i vi h thng:
Pha hoi: ke th pha hng thit bi phn cng hoc phn mm
hot ng trn h thng.
Sa i: Tai sn ca h thng bi sa i trai phep. iu nay
thng lam cho h thng khng lam ung chc nng ca n.
Chng hn nh thay i mt khu, quyn ngi dung trong h
thng lam h khng th truy cp vao h thng lam vic.
Can thip: Tai sn bi truy cp bi nhng ngi khng c thm
quyn. Cac truyn thng thc hin trn h thng bi ngn chn,
sa i.
Cac e doa i vi mt h thng thng tin c th n t ba loi
i tng nh sau:
Cac i tng t ngay bn trong h thng (insider), y la
nhng ngi c quyn truy cp hp phap i vi h thng.
Nhng i tng bn ngoai h thng (hacker, cracker), thng
cac i tng nay tn cng qua nhng ng kt ni vi h
thng nh Internet chng hn.
Cac phn mm (chng hn nh spyware, adware ) chy trn
h thng.
Lp ng dng
Mc qun l
Mc kim sot
Mc ngi s dng
Lp dch v
Lp h tng
Lp ng dng
Kim sot truy
nhp

Chng thc

Chng chi b

Bo mt s liu

An ton lung tin

Nguyn vn s liu

Kh dng

Ring t
Nguy c
Tn cng
Ph hy
Ct b
Bc, tit l
Gin on
Sa i
Cc bin php ngn chn:
iu khin thng qua phn mm: da vao cac c ch an toan
bo mt ca h thng nn (h iu hanh), cac thut toan mt m
hc
iu khin thng qua phn cng: cac c ch bo mt, cac
thut toan mt m hc c cng ha s dng
iu khin thng qua cac chinh sach cua t chc: ban hanh
cac qui inh ca t chc nhm m bo tinh an toan bo mt
ca h thng.

thng v cac bin phap ngn
chn
Ba mc tiu chnh ca an toan bo mt thng tin:
Bo mt
thng tin
Tnh sn sng
4. Mc tiu chung cua an ton bo
mt thng tin
Tnh b mt (Confidentiality): - m bo rng thng tin khng bi
truy cp bt hp php
Thut ng privacy thng c s dng khi d liu c bo
v c lin quan ti cc thng tin mang tnh c nhn.
Tnh ton vn (Integrity): - m bo rng thng tin khng bi sa
i bt hp php.
Tinh sn dng (availability): - Tai sn lun sn sang c s
dng bi nhng ngi c thm quyn.

mt thng tin
Tnh xc thc (Authentication): - m bo rng d liu nhn
c chc chn l d liu gc ban u
Tnh khng th chi b (Non-repudation): - m bo rng
ngi gi hay ngi nhn d liu khng th chi b trch
nhim sau khi gi v nhn thng tin.
Thm vo s chnh xc ca thng tin cn c nh gi bi:
mt thng tin
5. Cac chin lc an ton h
thng
Gii hn quyn hn ti thiu (Last Privilege):theo nguyn tc ny bt
k mt i tng no cng ch c nhng quyn hn nht inh i vi
ti nguyn mng.
Bo v theo chiu su (Defence In Depth):Khng nn da vo mt
ch an ton no d cho chng rt mnh, m nn to nhiu c ch
an ton tng h ln nhau.
Nt tht (Choke Point): To ra mt ca khu hp, v ch cho php
thng tin i vo h thng ca mnh bng con ng duy nht chnh l
ca khu ny.

im ni yu nht (Weakest Link):Chin lc ny da trn nguyn
tc: Mt dy xch ch chc ti mt duy nht, mt bc tng ch cng
ti im yu nht.
Tnh ton cc: Cc h thng an ton i hi phi c tnh ton cc ca
cc h thng cc b.
Tnh a dng bo v: Cn phi s dng nhiu bin php bo v khc
nhau cho h thng khc nhau, nu khng c ke tn cng vo c mt
h thng th chng cng d dng tn cng vo cc h thng khc.

5. Cac chin lc an ton h
thng

Quyn truy nhp: L lp bo v trong cng nhm kim sot cc ti
nguyn ca mng v quyn hn trn ti nguyn .
ng k tn /mt khu: Thc ra y cng l kim sot quyn truy
nhp, nhng khng phi truy nhp mc thng tin m mc h
thng.
M ho d liu: D liu bi bin i t dng nhn thc c sang
dng khng nhn thc c theo mt thut ton no v s c
bin i ngc li trm nhn (gii m).
Bo v vt l: Ngn cn cc truy nhp vt l vo h thng.

6. Cac mc bo v trn mng

Tng la: Ngn chn thm nhp tri php v loc b cc gi tin khng
mun gi hoc nhn v cc l do no o bo v mt my tnh hoc c mng
ni b (intranet).


Qun tr mng: Cng tc qun tri mng my tnh phi c thc hin
mt cch khoa hc m bo cc yu cu sau :
Ton b h thng hot ng bnh thng trong gi lm vic.
C h thng d phng khi c s c v phn cng hoc phn
mm xy ra.
Backup d liu quan trng theo inh k.
Bo dng mng theo inh k.
Bo mt d liu, phn quyn truy cp, t chc nhm lm vic
trn mng.


7. Cac phng phap bo mt
Cac phng phap quan trong

Vit mt m: m bo tinh bi mt ca thng tin truyn thng

Xac thc quyn: c s dng xac minh, nhn dng quyn hn
ca cac thanh vin tham gia.
Mt m l mt ngnh khoa hc chuyn nghin cu cc phng
php truyn tin b mt. Mt m bao gm : Lp m v ph m.

Lp m bao gm hai qu trnh: m ha v gii m.Cac sn
phm ca linh vc nay la cac h m mt , cac ham bm, cac h
ch ky in t, cac c ch phn phi, qun ly kha va cac giao
thc mt m.

Ph m: Nghin cu cac phng phap pha m hoc to m gi.
Sn phm ca linh vc nay la cac phng phap ph m , cac
phng phap gi mo ch ky, cac phng phap tn cng cac
ham bm va cac giao thc mt m

8. An ton thng tin bng mt m
Cch hiu truyn thng: gi b mt ni dung trao i
GI v NHN trao i vi nhau trong khi TRUNG GIAN tm
cch nghe ln
GI NHN
TRUNG GIAN
Mt trong nhng ngh thut bo v thng tin la bin i n thanh
mt inh dng mi kh c.

Vit mt m c lin quan n vic m hoa cac thng bao trc khi gi
chung i va tin hanh gii m chung luc nhn c

C 2 phng thc m hoa c bn: thay th v hoan v:

Phng thc m hoa thay th: la phng thc m hoa ma tng
ky t gc hay mt nhm ky t gc ca bn r c thay th bi cac
t, cac ky hiu khac hay kt hp vi nhau cho ph hp vi mt
phng thc nht inh va khoa.

Phng thc m hoa hoan v: la phng thc m hoa ma cac t
m ca bn r c sp xp li theo mt phng thc nht inh.

Vai tr cua h mt m:
H mt m phi che du c ni dung ca vn bn r
(PlainText).
To cc yu t xc thc thng tin, m bo thng tin lu hnh
trong h thng n ngi nhn hp php l xc thc
(Authenticity).
T chc cc s ch k in t, m bo khng c hin tng
gi mo, mo danh gi thng tin trn mng.
9. H mt m
Khi nim c bn
Bn r X c gi l l bn tin gc. Bn r c th c chia nh
c kch thc ph hp.
Bn m Y l bn tin gc c m ho. y ta thng xt
phng php m ha m khng lm thay i kch thc ca bn
r, tc l chng c cng di.
M l thut ton E chuyn bn r thnh bn m. Thng thng
chng ta cn thut ton m ha mnh, cho d ke th bit c
thut ton, nhng khng bit thng tin v kha cng khng tm
c bn r.

9. H mt m
Khai nim c bn
Kho K la thng tin tham s dung m hoa, ch c ngi gi
va ngui nhn bit. Kha la c lp vi bn r va c dai phu
hp vi yu cu bo mt.
M ho la qua trnh chuyn bn r thanh bn m, thng thng
bao gm vic ap dng thut toan m ha va mt s qua trnh x
l thng tin km theo.
Gii m chuyn bn m thanh bn r, y la qua trnh ngc li
ca m ha.

9. H mt m
Cc thnh phn cua mt h mt m :

Mt h m mt l b 5 (P, C, K, E, D) tho mn cc iu kin sau:
- P l khng gian bn r: l tp hu hn cc bn r c th c.
- C l khng gian bn m: l tp hu hn cc bn m c th c.
- K l kkhng gian kho: l tp hu hn cc kho c th c.
i vi mi k e K c mt quy tc m e
K
: P C v mt quy tc
gii m tng ng d
K
e D.
Vi mi e
K
: P C v d
K
: C P l nhng hm m
d
K
(e
K
(x))=x vi mi bn r x e P.

Ham gii m d
k
chinh la anh x ngc ca ham m ha e
k

9. H mt m
Bn r M ho Gii m Bn r
Bn m
Kho
Qu trnh m ha v gii m thng tin
9. H mt m
10. Phn loi h mt m
H mt i xng (hay cn gi l mt m kha b mt): l nhng h
mt dng chung mt kho c trong qu trnh m ho d liu v gii m
d liu. Do kho phi c gi b mt tuyt i. Mt s thut ton
ni ting trong m ho i xng l: DES, Triple DES(3DES), RC4,
AES

H mt m bt i xng (hay cn gi l mt m kha cng khai): Cc
h mt ny dng mt kho m ho sau dng mt kho khc
gii m, nghia l kho m ho v gii m l khc nhau. Cc kho
ny to nn tng cp chuyn i ngc nhau v khng c kho no c
th suy c t kho kia. Kho dng m ho c th cng khai
nhng kho dng gii m phi gi b mt. Do trong thut ton
ny c 2 loi kho: Kho m ho c gi l kha cng khai-Public
Key, kho gii m c gi l kha b mt - Private Key. Mt s
thut ton m ho cng khai ni ting: Diffle-Hellman, RSA,

Co ba phng phap chinh cho vic m hoa v gii m
S dng khoa i xng
S dng khoa bt i xng
S dng ham bm mt chiu

10. Cac phng phap m hoa
10.1 M hoa i xng
An intro to
PKI and few
deploy hints
AxCvGsmWe#4^,
sdgfMwir3:dkJeTs
Y8R\s@!q3%
An intro to
PKI and few
deploy hints
input : vn bn thun tu
Vn bn mt m
Hai khoa ging
nhau
M ho Gii m
output : vn bn thun tu
DE
S
DE
S
Cac khoa ging nhau c s dng cho vic m hoa va gii m
Thut toan m hoa s dng khoa i xng thng c bit n la
DES (Data Encryption Standard)
Cac thut toan m hoa i xng khac c bit n nh:
-Triple DES, DESX, GDES, RDES - 168 bit key
-RC2, RC4, RC5 - variable length up to 2048 bits
-IDEA - basis of PGP - 128 bit key

10.1 M hoa i xng
10.2 M hoa bt i xng
An intro to
PKI and few
deploy hints
Py75c%bn&*)9|f
De^bDzjF@g5=&
nmdFgegMs
An intro to
PKI and few
deploy hints
Hai kho khc nhau
M ho
Gii m
input : vn bn thun tu Vn bn mt m output : vn bn thun tu
RSA RSA
Cac khoa dung cho m hoa va gii m khac nhau nhng cung
mt mu va la cp i duy nht(khoa private/public)

Khoa private ch c bit n bi ngi gi

Khoa public c bit n bi nhiu ngi hn n c s
dng bi nhng nhm ngi ang tin cy c xac thc

Thut toan m hoa s dng khoa bt i xng thng c bit
n la RSA (Rivest,Shamir and Adleman 1978)
10.2 M hoa bt i xng
Mt ham bm H nhn c mt thng bao m vi mt dai bt k
t u vao va a ra mt xu bit h c dai c inh u ra h =
H(m).
Ham bm la mt ham mt chiu, iu c nghia la ta khng th
tinh toan c u vao m nu bit u ra h.
Thut toan s dng ham bm thng c bit n la MD5

10.3 Hm bm
10.4 To ra ch k s
3kJfgf*$&
Py75c%bn
This is the
document
created by
Gianni
Thng bao hoc File
Ch k s
Thng bao sau khi lut hoa
Signatory's
private key
priv
Pht sinh
hm bm
SHA, MD5
M ho
bt i xng
RSA
This is the
document
created by
Gianni
3kJfgf*$&
Signed
Document
(Typically 128 bits)

Xac minh quyn hn ca cac thanh vin tham gia truyn thng
Phng phap ph bin:

S dng Password : xac thc ngi s dng
11. Xac thc quyn

S dng Kerberos: phng thc m hoa va xac thc trong AD ca
cng ngh Window
S dng Secure Remote Password (SRP): la mt giao thc xac
thc i vi cac truy cp t xa
S dng Hardware Token
S dng SSL/TLS Certificate Based Client Authentication: s dng
SSL/TLS m hoa, xac thc trong VPN, Web
S dng X.509 Public Key
S dng PGP Public Key
S dng SPKI Public Key
S dng XKMS Public Key.
S dng XML Digital Signature

11. Xac thc quyn
12.Tiu chun anh gia h mt
m
an ton: Mt h mt c a vo s dng iu u tin phi
c an ton cao.
Chng phi c phng php bo v m ch da trn s b mt
ca cc kho, cn thut ton th cng khai. Ti mt thi im,
an ton ca mt thut ton ph thuc:
Nu chi ph hay ph tn cn thit ph v mt thut ton ln
hn gi tri ca thng tin m ha thut ton th thut ton
tm thi c coi l an ton.
Nu thi gian cn thit dng ph v mt thut ton l qu
lu th thut ton tm thi c coi l an ton.
Nu lng d liu cn thit ph v mt thut ton qu ln
so vi lng d liu c m ho th thut ton tm
thi c coi l an ton
Bn m C khng c c cc c im gy ch , nghi ng.

Tc m v gii m: Khi anh gi h mt m chng ta phi
ch n tc m v gii m. H mt tt th thi gian m v
gii m nhanh.
Phn phi kha: Mt h mt m ph thuc vo kha, kha ny
c truyn cng khai hay truyn kha b mt. Phn phi kha
b mt th chi ph s cao hn so vi cc h mt c kha cng
khai. V vy y cng l mt tiu ch khi la chn h mt m.
12.Tiu chun anh gia h mt
m
13. M hinh truyn tin c bn cua
mt m hoc v lut Kirchoff
Theo lut Kirchoff (1835 - 1903) (mt nguyn tc c bn trong
m hoa) th: ton b c ch ma/gii ma tr kho l khng bi mt
i vi k ch.
Y nghia cua lut Kirchoff: s an toan ca cac h m mt khng
phi da vao s phc tp ca thut toan m ha s dng.
13. M hinh truyn tin c bn cua
mt m hoc v lut Kirchoff
Cc kiu tn cng khc nhau
E bit c Y (ciphertext only attack).
Eavesdropper: ke nghe trm (Eve)
E bit mt s cp plaintext-ciphertext X-Y (known plaintext
attack).
E bit c cryptogram cho mt s tin X do bn thn son ra
(chosen plaintext attack).

14. Cac loi tn cng
15. Mt s ng dng cua m hoa
trong security
Mt s ng dng ca m hoa trong i sng hng ngay ni chung va
trong linh vc bo mt ni ring. la:
Securing Email
Authentication System
Secure E-commerce
Virtual Private Network
Wireless Encryption
Chng 2: Cac phng
phap m hoa c in
1. Modulo s hoc
- Ta c a b(mod n) nu a = kn + btrong k la mt s nguyn.
- Nu a va b dng va a nh hn n, chng ta c th gi a la phn
d ca b khi chia cho n.
- Ngi ta cn gi b la thng d ca a theo modulo n, va a la ng
d ca b theo modulo n

1. Modulo s hoc
Vi d:
Ta c: 42=4.9+6 vy 42 6 (mod 9)
Ta c cu hi; -42 ? (mod9), ta thy -42= -4.9-6
-42 -6 (mod 9) nhng -6 -6+9 3 (mod 9)
Vy nn -42 3 (mod 9)

- Modulo s hc cng ging nh s hc bnh thng, bao gm cac
phep giao hoan, kt hp va phn phi. Mt khac gim mi gia tri
trung gian trong sut qua trnh tinh toan.
(a+b) mod n = ((a mod n) + (b mod n)) mod n
(a- b) mod n = ((a mod n) - (b mod n)) mod n
(ab) mod n = ((a mod n) (b mod n)) mod n
(a (b + c)) mod n = (((a b) mod n) + ((a c) mod n)) mod n
- Cac php tinh trong cac h m mt hu ht u thc hin i vi
mt modulo N nao .
1. Modulo s hoc
- Tp cac s nguyn Z
N
= {0, 1, , N-1} trong N la mt s t
nhin dng vi hai phep toan cng (+) va nhn (.) c inh
nghia nh sau

- Theo tinh cht ca modulo s hc chung ta d dang nhn thy
Z
N
la mt vanh giao hoan va kt hp. Hu ht cac tinh toan trong
cac h m mt u c thc hin trn mt vanh Z
N
nao .

2. Vnh Z
N

- Trn vanh Z
N

s 0 la phn t trung ha v
s 1 c gi la phn t n vi v
- V d N=9

2. Vnh Z
N

3. Phn t nghch o trn vnh
Z
N

- Trn mt vanh s nguyn Z
N
ngi ta a ra khai nim v s
nghich o ca mt s nh sau:
(GCD-Greatest Common Divisor) c s chung ln nht

Shift Cipher:
Mt trong nhng phng php lu i nht c s dng m
ha
Thng ip c m ha bng cch dich chuyn xoay vng
tng k t i k vi tr trong bng ch ci
Trng hp vi k=3 gi l phng php m ha Caesar.
4. Cac h mt m c in H
m dch vng ( shift cipher)
Phng php n gin,
Thao tc x l m ha v gii m c thc hin nhanh chng
Khng gian kha K = {0, 1, 2, , n-1} = Z
n
D bi ph v bng cch th mi kh nng kha k
V d:
M ha mt thng ip c biu din bng cc ch ci t
A n Z (26 ch ci), ta s dng Z
26
.
Thng ip c m ha s khng an ton v c th d
dng bi gii m bng cch th ln lt 26 gi tri kha k.
Tnh trung bnh, thng ip c m ha c th bi gii
m sau khong 26/2 = 13 ln th kha
Ta c s m nh sau:
Gi s P = C = K = Z
26
vi 0 s k s 25
M ha: e
k
(x) = x +k mod 26
Gii m: d
k
(x) = y -k mod 26
(x,y e Z
26
)

Vi d K=17. Cho bn m
X = x1; x2; : : : ; x6 = A T T A C K .
X = x1; x2; : : : ; x6 = 0; 19; 19; 0; 2; 10.
M ha
y1 = x1 + k mod 26 = 0 + 17 mod 26 = 17 = R.
y2 = y3 = 19 + 17 mod 26 = 10 = K.
y4 = 17 = R.
y5 = 2 + 17 mod 26 = 19 = T.
y6 = 10 + 17 mod 26 = 1 = B.
Gii m
Y = y1; y2; : : : ; y6 = R K K R T B .
5. Cac h mt m c in- H m hoa
thay th(Substitution Cipher)
Substitution Cipher:
Phng php m ha ni ting
c s dng ph bin hng trm nm nay
Thc hin vic m ha thng ip bng cch hon vi cc phn t
trong bng ch ci hay tng qut hn l hon vi cc phn t
trong tp ngun P
n gin, thao tc m ha v gii m c thc hin nhanh
chng
Khng gian kha K gm n! phn t
Khc phc hn ch ca phng php Shift Cipher: vic tn cng
bng cch vt cn cc gi tri kha keK l khng kh thi
Tht s an ton???
5. Cac h mt m c in- H m
hoa thay th(Substitution Cipher)
?A H?A ?A ?NG ??NG
AO VCO JO IBU RIBU
AO VCO JO IBU RIBU
MA HOA VA UNG DUNG
Tn cng
da trn tn
s xut hin
cua k t
trong ngn
ng
i ?a?e i ?a? i ?????e?e?
L FDPH L VDZ L FRQTXHUHG
L FDPH L VDZ L FRQTXHUHG
i came i saw i conquered
Chn mt hoan vi p: Z
26
Z
26
lm kho.
VD:
M ho
e
p
(a)=X

Gii m
d
p
(A)=d

nguyenthanhnhut SOUDHSMGXSGSGUM
an ton cua m thay th
Mt khoa la mt hoan vi ca 26 ch cai.
C 26! ( 4.10
26
) hoan vi (khoa)
Ph m:
Khng th duyt tng khoa mt.
Cch khc?

Phn tich tn s
Ky t: E > T > R > N > I > O > A > S
Nhm 2 ky t (digraph): TH > HE > IN > ER > RE > ON >
AN > EN
Nhm 3 ky t (Trigraph): THE > AND > TIO > ATI > FOR >
THA > TER > RES
5. Cac h mt m c in- H m
hoa thay th(Substitution Cipher)
Substitution
Cipher
Shift
Cipher
Affine
Cipher
6. Cac h mt m c in - H
m Affine
gii m chinh xac thng tin ???
e
k
phi la song nh
( ) n y b ax Z x Z y
n n
mod , ! , + e - e
a v n nguyn t cung nhau: gcd(a,n)=1
6. Cac h mt m c in - H
m Affine
Vi d: Gi s P = C = Z
26
.
a v 26 nguyn t cung nhau: gcd(a,n)=1
6. Cac h mt m c in - H m
Affine
M tuyn tinh la mt m thay th c dng
e(x) = ax + b (mod 26), trong a, b e Z
26
.
Trng hp a = 1 l ma dch chuyn.
Gii m: Tm x?
y = ax + b (mod 26)
ax = y b (mod 26)
x = a
-1
(y b) (mod 26).
Vn : Tnh a
-1
.
c a
-1
, i hi (a,26)=1.
Tnh a
-1
: Thut toan Euclide m rng.
Affine
VD: bi tp
a = 5, b = 3: y = 5x + 3 (mod 26).
M ho: NGUYENTHANHNHUT ?
Vi d
Kha
Plain(a): abcdefghijklmnopqrstuvwxyz
Cipher(b): DKVQFIBJWPESCXHTMYAUOLRGZN
M ha:
Plaintext: ifwewishtoreplaceletters
Ciphertext: WIRFRWAJUHYFTSDVFSFUUFYA
Affine
n kh nng chn gia tri b
|(n) kh nng chn gia tri a
n |(n) kh nng chn la kha k = (a, b)
Affine
7. Thut toan Euclide m rng
Xy dng dy s:

Nhn xet:

7. Thut toan Euclide m rng
8. Phng phap Vigenere
Trong phng phap m ha bng thay th: vi mt kha k c
chn, mi phn t x e P c anh x vao duy nht mt phn t y
e C.
Phng phap Vigenere s dng kha c dai m.
c t tn theo nha khoa hc Blaise de Vigenere (th k 16)
C th xem phng php m ha Vigenere bao gm m php m
ha bng dich chuyn c p dng lun phin nhau theo chu k
Khng gian kha K ca phng php Vigenere c s phn t l
n
m
V d: n=26, m=5 th khng gian kha ~1.1 x 10
7
Vi d: m = 6 v keyword l CIPHER
Suy ra, kha k = (2, 8, 15, 7, 4, 17)
Cho bn r: thiscryptosystemisnotsecure

Vy bn m l: vpxzgiaxivwoubttmjpwizitwzt

9. Phng phap m hoa Hill
Phng phap Hill (1929)
Tac gi: Lester S. Hill
tng chinh:
S dng m t hp tuyn tinh ca m ky t trong plaintext
to ra m ky t trong ciphertext
Vi d:
nh ngha
Mt m dng l mt b (P,C,K,L,F,E,D) tho mn dc cc iu
kin sau:
1. P l mt tp hu hn cc bn r c th.
2. C l tp hu hn cc bn m c th.
3. K l tp hu hn cc kho c th ( khng gian kho)
4. L l tp hu hn cc b ch ca dng kho.
5. F = (f1 f2...) l b to dng kho. Vi i > 1
fi : K P i -1 L
6. Vi mi z eL c mt quy tc m ez e E v mt quy tc gii
m tng ng dz eD . ez : P C v dz : C P l cc
hm tho mn dz(ez(x))= x vi mi bn r x e P.
10. Cac h m dng

Cc m dng thng c m t trong cc b ch nhi phn tc l
P= C=L= Z
2
. Trong trng hp ny, cc php ton m v gii m l
php cng theo modulo 2.

10. Cac h m dng

Ch : Nu ta coi "0" biu thi gi tri "sai" v "1" biu thi gi tri "ung"
trong i s Boolean th php cng theo moulo 2 s ng vi php
hoc loi tr (XOR).
Bng chn l php cng theo modul 2 ging nh bng chn l ca
php ton XOR

10. Cac h m dng

Hm m ha v gii m c thc hin bi cng mt php ton l
php cng theo modulo 2(hay php XOR)
V:

Trong vi z
i
=0 v z
i
=1 th

10. Cac h m dng

V d: m ha k t A bi Alice
K t A trong bng m ASCII c tng ng vi m
65
10
=1000001
2
c m ha bi h kha z
1
,,z
7
=0101101
Hm m ha:

Hm gii m:

10. Cac h m dng

nh nghia 1 :Mt h mt c coi l an ton khng iu kin khi
no khng th b ph ngay c vi kh nng tinh ton khng hn ch.
OTP xut hin t u th k 20 v cn c tn gi khc l Vernam
Cipher, OTP c mnh danh l ci chn thnh ca ngnh m ha
d liu.
OTP l thut ton duy nht chng minh c v l thuyt l khng
th ph c ngay c vi ti nguyn v tn (tc l c th chng li
kiu tn cng brute-force).
c th t c mc bo mt ca OTP, tt c nhng iu
kin sau phi c tha mn:
di ca cha kha phi ung bng di vn bn cn m
ha.
Cha kha ch c dng mt ln.
Cha kha phi l mt s ngu nhin thc.

11. M ha One-time Pad(OTP)

nh nghia 2: Trong h m ha OTP ta c
|P|=|C|=|K| vi


Mi nghe qua c v n gin nhng trong thc t nhng iu kin ny kh
c th tha mn c. Gi s Alice mun m ha ch 10MB d liu bng
OTP, c ta phi cn mt cha kha c di 10MB. to ra mt s ngu
nhin ln nh vy Alice cn mt b to s ngu nhin thc (TRNG - True
Random Number Generator). Cc thit b ny s dng ngun ngu nhin
vt l nh s phn r ht nhn hay bc x nn v tr. Hn na vic lu tr,
chuyn giao v bo v mt cha kha nh vy cng ht sc kh khn.

D dng hn, Alice cng c th dng mt b to s ngu nhin o (PRNG -
Pseudo Random Number Generator) nhng khi mc bo mt gim
xung gn bng zero hay cng lm ch tng ng vi mt thut ton
dng nh RC4 m thi.

Do c nhng kh khn nh vy nn vic s dng OTP trong thc t l
khng kh thi.


12. L thuyt thng tin

Ky thut ln xn v rm r (Confusion and Diffusion)
Theo Shannon, c hai ky thut c bn che du s d tha
thng tin trong thng bao gc, la: s ln xn va s rm ra.
Ky thut ln xn (Confusion): che du mi quan h gia bn
r va gc. Ky thut nay lam tht bi cac c gng nghin cu bn
m tm kim thng tin d tha va thng k mu. Phng
phap d nht thc hin iu nay la thng qua ky thut thay
th. Mt h m hoa thay th n gin, chng hn h m dich
vng Caesar, da trn nn tng ca s thay th cc ch cai ca
bn r, nghia la ch cai nay c thay th bng ch cai khac

Ky thut rm r (Diffusion): lam mt i s d tha ca bn
r bng cach tng s ph bn m vao bn r (va kha). Cng
vic tm kim s d tha ca ngi tham m s rt mt thi
gian va phc tp. Cach n gin nht to ra s rm ra la thng
qua vic i ch (hay cn gi la ky thut hon v).
Thng thng cac h m hin i thng kt hp c hai ky
thut thay th va hoan vi to ra cac thut toan m ha c
an toan cao hn.

Ly thuyt thng tin a cho chung ta bit rng mt thut ton ma
ho co th b bi l. Cn ly thuyt phc tp cho bit kh nng
b tham ma ca mt h ma mt.
an ton tinh ton :
nh nghia:
Mt h mt c gi l an ton v mt tinh ton nu co mt
thut ton tt nht ph no th cn it nht N php ton, vi N l
mt s rt ln no o.
2.2. an ton khng iu kin
nh nghia 1:
Mt h mt c coi l an ton khng iu kin khi no khng th
b ph ngay c vi kh nng tinh ton khng hn ch.
13. L thuyt phc tp

Chng 3: Chun m d liu DES
(Data Encryption Standard)

1.Gii thiu chung v DES
- Ngy 13/5/1973 y ban quc gia v tiu chun ca My cng b
yu cu v h mt m p dng cho ton quc. iu ny t
nn mng cho chun m ha d liu, hay l DES.
- Lc u Des c cng ty IBM pht trin t h m Lucifer, cng
b vo nm 1975.
- Sau Des c xem nh l chun m ha d liu cho cc ng
dng.

2. c im cua thut toan DES
DES l thut ton m ha khi, di mi khi l 64 bit .
Kha dng trong DES c di ton b l 64 bit. Tuy nhin ch
c 56 bit thc s c s dng; 8 bit cn li ch dng cho vic
kim tra.
Des xut ra bn m 64 bit.
Thut toan thc hin 16 vng
M ho v gii m c s dng cng mt kho.
DES c thit k chy trn phn cng.

3. M t thut toan
3. M t thut toan
Thut toan c thc hin trong 3 giai on:
1. Cho bn r x (64bit) c hoan vi khi to IP (Initial
Permutation) to nn xu bit x
0.

x
0
=IP(x)=L
0
R
0

L
0
l 32 bit u tin ca x
0
.

R
0
l 32 bit cui ca x
0
.

3. M t thut toan
58 50 42 34 26 18 10 2
60 52 44 36 28 20 12 4
62 54 46 38 30 22 14 6
64 56 48 40 32 24 16 8
57 49 41 33 25 17 9 1
59 51 43 35 27 19 11 3
61 53 45 37 29 21 13 5
63 55 47 39 31 23 15 7
Hon vi khi u nhm i ch khi d liu vo , thay i vi tr ca cc
bt trong khi d liu vo. V d, hon vi khi u chuyn bt 1 thnh bt
58, bt 2 thnh bt 50, bt 3 thnh bt 42,...
3. M t thut toan
B chuyn v IP
2. T L
0
v R
0
s lp 16 vng, ti mi vng tinh:
L
i
=R
i-1

R
i
=L
i-1
f(R
i-1
,K
i
) vi i= 1, 2,,16
vi:
la phep XOR ca hai xu bit:
0 0=0 , 1 1=0
1 0=1, 0 1=1
f la ham ma ta s m t sau.
K
i
la cac xu c dai 48 bit c tinh nh la cac ham
ca kha K.
K
1
n K
16
lp nn mt lich kha.

3. M t thut toan
3. Ti vng th 16, R16 i ch
cho L16. Sau ghp 2 na
R16, L16 cho i qua hon vi
nghich o ca hon vi IP s
tnh c bn m. Bn m
cng c di 64 bt.

4
0
8 4
8
1
6
5
6
2
4
6
4
3
2
3
9
7 4
7
1
5
5
5
2
3
6
3
3
1
3
8
6 4
6
1
4
5
4
2
2
6
2
3
0
3
7
5 4
5
1
3
5
3
2
1
6
1
2
9
3
6
4 4
4
1
2
5
2
2
0
6
0
2
8
3
5
3 4
3
11 5
1
1
9
5
9
2
7
3
4
2 4
2
1
0
5
0
1
8
5
8
2
6
3
3
1 4
1
9 4
9
1
7
5
7
2
5
Hoan v IP
-1

3. M t thut toan
S tinh ham f(Ri-1,Ki)
3. M t thut toan
Hm f
Hm f

1. i s u R
i-1
s c m rng thanh xu c dai 48 bit
tng ng vi ham m rng E c inh. E(R
i
) bao gm 32 bit
t R
i
, c hoan vi theo mt cach thc xac inh, vi 16 bit
c to ra 2 ln.

Hm f ly i s u l xu nhp R
i-1
(32 bit) i s th hai l K
i

(48 bit) v to ra xu xut c di 32 bit. Cc bc sau c
thc hin.

32 1 2 3 4 5
4 5 6 7 8 9
8 9 10 11 12 13
12 13 14 15 16 17
16 17 18 19 20 21
20 21 22 23 24 25
24 25 26 27 28 29
28 29 30 31 32 1
Hm m rng E
Hm f
2. Tnh E(R
i-1
) K
i
kt qu c mt khi c di 48 bit.
Khi ny s c chia lm 8 khi B=B
1
B
2
B
3
B
4
B
5
B
6
B
7
B
8.
Mi
khi ny c di l 6 bt.

3. Bc k tip l cho cc khi Bi i qua hp S
i
s bin mt
khi c di 6 bit thnh mt khi C
i
c di 4 bt.

Hm f
S-box
Mi hp S-box l mt bng gm 4 hng v 16 ct c anh s t
0. Nh vy mi hp S c hng 0,1,2,3. Ct 0,1,2,,15. Mi phn t
ca hp l mt s 4 bt. Su bt vo hp S s xc inh s hng v
s ct tm kt qu ra.

Mi khi Bi c 6 bt k hiu l b1, b2, b3, b4, b5 v b6. Bt b1 v b6
c kt hp thnh mt s 2 bt, nhn gi tri t 0 n 3, tng ng
vi mt hng trong bng S. Bn bt gia, t b2 ti b5, c kt
hp thnh mt s 4 bt, nhn gi tri t 0 n 15, tng ng vi mt
ct trong bng S.
S-box
S-box
S-box
S-box
14 4 13 1 2 15 11 8 3 10 6 12 5 9 0 7
0 15 7 4 14 2 13 1 10 6 12 11 9 5 3 8
4 1 14 8 13 6 2 11 15 12 9 7 3 10 5 0
15 12 8 2 4 9 1 7 5 11 3 14 10 0 6 13
b
2
b
3
b
4
b
5
=1100
b
1
b
6
=00
Hp S1
- Mi xu xut 4 bit ca cac hp S c a vao cac Cj tng
ng: Cj = Sj(Bj) (1<=j<=8).
V d: Ta c B1=011000 th b
1
b
6
=00 (xc inh r=0), b
2
b
3
b
4
b
5
=1100
(xc inh c=12), t ta tm c phn t vi tr (0,12) -->
S1(B1)=0101 (tng ng vi s 5).

S-box
4. Xu bit C = C
1
C
2
C
3
C
4
C
5
C
6
C
7
C
8
c di 32 bit c hon
vi tng ng vi hon vi c inh P. Kt qu c P(C)=
f(R
i
,K
i
).

16 7 20 21
29 12 28 17
1 15 23 26
5 18 31 10
2 8 24 14
32 27 3 9
19 13 30 6
22 11 4 25
Hoan v P
Hm f
Kha K
- K l mt xu c di 64 bit trong 56 bit dng lm kha v
8 bit dng kim tra s bng nhau (pht hin li).
- Cc bit cc vi tr 8, 16,, 64 c xc inh, sao cho mi
byte cha s le cc s 1, v vy tng li c th c pht
hin trong mi 8 bit.
- Cc bit kim tra s bng nhau l c b qua khi tnh lich
kha.
S tinh khoa K1, K2, , K16
Qua trinh to cac khoa con (subkeys) t khoa K c m
t nh sau:

Cho kha K 64 bit, loi b cc bit kim tra v hon vi cc bit
cn li ca K tng ng vi hon vi c inh PC-1. Ta vit
PC1(K) = C
0
D
0
, vi C
0
bao gm 28 bt u tin ca PC-1(k)
v D
0
l 28 bit cn li.
Kha K
Cac hoan v c nh PC-1 v PC-2:
Kha K
Gii m
Vic gii m dng cng mt thut ton nh vic m ho.
gii m d liu c m ho, qu trnh ging nh m ho
c lp li nhng cc cha kho ph c dng theo th t
ngc li t K
16
n K
1
, nghia l trong bc 2 ca qu trnh m
ho d liu u vo trn R
i-1
s c XOR vi K
17-i
ch khng
phi vi K
i
.
c im cua m DES
Tinh cht b cua m DES:
DES c tinh cht bu:

trong :
la phn bu ca A theo tng bit (1 thay bng
0 va ngc li).
E
K
la bn m ha ca E vi kha K. P va C la vn
bn r (trc khi m ha) va vn bn m (sau khi m
ha).
Do tinh bu, ta c th gim phc tp ca tn cng
duyt toan b xung 2 ln (tng ng vi 1 bit) vi
iu kin la ta c th la chn bn r.
Cac khoa yu trong m Des:
Ngoi ra DES cn c 4 kha yu (weak keys). Khi s dng kha
yu th m ha (E) va gii m (D) s cho ra cung kt qu:
E
K
(E
K
(P)) = P or equivalently, E
K
= D
K

Bn cnh , cn c 6 cp khoa na yu (semi-weak keys). M
ha vi mt kha trong cp, K1, tng ng vi gii m vi kha
cn li, K2:
E
K1
(E
K2
(P))=P or equivalently E
K1
=D
K2
Tuy nhin c th d dang tranh c nhng kha nay khi thc
hin thut toan, c th bng cach th hoc chn kha mt cach
ngu nhin. Khi kh nng chn phi kha yu la rt nh.
c im cua m DES
Triple DES:
Triple-DES chnh l DES vi hai cha kho 56 bit. Cho mt bn
tin cn m ho, cha kho u tin c dng m ho DES
bn tin .
Kt qu thu c li c cho qua qu trnh gii m DES
nhng vi cha kho l cha kho th hai.
Bn tin sau qua c bin i bng thut ton DES hai ln
nh vy li c m ho DES mt ln na vi cha kho u tin
ra c bn tin m ho cui cng.
Qu trnh m ho DES ba bc ny c gi l Triple-DES.
c im cua m DES

Kim Tra

Mn: ATBMTT Lp: KHMT1K3 Thi gian: 120

Cho bn r mang ni dung: x=0123D56789ABCDE8.
Cho khoa K=183457799B3CDFF2
Trong h c s 16, Thc hin m ha vn bn r trn theo
thut toan DES
Xin chn thnh cm n!

An Toan Bao Mat Thong Tin

Diunggah oleh

Informasi Dokumen

Hak Cipta

Format Tersedia

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Hak Cipta:

Format Tersedia

An Toan Bao Mat Thong Tin

Diunggah oleh

Hak Cipta:

Format Tersedia

AN TON V BO

Anda mungkin juga menyukai