第3章对称密码体制精要.ppt

Key Distribution 密钥分配 Key Distribution：the means of delivering a key to two parties who wish to exchange data, without allowing others to see the key. For two parties A and B, key distribution can be achieved in a number of ways, as follows: A can select a key and physically deliver it to B. A third party can select the key and physically deliver it to A and B. If A and B have previously and recently used a key, one party can transmit the new key to the other, encrypted using the old key. If A and B each has an encrypted connection to a third party C, C can deliver a key on the encrypted links to A and B. key distribution center KDC A key distribution center is responsible for distributing keys to pairs of users (hosts, processes, applications) as needed. Each user must share a unique key with the key distribution center for purposes of key distribution. Two levels of keys Communication between end systems is encrypted using a temporary key, often referred to as a session key（会话密钥）. The session key is used for the duration of a logical connection，and then discarded. Each session key is obtained from the key distribution center over the same networking facilities. session keys are transmitted in encrypted form, using a master key（主密钥） that is shared by the key distribution center and an end system or user. Information Theoretic Security (Shannon 1949) Lemma: OTP has perfect secrecy. Proof: None 1 2 Lemma: OTP has perfect secrecy. Proof: The bad news … Stream Ciphers: making OTP practical idea: replace “random” key by “pseudorandom” key Stream Ciphers: making OTP practical 流密码的密钥流 流密码的关键就是产生密钥流的算法，该算法必须能够产生可变长的、随机的、不可预测的密钥流。 保持通信双方的精确同步是流密码实际应用中的关键技术。由于通信双方必须能够产生相同的密钥流，所以这种密钥流不可能是真随机序列，只能是伪随机流。 明文流 密文流 密钥流 流密码的结构 典型的流密码每次加密一位或一个字节明文。 将初始密钥(种子)输入到发生器，输出一个随机数(密钥)。 伪随机字节 发生器 (密钥流发生器) 明文 字节流 M 密文 字节流 C 密钥K k 异或加密 伪随机字节 发生器 (密钥流发生器) 密钥K k 异或解密 明文 字节流 M 明文 密钥流 密文 密文 密钥流 明文 设计流密码需要考