管理计算机对称密钥加密算法.pptVIP

Modified Versions of DESDES的变形 Double DES: Perform DES twice with two different keys 双重DES：用两个不同的密钥执行DES两次 Triple DES with Three Different Keys 三重DES：用三个不同的密钥 Triple DES with Two Different Keys 三重DES：用两个不同的密钥 Double DES Encryption双重DES加密 Fig 3.36 Original Plain Text Encrypt K1 Cipher Text Encrypt K2 Cipher Text Double DES Decryption双重DES解密 Fig 3.37 Original Plain Text Decrypt K2 Decrypt K1 Cipher Text Cipher Text Double DES Mathematically Expressed双重DES的算术表达 Fig 3.38 P Encrypt K1 Temporary result (T) Encrypt K2 C EK1(P) EK2(EK1(P)) T = EK1(P) C = EK2(EK1(P)) Meet in the middle中间人攻击 Attack involves encryption from one end, decryption from the other, and matching the results in the middle 攻击的思想是从一端加密，另一端解密，在中间进行结果匹配 The attacker encrypts the plain text message from one end with all possible keys, generates its table 攻击者从一端尝试所有密钥加密明文消息，产生一张表 The attacker decrypts the cipher text from the other end with each possible key, matching the plain text with each row in the table generated earlier 从另一端尝试每一个密钥 解密密文以试图满足先前产生的那张表 If the attacker finds a match, she knows that the key used for encryption is found, and therefore, can try and crack other cipher text messages generated with this key Triple DES with Three Keys 三重DES（使用三个密钥） Fig 3.41 Original Plain Text Encrypt K1 Cipher Text 1 Encrypt K2 Cipher Text 2 Encrypt K3 Final Cipher Text Triple DES with Two Keys三重DES（使用两个密钥） Fig 3.42 Original Plain Text Encrypt K1 Cipher Text 1 Decrypt K2 Cipher Text 2 Encrypt K1 Final Cipher Text RC5 designed by Ronald Rivest 由Ronald Rivest开发的 can vary key size / data size / rounds 密钥长度、数据长度、迭代轮数可变 easy implementation on various CPUs 在各种CPU上易于实现 yet still regarded as secure 目前认为安全 RC5 Basic principlesRC5基本原理 RC5 is a family of ciphers RC5-w/r/b RC5是一个RC5-w/r/b家族系列 w = word size in bits (16/32/64) ，1word=2bits r = number of rounds (0..255) b = number of bytes in key (0..255) nominal version is RC5-32/12/16 建议版本为RC5-32/12/16 ie 32-bit words so