Network Security and Cryptography

Network security associates to the security when browsing the web, including protect sensitive information and maintain privacy. For a secure network connection, it is ideal that it provides confidentiality, integrity, and authentication which comply to the security triad. Cryptography is built via maths/algorithm, it is a process for hiding or coding information that only a person a message is intended for can read it.

Confidentiality - encryption

Protecting information from interception and ensuring information remains confidential if intercepted.

Modern encryption systems generally adhere to Kerckhoffs’s principle that a crypto system should remain secure even if everything about the system, except the secret key, is public knowledge, including the encryption algorithm.

• Stream Cipher and Block Cipher
• Symmetric Cryptography
• Asymmetric Cryptography

Real-world application:

• One-Time Pad (OTP)
• Caesar Cipher
• Vigenère Cipher
• Diffie-Hellman Key Exchange
• RSA Algorithm

Integrity - hashing

Detecting whether information has been tampered with.

• Hash Algorithms
• Hash Extension Attack

Real-world Application:

• Message Authentication Code (MAC)

Authenticity

Verify a user or a device before allowing access to a system or resources

• Digital Signature
• Digital Certificate
• Password Based Attacks

Authentication and key distribution

Identify a party we are communicating with

• Key Distribution

Real-life applications

• Transport Layer Security (TLS)
• Network Attacks and Preventions
• HTTP Secure (HTTPS)
• Secure Shell (SSH)
• HMAC Key Derivation Function (HKDF)

---

Back to parent node: Cyber Security and Security Engineering

Computer_networks Network_security INFO1112 INFO2222 CSEC3616

Reference:

• https://www.fortinet.com/resources/cyberglossary/what-is-cryptography#:~:text=Cryptography%20is%20the%20process%20of,%2C%20computer%20passwords%2C%20and%20ecommerce.