Attacks on cryptosystems-cryptography, Computer Network Security

Attacks on Cryptosystems
Attacks are attempts to achieve unauthorized access to secure communications have characteristically used brute force attacks. Attacker may alternatively conduct known plaintext attack or selected plaintexts attach schemes.
The different methods of attacks are as follows:

Man-in-the-Middle Attack
This technique is designed to intercept transmission of public key or insert known as key structure in place of requested public key. From victims’ perception, encrypted communication appears to be taking place normally, but actually attacker receives each encrypted message, decodes, encrypts, and sends it to originally intended recipient. Establishment of public keys with the digital signatures can prevent traditional man in the middle attack Correlation Attacks

Collection of brute force methods which attempt to deduce statistical relationships between structure of unknown key and ciphertext is called as correlation attacks. Differential and linear cryptanalysis has been used to mount successful attacks. Only defense organization is the selection of strong cryptosystems, by key management, and strict adherence to finest practices of cryptography in frequency of changing keys.

Dictionary Attacks
In the dictionary attack, attacker encrypts every word in a dictionary by using same cryptosystem used by target. Dictionary attacks can become successful if ciphertext consists of relatively few characters (for instance usernames, passwords).

Timing Attacks
Attacker eavesdrops through victim’s session is sometimes called timing attacks which uses statistical analysis of user’s typing patterns and inter keystroke timings to discern sensitive session information.

It is used to gain information about encryption key and possibly cryptosystem in use. Once encryption is broken successfully, attacker may launch a replay attack (an attempt to resubmit recording of deciphered authentication for entry into secure source).

Defending From Attacks
Does not matter how sophisticated encryption and cryptosystems have become, if key is revealed, message can be determined easily. Key management is not so much management of technology but instead management of people.

Posted Date: 10/9/2012 2:43:05 AM | Location : United States







Related Discussions:- Attacks on cryptosystems-cryptography, Assignment Help, Ask Question on Attacks on cryptosystems-cryptography, Get Answer, Expert's Help, Attacks on cryptosystems-cryptography Discussions

Write discussion on Attacks on cryptosystems-cryptography
Your posts are moderated
Related Questions
Question: (a) Give 2 benefits of using IPsec. (b) IPSec uses two protocol for security: Authentication Header protocol (AH) and the Encapsulated Security Header Protocol (

(a) Illustrate what you understand by Nyquist Capacity Theorem? (b) Consider we wish to transmit at a rate of 64 kbps over a 4 kHz noisy but error-free channel. What is the mini

WFABilling project in Java:  Project Title: WFABilling   Role                      : Developer Domain                 : Tele-Com Environment          : Java, J2EE, S

Question 1: (a) Differentiate between symmetric and asymmetric encryption system. (b) Describe how a digital signature is created. (c) Explain briefly what SSL (secure so

VIRTUAL PACKETS These data packets serve same reason in Internet as frames on LAN. Every packet has a header. Routers, which are normally gateways, transfer packets between ph

Question (a) Consider that you enter the subsequent URL in the address bar of a popular web client and that both the server and client accepts HTTP version 1.1. i. What can be

There is another probing methods i-e Trace Route. To get more detail it is used     As given in the figure about the route to DANDELION-PATCH.MIT.EDU was looked out a

LOG FILE MONITORS Log file monitor (LFM) is similar to NIDS. It reviews log files generated by servers, network devices, and even other IDSs for patterns and signatures. Pattern

KASONet Pinging System: Project Title:                                                           "KASONet Pinging System"   Brief Overview of Project: The o

Question: (i) ‘Implementation' is a critical stage of the Systems Development Life Cycle. Show the four approaches which are commonly used to implement information systems in