Printer Friendly
The Free Library
14,538,373 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

Realising AES-advanced encryption standard. (Security).


Joan Daemon-Proton World

The principle behind the Enigma machine
    For a discussion of how Enigma-derived intelligence was put to use, see .

The Enigma machine was a cipher machine used to encrypt and decrypt secret messages. More precisely, Enigma was a family of related electro-mechanical rotor machines, comprising a variety of  is still used for data encryption data encryption, the process of scrambling stored or transmitted information so that it is unintelligible until it is unscrambled by the intended recipient. Historically, data encryption has been used primarily to protect diplomatic and military secrets from foreign  today. Every time you enter your PIN when withdrawing cash from an ATM, the data stored on the card is encrypted and sent to the issuer, who decrypts it and then encrypts the reply which is decrypted by the ATM. However, things have advanced since the 1940's: instead of rotating wheels, complicated mathematical calculations, called cryptographic algorithms, are used. In the case of e-purse smart cards Example of widely used contactless smart cards are Hong Kong's Octopus card, Paris' Calypso/Navigo card and Lisbon' LisboaViva card, which predate the ISO/IEC 14443 standard. The following tables list smart cards used for public transportation and other electronic purse applications. , the card and the terminal challenge each other to solve an algorithm, which they both do by providing the "key". Once this mutual authentication has been done, the transaction can proceed.

Most of the cryptographic algorithms used today are based on the Data Encryption Standard See DES.

Data Encryption Standard - (DES) The NBS's popular, standard encryption algorithm. It is a product cipher that operates on 64-bit blocks of data, using a 56-bit key. It is defined in FIPS 46-1 (1988) (which supersedes FIPS 46 (1977)).  (DES) a standard developed by IBM (International Business Machines Corporation, Armonk, NY, www.ibm.com) The world's largest computer company. IBM's product lines include the S/390 mainframes (zSeries), AS/400 midrange business systems (iSeries), RS/6000 workstations and servers (pSeries), Intel-based servers (xSeries)  and adopted by the US government's National Institute for Standards & Technology (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ) for protecting sensitive information in 1977. Once in use by the government, it spread rapidly into the private sector, becoming a de- facto global standard.

Modern computers are, however, infinitely more powerful and fast than they were twenty-three years ago. Some can now "try" all the possible keys for a DES algorithm in two hours, rendering DES insufficiently secure for many transactions. The Security Products Development community is well aware of this, and most secure applications migrated in the 1990s to Triple DES, a system that uses three linked DES algorithms to secure transactions. A typical DES algorithm is 56 bits long, with a possible 720,000,000,000,000,000 keys. Modern computers are developing fast, and it is only a matter of time before machines will exist that can break Triple DES security. Therefore, in 1997 NIST decided to start a quest for a new global data encryption standard, called the Advanced Encryption Standard (cryptography, algorithm) Advanced Encryption Standard - (AES) The NIST's replacement for the Data Encryption Standard (DES). The Rijndael /rayn-dahl/ symmetric block cipher, designed by Joan Daemen and Vincent Rijmen, was chosen by a NIST contest to be AES.  (AES). It decided to hold a world-wide cryptography "Olympics", inviting the world's cryptographer cryp·tog·ra·pher  
n.
One who uses, studies, or develops cryptographic systems and writings.

Noun 1. cryptographer - decoder skilled in the analysis of codes and cryptograms
cryptanalyst, cryptologist  community to submit new algorithms for evaluation and testing by their peers. Fifteen submissions were made that met the minimum re quirements, which were rigorously tested and "attacked" by teams of cryptographers all over the world. By October 1999, five "finalists" had emerged, all of which had resisted attack and had the potential for widespread use. They were MARS from IBM, RC6 from RSA Security; Twofish from Counterpane; Serpent from a British- Danish-Israeli trio of cryptographers and Rijndael (pronounced Rain-dahl) from two Belgians, Vincent Rijmen and Joan Daemen.

The final stage tested all the algorithms in a variety of environments, to select one that was easy to use, flexible and fast. A year later, in October 2000, NIST announced that Rijndael had been chosen for ABS. This was quite a coup for Rijmen (a 30-year-old post-doctoral researcher at the Katholieke Universiteit Leuven The KATHOLIEKE UNIVERSITEIT LEUVEN (Catholic University of Leuven in English) or in short K.U.Leuven, is the largest, oldest, and most prominent university in Belgium.  (KUL, Leuven University) and Daemen (a 35-year-old security products development cryptographer at Proton World in Brussels), who developed Rijndael in their spare time, and didn't think they stood a chance against the 11 person, full-time IBM team. "it was like entering a competition to design a PC and discovering that Bill Gates was the competition" said Joan Daemen.

Rijndael supports key sizes of 128, 192 and 256 bits. To illustrate the advance from DES, a 128-bit key size has a possible 340,000,000,000,000,000,000,000,000,000,000,000,000, keys. NIST spokesman Jim Foti said "if a machine existed that could recover a DES key in a second (i.e. try 255 keys per second) it would take 149,000,000 million years to crack a 128-bit AES key. To put this in perspective, the universe is believed to be less than 20,000 million years old." NIST will propose AES for adoption as a Federal Information Processing Standard Federal Information Processing Standards (FIPS) are publicly announced standards developed by the United States Federal government for use by all non-military government agencies and by government contractors.  (FIPS (Federal Information Processing Standards) A series of publications issed by the U.S. National Institute of Standards and Technology (NIST) that specifies information security guidelines for federal government departments and agencies. ). It is expected to be adopted in mid-2001 for use with unclassified un·clas·si·fied  
adj.
1. Not placed or included in a class or category: unclassified mail.

2.  data. Initial estimates are that AES will be used as a FIPS for at least twenty years TWENTY YEARS. The lapse of twenty years raises a presumption of certain facts, and after such a time, the party against whom the presumption has been raised, will be required to prove a negative to establish his rights.
     2. .

The news about AES comes at a crucial period in the development of e- commerce. As cash is not an option when buying goods and services In economics, economic output is divided into physical goods and intangible services. Consumption of goods and services is assumed to produce utility (unless the "good" is a "bad"). It is often used when referring to a Goods and Services Tax.  from websites, credit cards have become a de- facto "standard". But their use relies on cardholders typing in their card numbers, expiry dates, names and addresses and then sending them "in clear" (uncrypted) over the Internet. The message may be intercepted by a hacker or the staff at the webshop may copy it down and use it fraudulently somewhere else. The credit card companies report that e-commerce represents 1 % of their transaction volume, but generates 50% of their disputed payments and charge-backs. Other studies show that around 70% of Internet shoppers do not complete their transactions, in many cases due to a lack of confidence in the security of their card data. Moving to AES-protected smart cards for credit and debit transactions should therefore build consumer confidence and give e- commerce a much-needed boost Joan and Vincent have renounced all Intellectual Pro perty Rights to Rijndael, as required by the NIST rules and plan to continue in their current "day jobs": Vincent at the COSIC Research Laboratory at the KUL and Joan as a senior member of the team of over twenty smart card security experts from several countries, who are working to develop the next generation of Proton technology smart card security modules.

Footnote:

How AES is different from DES.

DES uses 56-bit keys, where as AES uses either 128-bit, 192-bit or 256-bit keys. There are around 72,000,000,000,000,000 possible "combinations" for a DES key, and around 3,400,000,000,000,000,000,000,000,000,000,000,000,000 possible "combinations" for a 128-bit AES key.

The COSIC lab's home page is http://www.esat.kuleuven.ac.be/cosic and a Rijndael page is available at http://www.esat.kuleuven.ac.be/~rijmen/rijndael. There is also more information on NIST's website at http://www.nist.gov/public-affairs/releases/g00-176.htm and some of the cryptographic research work at Proton World can be found at http://www.protonworld.com/research. The article is part of a series for ISSE ISSE Information Security Solutions Europe
ISSE International Students for Social Equality
ISSE International Salon & Spa Expo
ISSE Internet Streaming SIMD Extension (Intel processor command set extension)  2001 Info Security Solutions Europe 26/28 Sept 2001 www.eema.org/isse.
COPYRIGHT 2001 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2001, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Software World
Date:Jul 1, 2001
Words:1024
Previous Article:Client based vs. server based E-Mail Encryption. (Security).
Next Article:Linux Security strategy-free. (Security News).(MandrakeSoft)(Brief Article)
Topics:



Related Articles
Triple DES Is Now A Federal Standard.(the National Institute of Standards and Technology's revised Data Encryption Standard)(Technology Information)
COMMERCE DEPARTMENT ANNOUNCES WINNER OF GLOBAL INFORMATION SECURITY COMPETITION.(Company Business and Marketing)
NEXT-GENERATION SSH SECURE SHELL OFFERS SUPPORT FOR PKI, SMART CARDS AND ADVANCED ENCRYPTION STANDARD.(Product Announcement)
NIST SPONSORS MODES OF OPERATION WORKSHOP.(Brief Article)
AUTHENEX ASAS TO SUPPORT MICROSOFT ISA SERVER.(Authenex Strong Authentication System supports Internet Security and Acceleration (ISA) Server 2000...
Beta 3 of Encryption Plus Hard Disk version 7. (Security).(Brief Article)(Product Announcement)
Encryption Plus Hard Disk V7.0. (Virus Notes).
Columbitech Wireless VPN 1.4 adds new security and platform support.(Product Announcement)
PKWARE adds strong encryption to PKZIP for MVS.
Security news: Steganos Security Suite 2006 for PC users.(SOFTWARE DIGEST)

Terms of use | Copyright © 2009 Farlex, Inc. | Feedback | For webmasters | Submit articles