Blog

Electronic Mail Security

Digital Signatures and Certificates

Introduction to PGP
In 2013, following the public exposure of the NSA (United States National Security Agency) surveillance scandal, people increasingly sought services that could ensure robust data privacy. Among the most popular choices, particularly for securing emails, were various browser plug-ins and extensions. Notably, two key programs emerged as leaders in providing complete email security: S/MIME, which we’ll explore later, and PGP.

What is PGP?
Pretty Good Privacy (PGP) is encryption software designed to protect the confidentiality, integrity, and authenticity of digital communications and data. Developed by Phil Zimmermann in 1991, PGP is widely recognized as one of the most effective tools for securing digital information.

PGP employs a hybrid cryptographic approach, combining symmetric-key and public-key cryptography. Symmetric-key cryptography uses a single key for both encryption and decryption, while public-key cryptography relies on a pair of mathematically related keys: a public key (shared for encryption) and a private key (kept secret for decryption).

Evolution and Advancements in PGP

Early Development (1991-1996):
Initially released as freeware, PGP allowed users to encrypt and decrypt emails and files using public-key cryptography. This version used the RSA algorithm for public-key encryption and the IDEA cipher for symmetric encryption. Despite its innovation, PGP faced legal challenges due to cryptographic software export restrictions.

International Expansion and Standardization (1996-2000):
In 1997, Network Associates Inc. (NAI) acquired PGP and expanded its global presence. During this time, PGP became a standard for email encryption and digital signatures, supporting multiple platforms and email clients. The OpenPGP standard was established to ensure compatibility across different PGP implementations.

Open Source Development (2000-Present):
Concerns about the proprietary nature of PGP led to the formation of the OpenPGP Working Group, which developed an open-source version. This resulted in the creation of GnuPG (GNU Privacy Guard), an open-source implementation of the OpenPGP standard. GnuPG remains widely used as a free alternative to commercial PGP software.

Modernization and Integration (2000s-Present):
PGP continues to evolve, incorporating advancements such as elliptic curve cryptography (ECC), improved key management, cloud storage integration, and mobile device compatibility. Modern PGP versions are used in secure email clients, encryption tools, and enterprise security solutions.

PGP Services

PGP provides the following services:

1. Authentication in PGP

Authentication verifies the legitimacy of something, such as confirming that an email truly originates from the claimed sender. In PGP, this is achieved using digital signatures:

A hash function (H) computes the hash value of a message, typically using SHA-1, which produces a 160-bit output.
This hash value is encrypted with the sender’s private key (KPa) to create a digital signature.
The signature is appended to the message, which is then compressed and sent to the recipient.

At the receiver’s end:

The data is decompressed to separate the message and signature.
The signature is decrypted using the sender’s public key (PUa), yielding the original hash value.
The message is hashed again, and the new hash is compared with the decrypted hash.

2. Confidentiality in PGP

Confidentiality ensures that only the intended sender and receiver can access the message content. PGP achieves this by encrypting messages:

The message (M) is compressed and encrypted with a randomly generated session key (Ks) using symmetric encryption.
The session key itself is encrypted with the receiver’s public key (KUb) using public-key encryption.
The encrypted message and encrypted session key are concatenated and sent to the receiver.

At the receiver’s end:

The session key is decrypted using the receiver’s private key (KPb).
The message is decrypted with the session key and then decompressed to retrieve the original content.

Importance of Authentication and Confidentiality in PGP

These two features are foundational to PGP’s security framework.

Authentication ensures that communications are legitimate and tamper-proof by verifying the sender’s identity and the message’s integrity using digital signatures.
Confidentiality protects sensitive content from unauthorized access, ensuring that only the intended recipient can decipher the message.

Together, they enable trusted and secure communication.

Advantages of PGP

PGP’s robust encryption algorithm is virtually unbreakable.
It enhances cloud security and protects private communications, shielding data from hackers and surveillance.

Disadvantages of PGP

PGP’s complexity can make it challenging to use. Proper training is required for organizations implementing it.
Mismanagement, such as losing or corrupting keys, can compromise security.
PGP does not provide anonymity, allowing the identification of email sources and recipients.

Types of Authentication Protocols

Pretty Good Privacy (PGP)

PGP is an open-source software tool specifically designed for email security, developed by Phil Zimmermann. It addresses the fundamental requirements of cryptography by implementing various steps to secure emails. These steps include:

Confidentiality
Authentication
Compression
Resembling
Segmentation
Email compatibility

Secure/Multipurpose Internet Mail Extension (S/MIME)

S/MIME is an enhanced version of Multipurpose Internet Mail Extension (MIME) with added security features. It employs public key cryptography for signing, encrypting, and decrypting emails. Users obtain a public-private key pair from a trusted authority and use these keys with email applications as needed.

Difference Between PGP and S/MIME

S.No	PGP	S/MIME
1.	Designed for processing plain text.	Designed to process emails and multimedia files.
2.	Less expensive compared to S/MIME.	Comparatively costlier.
3.	Suitable for both personal and office use.	Ideal for industrial use.
4.	Less efficient than S/MIME.	More efficient than PGP.
5.	Relies on user key exchange.	Depends on a hierarchically validated certificate for key exchange.
6.	Offers comparatively lower convenience.	Provides higher convenience due to secure transformation across applications.
7.	Contains 4096 public keys.	Contains only 1024 public keys.
8.	Recognized as a standard for strong encryption.	Also a standard for strong encryption, albeit with certain limitations.
9.	Can be used in VPNs.	Not used in VPNs, only in email services.
10.	Utilizes Diffie-Hellman digital signatures.	Employs ElGamal digital signatures.
11.	Establishes trust through a Web of Trust.	Trust is built using Public Key Infrastructure (PKI).
12.	Primarily secures text messages.	Secures messages and attachments.
13.	Has limited usage in industries.	Widely adopted in industrial applications.
14.	Offers low convenience.	Provides high convenience.
15.	Involves high administrative overhead.	Involves low administrative overhead.

December 16, 2025

Authentication Applications
Digital Signatures and Certificates

Kerberos provides a centralized authentication mechanism that enables users to authenticate to servers and vice versa. It employs an Authentication Server and a database for client authentication. Kerberos operates as a trusted third-party server, commonly known as the Key Distribution Center (KDC). Every user and service within the network is referred to as a principal.

Main Components of Kerberos:
1. Authentication Server (AS): The Authentication Server performs initial user authentication and provides a ticket for the Ticket Granting Service.
2. Database: The Authentication Server validates user access rights by referencing a database.
3. Ticket Granting Server (TGS): The Ticket Granting Server issues service tickets for accessing servers.
Kerberos Process Overview:
1. Step 1: The user logs in and requests access to a service on the host by requesting a ticket-granting ticket.
2. Step 2: The Authentication Server verifies the user’s access rights using the database and provides a ticket-granting ticket along with a session key. The result is encrypted with the user’s password.
3. Step 3: The user decrypts the message using their password and sends the ticket to the Ticket Granting Server. The ticket includes authenticators, such as the user’s name and network address.
4. Step 4: The Ticket Granting Server decrypts the ticket and authenticates the request. It then creates a ticket for accessing the requested service.
5. Step 5: The user forwards the ticket and authenticator to the desired server.
6. Step 6: The server validates the ticket and authenticator, granting access to the requested service. The user can then utilize the service.
Limitations of Kerberos:
1. Integration Challenges: Each network service must be individually adapted to use Kerberos.
2. Environment Constraints: It is less effective in timesharing environments.
3. Reliance on a Secured Kerberos Server:
  - The server must remain online at all times.
  - Passwords are stored in encrypted form using a single key.
  - It assumes workstations are secure.
  - Potential for cascading trust issues in the event of compromise.
4. Scalability Issues: Larger systems may encounter challenges in scaling effectively.
Is Kerberos Perfect?

No security protocol is completely immune to attacks, and Kerberos is no exception. Over time, hackers have identified ways to bypass it, including forging tickets, performing brute force or credential-stuffing attacks, and using malware to weaken encryption.

However, Kerberos remains one of the most effective access security protocols available. It can adapt to emerging threats by incorporating stronger encryption algorithms, and users can reduce vulnerabilities by adhering to good password practices.

Common Uses of Kerberos:

Authentication in Secure Systems: Kerberos is widely used in environments requiring strong authentication and auditing capabilities. It supports Posix, Active Directory, NFS, and Samba authentication and serves as an alternative to SSH, POP, and SMTP authentication systems.

Applications of Kerberos:
1. User Authentication: Users only need to enter their credentials once to gain access to network resources. The Kerberos server processes encrypted authentication data and issues a Ticket Granting Ticket (TGT).
2. Single Sign-On (SSO): Kerberos provides an SSO solution, allowing users to log in once and access multiple authorized network resources without re-entering credentials.
3. Mutual Authentication: Kerberos ensures both the client and server are authenticated before any data transfer. This is achieved through a shared secret key securely stored on both sides. Clients decrypt a challenge from the Kerberos server and respond with proof of identity to establish trust.
4. Authorization: Beyond authentication, Kerberos supports authorization. Authenticated users receive service tickets containing their permissions, allowing them to access only authorized resources.
5. Network Security: By utilizing a central authentication server to manage credentials and access control, Kerberos enhances network security. This ensures sensitive data and resources remain protected from unauthorized access.
X.509 Authentication Service

X.509 is a type of digital certificate based on the widely recognized ITU (International Telecommunication Union) X.509 standard. This standard defines the format of Public Key Infrastructure (PKI) certificates. The X.509 certificate serves as a framework for authentication security, enabling secure transaction processing and safeguarding private information. It is extensively used to manage security and identity in computer networking and internet communications.

How X.509 Authentication Service Certificates Work

At the heart of the X.509 authentication service lies the public key certificate assigned to each user. These certificates are generated by a trusted certification authority (CA) and placed in a directory either by the user or the CA itself. These directories are designed to provide an easily accessible location for users to retrieve certificates.

The X.509 standard is constructed using an Interface Definition Language (IDL) called ASN.1 (Abstract Syntax Notation). By leveraging this notation, the X.509 certificate format employs a public-private key pair for encrypting and decrypting messages.

Once a certification authority issues an X.509 certificate to a user, it becomes akin to an identity card. Unlike traditional passwords, which are more vulnerable to being stolen or forgotten, these certificates are far more secure. This analogy illustrates the authentication process: the certificate functions as a form of identification, presented to access a resource that requires authentication.

Format of X.509 Authentication Service Certificates

Format of X.509 Authentication Service Certificates

An X.509 certificate generally includes the following elements:
1. Version Number: Specifies the version of X.509 applicable to the certificate.
2. Serial Number: A unique identifier assigned by the certification authority.
3. Signature Algorithm Identifier: Identifies the algorithm used to sign the certificate.
4. Issuer Name: Indicates the X.500 name of the certification authority that created and signed the certificate.
5. Period of Validity: Defines the timeframe during which the certificate remains valid.
6. Subject Name: Specifies the name of the individual or entity to whom the certificate is issued.
7. Subject’s Public Key Information: Includes the public key of the certificate holder and the identifier of the associated algorithm.
8. Extension Block: Contains additional standard information.
9. Signature: Consists of a hash of all other fields, encrypted using the private key of the certification authority.
Applications of X.509 Authentication Service Certificates

X.509 certificates are essential to various protocols and have numerous applications, including:
- Document signing and digital signatures
- Securing web servers through Transport Layer Security (TLS) and Secure Sockets Layer (SSL) certificates
- Email security
- Code signing
- Secure Shell Protocol (SSH) keys
- Digital identities.
Types of Encryption
1. Symmetric Encryption: Uses the same key for both encryption and decryption, requiring secure key storage.
2. Asymmetric Encryption: Employs a public-private key pair. The public key is shared openly, while the private key remains confidential to the owner.
Core Concepts
- Authentication: Verifies user identity.
- Non-repudiation: Ensures actions cannot be denied later.
- Integrity: Confirms unaltered message transmission.
- Message Digest: A unique string of digits created by a hash function, used in creating digital signatures.
Types of Authentication Protocols

User authentication is a critical aspect of handling requests within a software application. Several mechanisms are in place to ensure secure authentication and manage access to data. In this article, we will delve into the most widely used authentication protocols, discussing their strengths and weaknesses.

1. Kerberos: Kerberos is a protocol used for network authentication, designed to validate both clients and servers in a network using cryptographic keys. It provides robust authentication when interacting with applications and is implemented by MIT, with open availability. Kerberos is widely used in numerous commercial products.

Advantages of Kerberos:
- It is compatible with various operating systems.
- The authentication key is shared more efficiently than public keys.
Disadvantages of Kerberos:
- It only authenticates clients and the services they use.
- It is susceptible to weak or easily guessed passwords.
2. Lightweight Directory Access Protocol (LDAP): LDAP, or Lightweight Directory Access Protocol, is used to locate individuals, organizations, or devices within a network, whether on a public or corporate internet. It is the foundation for Microsoft’s Active Directory and is frequently used as Directories-as-a-Service.

Advantages of LDAP:
- It automates processes, making updates and modernizations easier.
- It supports existing technologies and allows for the use of multiple directories.
Disadvantages of LDAP:
- It requires specialized expertise for deployment.
- The directory servers must comply with LDAP standards for effective deployment.
3. OAuth2: OAuth2 is an authorization framework designed to grant limited access to user accounts through an HTTP service. When a user requests access to resources, an API call is made, followed by the transfer of an authentication token.

Advantages of OAuth2:
- It is a simple protocol, making implementation straightforward.
- It supports server-side authorization for code.
Disadvantages of OAuth2:
- It can be challenging to manage various code sets.
- It can have significant security consequences if connected systems are affected.
4. SAML: SAML (Security Assertion Markup Language) is an XML-based authentication data format that enables authorization between an identity provider and a service provider. It was developed by the OASIS Security Services Technical Committee.

Advantages of SAML:
- It reduces administrative costs for end-users.
- It enables single sign-on (SSO) across different service providers.
Disadvantages of SAML:
- It depends on the identity provider for authentication.
- All data is managed in a single XML format.
5. RADIUS: RADIUS (Remote Authentication Dial-In User Service) is a network protocol that offers centralized authentication, accounting, and authorization for users accessing network services. When a user requests network access, the RADIUS server encrypts the entered credentials, maps them to a local database, and grants access.

Advantages of RADIUS:
- It is effective for providing multiple access levels for administrators.
- It ensures that each user has a unique identity during a session.
Disadvantages of RADIUS:
- The initial implementation of this system can be challenging and resource-intensive.
- It supports a variety of models, some of which may require specialized teams, leading to higher costs.
Digital Signature Standard (DSS)

As we know, a signature is a method of verifying the authenticity of data originating from a trusted individual. Similarly, a digital signature authenticates digital data from a reliable source. The Digital Signature Standard (DSS) is a Federal Information Processing Standard (FIPS) that outlines algorithms for generating digital signatures using the Secure Hash Algorithm (SHA) to authenticate electronic documents. Unlike encryption or key exchange protocols, DSS focuses solely on providing the digital signature function.

Sign Documents Online with SignNow

SignNow is a user-friendly and secure e-signature platform designed to streamline workflows and improve efficiency. It allows users to share electronic documents for signatures, monitor their progress, and sign them seamlessly from any device.

Sender Side: DSS Approach

In the DSS methodology, the sender generates a hash code from the message. The following inputs are then used in the signature function:
1. The hash code.
2. A randomly generated number ‘k’ specific to the signature.
3. The sender’s private key, PR(a).
4. A global public key (a set of parameters shared between the communicating parties), PU(g).
These inputs produce a signature consisting of two components, ‘s’ and ‘r’. The original message, along with the signature, is then transmitted to the receiver.

Receiver Side

Upon receipt, the receiver verifies the sender’s identity. The hash code of the received message is regenerated, and the verification function is applied using the following inputs:
1. The hash code generated by the receiver.
2. The signature components, ‘s’ and ‘r’.
3. The sender’s public key.
4. The global public key.
The verification function’s output is compared to the signature component ‘r’. If they match, the signature is valid since only the sender, using their private key, can produce a legitimate signature.

Benefits of Digital Signatures
1. Enhanced Security: Unauthorized individuals cannot forge transactions.
2. Trackability: Easily monitor the status of digitally signed documents.
3. Faster Document Delivery: High-speed processing of documents.
4. Legal Compliance: Recognized as 100% legal by government-certified authorities.
5. Non-repudiation: Once signed, documents cannot be denied.
6. Timestamping: Automatically stamps the date and time of signing.
7. Tamper-proof: Prevents copying or alteration of signed documents.
8. Identity Verification: Confirms the signer’s identity.
9. Fraud Prevention: Eliminates the risk of forgery or fraud
Drawbacks of Digital Signatures
1. Compatibility Issues: Requires resolving compatibility challenges, such as updated drivers and software.
2. Software Dependency: Using digital signature certificates often involves software-related concerns.
3. Business Requirements: Corporate entities, such as import-export businesses, must obtain digital signatures for e-tagging.
4. Key Security: Risk of key theft or loss due to weak storage methods.
5. Standardization: A robust standard is needed for interoperability between different methods.
6. Short Lifespan: Many technological solutions have limited longevity.
7. Cost of Certificates: Both senders and recipients may need to purchase digital certificates.
8. Verification Software: Additional expense for verification software.
9. Monetary Investment: Implementing digital signatures often involves a significant financial outlay.
December 16, 2025

Digital Signatures and Authentication Protocols

Digital Signatures and Certificates

SHA-1, or Secure Hash Algorithm 1, is a cryptographic algorithm that generates a 160-bit (20-byte) hash value from an input. This hash value, often referred to as the message digest, is usually represented as a 40-character hexadecimal number. Initially designed by the United States National Security Agency (NSA), SHA-1 became a U.S. Federal Information Processing Standard. However, it has been considered insecure since 2005, with major tech companies like Microsoft, Google, Apple, and Mozilla ceasing to accept SHA-1 SSL certificates by 2017.

Digital Signature

A digital signature is a mathematical process that validates the authenticity and integrity of a message, software, or digital document. Its key attributes include:

Key Generation Algorithms: Digital signatures confirm that a message was sent by a specific sender. During digital transactions, ensuring authenticity and integrity is crucial to prevent data tampering or impersonation.
Signing Algorithms: To create a digital signature, signing algorithms generate a one-way hash of the data to be signed. The hash value is then encrypted using the sender’s private key, creating the digital signature. This signature is appended to the data and sent to the recipient. Encrypting the hash instead of the entire message saves time, as hash values are much shorter and faster to process.
Signature Verification Algorithms: The recipient uses a verification algorithm and the sender’s public key to validate the signature. The algorithm generates a value from the digital signature, which is compared to the hash of the received data. If they match, the signature is valid; otherwise, it is invalid.

Steps in Digital Signature Creation and Verification

A hash function generates a message digest from the original message.
The sender encrypts the digest using their private key, creating the digital signature.
The message and digital signature are sent together.
The recipient decrypts the digital signature using the sender’s public key to retrieve the message digest.
The recipient computes the message digest from the received message and compares it to the decrypted digest. If both match, the signature is authentic, and the message’s integrity is intact.

A hash function ensures ease of computation for the hash value but makes reverse-engineering the message from the hash exceedingly difficult.

Key Assurances Offered by Digital Signatures

Authenticity: Verifies the signer’s identity.
Integrity: Confirms the content remains unaltered since signing.
Non-repudiation: Prevents the signer from denying their involvement.
Notarization: With a secure time-stamp server, digital signatures can serve as notarizations for certain documents.

Applications of Digital Signatures

Legal Documents: Ensures authenticity and binding legality.
Sales Contracts: Verifies identities and preserves agreement terms.
Financial Documents: Guarantees trustworthiness of invoices and payment requests.
Healthcare Data: Protects sensitive patient records and research data.

Limitations of Digital Signatures

Technology Dependence: Vulnerable to cybercrimes, necessitating robust security measures.
Complexity: Challenging setup and usage for non-tech-savvy individuals.
Limited Acceptance: Adoption remains low in regions with less technological infrastructure.

Digital Certificates

A digital certificate, issued by a trusted Certificate Authority (CA), verifies the identity of the certificate holder. It links a public key to an individual or entity and includes the following details:

Holder’s name.
Unique serial number.
Expiration date.
Copy of the holder’s public key.
CA’s digital signature.

Advantages of Digital Certificates

Network Security: Protects against data manipulation and man-in-the-middle attacks.
Verification: Facilitates secure authentication across multiple endpoints.
User Trust: Enhances website reliability through CA-backed trust indicators.

Disadvantages of Digital Certificates

Phishing Risks: Attackers can forge websites with fake certificates to steal sensitive information.
Weak Encryption: Older certificates may use less secure encryption, posing vulnerabilities.
Misconfiguration: Improper setups can leave systems exposed to attacks.

Digital Signature vs. Digital Certificate

While both enhance security, they serve distinct purposes:

Feature	Digital Signature	Digital Certificate
Definition	Validates the integrity of a digital document.	Verifies the identity of the certificate holder.
Process	Encrypted hash of the original data is generated.	Generated by CA through key generation, registration, and verification.
Security Services	Ensures sender authenticity, document integrity, and non-repudiation.	Provides authenticity and security of certificate holder.
Standard	Adheres to the Digital Signature Standard (DSS).	Follows the X.509 Standard Format.

Encryption and Decryption

Encryption converts plaintext into ciphertext, safeguarding data from unauthorized access, while decryption reverses the process to retrieve the original message.

Types of Encryption

Symmetric Encryption: Uses the same key for both encryption and decryption, requiring secure key storage.
Asymmetric Encryption: Employs a public-private key pair. The public key is shared openly, while the private key remains confidential to the owner.

Core Concepts

Authentication: Verifies user identity.
Non-repudiation: Ensures actions cannot be denied later.
Integrity: Confirms unaltered message transmission.
Message Digest: A unique string of digits created by a hash function, used in creating digital signatures.

Types of Authentication Protocols

User authentication is a critical aspect of handling requests within a software application. Several mechanisms are in place to ensure secure authentication and manage access to data. In this article, we will delve into the most widely used authentication protocols, discussing their strengths and weaknesses.

1. Kerberos: Kerberos is a protocol used for network authentication, designed to validate both clients and servers in a network using cryptographic keys. It provides robust authentication when interacting with applications and is implemented by MIT, with open availability. Kerberos is widely used in numerous commercial products.

Advantages of Kerberos:

It is compatible with various operating systems.
The authentication key is shared more efficiently than public keys.

Disadvantages of Kerberos:

It only authenticates clients and the services they use.
It is susceptible to weak or easily guessed passwords.

2. Lightweight Directory Access Protocol (LDAP): LDAP, or Lightweight Directory Access Protocol, is used to locate individuals, organizations, or devices within a network, whether on a public or corporate internet. It is the foundation for Microsoft’s Active Directory and is frequently used as Directories-as-a-Service.

Advantages of LDAP:

It automates processes, making updates and modernizations easier.
It supports existing technologies and allows for the use of multiple directories.

Disadvantages of LDAP:

It requires specialized expertise for deployment.
The directory servers must comply with LDAP standards for effective deployment.

3. OAuth2: OAuth2 is an authorization framework designed to grant limited access to user accounts through an HTTP service. When a user requests access to resources, an API call is made, followed by the transfer of an authentication token.

Advantages of OAuth2:

It is a simple protocol, making implementation straightforward.
It supports server-side authorization for code.

Disadvantages of OAuth2:

It can be challenging to manage various code sets.
It can have significant security consequences if connected systems are affected.

4. SAML: SAML (Security Assertion Markup Language) is an XML-based authentication data format that enables authorization between an identity provider and a service provider. It was developed by the OASIS Security Services Technical Committee.

Advantages of SAML:

It reduces administrative costs for end-users.
It enables single sign-on (SSO) across different service providers.

Disadvantages of SAML:

It depends on the identity provider for authentication.
All data is managed in a single XML format.

5. RADIUS: RADIUS (Remote Authentication Dial-In User Service) is a network protocol that offers centralized authentication, accounting, and authorization for users accessing network services. When a user requests network access, the RADIUS server encrypts the entered credentials, maps them to a local database, and grants access.

Advantages of RADIUS:

It is effective for providing multiple access levels for administrators.
It ensures that each user has a unique identity during a session.

Disadvantages of RADIUS:

The initial implementation of this system can be challenging and resource-intensive.
It supports a variety of models, some of which may require specialized teams, leading to higher costs.

Digital Signature Standard (DSS)

As we know, a signature is a method of verifying the authenticity of data originating from a trusted individual. Similarly, a digital signature authenticates digital data from a reliable source. The Digital Signature Standard (DSS) is a Federal Information Processing Standard (FIPS) that outlines algorithms for generating digital signatures using the Secure Hash Algorithm (SHA) to authenticate electronic documents. Unlike encryption or key exchange protocols, DSS focuses solely on providing the digital signature function.

Sign Documents Online with SignNow

SignNow is a user-friendly and secure e-signature platform designed to streamline workflows and improve efficiency. It allows users to share electronic documents for signatures, monitor their progress, and sign them seamlessly from any device.

Sender Side: DSS Approach

In the DSS methodology, the sender generates a hash code from the message. The following inputs are then used in the signature function:

The hash code.
A randomly generated number ‘k’ specific to the signature.
The sender’s private key, PR(a).
A global public key (a set of parameters shared between the communicating parties), PU(g).

These inputs produce a signature consisting of two components, ‘s’ and ‘r’. The original message, along with the signature, is then transmitted to the receiver.

Receiver Side

Upon receipt, the receiver verifies the sender’s identity. The hash code of the received message is regenerated, and the verification function is applied using the following inputs:

The hash code generated by the receiver.
The signature components, ‘s’ and ‘r’.
The sender’s public key.
The global public key.

The verification function’s output is compared to the signature component ‘r’. If they match, the signature is valid since only the sender, using their private key, can produce a legitimate signature.

Benefits of Digital Signatures

Enhanced Security: Unauthorized individuals cannot forge transactions.
Trackability: Easily monitor the status of digitally signed documents.
Faster Document Delivery: High-speed processing of documents.
Legal Compliance: Recognized as 100% legal by government-certified authorities.
Non-repudiation: Once signed, documents cannot be denied.
Timestamping: Automatically stamps the date and time of signing.
Tamper-proof: Prevents copying or alteration of signed documents.
Identity Verification: Confirms the signer’s identity.
Fraud Prevention: Eliminates the risk of forgery or fraud

Drawbacks of Digital Signatures

Compatibility Issues: Requires resolving compatibility challenges, such as updated drivers and software.
Software Dependency: Using digital signature certificates often involves software-related concerns.
Business Requirements: Corporate entities, such as import-export businesses, must obtain digital signatures for e-tagging.
Key Security: Risk of key theft or loss due to weak storage methods.
Standardization: A robust standard is needed for interoperability between different methods.
Short Lifespan: Many technological solutions have limited longevity.
Cost of Certificates: Both senders and recipients may need to purchase digital certificates.
Verification Software: Additional expense for verification software.
Monetary Investment: Implementing digital signatures often involves a significant financial outlay.

December 16, 2025

Hash and MAC Algorithms
Secure Hash Functions

SHA-1, or Secure Hash Algorithm 1, is a cryptographic algorithm that generates a 160-bit (20-byte) hash value from an input. This hash value, often referred to as the message digest, is usually represented as a 40-character hexadecimal number. Initially designed by the United States National Security Agency (NSA), SHA-1 became a U.S. Federal Information Processing Standard. However, it has been considered insecure since 2005, with major tech companies like Microsoft, Google, Apple, and Mozilla ceasing to accept SHA-1 SSL certificates by 2017.

SHA-1 Hash

SHA-1 Algorithm Overview

The SHA-1 algorithm involves several key components and processes to generate a hash. Here’s a breakdown of each step involved:

Components and Process Flow:
1. Message (M): The original input message that needs to be hashed.
2. Message Padding: The message is padded to meet the length requirement, ensuring the message’s length is congruent to 448 modulo 512. This step prepares the message for processing in 512-bit blocks.
3. Round Word Computation (WtW_tWt): After padding, the message is split into 512-bit blocks, which are then divided into 16 words of 32 bits. These words are expanded into 80 32-bit words, which are used in the rounds.
4. Round Initialization (A, B, C, D, and E): Five working variables (A, B, C, D, and E) are initialized with specific constant values, which are used in iterative calculations.
5. Round Constants (KtK_tKt): SHA-1 uses four constant values applied to different rounds:
  - K1 for rounds 0-19
  - K2 for rounds 20-39
  - K3 for rounds 40-59
  - K4 for rounds 60-79
6. Rounds (0-79): The main processing loop consists of 80 rounds, divided into four stages, each using different constants. In each round, logical operations are performed on the working variables (A, B, C, D, and E) using the message words.
7. Final Round Addition: After all 80 rounds, the final values of the working variables are added to the original hash values.
8. MPX (Multiplexing): The results from the final addition are combined to form the final message digest.
Summary:
- Input (Message M): The process starts with the input message.
- Message Padding: The message is padded to meet the necessary length.
- Word Computation: The padded message is split into blocks and further into words, which are then expanded.
- Initialization: Initial hash values are set.
- Round Processing: The 80 rounds of processing are performed using the words and constants.
- Final Addition: The round results are added to the initial hash values.
- Output (Hash Value): The final hash value is generated.
Cryptographic Hash Functions in Java

In Java, the MessageDigest class from the java.security package is used to calculate cryptographic hash values. The following hash functions are supported:
- MD2
- MD5
- SHA-1
- SHA-224
- SHA-256
- SHA-384
- SHA-512
These algorithms can be initialized using the static getInstance() method. After selecting the algorithm, the message digest is calculated and returned as a byte array. The BigInteger class can be used to convert the byte array to its signum representation, which is then converted into hexadecimal format to produce the final message digest.

3. Hash Function: A hash function is a mathematical process that compresses input data into a fixed-length numeric value. Regardless of the input length, the output remains consistent in size, known as the hash value or message digest.

Example of SHA-1 in Java
1. Input: hello world
  Output: 2aae6c35c94fcfb415dbe95f408b9ce91ee846ed
2. Input: GeeksForGeeks
  Output: addf120b430021c36c232c99ef8d926aea2acd6b
Java Program to Compute SHA-1 Hash
```
// Java program to calculate SHA-1 hash value
import java.math.BigInteger;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;

public class GFG {
    public static String encryptThisString(String input) {
        try {
            // getInstance() method is called with algorithm SHA-1
            MessageDigest md = MessageDigest.getInstance("SHA-1");

            // digest() method is called to calculate the message digest of the input string
            byte[] messageDigest = md.digest(input.getBytes());

            // Convert byte array into signum representation
            BigInteger no = new BigInteger(1, messageDigest);

            // Convert message digest into hex value
            String hashtext = no.toString(16);

            // Add preceding 0s to make it 40 digits long
            while (hashtext.length() < 40) {
                hashtext = "0" + hashtext;
            }

            // return the HashText
            return hashtext;
        }
        catch (NoSuchAlgorithmException e) {
            throw new RuntimeException(e);
        }
    }

    // Driver code
    public static void main(String args[]) throws NoSuchAlgorithmException {
        System.out.println("HashCode Generated by SHA-1 for:");

        String s1 = "GeeksForGeeks";
        System.out.println("\n" + s1 + " : " + encryptThisString(s1));

        String s2 = "hello world";
        System.out.println("\n" + s2 + " : " + encryptThisString(s2));
    }
}
```
Output:
```
HashCode Generated by SHA-1 for:

GeeksForGeeks : addf120b430021c36c232c99ef8d926aea2acd6b

hello world : 2aae6c35c94fcfb415dbe95f408b9ce91ee846ed
```
Whirlpool Hash Function

Whirlpool is a cryptographic hash function designed by Paulo S.L.M. Barreto and Vincent Rijmen, the co-creator of AES. It was submitted to the NESSIE (New European Schemes for Signatures, Integrity, and Encryption) project and is among the recommended hash functions alongside SHA-256, SHA-384, and SHA-512. Whirlpool is based on a 512-bit block cipher with structural similarities to Rijndael (AES). Unlike other block ciphers, the block cipher used in Whirlpool is dedicated solely for hashing and not for standalone encryption. Designed for both software and hardware implementations, it aims for compactness and performance.

Goals of Whirlpool Hash Function

The primary security goals for Whirlpool include:
- Collision Resistance: The expected workload to generate a collision (two messages producing the same hash) is around 2^(n/2) executions of Whirlpool.
- Preimage Resistance: Finding a message corresponding to a given hash value is expected to require 2^n executions.
- Second Preimage Resistance: Finding another message that matches an existing hash output also requires 2^n executions.
- Resistance to Differential Attacks: It is infeasible to detect patterns or correlations between input bits and hash results.
- Avalanche Effect: Flipping even a single input bit results in significant changes across the hash output.
How Whirlpool Works

The Whirlpool hash function processes data through multiple steps involving padding, message length encoding, matrix initialization, and block cipher processing.

Function Definition

The hash function can be described as:

$\;\begin{aligned}H_0&=\text{initial value(all zeros)}\\H_i&=W(H_{i-1}\oplus m_i)\oplus m_i\end{aligned}\;$

Where:
- m_i are message blocks.
- W is the Whirlpool block cipher.
- H_t is the final hash output.
Steps for Generating the Whirlpool Digest:
1. Padding the Message: Message is padded to odd multiple of 256 bits. In the case where the unpadded message is already of that length it is padded with 512 bits (2×256), which is the maximum padding length. Minimum is naturally 1 bit. The first padding bit is always 1 and the rest are zeros.
2. Appending the Message Length: The length of the unpadded message is appended to the message. The length is expressed as a
  256 bit unsigned integer, with the most significant byte being the leftmost.
  After this step the message length is n x 512 bits (n=1, 2, …)
3. Initializing the Hash Matrix: The results of the hash function (both intermediate and final) and stored in an 8×8 matrix. Each element of the matrix is 8 bits (a byte) of the message, thus the hash matrix holds 512 bits in
  total. The first matrix H0 is initialized with zeros (each byte is 0000 0000)Block Cipher
4. Transformation: The message is divided into 512-bit blocks. Each block is processed using a dedicated 512-bit block cipher..
Block cipher W

The block cipher W has similar structure and uses same elementary functions as AES. W uses 512-bit keys and 512-bit blocks while block length of AES is 128 and key length is 128, 192 or 256. W operates with 8×8 byte matrixes because it’s faster than using for example 4×16 matrixes. 4×16 byte matrix requires more rounds than 8×8 byte matrix.

Overall Structure
The encryption algorithm takes 512-bit plaintext block and 512-bit key as input and produces 512- bit cipher text as output. The encryption algorithm uses four different functions or transformations: add key (AK), substitute bytes (SB), shift columns (SC), and mix rows (MR). Overall structure of W block cipher is shown in Before first round W, consists single application of AK, that’s followed by ten rounds that involve use of all four operations. One round can be expressed as round function RF

$RF(K_r)=AK[K_r]\circ MR\circ SC\circ SB$

where K_ris the round key matrix for round r.
The overall algorithm can be defined as follows:

$W(K)=\left(\bigcirc_{r=1}^{10}RF(K_r)\right)\circ AK(K_0)$

Large circle indicates iteration of composition function, with index r running from 1 to 10. Plaintext input to W is single 512-bit block. Block is 8×8 byte matrix labelled CState. First eight bytes of 512 bit plaintext input are put in first row of the matrix. Second eight bytes to second row and so on. Whirlpool uses 512-bit key, called KState. Like CState, KState is also a 8×8 matrix. Key is used as input to initial AK function. On rounds 2 to 10 previous hash value is used as a key. So, output ofnthe first round is the key for the second round . AK function is described in more detailnlater.

Substitute byte (SB)
In Whirlpool, the substitution box (S-box) is a 16×16 table which contains all possible 8- bit values, i.e. 256 permutations. S-box is used for nonlinear mapping. Here is how: Take four leftmost bits from a CState byte and use them as a row indicator for S-Box and take four rightmost bits and use them for a column index. Look up the proper 8-bit value from S-box using these indices and you have the output value.

Mathematically the function can be expressed as follows:

$\begin{align*}B&=SB(A)\\b_{i,j}&=S[a_{i,j}]\end{align*}$

where B is the output, A is the CState and b_i,j is the value of S-box and a_i,j represents the individual byte of CState. Indices i and j range from zero to seven (CState is 8 by 8 matrix). S here represents the process of S-box mapping.

E-Box is defiened as $E(u)=\{B\}^u\quad\text{if}\quad u\neq\{F\}\quad\text{and}\quad E(\{F\})=0$

Shift Columns (SC)
The permutation layer makes each column of CState to shift downwards circularly, except the first column. To second column, a 1-byte shift is performed. For the third column, a 2-byte shift is performed. This is made to each column. SC Function, where A is input matrix and B is output matrix:

$B=SC(A)\iff b_{i,j}=a_{(i-j)\bmod 8,j}\quad 0<i,j<7$

Mix rows (MR)
MR function is the linear diffusion layer of Whirlpool block cipher. For diffusion functions, each output bit is affected by several input bits.

Add Round Key(AK)
In this the 512 bits of the round key is goes through XOR with 512 bit of current state.

$B=AK[K_i](A)\iff b_{i,j}=a_{i,j}\oplus k_{i,j}\quad 0\leq i,j\leq 7$

The round key, K, used in the AK layer is generated using the very cipher itself. For key expansion, the round constant acts as the round key for the add key layer. The round constant for row r can be defined as follows:

Key expansion
The round key, K, used in the AK layer is generated using the very cipher itself. For key expansion, the round constant acts as the round key for the add key layer. The round constant for row r can be defined as follows:

$B=AK[K_i](A)\iff b_{i,j}=a_{i,j}\oplus k_{i,j}\quad 0\leq i,j\leq 7$

$\begin{align*}RC[r]_{0,j}&=S[8(r-1)+j]\quad 0\leq j\leq 7\quad 1\leq r\leq 10\\RC[r]_{i,j}&=0\quad 1\leq i\leq 7\quad 0\leq j\leq 7\quad 1\leq r\leq 10\end{align*}$

Security

The Whirlpool hash function is optimized for both hardware and software implementations, making it suitable for a wide range of platforms, including devices with limited storage such as smart cards. One of its key advantages is its minimal storage requirements, which allow it to function effectively even in constrained environments. Its design also enables high performance, particularly on platforms with larger cache memory, where it can achieve faster processing speeds. Additionally, Whirlpool’s long hash length of 512 bits offers strong protection against birthday attacks by significantly reducing the probability of collisions. The extended length also contributes to better entropy containment, making it suitable for use in certain classes of pseudo-random number generators. When compared to other hash functions like MD5 and SHA-256, Whirlpool tends to perform faster due to requiring fewer processing rounds while still maintaining a high level of security.

Implementation
- Whirlpool is optimized for both hardware and software implementations.
- It performs well on platforms with limited storage (e.g., smart cards).
- Key properties include:
  - Efficiency: Minimal storage requirements.
  - Performance: Works well with larger caches for better speed.
  - Long Hash Length: The 512-bit hash provides strong protection against birthday attacks and ensures good entropy containment for pseudo-random number generation.
- Hardware Performance: Faster than other hash functions like MD5 and SHA-256 due to fewer processing rounds.
Comparison to Alternatives

AES (Advanced Encryption Standard)
- Whirlpool shares a structural similarity with AES.
- Both use substitution-permutation networks and matrix transformations.
- AES uses 128, 192, or 256-bit keys, while Whirlpool uses a 512-bit key and block size.
- Whirlpool is dedicated to hashing, while AES is a block cipher for encryption.
SHA-512
- Both Whirlpool and SHA-512 produce 512-bit hash outputs.
- On 64-bit processors, Whirlpool is competitive with SHA-512 but slightly slower for double message hashing.
December 16, 2025
Key Management in Cryptography
Key Management

In cryptography, distributing public and private keys between the sender and receiver can be a tedious task. If a third party (such as an attacker or eavesdropper) gains access to the key, the entire security system is compromised. Hence, securing the key exchange process becomes critical. This article discusses key management, how cryptographic keys function, types of key management, and the key management lifecycle.

What is Key Management?

Key management involves the processes and protocols for generating, storing, distributing, and managing cryptographic keys that are utilized in cryptographic algorithms to protect sensitive data. It ensures that the keys used to secure sensitive information are shielded from unauthorized access or loss. Effective key management is essential for maintaining the security of encrypted data and safeguarding digital assets from cyber threats. Proper key management guarantees the confidentiality, integrity, and availability of encrypted information by protecting cryptographic keys from unauthorized access, compromise, or loss.

How Cryptographic Keys Work?

Cryptographic keys are special codes used to encrypt (lock) and decrypt (unlock) information. In symmetric key cryptography, a single shared key is used for both encryption and decryption, meaning it must be kept secret between users. In asymmetric key cryptography, two keys are involved: a public key that can be used by anyone to encrypt messages or verify signatures, and a private key that only the owner uses to decrypt messages or create signatures. This separation makes it easier to distribute the public key openly while keeping the private key secure. Cryptographic keys are fundamental for ensuring secure communication, such as when accessing a secure website (HTTPS), where they help encrypt data and protect it from unauthorized access or criminal activity. Therefore, proper key management is crucial for maintaining the security and integrity of digital information.

Types of Key Management

Key management can be broken down into two main aspects:
1. Distribution of public keys.
2. Use of public-key encryption to distribute secrets.
Distribution of Public Keys

The public key can be distributed using four methods:
1. Public Announcement: In this method, the public key is broadcast to everyone. The major weakness of this method is the risk of forgery. An attacker can create a fake key pretending to be someone else and broadcast it. Until the forgery is discovered, the attacker can impersonate the claimed user.
2. Publicly Available Directory: Here, the public key is stored in a public directory. These directories are trusted and contain entries like {name, public-key}, with properties such as Participant Registration, access control, and modification rights. While directories can be accessed electronically, they are still vulnerable to tampering or forgery.
3. Public Key Authority: This approach is similar to the directory model but enhances security by having stricter controls over key distribution. Users need to know the public key of the directory. When needed, users access the directory in real-time to securely retrieve public keys.
4. Public Certification: In this case, an authority issues a certificate that binds a public key to an identity, facilitating key exchange without needing real-time access to the public key authority each time. The certificate includes information such as validity period and usage rights, all signed by the private key of the certificate authority. The certificate can be verified using the authority’s public key. The sender and receiver both request certificates from the certificate authority, containing their public keys, and then exchange these certificates to initiate secure communication.
Key Management Lifecycle

The key management lifecycle details the stages through which cryptographic keys are created, used, and eventually retired or destroyed. Proper management of these keys is essential for the security of cryptographic systems. Below is an overview of each stage:
1. Key Generation:
  - Creation: Keys are generated using secure algorithms to ensure randomness and strength.
  - Initialization: Keys are initialized with the specific parameters required for their intended use, such as length and cryptographic algorithm.
2. Key Distribution:
  - Sharing: Secure methods must be used to share symmetric keys between parties.
  - Publication: For asymmetric keys, the public key is shared openly, while the private key remains confidential.
3. Key Storage:
  - Protection: Keys must be stored securely, often in hardware security modules (HSMs) or encrypted key stores, to prevent unauthorized access.
  - Access Control: Only authorized users or systems should be allowed to access keys.
4. Key Usage:
  - Application: Keys are used for their intended cryptographic purposes, such as encrypting or decrypting data, or signing and verifying messages.
  - Monitoring: Key usage is monitored to detect any abnormal or unauthorized activities.
5. Key Rotation:
  - Updating: Keys are periodically updated to reduce the risk of exposure or compromise.
  - Re-Keying: New keys are generated and distributed, replacing old keys while maintaining continuous service.
6. Key Revocation:
  - Invalidation: Keys that are no longer secure or needed are invalidated.
  - Revocation Notices: For public keys, revocation certificates or notices are issued to inform others that the key should no longer be trusted.
7. Key Archival:
  - Storage: Old keys are securely archived for future reference or compliance purposes.
  - Access Restrictions: Archived keys are stored in a secure location with restricted access.
8. Key Destruction:
  - Erasure: When keys are no longer required, they are securely destroyed to eliminate any possibility of recovery.
  - Verification: The destruction process is verified to ensure that no copies of the key remains.
Implementation of Diffie-Hellman Algorithm

The Diffie-Hellman algorithm helps establish a shared secret for secure communication by exchanging data over a public network. It uses elliptic curves to generate points and derive a common secret key using specified parameters.

For simplicity, we’ll focus on four variables: a prime number PPP, a primitive root GGG, and two private values aaa and bbb. Both PPP and GGG are publicly known. Person 1 and Person 2 select private values aaa and bbb, then generate and exchange public keys. After the exchange, each person computes the same shared secret key, which can be used for encryption.
- Step 1: Person 1 and Person 2 agree on public numbers P=23 and G=9
- Step 2: Person 1 selects a private key a=4 and Person 2 selects a private key b=3
- Step 3: Person 1 and Person 2 compute their public keys.
  - Person 1: $\;x=(9^4\mod 23)=6561\mod 23=6\;$
  - Person 2: $\;y=(9^3\mod 23)=729\mod 23=6\;$
- Step 4: Person 1 and Person 2 exchange public keys.
- Step 5: Person 1 receives y=16 and Person 2 receives x=6
- Step 6: Person 1 and Person 2 compute their shared secret key:
  - Person 1: $k_1=16^4\mod 23=65536\mod 23=9$
  - Person 2: $\;k_2=6^3\mod 23=216\mod 23=9\;$
- Step 7: The shared secret key is 9.
```
# Diffie-Hellman Code

# Power function to return value of a^b mod P
def power(a, b, p):
    if b == 1:
        return a
    else:
        return pow(a, b) % p

# Main function
def main():
    # Both persons agree upon the public keys G and P
    # A prime number P is taken
    P = 23
    print("The value of P:", P)

    # A primitive root for P, G is taken
    G = 9
    print("The value of G:", G)

    # Person 1 chooses the private key a
    # a is the chosen private key
    a = 4
    print("The private key a for Person 1:", a)

    # Gets the generated key
    x = power(G, a, P)

    # Person 2 chooses the private key b
    # b is the chosen private key
    b = 3
    print("The private key b for Person 2:", b)

    # Gets the generated key
    y = power(G, b, P)

    # Generating the secret key after the exchange of keys
    k1 = power(y, a, P)  # Secret key for Person 1
    k2 = power(x, b, P)  # Secret key for Person 2

    print("Secret key for Person 1 is:", k1)
    print("Secret key for Person 2 is:", k2)

if __name__ == "__main__":
    main()
```
Output:
```
The value of P : 23
The value of G : 9
The private key a for Person 1 : 4
The private key b for Person 2 : 3
Secret key for Person 1 is : 9
Secret key for Person 2 is : 9
```
Blockchain – Elliptic Curve Cryptography

Cryptography involves the study of methods for secure communication in the presence of adversaries. Encryption utilizes algorithms to convert plaintext into ciphertext and requires a secret key to decrypt it. There are two main types of encryption:
1. Symmetric-key Encryption (Secret Key Encryption): Symmetric-key algorithms use the same cryptographic keys for both encryption of plaintext and decryption of ciphertext. The keys may be identical or have a simple transformation between them.
2. Asymmetric-key Encryption (Public Key Encryption): Asymmetric-key algorithms utilize a pair of related keys—a public key for encryption and a private key for decryption—to protect messages from unauthorized access or use.
Introduction to Elliptic Curve Cryptography

Elliptic Curve Cryptography (ECC) is an asymmetric encryption technique that leverages the algebraic properties of elliptic curves over finite fields. Unlike RSA, which relies on the difficulty of factoring large prime numbers, ECC employs the mathematical theory of elliptic curves to achieve equivalent security with smaller key sizes.

Victor Miller and Neal Koblitz independently proposed elliptic curve ciphers in the mid-1980s. They analogized these ciphers to existing public cryptosystems but replaced modular arithmetic with elliptic curve operations.

History of Elliptic Curve Cryptography
- In 1985, Neal Koblitz and Victor S. Miller introduced the use of elliptic curves in cryptography.
- Between 2004 and 2005, ECC algorithms became widely adopted.
- Researchers in the 1980s discovered that elliptic curves could be a source of complex mathematical problems, thus enhancing the security of public key systems.
- The term “elliptic curve” originates from the study of ellipses.
- Calculating an ellipse’s surface area is straightforward, but determining its circumference involves solving a challenging integral.
Components of Elliptic Curve Cryptography
1. ECC Keys:
  - Private Key: Generating an ECC private key is as simple as securely creating a random integer within a specific range.
  - Public Key: ECC public keys are points on the elliptic curve, represented as integer coordinate pairs (x, y). These can be compressed to a single coordinate with an additional bit (odd/even).
2. Generator Point (Base Point):
  - ECC systems use a predefined generator point, G, to create other points on the curve via multiplication by integers within the range [0…r], where r represents the order of the cyclic subgroup.
Elliptic Curve Cryptography Algorithms

ECC offers several algorithms based on elliptic curve arithmetic:

Digital Signature Algorithms:
- ECDSA (Elliptic Curve Digital Signature Algorithm): Used for creating secure digital signatures.
- EdDSA (Edwards-curve Digital Signature Algorithm): A faster alternative to ECDSA, particularly suited for embedded systems, with better resistance to side-channel attacks.
Encryption Algorithms:
- ECIES (Elliptic Curve Integrated Encryption Scheme): Combines public-key cryptography with a symmetric cipher for versatile encryption.
- EC-based ElGamal Encryption: An adaptation of the ElGamal scheme that relies on elliptic curve discrete logarithms.
Key Agreement Algorithms:
- ECDH (Elliptic Curve Diffie-Hellman): Enables two parties to establish a shared secret over an insecure channel using elliptic curve key pairs.
- FHMQV (Fully Hashed Menezes-Qu-Vanstone): An authenticated protocol based on the Diffie-Hellman scheme, offering security against active attackers.
Applications of Elliptic Curve Cryptography
- Diffie-Hellman Key Exchange: ECC simplifies the exchange of secret keys between two parties.
- Digital Signatures: Widely used in blockchain technologies like Bitcoin and Ethereum.
- Online Encryption: ECC’s efficiency and reduced key size make it suitable for modern web applications.
- Blockchain Applications: ECC underpins the cryptographic security of cryptocurrencies and digital ledgers.
ECC vs RSA

ECC offers significant advantages over RSA, including smaller key sizes, faster encryption processes, and reduced bandwidth requirements. Below is a comparison of key lengths for equivalent security:

Security (Bits) RSA Key Length ECC Key Length
80 1024 160-223
112 2048 224-255
128 3072 256-383
192 7680 384-511
256 15360 512+

Elliptic Curve Diffie-Hellman Protocol Implementation

Prerequisites:
- Python basics
- Cryptography fundamentals
- Understanding of ECC and ECDH protocols
Install the required library using:
```
pip install tinyec
```
Example Python Code:
```
from tinyec import registry
import secrets

def compress(publicKey):
    return hex(publicKey.x) + hex(publicKey.y % 2)[2:]

curve = registry.get_curve('brainpoolP256r1')
Ka = secrets.randbelow(curve.field.n)
X = Ka * curve.g
print("X:", compress(X))
Kb = secrets.randbelow(curve.field.n)
Y = Kb * curve.g
print("Y:", compress(Y))
A_SharedKey = Ka * Y
B_SharedKey = Kb * X
print("Shared Keys Match:", A_SharedKey == B_SharedKey)
```
Types of Security Attacks
1. Side-channel Attacks: Exploit unintended information leakage during ECC processing.
2. Backdoor Attacks: Potential vulnerabilities introduced by malicious actors into pseudo-random generators.
  Quantum Computing
3. Attacks: Quantum algorithms like Shor’s can potentially break ECC.
Benefits of Elliptic Curve Cryptography
- Fast Key Generation: Quickly creates secure keys.
- Smaller Key Size: Offers robust security with shorter keys compared to RSA.
- Low Latency: Reduces delays in cryptographic operations.
- Efficient Computation: Requires less computational power, ideal for resource-constrained environments.
- High Security: Provides strong encryption equivalent to much larger RSA keys.
Limitations of Elliptic Curve Cryptography
- Larger Encryption Size: Produces larger ciphertext compared to RSA.
- Complex Implementation: More challenging to implement securely.
- Binary Curve Processing Costs: Computational overhead associated with binary curve operations.
December 16, 2025
Message Authentication Requirements
Message Authentication Requirements

Data is susceptible to various forms of attacks, including threats related to message authentication. This issue arises when the recipient lacks any assurance regarding the identity of the message’s sender. Cryptographic techniques employing keys can address this challenge and ensure message authentication.

Authentication Requirements
- Disclosure: Unauthorized individuals gaining access to the content of a message due to the absence of the correct cryptographic key.
- Traffic Analysis: Observing communication patterns, such as the duration and frequency of connections between parties, to gather insights.
- Deception: Introducing fraudulent messages into a communication network to create mistrust or lead to the loss of critical information.
- Content Modification: Altering the message’s content, such as adding new information or changing or removing existing data.
- Sequence Modification: Disrupting the order of messages by inserting, deleting, or rearranging them.
- Timing Modification: Manipulating message timing through replay attacks or intentional delays, which can disrupt session tracking.
- Source Denial: When the sender refuses to acknowledge being the originator of a message.
- Destination Denial: When the receiver denies having received the message.
Message Authentication Functions

Message authentication and digital signature mechanisms operate on two levels:
1. Basic Level: This involves a function that generates an authenticator, which helps validate a message.
2. Advanced Level: At this stage, the authenticator generated by the basic level is utilized to verify the authenticity of messages.
These functions are further classified into three categories:

1. Message Encryption
- Overview: Encryption safeguards data during transmission by converting it into ciphertext, making it resistant to attacks like Man-in-the-Middle (MITM).
- Types:
  - Symmetric Encryption: Both sender (P) and receiver (Q) share a secret key (K). The message (M) is encrypted using this key before being transmitted. Only the holder of the key (Q) can decrypt the ciphertext, ensuring both confidentiality and authenticity.
  - Public Key Encryption: This method primarily ensures confidentiality. However, for both confidentiality and authenticity, the private key is used.
2. Message Authentication Code (MAC): A MAC is a secure code that users must provide to access a system. Recognized by the system, it confirms user authenticity and ensures data integrity.

3. Hash Function: A hash function is a mathematical process that compresses input data into a fixed-length numeric value. Regardless of the input length, the output remains consistent in size, known as the hash value or message digest.

Measures to Counter Attacks

Each type of attack requires specific mitigation strategies:
- Confidentiality: Messages should be encrypted prior to transmission to safeguard against unauthorized access.
- Authentication:
  - Use shared secret codes for identity verification.
  - Implement digital signatures to verify authenticity.
  - Rely on trusted third-party verification systems.
- Digital Signatures: These are instrumental in monitoring the content, sequence, and timing of messages while preventing source denial.
- Protocols and Digital Signatures: Addressing denial by the receiver requires integrating digital signatures with supporting protocols for comprehensive monitoring.
Message Authentication Requirements

Data is vulnerable to numerous types of attacks, one of which involves message authentication. This risk emerges when the recipient lacks information regarding the sender of the message. Message authentication can be ensured through cryptographic techniques, which rely on the use of keys.

Authentication Requirements
- Disclosure: This refers to exposing the message content to an unauthorized party who does not possess the necessary cryptographic key.
- Traffic Analysis: Involves observing the communication pattern, such as the duration and frequency of interactions between different entities.
- Deception: Introducing irrelevant or false messages from a fraudulent source into a communication channel, leading to distrust among parties and potential loss of sensitive data.
- Content Modification: Altering the message content by adding, deleting, or changing information.
- Sequence Modification: Tampering with the order of messages, which may include inserting, deleting, or rearranging them.
- Timing Modification: Manipulating the delivery timing of messages, such as replaying or delaying them, thereby disrupting session tracking.
- Source Denial: When the sender disclaims responsibility for originating the message.
- Destination Denial: When the receiver denies having received the message.
Message Authentication Functions

Message authentication and digital signature mechanisms operate on two primary levels:
1. Lower Level: This level involves creating a function to generate an authenticator, a value used for message authentication.
2. Higher Level: At this level, the authenticator generated is utilized to verify the authenticity of the message.
1. Message Encryption: To protect data during transmission and guard against attacks like Man-in-the-Middle (MITM), message encryption is employed. Data is transformed into ciphertext before being transmitted. Encryption can be achieved in two ways:
- Symmetric Encryption: For instance, if a source (P) sends a message (M) to a destination (Q), both parties share a secret key (K). This key encrypts the message, and only Q can decrypt it, ensuring both confidentiality and authenticity, as only P and Q possess the key.
- Public Key Encryption: While this method ensures confidentiality, it does not inherently guarantee authentication. A private key is used to achieve both confidentiality and authenticity.
2. Message Authentication Code (MAC): A MAC is a security code used by a system to verify user access to accounts or portals. It ensures data integrity and confirms the authenticity of the message.

3. Hash Function: A hash function is a mathematical operation that converts an input of any length into a compressed, fixed-length numeric value called a hash value or message digest.

Strategies to Mitigate Attacks

Different measures are required to address each type of attack:
- Message Confidentiality: Encrypt messages before transmission to prevent unauthorized access.
- Message Authentication:
  - Use shared secret codes for identity verification.
  - Implement digital signatures to confirm authenticity.
  - Employ a trusted third party for verifying identities.
- Digital Signatures: These are effective against several issues, helping monitor message content, sequence, and timing, and preventing the sender from denying message transmission.
- Protocols with Digital Signatures: To counter denial by the receiver, digital signatures must be paired with protocols that facilitate proper monitoring.
How message authentication code works?

Apart from intruders, the communication of messages between two parties also encounters external challenges like noise, which can distort the original message crafted by the sender. To ensure that the message remains unaltered, the Message Authentication Code (MAC) method is utilized.

MAC Overview

MAC, short for Message Authentication Code, works by having both the sender and receiver share a common key. The sender generates a fixed-size output known as a cryptographic checksum or MAC and appends it to the original message. On the receiver’s end, the receiver also computes the MAC value and compares it with the received one, ensuring the message’s integrity. The components involved are:
- Message
- Key
- MAC Algorithm
- MAC Value
Types of Message Authentication Code (MAC) Models
1. MAC Without Encryption: This model offers authentication but lacks confidentiality, as the message content is visible to anyone who intercepts it.
2. Internal Error Code: In this model, the sender encrypts the message before transmitting it over the network to ensure confidentiality. This approach provides both authentication and confidentiality.
  Formula:
  M’ = MAC(M, k)
3. External Error Code: To address scenarios where a message might be altered, this model applies the MAC to the encrypted message (c) before transmission. On the receiver’s end, the received MAC value is compared with the locally generated one. If they match, the content (c) is decrypted; otherwise, the content is discarded. This approach prevents unnecessary decryption, saving time.
  Formulas:
  c = E(M, k’)
  M’ = MAC(c, k)
Hash Functions

A hash function in cryptography is a mathematical tool that takes inputs of varying lengths, such as messages or data, and converts them into a fixed-length string of characters. This means that while the input size can vary, the output remains consistent in length, akin to compressing a large balloon into a compact ball.

The significance of this process lies in creating a unique “fingerprint” for each input. Any small change to the input will produce a vastly different fingerprint, a property known as “collision resistance.”

Hash functions are integral to numerous security applications, including password storage, digital signatures, and data integrity checks. The output of a hash function, also called a hash value or message digest, ensures the integrity and uniqueness of the data.

Key Points of Hash Functions
- Hash functions are mathematical operations that transform data into a fixed-length bit string, known as the “hash value.”
- They have varying levels of complexity and are widely used in cryptographic applications.
- Applications include cryptocurrency, password security, and communication security.
Operation of Cryptographic Hash Functions

In computing, hash functions are frequently used for information authentication and verifying message integrity. Though they are challenging to decipher, they can still be solved in polynomial time, which categorizes them as cryptographically “weak.”

To strengthen security, cryptographic hash functions have been developed. These enhanced functions provide added protection against deciphering message contents or sender/receiver details.

Core Characteristics:
1. Collision-Free: Two different inputs should not produce the same hash output.
2. Hiding: It should be difficult to determine the input from its hash output.
3. Puzzle-Friendly: Finding an input that generates a specific output should be computationally difficult, requiring inputs from a wide range.
Properties of Hash Functions

To be effective in cryptography, a hash function should possess the following properties:
1. Pre-Image Resistance
  - Reversing the hash function to determine the input from its output should be computationally hard.
  - Protects against attempts to derive the input from the hash value.
2. Second Pre-Image Resistance
  - Given an input and its hash, finding a different input that produces the same hash should be difficult.
  - Ensures that attackers cannot substitute a new value while maintaining the same hash.
3. Collision Resistance
  - It should be hard to find two different inputs that produce the same hash.
  - Although no hash function is entirely collision-free due to its compression nature, finding collisions should be computationally infeasible.
4. Efficiency of Operation
  - Hash functions are computationally faster than symmetric encryption, making them practical for large datasets.
5. Fixed Output Size
  - Regardless of input size, the hash output remains consistent in length, aiding uniformity across various inputs.
6. Deterministic
  - A given input will consistently yield the same output.
7. Fast Computation
  - The hashing process is rapid, even for extensive datasets.
Design of Hashing Algorithms

Hashing algorithms play a crucial role in data processing and security, using a process where input data (such as a message) is transformed into a fixed-size string of characters, which is typically a sequence of alphanumeric characters. This process is essential for verifying data integrity and providing security in various applications. Hashing algorithms are designed to process data through a series of rounds, similar to block ciphers used in encryption. In each round, fixed-size blocks of data (including the original message and the output of the previous round) are processed to produce a hash value. This sequence continues until the entire message has been processed.

The key feature of hashing algorithms is the avalanche effect, which ensures that even small changes in the original message will result in a drastically different final hash. This makes it nearly impossible to reverse-engineer the original message from its hash, ensuring the security of the process.

Popular Hash Functions
1. Message Digest (MD): MD5: One of the earliest hashing algorithms, MD5 was commonly used to check file integrity. However, due to its vulnerabilities, including susceptibility to collision attacks (where two different messages result in the same hash), it is now considered outdated and unsafe for cryptographic purposes.
2. Secure Hash Algorithm (SHA)
  - SHA-1: Widely used for many years, SHA-1 is now considered broken due to discovered weaknesses. It is vulnerable to collision attacks, where different inputs can produce the same hash.
  - SHA-2: This family of algorithms, including SHA-256 and SHA-512, offers much stronger security compared to SHA-1. It is currently the most widely recommended cryptographic hash function and is used in many security protocols.
  - SHA-3: The most recent member of the SHA family, SHA-3 introduces a different design from SHA-2 and offers improved resistance against potential future attacks. It is highly secure and efficient.
3. BLAKE2: BLAKE2 is a cryptographic hash function that is faster than SHA-3 while maintaining a high level of security. It is designed to be highly optimized for both 64-bit and smaller architectures, making it versatile and ideal for use in modern systems. It has gained popularity for its efficiency in hashing large datasets.
4. CityHash: Developed by Google, CityHash is a non-cryptographic hash function optimized for speed and used for hashing large datasets quickly. It is not suitable for cryptographic purposes but works well in scenarios where speed is crucial, such as database indexing.
5. MurmurHash: MurmurHash is another non-cryptographic hash function designed for speed. It is widely used in non-secure contexts, such as hash-based data structures in programming languages and databases. While it is fast and efficient, it does not provide the security needed for cryptographic applications.
6. Cyclic Redundancy Check (CRC): CRC is a hash function primarily used for error-checking in data transmission. It can detect accidental changes to raw data but is not cryptographically secure and can be vulnerable to intentional tampering.
Applications of Hash Functions
1. Password Storage: Hashing is widely used in password storage systems to protect users’ passwords. Instead of storing passwords in plain text, systems store the hash of the password. When a user logs in, the system hashes the entered password and compares it to the stored hash. This ensures that even if the password storage file is compromised, the actual passwords remain secure because it’s computationally infeasible to reverse the hash to get the original password.
2. Data Integrity Checks: Hash functions are used to verify the integrity of data during transmission or storage. A checksum or hash value is generated for the original file or data. During transmission, the recipient can hash the received data and compare it to the original hash. If the two hashes match, it is highly probable that the data has not been altered. This method is commonly used in software distribution, data transfer protocols, and storage systems to prevent corruption or tampering.
Hashing vs. Encryption
- Encryption is the process of converting data into an unreadable format using a key. This transformation ensures that only authorized parties who have the key can decrypt the data back into its original form. Encryption focuses on protecting the confidentiality of data and allows for the recovery of the original message if needed.
- Hashing, on the other hand, produces a fixed-length output (hash) that is computationally difficult to reverse, meaning it is a one-way process. The primary goal of hashing is to verify data integrity and authenticity. Hashing ensures that data has not been altered, but it does not allow for the retrieval of the original data from the hash.
December 16, 2025
Introduction to Number Theory
Fermat’s Little Theorem

Fermat’s Little Theorem is a fundamental theorem in number theory that states:
If p is a prime number and a is any integer not divisible by p, then:

$\;a^{p-1}\equiv 1\pmod{p}\;$

In other words, the remainder when $\;a^{p-1}\;$ is divided by p is 1.

This theorem is widely used in public-key cryptography algorithms like RSA, primarily to perform efficient modular exponentiation and check for primality.

Why Fermat’s Little Theorem?

In RSA, Fermat’s Little Theorem simplifies computations by reducing powers modulo a prime. This efficiency is critical in real-world cryptography, where numbers are extremely large (hundreds of digits). Fermat’s theorem ensures correctness and efficiency in these computations.

$\;C\equiv M^e\pmod{n}\;$

$\;M\equiv C^d\pmod{n}\;$

Application in RSA Cryptography

RSA relies on modular arithmetic, and Fermat’s Little Theorem provides a shortcut to compute powers modulo ppp, which is computationally expensive for large numbers.

Key Steps in RSA Using Fermat’s Little Theorem:
1. Key Generation:
  - Choose two large prime numbers p and q.
  - Compute $\;n=p\times q\;$ (the modulus).
  - Calculate ϕ(n)= (p−1)(q−1) (Euler’s totient function).
  - Select an encryption key eee such that $\;1<e<\phi(n)\;$ and $\;\gcd(e,\phi(n))=1\;$
  - Compute the decryption key d such that $\;e\cdot d\equiv 1\pmod{\phi(n)}\;$ (modular inverse).
2. Encryption:
  - Given a plaintext M, compute the ciphertext C using
  - Decryption:
    
    Retrieve the plaintext M from C
$\;M\equiv C^d\pmod{n}\equiv 43^{53}\pmod{77}\;$

Example: Using Fermat’s Little Theorem

Problem: Encrypt and decrypt a message using RSA with Fermat’s Little Theorem.
1. Key Generation:
  - Choose p=7, q=11 (prime numbers).
  - Compute n=7 × 11= 77
  - Compute $\;\phi(n)=(7-1)(11-1)=6\times 10=60\;$
  - Choose e=1 (public key, gcd(17, 60) = 1)
  - Compute $\;d=53\quad\text{(private key)},\quad 17\cdot 53\equiv 1\pmod{60}\;$
2. Encryption:
  - Message M=8.
  - Compute $\;C\equiv M^e\pmod{n}\equiv 8^{17}\pmod{77}\;$
  - $\;8^2\equiv 64\pmod{77}\;$
  - $\;8^4\equiv 64^2\equiv 36\pmod{77}\;$
  - $\;8^4\equiv 36^2\equiv 67\pmod{77}\;$
  - $\;8^4\equiv 67^2\equiv 15\pmod{77}\;$
  - $\;8^{17}\equiv 8^{16}\cdot 8\equiv 15\cdot 8\equiv 120\equiv 43\pmod{77}\;$ So, C=43
3. Decryption:
  - Compute M
  - $\;43^2\equiv 4\pmod{77}\;$
  - $\;43^4\equiv 4^2\equiv 16\pmod{77}\;$
  - $\;43^8\equiv 16^2\equiv 34\pmod{77}\;$
  - $\;43^{16}\equiv 34^2\equiv 4\pmod{77}\;$
  - Continue reducing until $\;43^{53}\equiv 8\pmod{77}\;$
  - Recovered message M=8
Output
1. Public Key: (e,n) = (17,77)
2. Private Key: (d,n) = (53,77)
3. Ciphertext: C=43C = 43C=43
4. Decrypted Message: M = 8
Euler’s Theorem

Euler’s Theorem asserts that for any integer aaa that is coprime to a positive integer mmm, the remainder when $a^{\varphi(m)}$ is divided by m is 1. The reason we emphasize proving Euler’s Theorem is that Fermat’s Theorem is, in fact, a special case of it. This connection arises because when p is a prime number, $\varphi(p)=p-1$ which makes Fermat’s Theorem a subset of Euler’s Theorem under these circumstances.

Euler’s Theorem is a crucial result in number theory, named after the Swiss mathematician Leonhard Euler. It reveals an important relationship between number-theoretic functions and modular arithmetic concepts. In this article, we will explore Euler’s Theorem, including its statement and proof.

Proof of Euler’s Theorem

$Let$\phi(n)=k$,and let$\{a_1,a_2,\ldots,a_k\}$be a reduced residue system mod$n$.$
For some a_i in {a₁, . . . , a_k}
Since this is the same set of numbers mod n as the original system, the two systems must have the same product mod n:
$\begin{align*}(aa_1)\cdots(aa_k)&\equiv a_1\cdots a_k\pmod{n}\\\Rightarrow a^k(a_1\cdots a_k)&\equiv a_1\cdots a_k\pmod{n}\end{align*}$

Now each a_i is invertible mod n, so multiplying both sides by $\begin{align*}a_1^{-1}\cdots a_k^{-1},\quad&\text{We get:}\end{align*}$

$\begin{align*}a_k&\equiv 1\pmod{n}\\\text{or}\quad a^{\phi(n)}&\equiv 1\pmod{n}.\end{align*}$

Euler’s Theorem Formula

$\;a^{\phi(n)}\equiv 1\pmod{n}\;$

The statement of Euler’s Theorem can also serve as a formula for further calculations:

Where:
- a is any integer coprime to n
- n is a positive integer
- ϕ(n) is Euler’s totient function
- ≡ denotes equivalence
- mod n represents congruence modulo n
Example Showing Euler’s Theorem Formula

Problem: Verify Euler’s Theorem for a = 3 and n = 8.

Solution:

First, we calculate ϕ(8). The numbers less than 8 that are coprime to 8 are 1, 3, 5, and 7. Thus, ϕ(8)=4.
Next, calculate 3⁴ and find its remainder when divided by 8
3⁴ = 81
Now, find 81 mod 8
81 mod 8 ≡ 1
Thus, 3⁴ ≡ 1 (mod 8), which verifies Euler’s Theorem.

Applications of Euler’s Theorem

Euler’s Theorem has numerous applications across mathematics and other fields. Some notable uses include:
- RSA Encryption: Euler’s theorem is a cornerstone of modern cryptography, especially the RSA encryption algorithm. RSA involves generating public and private keys such that they are modular inverses modulo , where is the product of two large prime numbers.
- Problem Solving in Number Theory: Euler’s theorem is invaluable in solving number theory problems related to divisibility, remainders, and number properties in various systems.
- Primality Testing: Euler’s theorem is employed in primality testing algorithms, such as the Fermat primality test. Although this test can produce false positives for Carmichael numbers, it provides a quick way to identify non-prime numbers. If , then is not prime.
- Mathematical Proofs: Euler’s theorem serves as a general case for proofs involving modular arithmetic, divisibility tests, and number theory identities. It offers a robust foundation for rigorous mathematical arguments.
Euler’s Theorem Examples

Example 1: Find the remainder when 5¹⁰⁰ divided by 7.

Solution:

Since 7 is a prime number, ϕ(7) = 7−1 = 6

According to Euler’s can be rewritten as $\;5^6\equiv 1\pmod{7}\;$

Now,

$\;5^{100}=5^6\times 16+4\;$

Using modular exponentiation:

$\;5^{100}=(5^6)^{16}\times 5^4\equiv 1^{16}\times 5^4\pmod{7}\;$

Simplify $\;5^4\pmod{7}\;$

$\;5^4=625\Rightarrow 625\mod 7=2\;$

So, when 5¹⁰⁰ is divided by 7, the remainder is 2.

Chinese Remainder Theorem

We are given two arrays num[0..k-1] and rem[0..k-1]. In the array num[0..k-1], every pair of numbers is coprime (i.e., the greatest common divisor for each pair is 1). Our task is to find the smallest positive integer x such that:
```
x % num[0] = rem[0],
x % num[1] = rem[1],
...
x % num[k-1] = rem[k-1].
```
In essence, we are provided with k numbers, all of which are pairwise coprime, along with the remainders when an unknown number x is divided by these numbers. We need to determine the minimum possible value of x that satisfies all the given conditions.

Example 1:
- Input:
  num[] = {5, 7},
  rem[] = {1, 3}
- Output:
  31
  Explanation: 31 is the smallest number such that:
  - When divided by 5, the remainder is 1.
  - When divided by 7, the remainder is 3.
Example 2:
- Input:
  num[] = {3, 4, 5},
  rem[] = {2, 3, 1}
- Output:
  11
  Explanation: 11 is the smallest number such that:
  - When divided by 3, the remainder is 2.
  - When divided by 4, the remainder is 3.
  - When divided by 5, the remainder is 1.
RC4 is a stream cipher and a variable-length key encryption algorithm. It encrypts data one byte at a time (or sometimes in larger units). Using a pseudorandom bit generator, it produces an 8-bit key stream that is unpredictable without the input key. This key stream is combined with the plaintext one byte at a time using the XOR operation.

Example:
- RC4 Encryption:
  10011000 XOR 01010000 = 11001000
- RC4 Decryption:
  11001000 XOR 01010000 = 10011000
Chinese Remainder Theorem:

The Chinese Remainder Theorem guarantees that a solution always exists for this system of congruences. The first part of the theorem ensures that a solution exists, and the second part states that all solutions will produce the same remainder when divided by the product of num[0], num[1], ... , num[k-1]. For example, in the above case, the product of 3, 4, and 5 is 60, and 11 is one solution. Other solutions are of the form 11 + m*60 where m >= 0.

A naive approach to solve this problem is to start with 1 and increment it one by one, checking if dividing it by the numbers in num[] produces the corresponding remainders in rem[]. Once we find such an x, we return it. Below is the implementation using this approach.

$\;\begin{aligned}\begin{cases}x\equiv\text{rem}[0]\pmod{\text{num}[0]}\\\vdots\\x\equiv\text{rem}[k-1]\pmod{\text{num}[k-1]}\end{cases}\end{aligned}\;$

Futheremore, all solutions of x of this system are congruent modulo the product,

$\;\text{prod}=\text{num}[0]\times\text{num}[1]\times\ldots\times\text{num}[k-1].\;$

$\;x\equiv y\pmod{\text{num}[i]},\;0\leq i\leq k-1\iff x\equiv y\pmod{\text{prod}}.\;$

Python Code (Naive Approach):
```
# A Python3 program to demonstrate
# working of Chinese Remainder Theorem

# k is size of num[] and rem[].
# Returns the smallest number x
# such that:
# x % num[0] = rem[0],
# x % num[1] = rem[1],
# ..................
# x % num[k-2] = rem[k-1]
# Assumption: Numbers in num[]
# are pairwise coprime (gcd for
# every pair is 1)
def findMinX(num, rem, k):
    x = 1  # Initialize result

    # As per the Chinese remainder
    # theorem, this loop will
    # always break.
    while True:

        # Check if remainder of
        # x % num[j] is rem[j]
        # or not (for all j from
        # 0 to k-1)
        j = 0
        while j < k:
            if x % num[j] != rem[j]:
                break
            j += 1

        # If all remainders
        # matched, we found x
        if j == k:
            return x

        # Else try next number
        x += 1

# Driver Code
num = [3, 4, 5]
rem = [2, 3, 1]
k = len(num)
print("x is", findMinX(num, rem, k))
```
Output:
```
x is 11
```
Pseudo-Random Generation Algorithm (PRGA)

Once the vector S is initialized, the input key is no longer used. The algorithm continues by cyclically permuting S and generating a key stream byte k.
```
x % num[0] = rem[0],
x % num[1] = rem[1],
...
x % num[k-1] = rem[k-1].
```
Encrypt Using XOR:
RC4 encrypts plaintext by XORing it with the generated key stream.

News on RC4

In September 2015, Microsoft announced the discontinuation of RC4 support in Microsoft Edge and Internet Explorer 11.

Features of the RC4 Algorithm
- Symmetric key encryption: RC4 uses the same key for encryption and decryption.
- Stream cipher: It encrypts and decrypts data byte by byte, generating a pseudorandom key stream XORed with the plaintext to produce ciphertext.
- Flexible key size: RC4 supports key sizes from 40 to 2048 bits, making it adaptable to varying security needs.
- High speed: It is a fast algorithm, ideal for applications requiring rapid data encryption.
- Extensive usage: Historically, RC4 was used in wireless networks, SSL, VPNs, and file encryption.
- Vulnerabilities: Known issues, such as biases in the initial key stream, make it unsuitable for new applications.
Advantages of RC4
- Efficiency: RC4 is highly efficient and suitable for use in low-power devices or scenarios requiring quick encryption.
- Simplicity: The algorithm’s design is straightforward, enabling easy implementation in both software and hardware.
- Adaptable key size: RC4’s variable key size allows it to meet diverse security requirements.
- Historical adoption: It was widely used in applications such as SSL, VPNs, and file encryption.
Disadvantages of RC4
- Vulnerabilities: Known weaknesses, including key stream biases, make RC4 susceptible to key recovery attacks.
- Security limitations: Its design has inherent flaws, making it less secure compared to modern algorithms like AES or ChaCha20.
- Restricted key length: The maximum key length of 2048 bits may not suffice for applications requiring stronger encryption.
- Deprecated usage: Due to its vulnerabilities, RC4 is no longer recommended for new implementations. Modern stream ciphers such as AES-CTR or ChaCha20 are preferred.
Implementation of RC4 algorithm

RC4 is a symmetric stream cipher with a variable key length that is used for both encryption and decryption. It achieves this by XORing the data stream with a generated key sequence. The algorithm operates in two distinct phases:

Key Scheduling Algorithm (KSA)
1. This phase creates a State array by applying a permutation based on a variable-length key (0 to 256 bytes).
2. The key is stored in K[0] to K[255].If the key length is less than 256 bytes, repeat the key values.
3. Perform permutations:
- - For i = 0 to 255:
    
    S[i] = i
    
    K[i] = key[i mod key_length]
  - Swap elements using the formula:
    
    j = (j + S[i] + K[i]) mod 256
    
    Swap S[i] and S[j].
Pseudo-Random Generation Algorithm (PRGA)

After the State array is initialized, PRGA generates the keystream for encryption and decryption. In this phase:
1. Maintain counters iii and jjj, initially set to 0.
2. For each output byte:
  - Increment iii: i=(i+1)mod 256i = (i + 1) \mod 256i=(i+1)mod256
  - Update jjj: j=(j+S[i])mod 256j = (j + S[i]) \mod 256j=(j+S[i])mod256
  - Swap S[i]S[i]S[i] and S[j]S[j]S[j].
  - Calculate the keystream byte: t=(S[i]+S[j])mod 256t = (S[i] + S[j]) \mod 256t=(S[i]+S[j])mod256 and keystreamByte=S[t]keystreamByte = S[t]keystreamByte=S[t].
Example Inputs and Outputs

Example 1:
- Input: Plain text = 001010010010, Key = 101001000001, n=3n = 3n=3
- Output:
  - Cipher text = 110011100011
  - Decrypted text = 001010010010
Example 2:
- Input: Plain text = 1111000000001111, Key = 0101010111001010, n=4n = 4n=4
- Output:
  - Cipher text = 0011011110100010
  - Decrypted text = 1111000000001111
Implementation in Python

The code below demonstrates encryption and decryption with detailed outputs of each step, including initialization, key scheduling, keystream generation, and XOR operations for both encryption and decryption.
```
# Python3 implementation of RC4 algorithm

def encryption():
    global key, plain_text, n
    plain_text = "110101001011"
    key = "101100110011"
    n = 4

    print("Plaintext:", plain_text)
    print("Key:", key)
    print("n:", n)

    S = [i for i in range(2 ** n)]
    print("State Vector (S):", S)

    key_list = [key[i:i + n] for i in range(0, len(key), n)]
    for i in range(len(key_list)):
        key_list[i] = int(key_list[i], 2)

    pt = [plain_text[i:i + n] for i in range(0, len(plain_text), n)]
    for i in range(len(pt)):
        pt[i] = int(pt[i], 2)

    print("Plaintext Array:", pt)

    diff = len(S) - len(key_list)
    for i in range(diff):
        key_list.append(key_list[i])

    print("Key List:", key_list)

    def KSA():
        j = 0
        for i in range(len(S)):
            j = (j + S[i] + key_list[i]) % len(S)
            S[i], S[j] = S[j], S[i]

    KSA()

    def PRGA():
        i = j = 0
        keystream = []
        for _ in range(len(pt)):
            i = (i + 1) % len(S)
            j = (j + S[i]) % len(S)
            S[i], S[j] = S[j], S[i]
            t = (S[i] + S[j]) % len(S)
            keystream.append(S[t])
        return keystream

    keystream = PRGA()

    cipher_text = [keystream[i] ^ pt[i] for i in range(len(pt))]
    cipher_bits = "".join(f"{bin(c)[2:]:0{n}b}" for c in cipher_text)

    print("Ciphertext:", cipher_bits)

encryption()
```
Output:
```
Plaintext: 110101001011
Key: 101100110011
n: 4

State Vector (S): [0, 1, 2, ..., 15]
Plaintext Array: [13, 10, 4, 11]
Key List: [11, 12, 3, 11, 11, 12, 3, 11]

Ciphertext: 011001101110
```
December 16, 2025

Security (Bits)	RSA Key Length	ECC Key Length
80	1024	160-223
112	2048	224-255
128	3072	256-383
192	7680	384-511
256	15360	512+

Advanced Encryption Standard

Difference between AES and DES ciphers

Advanced Encryption Standard (AES) is a highly trusted encryption algorithm used to secure data by converting it into an unreadable format without the proper key while Data Encryption Standard (DES) is a block cipher with a 56-bit key length that has played a significant role in data security. In this article, we are going to discuss the differences between AES and DES.

What is AES?

AES, short for Advanced Encryption Standard, is a widely utilized encryption method introduced in 2001. It was developed as a faster alternative to triple-DES, offering six times the speed. AES is one of the most commonly used symmetric block ciphers, operating on bytes instead of bits. This algorithm uses a symmetric key, meaning the same key is required for both encryption and decryption.

AES is renowned for its speed and robust security, making it ideal for safeguarding sensitive information in applications such as online banking, secure file storage, and wireless network security. Understanding AES and its role in cybersecurity ensures data protection against unauthorized access and cyberattacks.

Applications of AES

Wireless Security: AES secures wireless networks, such as Wi-Fi, by maintaining data confidentiality and preventing unauthorized access.
Data Storage and Transmission: It ensures secure data storage and transmission, protecting sensitive information.
VPN (Virtual Private Network): AES secures VPN connections, enabling safe access to private networks over the internet.
Disk Encryption: AES encrypts data on storage devices like hard drives and USB drives.
Secure Messaging Apps: Many messaging platforms use AES to encrypt chats and file attachments.

What is DES?

Data Encryption Standard (DES) is an encryption algorithm created in 1977 to secure data by converting it into unreadable code. DES operates as a multi-round cipher, dividing the plaintext into two sections and processing them individually through steps like expansion, permutation, substitution, and XOR operations with round keys. Similar to AES, DES uses a symmetric key for both encryption and decryption.

Although DES was widely adopted for years, it is now considered less secure due to its short key length, making it susceptible to brute-force attacks. However, understanding DES is valuable since it laid the foundation for more secure algorithms like AES, shaping modern encryption practices.

Applications of DES

Triple DES (3DES): A more secure version of DES, it applies the DES algorithm three times sequentially and is still used in older systems.
Financial Transactions: DES was previously employed for securing financial transactions but has largely been replaced by AES.
Legacy Systems: DES remains in use within some legacy systems for compatibility purposes.

Difference Between AES and DES

AES and DES are widely recognized encryption algorithms but differ significantly in terms of security, key length, and block size. While DES has become outdated due to its vulnerabilities, AES is the modern standard for encryption.

S.No	AES	DES
1.	Stands for Advanced Encryption Standard	Stands for Data Encryption Standard
2.	Introduced in 2001	Introduced in 1977
3.	Operates on bytes	Operates on bits
4.	Key lengths: 128, 192, or 256 bits	Key length: 56 bits
5.	Number of rounds depends on key length: 10 (128-bit), 12 (192-bit), 14 (256-bit)	Fixed 16 rounds of identical operations
6.	Based on a substitution-permutation network	Based on a Feistel network
7.	Open design rationale	Closed design rationale
8.	Selection process was open to public comment	Selection process was confidential
9.	AES is highly secure and a global standard	DES is vulnerable; 3DES offers improved security
10.	Rounds involve Byte Substitution, Shift Row, Mix Column, Key Addition	Rounds involve Expansion, XOR, Substitution, Permutation
11.	Encrypts 128 bits of plaintext	Encrypts 64 bits of plaintext
12.	Produces ciphertext of 128, 192, or 256 bits	Produces ciphertext of 64 bits
13.	Derived from an aside-channel square cipher	Derived from Lucifer cipher
14.	Designed by Vincent Rijmen and Joan Daemen	Designed by IBM
15.	No effective cryptanalysis attacks; minor side-channel vulnerabilities	Vulnerable to brute-force, linear cryptanalysis, and differential cryptanalysis
16.	Faster than DES	Slower compared to AES
17.	Highly flexible	Limited flexibility
18.	Efficient in both hardware and software	Best suited for hardware only

Advanced Encryption Standard (AES)

The Advanced Encryption Standard (AES) is a specification for encrypting electronic data, introduced by the U.S. National Institute of Standards and Technology (NIST) in 2001. Renowned for its robust security, AES is widely used today as a stronger alternative to DES and Triple DES, though it is more complex to implement. This article discusses AES, its working mechanism, encryption-decryption methods, and its applications.

What is Advanced Encryption Standard (AES)?

Advanced Encryption Standard (AES) is a reliable encryption algorithm designed to secure data by transforming it into an unreadable format without the correct key. Developed by NIST, AES supports key lengths of 128, 192, or 256 bits, offering high-level security against unauthorized access. It is an efficient solution for securing internet communications, protecting confidential data, and encrypting files. AES is a cornerstone of modern cryptography, globally acknowledged for its role in safeguarding information from cyber threats.

Key Points:

AES is a block cipher.
Supported key sizes: 128, 192, or 256 bits.
Encrypts data in 128-bit blocks.
AES processes 128-bit input blocks and produces 128-bit encrypted output using a substitution-permutation network, involving a sequence of operations that substitute and rearrange data.

How AES Cipher Works

AES operates on bytes of data rather than bits. Since the block size is 128 bits, the cipher processes 16 bytes (128 bits) of input data at a time.

The number of rounds in AES depends on the key size:

128-bit key: 10 rounds
192-bit key: 12 rounds
256-bit key: 14 rounds

Generation of Round Keys

The Key Schedule algorithm generates all round keys from the initial key. These round keys are used during the corresponding encryption rounds.

Encryption Process

AES represents each block as a 4×4 grid of 16 bytes in a column-major order:

[ b0  | b4  | b8  | b12 ]
[ b1  | b5  | b9  | b13 ]
[ b2  | b6  | b10 | b14 ]
[ b3  | b7  | b11 | b15 ]

Each round of AES involves the following steps:

SubBytes
ShiftRows
MixColumns
AddRoundKey

SubBytes: In this step, each byte is substituted using a lookup table called the S-box. Substitution ensures that a byte is not replaced with itself or its complement. This process produces another 4×4 grid.

ShiftRows: Each row is shifted left by a specific number of positions:

The first row remains unchanged.
The second row shifts left by one.
The third row shifts left by two.
The fourth row shifts left by three.

Before:                     After:
[b0 | b1 | b2 | b3]         [b0 | b1 | b2 | b3]
[b4 | b5 | b6 | b7]   →     [b5 | b6 | b7 | b4]
[b8 | b9 | b10 | b11]       [b10| b11| b8  | b9]
[b12| b13| b14 | b15]       [b15| b12| b13 | b14]

MixColumns: Each column undergoes a transformation using matrix multiplication with a predefined matrix:

[ c0 ]         [ 2  3  1  1 ]  [ b0 ]
[ c1 ]   =     [ 1  2  3  1 ]  [ b1 ]
[ c2 ]         [ 1  1  2  3 ]  [ b2 ]
[ c3 ]         [ 3  1  1  2 ]  [ b3 ]

AddRoundKey: The result from the previous step is XOR-ed with the corresponding round key. At this stage, the 16 bytes are treated as a 128-bit data block rather than a grid.

Decryption Process

Decryption reverses the encryption process. Each block undergoes 10, 12, or 14 rounds based on the key size.

The steps involved in decryption are:

AddRoundKey
Inverse MixColumns
ShiftRows
Inverse SubBytes

Inverse MixColumns: This step is similar to the Mix Columns step in encryption but differs in the matrix used to carry out the operation. Mix Columns Operation each column is mixed independent of the other. Matrix multiplication is used. The output of this step is the matrix multiplication of the old values and a constant matrix

[b0] = [ 10  13  9   11 ]   [ c0 ]
[b1] = [ 11  10  13  9  ]   [ c1 ]
[b2] = [ 9   11  10  13 ]   [ c2 ]
[b3] = [ 13  9   11  10 ]   [ c3 ]

Inverse SubBytes: Inverse S-box is used as a lookup table and using which the bytes are substituted during decryption. Function Substitute performs a byte substitution on each byte of the input word. For this purpose, it uses an S-box.

Applications of AES

AES is extensively used in securing data across various domains:

Wireless Security: Protects Wi-Fi networks, ensuring data confidentiality and preventing unauthorized access.
Database Encryption: Safeguards sensitive data in databases, including personal and financial information.
Secure Communications: Encrypts internet communications, emails, and voice/video calls to maintain confidentiality.
Data Storage: Encrypts data on hard drives, USB drives, and other storage media to prevent unauthorized access.
Virtual Private Networks (VPNs): Secures communication between devices and remote servers to protect transmitted data.
Password Storage: Encrypts passwords for secure storage, adding an extra layer of protection against breaches.
File and Disk Encryption: Secures sensitive data on computers, external devices, and cloud storage to safeguard information during transfer and storage.

December 16, 2025

More on Symmetric Ciphers
Double DES and Triple DES

As we know, the Data Encryption Standard (DES) uses a 56-bit key to encrypt plaintext, making it vulnerable to being cracked with modern technology. To address this issue, Double DES and Triple DES were introduced, offering significantly stronger security. These methods use 112-bit and 168-bit keys respectively, providing enhanced protection compared to the original DES.

Double DES:

Double DES is an encryption method that applies two instances of DES to the same plaintext using different keys for each instance. Both keys are required during the decryption process. In this technique, a 64-bit plaintext is first processed by the initial DES instance, where it is encrypted into a 64-bit intermediate text using the first key. This intermediate text is then passed through the second DES instance, which encrypts it further into a 64-bit ciphertext using the second key.

Although Double DES uses a 112-bit key, its security level is limited to 2^56 rather than 2^112 due to its vulnerability to the meet-in-the-middle attack.

Triple DES:

Triple DES applies three instances of DES to the same plaintext. It incorporates three different key selection strategies:
1. All three keys are distinct.
2. Two keys are the same, while the third key is different.
3. All three keys are identical.
Despite using a 168-bit key, Triple DES is also susceptible to the meet-in-the-middle attack, which limits its security level to 2^112. Additionally, due to the short block size of DES, it is vulnerable to block collision attacks when the same key is used to encrypt large amounts of data. It is also exposed to the Sweet32 attack under certain conditions.

Block Cipher modes of Operation

Encryption algorithms are classified into two categories based on the type of input they process: block ciphers and stream ciphers. A block cipher is an encryption technique that processes a fixed-size input, typically denoted as b bits, to produce an output ciphertext of the same size. If the input exceeds b bits, it is divided into smaller blocks. Block ciphers support various modes of operation depending on the application and use case.

Electronic Code Book (ECB):

The Electronic Code Book (ECB) mode is the simplest operational mode for a block cipher. It directly encrypts each block of input plaintext into blocks of ciphertext. If the message size exceeds b bits, it is divided into multiple blocks, and the encryption process is repeated for each block.

Procedure of ECB:
- Each plaintext block is encrypted independently.
Advantages of ECB:
- Enables parallel encryption of blocks, making it faster.
- Simple implementation of block cipher encryption.
Disadvantages of ECB:
- Vulnerable to cryptanalysis due to the direct correlation between plaintext and ciphertext.
Cipher Block Chaining (CBC):

Cipher Block Chaining (CBC) improves upon the weaknesses of ECB by incorporating the previous cipher block into the encryption process. The previous cipher block is XORed with the current plaintext block before encryption. Essentially, CBC generates a cipher block by encrypting the XOR output of the previous cipher block and the current plaintext block.

Advantages of CBC:
- Suitable for inputs larger than b bits.
- Serves as an effective authentication mechanism.
- Offers better resistance to cryptanalysis compared to ECB.
Disadvantages of CBC:
- Parallel encryption is not feasible, as each encryption step depends on the previous cipher block.
Cipher Feedback Mode (CFB):

In the Cipher Feedback Mode (CFB), the cipher output is fed back into the encryption process for subsequent blocks. An initial vector (IV) is used for the first encryption. The output bits are divided into segments, with s bits being XORed with the plaintext and the remaining b-s bits shifted. This process continues iteratively. Both encryption and decryption use the encryption algorithm.

Advantages of CFB:
- Cryptanalysis is challenging due to the loss of data in the shift register.
Disadvantages of CFB:
- Shares similar drawbacks with CBC, such as block losses and the inability to encrypt multiple blocks concurrently. Decryption, however, is parallelizable and tolerant of data loss.
Output Feedback Mode (OFB):

The Output Feedback Mode (OFB) is similar to CFB but sends the encrypted output back as feedback instead of the XOR result. In this mode, the entire block is fed back into the encryption process, which reduces dependencies between plaintext and ciphertext while offering resilience against bit transmission errors.

Advantages of OFB:
- Unlike CFB, OFB prevents error propagation across blocks, as it is not affected by bit errors in plaintext.
Disadvantages of OFB:
- OFB is more vulnerable to message stream modification attacks due to its design.
Counter Mode (CTR):

Counter Mode (CTR) is a straightforward block cipher implementation that relies on a counter. A counter-generated value is encrypted and XORed with plaintext to produce the ciphertext. This mode is independent of feedback and supports parallel encryption.

Advantages of CTR:
- Avoids direct correlation between plaintext and ciphertext due to unique counter values for each block.
- Enables parallel execution since encryption stages are not chained.
Disadvantages of CTR:
- Requires synchronization of counters at both ends. Loss of synchronization leads to errors in plaintext recovery.
Applications of Block Ciphers:
1. Data Encryption: Block ciphers are commonly used to secure sensitive information, such as passwords and credit card details, by converting readable data into a complex, unreadable format that can only be decrypted by authorized users.
2. File and Disk Encryption: Entire files and disks are encrypted using block ciphers to safeguard their content from unauthorized access. Disk encryption tools like BitLocker and TrueCrypt employ block ciphers for secure storage.
3. Virtual Private Networks (VPNs): VPNs use block ciphers to encrypt data transmitted between devices over the internet, ensuring secure communication and preventing unauthorized access.
4. Secure Sockets Layer (SSL) and Transport Layer Security (TLS): These protocols rely on block ciphers to encrypt data exchanged between web browsers and servers, protecting sensitive information like login credentials and payment details.
5. Digital Signatures: Block ciphers are used in digital signature algorithms to verify the authenticity and integrity of digital documents. They generate unique signatures that detect unauthorized modifications.
RC4 Encryption Algorithm

RC4 is a stream cipher and a variable-length key encryption algorithm. It encrypts data one byte at a time (or sometimes in larger units). Using a pseudorandom bit generator, it produces an 8-bit key stream that is unpredictable without the input key. This key stream is combined with the plaintext one byte at a time using the XOR operation.

Example:
- RC4 Encryption:
  10011000 XOR 01010000 = 11001000
- RC4 Decryption:
  11001000 XOR 01010000 = 10011000
Key-Generation Algorithm

RC4 uses a variable-length key ranging from 1 to 256 bytes to initialize a 256-byte state vector S, consisting of elements S[0] to S[255]. During encryption and decryption, a byte k is derived from S by systematically selecting one of the 255 entries and permuting the elements in S accordingly.

Key-Scheduling Algorithm (KSA)

Initialization:

The vector S is initialized with values from 0 to 255, and a temporary vector T is created. If the key length is 256 bytes, the key is directly assigned to T. Otherwise, for a shorter key of length k-len bytes, the key is repeated as needed to fill T.

Illustration of Initialization:
```
1. Initialize S with values from 0 to 255.
for i = 0 to 255:
    S[i] = i
    T[i] = K[i mod keylen]
```
Next, S undergoes an initial permutation dictated by T. Each value in S is swapped with another based on T[i].
```
1. j = 0
2. for i in range(256):
       j = (j + S[i] + T[i]) % 256
       Swap S[i] and S[j]
```
Pseudo-Random Generation Algorithm (PRGA)

Once the vector S is initialized, the input key is no longer used. The algorithm continues by cyclically permuting S and generating a key stream byte k.
```
1. i, j = 0
2. while (true):
       i = (i + 1) mod 256
       j = (j + S[i]) mod 256
       Swap S[i] and S[j]
       t = (S[i] + S[j]) mod 256
       k = S[t]
```
Encrypt Using XOR:
RC4 encrypts plaintext by XORing it with the generated key stream.

News on RC4

In September 2015, Microsoft announced the discontinuation of RC4 support in Microsoft Edge and Internet Explorer 11.

Features of the RC4 Algorithm
- Symmetric key encryption: RC4 uses the same key for encryption and decryption.
- Stream cipher: It encrypts and decrypts data byte by byte, generating a pseudorandom key stream XORed with the plaintext to produce ciphertext.
- Flexible key size: RC4 supports key sizes from 40 to 2048 bits, making it adaptable to varying security needs.
- High speed: It is a fast algorithm, ideal for applications requiring rapid data encryption.
- Extensive usage: Historically, RC4 was used in wireless networks, SSL, VPNs, and file encryption.
- Vulnerabilities: Known issues, such as biases in the initial key stream, make it unsuitable for new applications.
Advantages of RC4
- Efficiency: RC4 is highly efficient and suitable for use in low-power devices or scenarios requiring quick encryption.
- Simplicity: The algorithm’s design is straightforward, enabling easy implementation in both software and hardware.
- Adaptable key size: RC4’s variable key size allows it to meet diverse security requirements.
- Historical adoption: It was widely used in applications such as SSL, VPNs, and file encryption.
Disadvantages of RC4
- Vulnerabilities: Known weaknesses, including key stream biases, make RC4 susceptible to key recovery attacks.
- Security limitations: Its design has inherent flaws, making it less secure compared to modern algorithms like AES or ChaCha20.
- Restricted key length: The maximum key length of 2048 bits may not suffice for applications requiring stronger encryption.
- Deprecated usage: Due to its vulnerabilities, RC4 is no longer recommended for new implementations. Modern stream ciphers such as AES-CTR or ChaCha20 are preferred.
Implementation of RC4 algorithm

RC4 is a symmetric stream cipher with a variable key length that is used for both encryption and decryption. It achieves this by XORing the data stream with a generated key sequence. The algorithm operates in two distinct phases:

Key Scheduling Algorithm (KSA)
1. This phase creates a State array by applying a permutation based on a variable-length key (0 to 256 bytes).
2. The key is stored in K[0] to K[255].If the key length is less than 256 bytes, repeat the key values.
3. Perform permutations:
- - For i = 0 to 255:
    
    S[i] = i
    
    K[i] = key[i mod key_length]
  - Swap elements using the formula:
    
    j = (j + S[i] + K[i]) mod 256
    
    Swap S[i] and S[j].
Pseudo-Random Generation Algorithm (PRGA)

After the State array is initialized, PRGA generates the keystream for encryption and decryption. In this phase:
1. Maintain counters iii and jjj, initially set to 0.
2. For each output byte:
  - Increment iii: i=(i+1)mod 256i = (i + 1) \mod 256i=(i+1)mod256
  - Update jjj: j=(j+S[i])mod 256j = (j + S[i]) \mod 256j=(j+S[i])mod256
  - Swap S[i]S[i]S[i] and S[j]S[j]S[j].
  - Calculate the keystream byte: t=(S[i]+S[j])mod 256t = (S[i] + S[j]) \mod 256t=(S[i]+S[j])mod256 and keystreamByte=S[t]keystreamByte = S[t]keystreamByte=S[t].
Example Inputs and Outputs

Example 1:
- Input: Plain text = 001010010010, Key = 101001000001, n=3n = 3n=3
- Output:
  - Cipher text = 110011100011
  - Decrypted text = 001010010010
Example 2:
- Input: Plain text = 1111000000001111, Key = 0101010111001010, n=4n = 4n=4
- Output:
  - Cipher text = 0011011110100010
  - Decrypted text = 1111000000001111
Implementation in Python

The code below demonstrates encryption and decryption with detailed outputs of each step, including initialization, key scheduling, keystream generation, and XOR operations for both encryption and decryption.
```
# Python3 implementation of RC4 algorithm

def encryption():
    global key, plain_text, n
    plain_text = "110101001011"
    key = "101100110011"
    n = 4

    print("Plaintext:", plain_text)
    print("Key:", key)
    print("n:", n)

    S = [i for i in range(2 ** n)]
    print("State Vector (S):", S)

    key_list = [key[i:i + n] for i in range(0, len(key), n)]
    for i in range(len(key_list)):
        key_list[i] = int(key_list[i], 2)

    pt = [plain_text[i:i + n] for i in range(0, len(plain_text), n)]
    for i in range(len(pt)):
        pt[i] = int(pt[i], 2)

    print("Plaintext Array:", pt)

    diff = len(S) - len(key_list)
    for i in range(diff):
        key_list.append(key_list[i])

    print("Key List:", key_list)

    def KSA():
        j = 0
        for i in range(len(S)):
            j = (j + S[i] + key_list[i]) % len(S)
            S[i], S[j] = S[j], S[i]

    KSA()

    def PRGA():
        i = j = 0
        keystream = []
        for _ in range(len(pt)):
            i = (i + 1) % len(S)
            j = (j + S[i]) % len(S)
            S[i], S[j] = S[j], S[i]
            t = (S[i] + S[j]) % len(S)
            keystream.append(S[t])
        return keystream

    keystream = PRGA()

    cipher_text = [keystream[i] ^ pt[i] for i in range(len(pt))]
    cipher_bits = "".join(f"{bin(c)[2:]:0{n}b}" for c in cipher_text)

    print("Ciphertext:", cipher_bits)

encryption()
```
Output:
```
Plaintext: 110101001011
Key: 101100110011
n: 4

State Vector (S): [0, 1, 2, ..., 15]
Plaintext Array: [13, 10, 4, 11]
Key List: [11, 12, 3, 11, 11, 12, 3, 11]

Ciphertext: 011001101110
```
Output:
```
Plaintext: 101011110000
Key: 110011010101
n: 3

State Vector (S): [0, 1, 2, ..., 7]
Plaintext Array: [5, 3, 4, 7]
Key List: [6, 3, 5, 6, 6, 3, 5, 6]

Ciphertext: 011101111101
```
December 16, 2025

Classical Encryption Techniques

Symmetric Cipher Model

Symmetric Encryption is one of the oldest and simplest forms of encryption. It operates using a single key for both encrypting and decrypting data, which is why it is also called Single-Key Encryption.

Basic Terminology in Cryptography

Plain Text: The original message that needs to be exchanged between a sender and a receiver.
Example: A message like “Meet at 5 PM” before encryption.
Cipher Text: The encoded version of the plain text, which cannot be easily interpreted by humans.
Example: The plain text “Meet at 5 PM” might appear as “12A45BXY7” after encryption.
Encryption (Enciphering): The process of converting plain text into cipher text.
Output: Converts “Meet at 5 PM” into “12A45BXY7”.
Decryption (Deciphering): The reverse of encryption, converting cipher text back to plain text.
Output: Converts “12A45BXY7” back into “Meet at 5 PM”.

The Symmetric Cipher Model

A symmetric cipher model consists of five key components:

Plain Text (x): This is the original information or message to be sent to the receiver. It serves as one of the inputs for the encryption algorithm.
Example: “The account number is 12345.”
Secret Key (k): A unique string or value used to encrypt and decrypt the data. This key is independent of the encryption algorithm but determines the transformations and substitutions performed on the plain text.
Example: A password like “Key2024!”.
Encryption Algorithm (E): This algorithm takes the plain text and secret key as inputs, applying substitutions and transformations to create cipher text.
Formula: E(x,k)=yE(x, k) = yE(x,k)=y
Example: Using the key “Key2024!” to transform “The account number is 12345” into “ABC987XY65”.
Cipher Text (y): This is the unreadable output of the encryption algorithm, ensuring security during transmission. The unique secret key determines the cipher text’s format.
Example: “The account number is 12345” becomes “ABC987XY65”.
Decryption Algorithm (D): This algorithm reverses the encryption process, taking the cipher text and the same secret key to recreate the original plain text. Formula: D(y,k)=xD(y, k) = xD(y,k)=x
Output: Decoding “ABC987XY65” back into “The account number is 12345”.

Requirements for Encryption

To implement encryption, two primary requirements must be met:

Strong Encryption Algorithm: A robust algorithm is essential to produce cipher texts that are resistant to cracking. Even if an attacker gains access to the cipher text, they should not be able to deduce the secret key.
Example: Using AES (Advanced Encryption Standard) ensures highly secure encryption.
Secure Key Sharing: There should be a reliable and secure method for sharing the secret key between the sender and receiver. This prevents attackers from intercepting the key.
Example: Using a secure channel like an encrypted email or a key management service to share “Key2024!”.

Symmetric Cipher Model

An encryption algorithm, or cipher, transforms plaintext into ciphertext using a secret key. Cryptographic algorithms are divided into Symmetric key cryptography and Asymmetric key cryptography. All encryption methods are based on two key principles: substitution, where each element in the plaintext (such as a bit, letter, or group of bits/letters) is replaced with another element, and transposition, where plaintext elements are rearranged. The primary requirement is that no information is lost during the process.

What is the Substitution Cipher Technique?

In the Substitution Cipher Technique, plaintext characters are substituted with other characters, numbers, or symbols based on a specific key. The identity of the character changes, while its position remains unchanged.

What is the Transposition Cipher Technique?

The Transposition Cipher Technique involves rearranging the positions of letters in the plaintext to produce the ciphertext. Here, the position of the character changes, but its identity stays the same.

Difference Between Substitution Cipher Technique and Transposition Cipher Technique

Substitution Cipher Technique	Transposition Cipher Technique
Plaintext characters are replaced with other characters, numbers, or symbols.	Plaintext characters are rearranged based on their position.
Examples include Monoalphabetic substitution cipher and Polyalphabetic substitution cipher.	Examples include Key-less transposition cipher and Keyed transposition cipher.
The identity of characters changes, but their positions remain the same.	The positions of characters change, but their identities remain the same.
The use of letters with low frequency can help detect the plaintext.	Keys closer to the correct key can reveal the plaintext.
Examples include Caesar Cipher, Monoalphabetic Cipher, and Polyalphabetic Cipher.	Examples include Rail Fence Cipher, Columnar Transposition Cipher, and Route Cipher.
Substitutes plaintext letters or groups of letters with ciphertext based on a specific algorithm or key.	Rearranges the plaintext letters or groups of letters according to a specific algorithm or key.
The frequency distribution of plaintext letters is obscured, but patterns may still be identified through statistical analysis.	The frequency distribution remains unchanged, but the scrambled order makes pattern detection challenging.
Vulnerable to frequency analysis attacks that identify commonly used letters or combinations in the language to deduce the key.	Less prone to frequency analysis but can be attacked through brute force or known plaintext methods.
Easier to understand and implement, making it suitable for simpler applications.	More complex to understand and implement but offers better security for specific use cases.

History of the Internet

The Internet’s inception dates back to the 1960s with the creation of the first functional model, ARPANET (Advanced Research Projects Agency Network). It enabled multiple computers to operate within a single network, which was a groundbreaking achievement. ARPANET employed packet switching to facilitate communication among computers on the same network. In October 1969, the first message was successfully transmitted between two computers using ARPANET. This laid the foundation for continuous technological advancements.

How is the Internet Set Up?

The Internet relies on physical infrastructure, such as optical fiber cables and copper wires, alongside networking mediums like LAN (Local Area Network), WAN (Wide Area Network), and MAN (Metropolitan Area Network). Even wireless technologies like 2G, 3G, 4G, and WiFi depend on these physical setups. A governing authority called ICANN (Internet Corporation for Assigned Names and Numbers), based in the USA, oversees Internet protocols and IP address management.

How Does the Internet Work?

The Internet operates using a system of clients and servers. A client could be a laptop directly connected to the Internet, while servers are powerful computers indirectly connected to it, storing vast amounts of website data. Servers use ISPs (Internet Service Providers) to connect to the Internet and are identified by their unique IP addresses.

Since remembering numeric IP addresses can be challenging, domain names are assigned to websites. When a user searches for a domain name in their browser, the request is sent to a server. The server translates the domain name into an IP address, as it cannot process the domain name directly. This translation occurs via the DNS server (Domain Name System), akin to looking up someone’s details in a directory.

For example, searching for a URL like www.example.com prompts the browser to retrieve its IP address and forward the request to the relevant server. The server then processes this request and delivers the required website content to the user.

For wireless Internet like 4G, data travels through optical cables, reaching cellular towers and subsequently reaching devices via electromagnetic signals. Similarly, routers convert light signals into electrical signals, enabling Internet connectivity through ethernet cables.

What is an IP Address?

An IP Address (Internet Protocol Address) is a unique identifier assigned to each device connected to the Internet, enabling data flow management. Just as Aadhaar or passport numbers identify individuals, IP addresses distinguish computers, routers, and websites.

An IP address consists of four numerical blocks, such as 192.168.0.1, with each block ranging from 0 to 255. The total range spans from 0.0.0.0 to 255.255.255.255. IP addresses are classified into four main types:

Static IP Address
Dynamic IP Address
Private IP Address
Public IP Address

World Wide Web (WWW)

The World Wide Web is a vast collection of interconnected webpages and documents that can be accessed using URLs. For instance, the URL www.wikipedia.org leads to the Wikipedia website, housing numerous web pages and related documents.

Hypertext links connect documents, enabling users to navigate between related content. Timothy Berners-Lee initiated the WWW project in 1989 to facilitate collaboration among researchers at CERN. The World Wide Web Consortium (W3C) oversees its further development.

Difference Between World Wide Web and the Internet

World Wide Web	Internet
Repository of webpages/documents	Network connecting global computers
Software-oriented	Hardware-oriented
Subset of the Internet	Superset encompassing the WWW
Uses HTTP	Uses IP protocols

Uses of the Internet

E-commerce: Platforms like eBay and Etsy simplify shopping and transactions.
Digital Payments: Apps like PhonePe and UPI gateways promote cashless transactions.
Education: Online learning platforms enable access to quality courses.
Social Networking: Sites like Facebook and WhatsApp foster global communication.
Entertainment: Streaming movies, music, and gaming are popular online activities.

Advantages of the Internet

Facilitates online banking, freelancing, and remote jobs.
Offers countless entertainment options like web series and gaming.
Provides effective tools for communication via emails and video calls.

Disadvantages of the Internet

Excessive use leads to time wastage and health issues.
Cybercrimes like phishing and data breaches pose significant risks.
Overdependence can negatively impact children’s growth and development.

Difference between Block Cipher and Transposition Cipher

1. Block Cipher:

Block Cipher is a symmetric key cipher used to convert plaintext into ciphertext. It applies either a substitution process or sometimes a permutation process, where a block of plaintext is replaced with a corresponding arbitrary block of ciphertext.

2. Transposition Cipher:

Transposition Cipher involves rearranging the positions of characters in the plaintext. It changes the arrangement of characters while preserving their identities.

Differences Between Block Cipher and Transposition Cipher

Block Cipher	Transposition Cipher
A block of plaintext is treated as a single unit.	Plaintext is written as a sequence of characters.
Produces a ciphertext block of the same length as the plaintext block.	Reads sequences in the form of rows.
An error in transmitting one block does not affect other blocks.	An error in one letter impacts the entire ciphertext.
The encryption process is relatively slow.	The encryption process is relatively fast.
Security depends on the design of the encryption function.	Security can be enhanced by performing multiple transpositions.
Plaintext is divided into blocks, and the algorithm operates on each block independently.	Plaintext is divided into letters, and the algorithm operates on each letter individually.
The complexity of the encryption is straightforward.	The transposition process involves greater complexity.
Characters lose their identity during encryption.	Characters retain their identity throughout the process.

December 16, 2025

Blog

Digital Signatures and Certificates

Evolution and Advancements in PGP

PGP Services

Importance of Authentication and Confidentiality in PGP

Advantages of PGP

Disadvantages of PGP

Types of Authentication Protocols

Pretty Good Privacy (PGP)

Secure/Multipurpose Internet Mail Extension (S/MIME)

Difference Between PGP and S/MIME

Digital Signatures and Certificates

Main Components of Kerberos:

Kerberos Process Overview:

Limitations of Kerberos:

Is Kerberos Perfect?

Common Uses of Kerberos:

Applications of Kerberos:

X.509 Authentication Service

How X.509 Authentication Service Certificates Work

Format of X.509 Authentication Service Certificates

Format of X.509 Authentication Service Certificates

Applications of X.509 Authentication Service Certificates

Types of Authentication Protocols

Digital Signature Standard (DSS)

Sign Documents Online with SignNow

Sender Side: DSS Approach

Receiver Side

Benefits of Digital Signatures

Drawbacks of Digital Signatures

Digital Signatures and Certificates

Digital Signature

Digital Certificates

Digital Signature vs. Digital Certificate

Encryption and Decryption

Types of Authentication Protocols

Digital Signature Standard (DSS)

Sign Documents Online with SignNow

Sender Side: DSS Approach

Receiver Side

Benefits of Digital Signatures

Drawbacks of Digital Signatures

Secure Hash Functions

SHA-1 Algorithm Overview

Cryptographic Hash Functions in Java

Whirlpool Hash Function

Goals of Whirlpool Hash Function

How Whirlpool Works

Function Definition

Steps for Generating the Whirlpool Digest:

Block cipher W

Security

Implementation

Comparison to Alternatives

Key Management

What is Key Management?

How Cryptographic Keys Work?

Types of Key Management

Distribution of Public Keys

Key Management Lifecycle

Implementation of Diffie-Hellman Algorithm

Blockchain – Elliptic Curve Cryptography

Introduction to Elliptic Curve Cryptography

History of Elliptic Curve Cryptography

Components of Elliptic Curve Cryptography

Elliptic Curve Cryptography Algorithms

Applications of Elliptic Curve Cryptography

ECC vs RSA

Elliptic Curve Diffie-Hellman Protocol Implementation

Types of Security Attacks

Benefits of Elliptic Curve Cryptography

Limitations of Elliptic Curve Cryptography

Message Authentication Requirements

Authentication Requirements

Message Authentication Functions

Measures to Counter Attacks

Message Authentication Requirements

Authentication Requirements

Message Authentication Functions

Strategies to Mitigate Attacks