Encryption Methods

There are 2 kinds of encryption methods :

• Symmetric cryptography
• Sender and receiver keys are identical
• Asymmetric (public-key) cryptography
• Encryption key (public), decryption key secret
(private)

208
Symmetric Encryption
• Uses a single key to both encrypt and decrypt information
• Also known as a secret-key algorithm
• The key must be kept a “secret” to maintain security
• This key is also known as a private key
• Follows the more traditional form of cryptography with key
lengths ranging from 40 to 256 bits

209
Symmetric Key Algorithms

210
Asymmetric Encryption
• Also called public-key cryptography
• Keep private key private
• Anyone can see public key
• Separate keys for encryption and decryption (public
and private key pair)
• Examples of asymmetric key algorithms:
• RSA, DSA, Diffie-Hellman, El Gamal, Elliptic Curve and
PKCS

211
Asymmetric Encryption
LAB

1. Generate SSH private/public key pair using ‘ssh-

keygen’ (OS X and Linux) or ‘puttygen’ (Windows)

2. Upload the public part of the key to the router

3. Import and attach it to the user

4. Login to the router using the private key

212
Asymmetric Encryption
LAB

• Generate SSH private/public key pair using ‘ssh-

keygen’ (OS X and Linux) or ‘puttygen’ (Windows)

213
Asymmetric Encryption
LAB

• Upload the public

part of the key to
the router

• Import and attach

it to the user with “ssh”
rights

214
Asymmetric Encryption
LAB

• Login to the router using the private key

• Try to login using ssh with login/password pair

215
Public Key Infrastructure (PKI)

• Framework that builds the network of trust

• Combines public key cryptography, digital signatures, to
ensure confidentiality, integrity, authentication, non-
repudiation, and access control
• Protects applications that require high level of security
Functions of a PKI :
• Registration • Key generation
• Initialization • Key update
• Certification • Cross-certification
• Key pair recovery • Revocation

216