Bybit - Win $500 BTC Bonus!Bybit - Win $500 Bonus!
Visit Bybit http://bit.ly/39k3Y05
promoted
Before you go, check out these stories!
0- Read
- Top Stories
- Write
- Listen
- Learn
Web Development Data Science - What is it?
- Best 50 Sites to Learn it
- Data Engineering
- Data Science Course 2020 ๐
- Deep Learning A-Z ๐
- Deep Learning vs. Machine Learning
- Love
- ML Essentials
- PG Program in Artificial Intelligence and Machine Learning ๐
- Optimize Your CV
- Python for Machine Learning ๐
- Statistics for Data Science and Business Analysis๐
- Zero to H...
Languages - Advertise
- About
- Tech Companies
- Experts ๐
Cryptography For Software Engineers by@kamalkishor1991Cryptography For Software Engineers
June 26th 2019 1,106 reads
@kamalkishor1991Kamal Joshi
You pay by credit card in an unknown shop. How do you make sure your card is notย copied?
you type your password into google.com and press send how do you know no one else other than google servers can read your password?
you are reading something in public wifi. How do you make sure no one knows about what are youย reading?
sending some private message to your friend on WhatsApp. How do you make sure no one else can read thatย message?
All of the above things are possible through the magic of cryptography.
Software engineering is about designing systems and building applications. Very often we think cryptography is a lot of math so it must be really hard and itโs partly true but the good news is that you donโt have to know any math or cryptography algorithm details in order to use them. In fact, you can be relatively good in building a secure system without even knowing most of the details of any of the cryptographic algorithms. Just remembering properties of these algorithms isย enough.
Alright so letโs learn some of the conceptsย first
Secure hashing
- it is deterministic so the same message always results in the sameย hash
- it is quick to compute the hash value for any givenย message
- it is infeasible to generate a message from its hash value except by trying all possibleย messages
- a small change to a message should change the hash value so extensively that the new hash value appears uncorrelated with the old hashย value
- it is infeasible to find two different messages with the same hashย value
- ImplementationโโโSHA-128 andย SHA-256
Asymmetric encryption
- 2 separate keys are used aka public key and privateย key
- One key is used for encrypting and another key is for decryption
- Can be used for transferring keys and digital signatures
- Relatively slower than symmetric encryption
- Also known as public key cryptography
- ImplementationโโโRSA
Symmetric encryption
- Usage only one key to encrypt and decrypt theย message
- After encryption, the output should be completely random and anyone without the key should not be able to extract any information out of the encrypted text.
- ImplementationโโโAES
And that's it. Almost everything in crypto is built on top of these concepts. Once you internalize these concepts, you can use these to reason about the secure systems, anticipate how something might be working and use these concepts to solve something. Itโs truly magical and surprisingly very few software engineers understand these concepts and use them when required and you can become one of those few people. These concepts are like first principles when reasoning about any system that usage cryptography.
Okay, letโs try to find answers to the above questions now. Try to think of the solutions based on the above concepts before you see theย answers.
you are paying by credit card in an unknown shop. How do you make sure your card is notย copied?
All the smart cards including credit cards use some version of asymmetric encryption( RSA). Smart card login is a two-step authentication mechanism that uses a hardware device to store a userโs public key credentials, and a Personal Identification Number (PIN) as the secret key to authenticate the user to the smart card. The smart card includes a built-in microprocessor, operating system, and memory for storing personal information securely. A smart card offers tamper-resistant storage for the userโs private key, which can only be accessed by entering a secret Personal Identification Number (PIN), and cryptographic support for operations such as digital signatures and key exchange.
The PIN is only used to authenticate the user to the smart card and it is never sent over the network, as is the case of shared secret login information obtained from the userโs password is transmitted over the network. Once authenticated, the userโs public key is retrieved from the card by the Security Subsystem and verified to make sure it is valid and that a trusted party issuedย it.
you type your password into google.com and press send how do you know no one else other than google servers can read your password?
you are reading something in public wifi. How do you make sure no one knows about what are youย reading?
Both of these are possible by using https combined with some trusted third party. Usually, this is achieved by digital certificates and these certificates are trusted by your browser. digital certificates are nothing but a public key with some metadata.
sending some private message to your friend on WhatsApp. How do you make sure no one else can read thatย message?
WhatsApp is using a combination of all of the above concepts. You can find more details about the protocol here(signal protocol)
So many other systems are using the above concepts to solve different problems.
- GIT is using SHA-128 to version files andย commits.
- ssh
- disk encryption
- digital currency(Bitcoin)
- Chrome and Firefox can sync and save all your bookmark, browsing history and saved passwords without knowing about your data. Click below link to learn about it and enable it now for your chrome. You really donโt want Google to know about all your saved passwords.
Google ChromeโโโSet or Change a Sync Passphrase
Hope you now know the basics and excited to explore more.ย Cheers!
Related
Tags
Join Hacker Noon
Create your free account to unlock your custom reading experience.