Topics in cryptography

This article is intended to be an 'analytic glossary', or alternatively, an organized collection of annotated pointers. See List of cryptography topics for an alphabetical listing of cryptography articles.

Table of contents

1 Classical ciphers
2 Famous ciphertexts
3 Attacks on classical ciphers
4 Modern algorithms, methods evaluation and selection projects

4.1 Standards organizations
4.2 Cryptographic organizations
4.3 Open efforts

5 Cryptographic hash functions (message digest algorithms)
6 Public key / private key encryption algorithms (aka asymmetric key algorithms)
7 Public key / private key signature algorithms
8 Key authentication
9 Anonymous identification scheme
10 Secret key algorithms (aka symmetric key algorithms)
11 Classified Cryptography (U.S)
12 Weak key issues
13 Key transport/exchange
14 Pseudo- and true random number generatorss
15 Anonymous communication
16 Legal issues
17 Books and publications
18 Cryptographers
19 Uses of cryptographic techniques
20 Misc
21 Free / open-source cryptosystems (ie, algorithms + protocols + system design)

Classical ciphers

\n*Autokey cipher\n*Permutation cipher\n*Playfair cipher (by Charles Wheatstone)

Polyalphabetic substitution\n**Hill cipher\n**Vigen�re cipher
Substitution ciphers\n**Caesar cipher\n***ROT13\n**Affine cipher\n**Atbash cypher
Transposition ciphers\n**Scytale\n**Grille cypher\n**VIC cipher (complex hand cypher used by at least one Soviet spy in the early 1950s -- it proved quite secure for the time)

Famous ciphertexts

\n*See List of famous ciphertexts

Attacks on classical ciphers

Frequency analysis\n*Index of coincidence

Modern algorithms, methods evaluation and selection projects

Standards organizations

\n*the Federal Information Processing Standards Publication program (run by NIST to produce standards in many areas to guide operations of the US Federal government; many FIPS Pubs are cryptography related, ongoing)\n*the ANSI standardization process (produces many standards in many areas; some are cryptography related, ongoing) \n*ISO standardization process (produces many standards in many areas; some are cryptography related, ongoing) \n*IEEE standardization process (produces many standards in many areas; some are cryptography related, ongoing) \n*IETF standardization process (produces many standards (called RFCs) in many areas; some are cryptography related, ongoing) \nSee Cryptography standards

Cryptographic organizations

\n*NSA internal evaluation/selections (surely extensive, nothing is publicly known of the process or its results for internal use; NSA is charged with assiting NIST in its cryptographic responsibilities)\n*GCHQ internal evaluation/selections (surely extensive, nothing is publicly known of the process or its results for GCHQ use; a division of GCHQ is charged with developing and recommending cryptographic standards for the UK government) \n*Communications Security Establishment (CSE) — Canadian intelligence agency.\n

Open efforts

\n*the DES selection (NBS selection process, ended 1976)\n*the RIPE division of the RACE project (sponsored by the European Union, ended mid-'80s)\n*the AES competition (a 'break-off' sponsored by NIST; ended 2001)\n*the NESSIE Project (evaluation/selection program sponsored by the European Union; ended 2002)\n*the CRYPTREC program (Japanese government sponsored evaluation/recommendation project; draft recommendations published 2003)\n*the Internet Engineering Task Force (technical body responsible for Internet standards -- the Request for Comment series: ongoing) \n*the CrypTool project (eLearning programme in English and German; freeware; exhaustive educational tool about cryptography and cryptanalysis)\n

Cryptographic hash functions (message digest algorithms)

\n* Cryptographic hash function\n* Message authentication code\n* Keyed-hash message authentication code\n** EMAC (NESSIE selection MAC)\n** HMAC (NESSIE selection MAC; ISO/IEC 9797-1, FIPS and IETF RFC)\n** TTMAC aka Two-Track-MAC (NESSIE selection MAC; K.U.Leuven (Belgium) & debis AG (Germany))\n** UMAC (NESSIE selection MAC; Intel, UNevada Reno, IBM, Technion, & UCal Davis)\n* MD5 (one of a series of message digest algorithms by Prof Ron Rivest of MIT; 128 bit digest)\n* SHA-1 (developed at NSA 160-bit digest, an FIPS standard; the first released version was defective and replaced by this; NIST/NSA have released several variants with longer 'digest' lengths; CRYPTREC recommendation (limited))\n** SHA-256 (NESSIE selection hash function, FIPS 180-2, 256 bit digest; CRYPTREC recommendation)\n** SHA-384 (NESSIE selection hash function, FIPS 180-2, 384 bit digest; CRYPTREC recommendation)\n** SHA-512 (NESSIE selection hash function, FIPS 180-2, 512 bit digest; CRYPTREC recommendation)\n* RIPEMD-160 (developed in Europe for the RIPE project, 160-bit digest;CRYPTREC recommendation (limited))\n* Tiger (by Ross Anderson et al)\n* Snefru\n* Whirlpool (NESSIE selection hash function, Scopus Tecnologia S.A. (Brazil) & K.U.Leuven (Belgium))

Public key / private key encryption algorithms (aka asymmetric key algorithms)

\n* ACE-KEM (NESSIE selection asymmetric encryption scheme; IBM Zurich Research)\n** ACE Encrypt\n* Chor-Rivest\n* Diffie-Hellman (key agreement; CRYPTREC recommendation)\n* El Gamal (discrete logarithm)\n* Elliptic curve cryptography (dicrete logarithm variant)\n** PSEC-KEM (NESSIE selection asymmetric encryption scheme; NTT (Japan); CRYPTREC recommendation only in DEM construction w/SEC1 parameters) )\n** ECIES (Elliptic Curve Integrated Encryption System; Certicom Corp)\n** ECIES-KEM\n** ECDH (Elliptic Curve Diffie-Hellman key agreement; CRYPTREC recommendation)\n* EPOC\n* Merkle-Hellman (knapsack scheme)\n* McEliece\n* NTRUEncrypt\n* RSA (factoring)\n** RSA-KEM (NESSIE selection asymmetric encryption scheme; ISO/IEC 18033-2 draft)\n** RSA-OAEP (CRYPTREC recommendation)\n* Rabin cryptosystem (factoring)\n** Rabin-SAEP\n** HIME(R)\n* XTR

Public key / private key signature algorithms

\n* Digital Signature Algorithm (from NSA, part of the Digital Signature Standard (DSS); CRYPTREC recommendation)\n* Elliptic Curve DSA (NESSIE selection digital signature scheme; Certicom Corp); CRYPTREC recommendation as ANSI X9.62, SEC1)\n* Schnorr signatures\n* RSA signatures\n** RSA-PSS (NESSIE selection digital signature scheme; RSA Laboratories); CRYPTREC recommendation) \n* RSASSA-PKCS1 v1.5 (CRYPTREC recommendation)\n* Nyberg-Rueppel signatures\n* MQV protocol\n* Gennaro-Halevi-Rabin signature scheme\n* Cramer-Shoup signature scheme\n*One-time signatures\n**Lamport signature scheme\n**Bos-Chaum signature scheme\n*Undeniable signatures\n**Chaum-van Antwerpen signature scheme\n*Fail-stop signatures\n*Ong-Schnorr-Shamir signature scheme\n*Birational permutation scheme\n*ESIGN\n** ESIGN-D\n** ESIGN-R\n*Direct anonymous attestation\n*NTRUSign\n*SFLASH (NESSIE selection digital signature scheme (esp for smartcard applications and similar); Schlumberger (France))\n* Quartz

Key authentication

\n*Key authentication\n*Public key infrastructure\n**X.509\n*Public key certificate\n**Certificate authority\n**Certificate Revocation List\n*ID-based cryptography\n*Certificate-based encryption\n*Secure Key Issuing Cryptography\n*Certificateless Cryptography

Anonymous identification scheme

\n* GPS (NESSIE selection anonymous identification scheme; Ecole Normale Sup�rieure, France T�l�com, & La Poste)

Secret key algorithms (aka symmetric key algorithms)

\n*Stream ciphers\n** A5/1, A5/2 (cyphers specified for the GSM cellular telephone standard)\n** BMGL\n** Chameleon \n** FISH (by Siemens AG)\n** WWII 'Fish' cyphers\n*** Geheimfernschreiber (WWII mechanical onetime pad by Siemens, called STURGEON by Bletchley Park)\n*** Schlusselzusatz (WWII mechanical onetime pad by Lorenz, called tunny by Bletchley Park) \n** HELIX\n** ISAAC (intended as a PRNG)\n** Leviathan (cipher)\n** LILI-128\n** MUG1 (CRYPTREC recommendation)\n** MULTI-S01 (CRYPTREC recommendation)\n** One-time pad (Vernam and Mauborgne, patented mid-'20s; an extreme stream cypher)\n** Panama\n** Pike (improvement on FISH by Ross Anderson)\n** RC4 (ARCFOUR) (one of a series by Prof Ron Rivest of MIT; CRYPTREC recommendation (limited to 128-bit key))\n** CipherSaber (RC4 variant with 10 byte random IV, easy to implement)\n** SEAL\n** SNOW\n** SOBER \n*** SOBER-t16\n*** SOBER-t32\n** WAKE

Block ciphers\n**Block cipher modes of operation\n**Product cipher\n**Feistel cipher (block cypher design pattern by Horst Feistel)\n**Advanced Encryption Standard (128 bit block; NIST selection for the AES, FIPS 197, 2001 -- by Joan Daemen and Vincent Rijmen; NESSIE selection; CRYPTREC recommendation)\n**Anubis (128-bit block)\n**BEAR (block cypher built from stream cypher and hash function, by Ross Anderson) \n**Blowfish (128 bit block; by Bruce Schneier, et al)\n**Camellia (128 bit block; NESSIE selection (NTT & Mitsubishi Electric); CRYPTREC recommendation)\n**CAST-128 (CAST5) (64 bit block; one of a series of algorithms by Carlisle Adams and Stafford Tavares, who are insistent (indeed, adamant) that the name is not due to their initials)\n**CAST-256 (CAST6) (128-bit block; the successor to CAST-128 and a candidate for the AES competition)\n**CIPHERUNICORN-A (128 bit block; CRYPTREC recommendation)\n**CIPHERUNICORN-E (64 bit block; CRYPTREC recommendation (limited))\n**CMEA — cipher used in US cellphones, found to have weaknesses.\n**CS-Cipher (64 bit block) \n**Data Encryption Standard (DES) (64 bit block; FIPS 46-3, 1976)\n**DEAL — an AES candidate derived from DES\n**DES-X A variant of DES to increase the key size.\n**FEAL\n**GDES — a DES variant designed to speed up encryption.\n**Grand Cru (128 bit block) \n**Hierocrypt-3 (128 bit block; CRYPTREC recommendation))\n**Hierocrypt-L1 (64 bit block; CRYPTREC recommendation (limited))\n**International Data Encryption Algorithm (IDEA) (64 bit block -- James Massey & X Lai of ETH Zurich)\n**Iraqi Block Cipher (IBC)\n**KASUMI (64-bit block; based on MISTY1, adopted for next generation W-CDMA cellular phone security) \n**KHAZAD (64-bit block designed by Barretto and Rijmen)\n**Khufu and Khafre (64-bit block ciphers)\n**LION (block cypher built from stream cypher and hash function, by Ross Anderson)\n**LOKI89/91 (64-bit block ciphers)\n**LOKI97 (128-bit block cipher, AES candidate)\n**Lucifer (by Tuchman et al of IBM, early 1970s; modified by NSA/NBS and released as DES)\n**MAGENTA (AES candidate)\n**Mars (AES finalist, by Don Coppersmith et al)\n**MISTY1 (NESSIE selection 64-bit block; Mitsubishi Electric (Japan); CRYPTREC recommendation (limited))\n**MISTY2 (128 bit block: Mitsubishi Electric (Japan))\n**Nimbus (64 bit block)\n**Noekeon (128 bit block)\n**NUSH (variable block length (64 - 256 bits))\n**Q (128 bit block)\n**RC2 64-bit block, variable key length.\n**RC6 (variable block length; AES finalist, by Ron Rivest et al)\n**RC5 (by Ron Rivest)\n**SAFER (variable block length)\n**SC2000 (128 bit block; CRYPTREC recommendation)\n**Serpent (128 bit block; AES finalist by Ross Anderson, Eli Biham, Lars Knudsen)\n**SHACAL-1 (256-bit block)\n**SHACAL-2 (256-bit block cypher; NESSIE selection Gemplus (France))\n**Shark (grandfather of Rijndael/AES, by Daemen and Rijmen)\n**Square (father of Rijndael/AES, by Daemen and Rijmen)\n**3-Way (96 bit block by Joan Daemen)\n**TEA (by David Wheeler & Roger Needham)\n**Triple DES (by Walter Tuchman, leader of the Lucifer design team -- not all triple uses of DES increase security, Tuchman's does; CRYPTREC recommendation (limited), only when used as in FIPS Pub 46-3)\n**Twofish (128 bit block; AES finalist by Bruce Schneier, et al)\n**XTEA (by David Wheeler & Roger Needham)
Polyalphabetic substitution machine cyphers\n**Enigma (WWII German rotor cypher machine -- many variants, many user networks for most of the variants)\n** Purple (highest security WWII Japanese Foreign Office cypher machine; by Japanese Navy Captain) \n**SIGABA (WWII US cypher machine by William Friedman, Frank Rowlett, et al)\n**TypeX (WWII UK cypher machine)
Hybrid code/cypher combinations\n**JN-25 (WWII Japanese Navy superencyphered code; many variants)\n**Naval Cypher 3 (superencrypted code used by the Royal Navy in the 30s and into WWII)
Visual cryptography

Classified Cryptography (U.S)

\n*EKMS NSA's Electronic Key Management System\n*FNBDT NSA's secure narrow band voice standard\n*Fortezza encryption based on portable crypto token in PC Card format\n*KY-57 VINSON tactical radio voice encryption\n*SINCGARS tactical radio with cryptographically controlled frequency hopping\n*STE secure telephone\n*STU-III older secure telephone\n*TEMPEST prevents compromising emanations\n*Type 1 products \n

Breaking ciphers

\n*Passive attack\n*Chosen plaintext attack\n*Chosen ciphertext attack\n*Adaptive chosen ciphertext attack\n*Brute force attack\n**Cryptographic key length\n**Unicity distance\n*Cryptanalysis\n**Meet-in-the-middle attack\n**Differential cryptanalysis\n**Linear cryptanalysis\n**Slide attack cryptanalysis\n**Algebraic cryptanalysis\n**XSL attack\n**Mod n cryptanalysis

Weak key issues

\n* Brute force attack\n* Dictionary attack\n* Related key attack\n* Key derivation function\n* Weak key\n* Passphrase\n* Salt

Key transport/exchange

\n*BAN Logic\n*Needham-Schroeder\n*Otway-Rees\n*Wide Mouth Frog\n*Diffie-Hellman\n*Man-in-the-middle attack

Pseudo- and true random number generatorss

\n* PRNG\n* CSPRNG\n* Hardware random number generators\n* Blum Blum Shub\n* Yarrow (by Schneier, et al)\n* Fortuna (by Schneier, et al)\n* ISAAC\n* RPNG based on SHA-1 in ANSI X9.42-2001 Annex C.1 (CRYPTREC example)\n* PRNG based on SHA-1 for general purposes in FIPS Pub 186-2 (inc change notice 1) Appendix 3.1 (CRYPTREC example)\n* PRNG based on SHA-1 for general purposes in FIPS Pub 186-2 (inc change notice 1) revised Appendix 3.1 (CRYPTREC example)

Anonymous communication

\n* Dining cryptographers protocol (by David Chaum)\n* Anonymous remailer\n* pseudonymity\n* anonymous internet banking\n* Onion Routing

Legal issues

\n*Cryptography as free speech\n**Bernstein v. United States\n**DeCSS\n*Export of cryptography\n*Key escrow and Clipper Chip\n*Digital Millennium Copyright Act\n*Digital Rights Management (DRM)\n*Cryptography patents\n**RSA (now public domain}\n**David Chaum and digital cash\n*Cryptography and Law Enforcement\n**Wiretaps\n**Espionage\n*Cryptography laws in different nations\n

Terminology

\n* Cryptographic key\n* Cipher\n* Ciphertext\n* Plaintext\n* Code\n* Tabula recta

Books and publications

\n* Books on cryptography\n* Important publications in cryptography

Cryptographers

\n* See List of cryptographers

Uses of cryptographic techniques

\n*Commitment schemes\n*Secure multiparty computations\n*Electronic voting\n*Authentication\n*Digital signatures\n*Cryptographic engineering\n*Crypto systems

Misc

\n*Echelon\n*Espionage\n*IACR\n*Ultra\n*Security engineering\n*SIGINT\n*Steganography\n*Cryptographers\n*SSL\n*Quantum Cryptography\n*Crypto-anarchism\n*Cypherpunk\n*Key escrow\n*Zero-knowledge proofs\n*Random oracle model\n*Blind signature\n*Blinding (cryptography)\n*Digital timestamping\n*Secret sharing\n*Trusted operating systems

Free / open-source cryptosystems (ie, algorithms + protocols + system design)

\n*PGP (a name for any of several related crypto systems, some of which, beginning at acquisiton of the name by Network Associates, have not been Free Software in the GNU sense)\n*FileCrypt (an open source/commercial command line version of PGP from Veridis of Denmark, see PGP)\n*GPG (an open source implementation of the OpenPGP IETF standard crypto system)\n*SSH (Secure SHell implementing cryptographically protected variants of several common Unix utilities, First developed as open source in Finland by Tatu Ylonen. There is now OpenSSH, an open source implementation supporting both SSH v1 and SSH v2 protocols. There are also commercial implementations. \n*IPSec (Internet Protocol Security IETF standard, a mandatory component of the IPv6 IETF standard)\n*Free S/WAN (an open source implementation of IPSec) Category:Cryptography

"Men and nations behave wisely once they have exhausted all the other alternatives." - Abba Eban (1915-)

encyclopedia.codeboy.net