INFORMATION SECURITY A MULTIDISCIPLINARY. Stig F. Mjolsnes INTRODUCTION TO. Norwegian University ofscience & Technology. CRC Press

Transcription

1 DISCRETE MATHEMATICS AND ITS APPLICATIONS Series Editor KENNETH H. ROSEN A MULTIDISCIPLINARY INTRODUCTION TO INFORMATION SECURITY Stig F. Mjolsnes Norwegian University ofscience & Technology Trondheim CRC Press Taylor & Francis Group Boca Raton London NewYork CRC Press is an imprint of the Taylor & Francis an Croup, informs business A CHAPMAN & HALL BOOK

2 Contents 1 Introduction 1 S. F. Mj0lsnes 1.1 Motivation What Is Information Security? Some Basic Concepts The Communication Perspective The Shared Computer Perspective A Synopsis of the Topics The Book Structure Security Electronics Public Key Cryptography Hash Functions Quantum Cryptography Cryptographic Protocols Public Key Infrastructure Wireless Network Access Mobile Security Software Security ICT Security Evaluation ICT and Forensic Science Risk Assessment The Human Factor Further Reading and Web Sites 17 Bibliography 17 2 Security Electronics 19 E. J. Aas and P. G. Kjeldsberg 2.1 Introduction Examples of Security Electronics RSA as Hardwired Electronics AES as Hardwired Electronics Examples of Commercial Applications Side Channel Attacks Summary Further Reading and Web Sites 33 Bibliography 33 xix

3 XX 3 Public Key Cryptography 37 S. 0. Smal0 3.1 Introduction Hash Functions and One Time Pads Public Key Cryptography RSA-Public Key Cryptography RSA-Public-Key-Cryptography with Signature Problem with Signatures Receipt Secret Sharing Based on Discrete Logarithm Problems Further Reading 47 Bibliography 4 Cryptographic Hash Functions 49 D. Gligoroski 4.1 Introduction Definition of Cryptographic Hash Function Iterated Hash Functions Strengthened Merkle-Damgaxd Iterated Design Hash Functions Based on Block Ciphers Generic Weaknesses of the Merkle-Damgard Design Wide Pipe (Double Pipe) Constructions HAIFA Construction Sponge Functions Constructions Most Popular Cryptographic Hash Functions MD SHA SHA NIST SHA-3 Hash Competition Application of Cryptographic Hash Functions Digital Signatures Other Applications Further Reading and Web Sites 69 Bibliography 5 Quantum Cryptography D. R. Hjelme, L. Lydersen, and V. Makarov 5.1 Introduction Quantum Bit Quantum Copying Quantum Key Distribution The BB84 Protocol The BB84 Protocol Using Polarized Light Practical Quantum Cryptography Loss of Photons Error Correction and Privacy Amplification Security Proofs Authentication Technology

4 xxi Single Photon Sources Single Photon Detectors Quantum Channel Random Number Generator Applications Commercial Application of Quantum Cryptography Commercial Systems with Dual Key Agreement Quantum Key Distribution Networks Summary Further Reading and Web Sites 90 Bibliography 90 6 Cryptographic Protocols S. F. Mj0lsnes The Origins Information Policies Some Concepts Primitives and Protocols Definitions The Protocol as a Language Provability Modeling the Adversary The Problem of Protocol Composition Protocol Failures Reasons for Failure An Example of Protocol Failure Heuristics Simmons' Principles Separation of Concerns More Prudent Engineering Advice Tools for Automated Security Analysis Further Reading and Web Sites Ill Bibliography Public Key Distribution 115 S. F. Mj0lsnes 7.1 The Public Key Distribution Problem Authenticity and Validity of Public Keys The Notion of Public Key Certificates Certificates Public Key Certificates Certificate Data Structures Chain of Certificates Revocation The Problem of Revocation The CRL Data Structure Public Key Infrastructure Identity-Based Public Key Further Reading and Web Sites 128

5 xxii Bibliography Wireless Network Access 131 S. F. Mj0lsnes and M. Eian 8.1 Introduction Wireless Local Area Networks The Standard The Structure Message Types The Security Mechanisms Wired Equivalent Privacy RSN with TKIP RSN with CCMP Security Services Authentication Data Confidentiality Key Management Data Origin Authenticity Replay Detection Summary of Security Services Assumptions and Vulnerabilities Summary Further Reading and Web Sites 146 Bibliography Mobile Security 149 J. A. Audestad 9.1 GSM Security G Architecture Extent of Protection Security Functions in the Authentication Center G GSM Security Functions in the SGSN/RNC Security Functions in the Mobile Terminal (USIM) Encryption and Integrity Encryption in GSM (A5/1) Encryption in 3G Method Keystream Generation Algorithm Initialization of the Keystream Generator Production of the Keystream Integrity in 3G Anonymity Example: Anonymous Roaming in a Mobile Network Procedure Information Stored Prevention of Intrusion The Mobile Terminal Is an Impostor 175

6 Testing More xxiii 9.10 Using GSM/3G Both the Mobile Terminal and the Home Network Are Impostors The Foreign Network Is an Impostor 175 Terminals as Authentication Devices Architecture One Time Password The Extensible Authentication Protocol (EAP) Further Reading 180 Bibliography A Lightweight Approach to Secure Software Engineering 183 M. G. Jaatun, J, Jensen, P. H. Meland and I, A. T0ndel 10.1 Introduction Assets Asset Identification Asset Identification in Practice Key Contributors Step 1: Brainstorming Step 2: Assets from Existing Documentation Step 3: Categorization and Prioritization Example Security Requirements Description Security Objectives Asset Identification Threat Analysis and Modeling Documentation of Security Requirements Variants Based on Specific Software Methodologies LyeFish Example Continued Secure Software Design Security Architecture Security Design Guidelines Security Design Principles Security Patterns Threat Modeling and Security Design Review Putting It into Practice LyeFish Applying Security Design Principles Making Use of Security Design Patterns Make Use of Tools for Threat Modeling Performing Security Review Testing for Software Security Background The Software Security Testing Cycle Risk-Based Security Testing Managing Vulnerabilities in SODA Example LyeFish Summary Further Reading and Web Sites 214 Bibliography 214

7 xxiv 11 ICT Security Evaluation 217 S. J. Knapskog 11.1 Introduction ISO/IEC 15408, Part 1/3 Evaluation Criteria for IT Security (CC) The Development of the Standard Evaluation Model Security Requirements Definition of Assurance Building Confidence in the Evaluation Process Organizing the Requirements in the CC Assurance Elements Functional Classes Protection Profiles (PPs) Protection Profile Registries Definition of a Security Target (ST) Evaluation of a Security Target (ST) Evaluation Schemes Evaluation Methodology Summary Further Reading and Web Sites 239 Bibliography ICT and Forensic Science 243 S. F. Mj0lsnes and S. Y. Willassen 12.1 The Crime Scene Forensic Science and ICT Evidence Judicial Evidence Digital Evidence Evidential Reasoning Lack of Evidence The Digital Investigation Process Digital Evidence Extraction Sources of Digital Evidence Extraction Digital Evidence Analysis Techniques Anti-Forensics Further Reading and Web Sites 258 Bibliography Risk Assessment 261 S. Haugen 13.1 Risk Assessment in the Risk Management Process Terminology Risk Vulnerability Hazards, Threats, Sources, and Events Risk Analysis, Risk Evaluation, and Risk Assessment Main Elements of the Risk Assessment Process 267

8 XXV Establish Context Describe System, Controls, and Vulnerabilities Identify Assets Identify Threats Identify Events and Causes and Estimate Likelihood Identify and Estimate Consequences Estimate Risk Level Risk Evaluation Risk Treatment Summary Further Reading and Web Sites 278 Bibliography Information Security Management From Regulations to End Users 281 E. Albrechtsen and J. Hovden 14.1 A Risk Governance Framework Applied to Information Security 14.2 Regulations and Control Information Security Management Formal and Informal Formal Approaches to Information Security Management Informal Aspects of Information Security Management Information Security Culture Further Reading and Web Sites 310 Bibliography 311 Index 315