Download E-books Internet Security: Cryptographic Principles, Algorithms and Protocols PDF

Then compute r ≡ g okay (mod p) The signature for m is the pair (r, s), zero r , s < p − 1. g m ≡ y r r s (mod p) ≡ (gx )r (g ok )s (mod p) ≡ g xr+ks (mod p) from which m ≡ xr + ks (mod p − 1) Use the prolonged euclidean set of rules to resolve s . The signature for m is the pair (r, s ). The random quantity s could be saved mystery. to make sure a signature, confirm that: y r r s (mod p) ≡ g m (mod p) determine five. five illustrates the ElGamal signature scheme in keeping with desk five. 6. instance five. nine To signal a message m, first select a major p = eleven and random numbers g = 7 and x = three, the place x < p is a personal key. Compute: y ≡ g x (mod p) ≡ seventy three (mod eleven) ≡ 2 the general public key's y = 2, g = 7 and p = eleven. 176 net safeguard person A consumer B g x ∋ GF (p) y ≡ g x (mod p) x Message m ∋ GF (p) g m (mod p) m prolonged euclidean set of rules m ≡ rx + ks (mod p − 1) r ≡ g ok (mod p) ok =? s No p −1 p−1 12 months rs y rr s (mod p) determine five. five The ElGamal signature scheme. desk five. 6 ElGamal signature set of rules Public key: p (a best quantity) g < p (a random quantity) y ≡ g x (mod p) the place x < p inner most key: okay : a random quantity r ≡ g okay (mod p) s : compute from m ≡ xr + ks (mod p − 1) Verifying: settle for as legitimate if y r r s (mod p) ≡ g m (mod p) certain ASYMMETRIC PUBLIC-KEY CRYPTOSYSTEMS 177 To authenticate m = 6, pick out a random quantity ok = 7 such that gcd (k, p − 1) = gcd (7, 10) = 1. Compute: r ≡ g okay (mod p) ≡ seventy seven (mod eleven) ≡ 6 m ≡ xr + ks (mod p − 1) (euclidean set of rules to unravel for s) 6 ≡ three × 6 + 7s (mod 10) 7s ≡ −2 (mod 10) ≡ 28 (mod 10) s ≡ four (mod 10) The signature is the pair of r = 6 and s = four. to make sure a signature, it needs to be confirmed that y r r s (mod p) ≡ g m (mod p) (26 ) (64 ) (mod eleven) ≡ seventy six (mod eleven) eighty one (mod eleven) ≡ 15 (mod eleven) four (mod eleven) ≡ four (mod eleven) five. three. three ElGamal Authentication Scheme The ElGamal signature or authentication scheme one other perspective is to explain within the following. The sender chooses a finite field GF(p) the place p is a chief. allow g be a primitive component of GF(p). First opt for random integers g and x such that g < p and x < p. A key x is saved mystery by means of either the sender and the receiver. permit m denote a message that's really leading to p. Then compute: u ≡ g m (mod p) enable c denote a ciphertext such that gcd (c, p) = 1. utilizing the prolonged euclidean set of rules, the next congruence is to resolve for v: c ≡ xu + mv (mod p − 1) or v ≡ m−1 (c – xu) (mod p − 1) To authenticate the ciphertext c, the signed cryptogram (c, u, v ) is transmitted to the receiver. Upon receipt of (c, u, v ), the receiver computes A ≡ (g x )u uv (mod p) ≡ g c−mv (g m )v (mod p) ≡ g c (mod p) therefore, the ciphertext c is approved as real if A ≡ g c (mod p). as soon as this ciphertext has been authorised, the message m is recovered by means of: m ≡ v −1 (c – xu) (mod p − 1) 178 web safety The ElGamal authentication scheme is proven in determine five. 6. The ElGamal authentication set of rules given in desk five. 7 is illustrated by means of the subsequent instance. instance five. 10 Take the finite field GF(11). Then the set of primitive components of GF(11) is {2, 6, 7, 8}.