# Assignment 1
## CYBR 171 2022 T1: Assignment 1
#### Goals
The goals for this assignment are to be able to
– work with classical symmetric cryptography.
– work with modern symmetric and public-key cryptography.
– use cryptography to check the authenticity, confidentiality and integrity of data.
– demonstrate an understanding of xor cryptography and one time pads.
– demonstrate an understanding of the weaknesses of substitution ciphers.
– reason about the risks of exhaustive key searching, dictionary attacks and the impact of quantum computing.
– read and comprehend industry news sources regarding current malware threats.
#### Resources and links
#### Preparation
Read through the whole assignment and review the videos of the model answers to labs 1 and 2, and make sure you understand all the components of the answers.
#### Structure of the Assignment
This assignment has [Core](https://ecs.wgtn.ac.nz/Courses/CYBR171_2022T1/Assignment1#CorePart), [Completion](https://ecs.wgtn.ac.nz/Courses/CYBR171_2022T1/Assignment1#CompletionPart), and [Challenge](https://ecs.wgtn.ac.nz/Courses/CYBR171_2022T1/Assignment1#ChallengePart) parts.
Tutors will provide help for the core and completion but you should talk to Ian for broad hints regarding the challenges.
Below, is a ciphertext encrypted using a Caesar cipher by shifting each letter to the right by an agreed amount (the key).
It is also in the assignment zip file as `**caesar-cipher.txt**`.
pxevhfx mh max yktvmnkxw ynmnkx, max ybklm vxgmnkr yheehpbgz max lbgznetkbmr. xtkma atl t ihinetmbhg hy khnzaer t ubeebhg ahfbgbwl. yhk max fhlm itkm, maxr tkx atiir pbma maxbk ehm, ebobgz bg t ikxlxkox tm max uhmmhf hy t zktobmr pxee. mahlx pah tkx ngatiir atox xfbzktmxw, chbgbgz hgx hk tghmaxk hy max lptkfbgz wxglx mabgdxk vetwxl matm yhz max bggxk lhetk lrlmxf pbma t wnlm hy fhexvnetk ftvabgxkr lh mabvd matm bm hulvnkxl max lng. xqvxim yhk max lhebmtkr ebzamahnlx uxtf matm ixkixmnteer mktvdl max xtkma bg bml hkubm, max lrlmxf ykhf hnmlbwx kxlxfuexl t liaxkbvte yhzutgd ktwbtmbgz bg max bgyktkxw lixvmknf; t ftmkrhladt uktbg, gxlmxw wrlhg liaxkxl unbem ykhf max wblftgmexw uhgxl hy fhhgl tgw ietgxml.
Answer the following questions.
 1. What is the most common letter in the ciphertext?
 2. Explain how you can use your knowledge of the most common letter to work out the value of the key. (Hint: this is a useful resource http://letterfrequency.org/).
 3. What is the decrypted text?
##### Vignère cipher
The Viginere cipher below is also in the assignment zip file as `**vigienere.txt**`.
We assume that the key is three characters long and have provided the cryptogram.
 4. Create three splits following the instructions below and use the following online tool to make a frequency histogram for **each split of the ciphertext**.
**Creating splits:** You can do this by hand but it is easier and less error prone to use Python (or your favourite language).
Use the python operator [ start :: step ] to a set of letters starting at `**start**` and the next at `**start+step**`, `**start+2\*step**`, and so forth. Here is an example showing you how I can split “abcabcabc” into three strings.
I enter the `**python**` command and get the header information telling me what version of Python that I have started. After that I enter my string `**”abcabcabc”**` and use the split operation to generate three strings to show that I can extract string starting at the 1st (0th position), 2nd (1st position) and 3rd (2nd position). We count from zero.
You can use this code, just replace `**abcabcabc**` with the cryptogram.
Python 3.9.9 (main, Nov 20 2021, 21:30:06)
[GCC 11.1.0] on linux
Type “help”, “copyright”, “credits” or “license” for more information.
>>> “abcabcabc”[0::3]
>>> “abcabcabc”[1::3]
>>> “abcabcabc”[2::3]
**Link to histogram tool:** https://csfieldguide.org.nz/en/interactives/frequency-analysis/
 5. What is the **top two** guesses for the shift value for each of frequency histograms cryptogram?
Justify your answer using no more than a couple of sentences for each split.
 6. Based upon your answer above, state the Vignère key in terms of a three-letter key that can be used to correctly decrypt the cryptogram.
Note you can use the table below to map from a numeric shift value to a letter:
| A | B | C | D | E | F | G | H | I | J | K | L | M |
| :— | :— | :— | :— | :— | :— | :— | :— | :— | :— | :— | :— | :— |
| 0 | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 |
| N | O | P | Q | R | S | T | U | V | W | X | Y | Z |
| :— | :— | :— | :— | :— | :— | :— | :— | :— | :— | :— | :— | :— |
| 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 |
**Link to tool:** https://cryptii.com/pipes/vigenere-cipher
##### Exhaustive key search
To answer these questions you may want to use [ to work with large numbers](https://www.wolframalpha.com/input). You can approximate to powers of 10.
 7. Microsoft Office 2007 onwards allows the use of the AES cryptographic algorithm with a 128-bit shared secret to protect access to documents. Assume you can perform encryption and decryption at a rate of 1,000,000,000 operations per second. What is the maximum amount of time that it would take for a brute-force attack on a single document?
 8. Microsoft Office 2030 onwards allows the use of the RSA cryptographic algorithm with a 1024-bit public and private key pair to protect access to documents. Assume that you can perform encryption and decryption at a rate of 1,000,000,000 operations per second. What is the maximum amount of time that it would take for a brute-force attack on a single document?
##### XOR cryptography
 9. Encrypt the string “ASSIGNMENT” with the key “ABBAABBAAB” using the XOR operator. Express you answer as a binary number rather than converting to Unicode. You can use these online tools: https://www.browserling.com/tools/binary-xor and https://toolnanny.com/.
##### Hashes
 10. Using the command line only, download the disk image [slax-ipxe.iso](https://ftp.sh.cvut.cz/slax/Slax-11.x/slax-ipxe.iso) from [the slax website](https://www.slax.org/) and get the hash found on that page to verify its integrity. Show how you have done this and include any relevant output from commands you have used (do not forget to include the commands too).
 11. Explain why proving the integrity of the downloaded file does not guarantee its authenticity? (Note: your answer should be no more than three sentences).
##### Symmetric cryptography using command line tools
 12. Encrypt the file ciphers.txt using DES in CBC mode using your **ECS username** as the encryption password. Make sure that you use the option `**-pbkdf2**`. Include the command you used to do this in your answers as well and submit the encrypted file as `**ciphers.des.enc**`.
 13. Encrypt the file ciphers.txt using the AES 256 algorithm in ECB mode using your **ECS username** as the encryption password. Make sure that you use the option `**-pbkdf2**`. Include the command you used to do this in your answers as well and submit the encrypted file as `**ciphers.aes.enc**`.
 14. What is the message contained within the file `**treasure.bf.enc**`. It has been encrypted using the blowfish algorithm in CBC mode under the password `**lucre**`. Include the commands used to do the decryption.
##### Public key cryptography using command line tools
Questions 15 and 16 make use of GPG Key shown below.
Here is the GPG key (==gpg-key.txt== in the assignment zip file):
UrWmyCLniszpS8mxc9wmK/RnCTcmg4TkvRVN/SzzPj1X1wbPa4tvcA7gA0Q9 JHLRWI+1eQk0FOr3E7Et4cBiTqp3OIVB9ihOGXiY5xQ==
The fingerprint is `**08EA 5577 3F32 5954 2E69 BBBE FC8D 7EE4 F3B2 AC61**`.
 15. We have provided two documents – `**document1.asc**` and `**document2.asc**`. One of the above documents were modified after it was signed. Tell us which one! Show the output from GPG that proves your assertion.
 16. Given your knowledge of signing, explain what information must be stored in the PGP signatures of the messages from question 15?
 17. Download key `**BC8B95B6**` from the key server and verify the signed message `**message.asc**`.
– Whose key is this?
– Can you trust this key because it came from an official key server?
– Can you trust the message really comes from who it claims to come from?
– Why or why not? (Hint: you may need to read about the web of trust and how key servers work to answer this question).
**Hint:** gpg2 has a command for downloading a key from a keyserver. Any key server will do, because they synchronise, but the [NZ open pgp keyserver](https://pgp.net.nz/) (DNS name: pgp.net.nz) definitely has the key you are looking for
### Completion
##### XOR encryption
 18. Demonstrate how you would implement a one time pad to encrypt a message “APPLE”. Show your working.
##### Substitution ciphers
It might have occurred to you that combining classical cryptographic algorithms might lead to greater security.
 19. Demonstrate using a worked example that applying a twice using different keys does not result in a ciphertext than is harder to break than applying a once. Include the keys used, the plaintext, ciphertexts and frequency histograms as part of your answer.
 20. During World War II, members of the Māori Battalion wrote their battlefield orders in Te Reo Māori to make it harder to decrypt their messages. Decrypt the following whakataukī (proverb) encrypted using a Caesar cipher. Remember to document your working. The ciphertext is also available as `**maori-battalion.txt**` in the assignment zip file.
You have the following information:
– The Māori alphabet is: a, e, h, i, k, m, n, ng, o, p, r, t, u, w and wh. For the purposes of the exercise, you can ignore macrons.
– You have a “crib”, this is a plaintext and ciphertext pair. The crib is the plaintext word “TE” and its corresponding ciphertext “AM”). * You may want to refer to the [Maori dictionary](https://maoridictionary.co.nz/).
##### Quantum computers
With advances in quantum computing, it may be possible at some point in the future to build a computer that can implement Grover’s algorithm that gives a reduction in time from *n* to the square root of *n*. For example, AES-128 has a 128-bit key requiring 2128 tries. Grover reduces this to 264 tries.
 21. Assume you have a quantum computer, what difference does this make to an exhaustive key search for 1024-bit public and private key. Again assume that you can perform encryption and decryption at a rate of 1,000,000,000 operations per second. Show your working.
##### Searching smarter
 22. A dictionary attack doesn’t blindly search through all possible keys and instead takes advantage of the fact that people may use previous passwords or easy to remember words instead of random keys.
Calculate the worst case time in seconds for for brute forcing an AES encrypted message using a dictionary attack.
You will find it easier to do this calculation using decimal numbers rather than powers of 2 and state the final answer to at least two decimal points.
You can assume the following:
– Only lowercase letters are used.
– Each key is composed of two eight letter dictionary words.
– Each key is 128 bits long.
– Repetitions of the same dictionary word are possible, for example “AARDVARKAARDVARK”.
Each word came from a dictionary of 40,161 eight letter words.
The cracker operates at 1,000,000 tries per second.
##### Public key cryptography
Use the following keys to answer the questions.
The keys are also available in the files `**alilce.txt**`, `**bob.txt**` and `**carol.txt**` in the assignment zipfile.
**Alice’s keys**
MEgCQQCSJUNrtCnB5/27RnXoOcPRu5iRQrBSdjRLi2buyWlm48nwNwgVic5W25 AkTFPLBXRaiebagT+d0mLq1FBAgMBAAE=
**Bob’s keys**
