Applied Cryptography, Second Edition: Protocols, Algorthms, and Source Code in C (cloth)
(Publisher: John Wiley & Sons, Inc.)
Author(s): Bruce Schneier
ISBN: 0471128457
Publication Date: 01/01/96

Foreword by Whitfield Diffie

Preface

About the Author

Chapter 1—Foundations

1.1 Terminology

1.2 Steganography

1.3 Substitution Ciphers and Transposition Ciphers

1.4 Simple XOR

1.5 One-Time Pads

1.6 Computer Algorithms

1.7 Large Numbers

Part I—Cryptographic Protocols

Chapter 2—Protocol Building Blocks

2.1 Introduction to Protocols

2.2 Communications Using Symmetric Cryptography

2.3 One-Way Functions

2.4 One-Way Hash Functions

2.5 Communications Using Public-Key Cryptography

2.6 Digital Signatures

2.7 Digital Signatures with Encryption

2.8 Random and Pseudo-Random-Sequence Generation

Chapter 3—Basic Protocols

3.1 Key Exchange

3.2 Authentication

3.3 Authentication and Key Exchange

3.4 Formal Analysis of Authentication and Key-Exchange Protocols

3.5 Multiple-Key Public-Key Cryptography

3.6 Secret Splitting

3.7 Secret Sharing

3.8 Cryptographic Protection of Databases

Chapter 4—Intermediate Protocols

4.1 Timestamping Services

4.2 Subliminal Channel

4.3 Undeniable Digital Signatures

4.4 Designated Confirmer Signatures

4.5 Proxy Signatures

4.6 Group Signatures

4.7 Fail-Stop Digital Signatures

4.8 Computing with Encrypted Data

4.9 Bit Commitment

4.10 Fair Coin Flips

4.11 Mental Poker

4.12 One-Way Accumulators

4.13 All-or-Nothing Disclosure of Secrets

4.14 Key Escrow

Chapter 5—Advanced Protocols

5.1 Zero-Knowledge Proofs

5.2 Zero-Knowledge Proofs of Identity

5.3 Blind Signatures

5.4 Identity-Based Public-Key Cryptography

5.5 Oblivious Transfer

5.6 Oblivious Signatures

5.7 Simultaneous Contract Signing

5.8 Digital Certified Mail

5.9 Simultaneous Exchange of Secrets

Chapter 6—Esoteric Protocols

6.1 Secure Elections

6.2 Secure Multiparty Computation

6.3 Anonymous Message Broadcast

6.4 Digital Cash

Part II—Cryptographic Techniques

Chapter 7—Key Length

7.1 Symmetric Key Length

7.2 Public-Key Key Length

7.3 Comparing Symmetric and Public-Key Key Length

7.4 Birthday Attacks against One-Way Hash Functions

7.5 How Long Should a Key Be?

7.6 Caveat Emptor

Chapter 8—Key Management

8.1 Generating Keys

8.2 Nonlinear Keyspaces

8.3 Transferring Keys

8.4 Verifying Keys

8.5 Using Keys

8.6 Updating Keys

8.7 Storing Keys

8.8 Backup Keys

8.9 Compromised Keys

8.10 Lifetime of Keys

8.11 Destroying Keys

8.12 Public-Key Key Management

Chapter 9—Algorithm Types and Modes

9.1 Electronic Codebook Mode

9.2 Block Replay

9.3 Cipher Block Chaining Mode

9.4 Stream Ciphers

9.5 Self-Synchronizing Stream Ciphers

9.6 Cipher-Feedback Mode

9.7 Synchronous Stream Ciphers

9.8 Output-Feedback Mode

9.9 Counter Mode

9.10 Other Block-Cipher Modes

9.11 Choosing a Cipher Mode

9.12 Interleaving

9.13 Block Ciphers versus Stream Ciphers

Chapter 10—Using Algorithms

10.1 Choosing an Algorithm

10.2 Public-Key Cryptography versus Symmetric Cryptography

10.3 Encrypting Communications Channels

10.4 Encrypting Data for Storage

10.5 Hardware Encryption versus Software Encryption

10.6 Compression, Encoding, and Encryption

10.7 Detecting Encryption

10.8 Hiding Ciphertext in Ciphertext

10.9 Destroying Information

Part III—Cryptographic Algorithms

Chapter 11—Mathematical Background

11.1 Information Theory

11.2 Complexity Theory

11.3 Number Theory

11.4 Factoring

11.5 Prime Number Generation

11.6 Discrete Logarithms in a Finite Field

Chapter 12—Data Encryption Standard (DES)

12.1 Background

12.2 Description of DES

12.3 Security of DES

12.4 Differential and Linear Cryptanalysis

12.5 The Real Design Criteria

12.6 DES Variants

12.7 How Secure Is DES Today?

Chapter 13—Other Block Ciphers

13.1 Lucifer

13.2 Madryga

13.3 NewDES

13.4 FEAL

13.5 REDOC

13.6 LOKI

13.7 Khufu and Khafre

13.8 RC2

13.9 IDEA

13.10 MMB

13.11 CA-1.1

13.12 Skipjack

Chapter 14—Still Other Block Ciphers

14.1 GOST

14.2 CAST

14.3 Blowfish

14.4 SAFER

14.5 3-Way

14.6 Crab

14.7 SXAL8/MBAL

14.8 RC5

14.9 Other Block Algorithms

14.10 Theory of Block Cipher Design

14.11 Using one-Way Hash Functions

14.12 Choosing a Block Algorithm

Chapter 15—Combining Block Ciphers

15.1 Double Encryption

15.2 Triple Encryption

15.3 Doubling the Block Length

15.4 Other Multiple Encryption Schemes

15.5 CDMF Key Shortening

15.6 Whitening

15.7 Cascading Multiple Block Algorithms

15.8 Combining Multiple Block Algorithms

Chapter 16—Pseudo-Random-Sequence Generators and Stream Ciphers

16.1 Linear Congruential Generators

16.2 Linear Feedback Shift Registers

16.3 Design and Analysis of Stream Ciphers

16.4 Stream Ciphers Using LFSRs

16.5 A5

16.6 Hughes XPD/KPD

16.7 Nanoteq

16.8 Rambutan

16.9 Additive Generators

16.10 Gifford

16.11 Algorithm M

16.12 PKZIP

Chapter 17—Other Stream Ciphers and Real Random-Sequence Generators

17.1 RC4

17.2 SEAL

17.3 WAKE

17.4 Feedback with Carry Shift Registers

17.5 Stream Ciphers Using FCSRs

17.6 Nonlinear-Feedback Shift Registers

17.7 Other Stream Ciphers

17.8 System-Theoretic Approach to Stream-Cipher Design

17.9 Complexity-Theoretic Approach to Stream-Cipher Design

17.10 Other Approaches to Stream-Cipher Design

17.11 Cascading Multiple Stream Ciphers

17.12 Choosing a Stream Cipher

17.13 Generating Multiple Streams from a Single Pseudo-Random-Sequence Generator

17.14 Real Random-Sequence Generators

Chapter 18—One-Way Hash Functions

18.1 Background

18.2 Snefru

18.3 N- Hash

18.4 MD4

18.5 MD5

18.6 MD2

18.7 Secure Hash Algorithm (SHA)

18.8 RIPE-MD

18.9 HAVAL

18.10 Other One-Way Hash Functions

18.11 One-Way Hash Functions Using Symmetric Block Algorithms

18.12 Using Public-Key Algorithms

18.13 Choosing a One-Way Hash Function

18.14 Message Authentication Codes

Chapter 19—Public-Key Algorithms

19.1 Background

19.2 Knapsack Algorithms

19.3 RSA

19.4 Pohlig-Hellman

19.5 Rabin

19.6 ElGamal

19.7 McEliece

19.8 Elliptic Curve Cryptosystems

19.9 LUC

19.10 Finite Automaton Public-Key Cryptosystems

Chapter 20—Public-Key Digital Signature Algorithms

20.1 Digital Signature Algorithm (DSA)

20.2 DSA Variants

20.3 Gost Digital Signature Algorithm

20.4 Discrete Logarithm Signature Schemes

20.5 Ong-Schnorr-Shamir

20.6 ESIGN

20.7 Cellular Automata

20.8 Other Public-Key Algorithms

Chapter 21—Identification Schemes

21.1 Feige-Fiat-Shamir

21.2 Guillou-Quisquater

21.3 Schnorr

21.4 Converting Identification Schemes to Signature Schemes

Chapter 22—Key-Exchange Algorithms

22.1 Diffie-Hellman

22.2 Station-to-Station Protocol

22.3 Shamir’s Three-Pass Protocol

22.4 COMSET

22.5 Encrypted Key Exchange

22.6 Fortified Key Negotiation

22.7 Conference Key Distribution and Secret Broadcasting

Chapter 23—Special Algorithms for Protocols

23.1 Multiple-Key Public-Key Cryptography

23.2 Secret-Sharing Algorithms

23.3 Subliminal Channel

23.4 Undeniable Digital Signatures

23.5 Designated Confirmer Signatures

23.6 Computing with Encrypted Data

23.7 Fair Coin Flips

23.8 One-Way Accumulators

23.9 All-or-Nothing Disclosure of Secrets

23.10 Fair and Failsafe Cryptosystems

23.11 Zero-Knowledge Proofs of Knowledge

23.12 Blind Signatures

23.13 Oblivious Transfer

23.14 Secure Multiparty Computation

23.15 Probabilistic Encryption

23.16 Quantum Cryptography

Part IV—The Real World

Chapter 24—Example Implementations

24.1 IBM Secret-Key Management Protocol

24.2 MITRENET

24.3 ISDN

24.4 STU-III

24.5 Kerberos

24.6 KryptoKnight

24.7 SESAME

24.8 IBM Common Cryptographic Architecture

24.9 ISO Authentication Framework

24.10 Privacy-Enhanced Mail (PEM)

24.11 Message Security Protocol (MSP)

24.12 Pretty Good Privacy (PGP)

24.13 Smart Cards

24.14 Public-Key Cryptography Standards (PKCS)

24.15 Universal Electronic Payment System (UEPS)

24.16 Clipper

24.17 Capstone

24.18 AT&T Model 3600 Telephone Security Device (TSD)

Chapter 25—Politics

25.1 National Security Agency (NSA)

25.2 National Computer Security Center (NCSC)

25.3 National Institute of Standards and Technology (NIST)

25.4 RSA Data Security, Inc.

25.5 Public Key Partners

25.6 International Association for Cryptologic Research (IACR)

25.7 RACE Integrity Primitives Evaluation (RIPE)

25.8 Conditional Access for Europe (CAFE)

25.9 ISO/IEC 9979

25.10 Professional, Civil Liberties, and Industry Groups

25.11 Sci.crypt

25.12 Cypherpunks

25.13 Patents

25.14 U.S. Export Rules

25.15 Foreign Import and Export of Cryptography

25.16 Legal Issues