Book Image

Modern Cryptography for Cybersecurity Professionals

By : Lisa Bock
Book Image

Modern Cryptography for Cybersecurity Professionals

By: Lisa Bock

Overview of this book

In today's world, it is important to have confidence in your data storage and transmission strategy. Cryptography can provide you with this confidentiality, integrity, authentication, and non-repudiation. But are you aware of just what exactly is involved in using cryptographic techniques? Modern Cryptography for Cybersecurity Professionals helps you to gain a better understanding of the cryptographic elements necessary to secure your data. The book begins by helping you to understand why we need to secure data and how encryption can provide protection, whether it be in motion or at rest. You'll then delve into symmetric and asymmetric encryption and discover how a hash is used. As you advance, you'll see how the public key infrastructure (PKI) and certificates build trust between parties, so that we can confidently encrypt and exchange data. Finally, you'll explore the practical applications of cryptographic techniques, including passwords, email, and blockchain technology, along with securely transmitting data using a virtual private network (VPN). By the end of this cryptography book, you'll have gained a solid understanding of cryptographic techniques and terms, learned how symmetric and asymmetric encryption and hashed are used, and recognized the importance of key management and the PKI.

Related Content you might be interested in

Current Title:

Small book image
Modern Cryptography for Cybersecurity Professionals
Lisa Bock
Jun, 2021 | 286 pages
Small book image
Identity Management with Biometrics
Lisa Bock
Oct, 2020 | 368 pages
Small book image
TLS Cryptography In-Depth
Dr Paul Duplys | Dr Roland Schmitz
Jan, 2024 | 712 pages
Small book image
Cryptography Algorithms
Massimo Bertaccini
Mar, 2022 | 358 pages
Table of Contents (16 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Reviews
1
Section 1: Securing Our Data
Section 1: Securing Our Data
Free Chapter
2
Chapter 1: Protecting Data in Motion or at Rest
Chapter 1: Protecting Data in Motion or at Rest
Outlining the current threat landscape
Understanding security services
Introducing common cryptographic concepts
Outlining substitution and transposition
Summary
Questions
Further reading
3
Chapter 2: The Evolution of Ciphers
Chapter 2: The Evolution of Ciphers
Early uses of cryptography
Encoding transmissions during war
Entering the digital age
Summary
Questions
Further reading
4
Chapter 3: Evaluating Network Attacks
Chapter 3: Evaluating Network Attacks
Comparing passive and active attacks
Protecting sensitive data
Maintaining integrity
Summary
Questions
Further reading
5
Section 2: Understanding Cryptographic Techniques
Section 2: Understanding Cryptographic Techniques
6
Chapter 4: Introducing Symmetric Encryption
Chapter 4: Introducing Symmetric Encryption
Discovering the evolution of symmetric encryption
Outlining symmetric algorithms
Dissecting block and stream ciphers
Comparing symmetric encryption operation modes
Securing wireless communications
Summary
Questions
Further reading
7
Chapter 5: Dissecting Asymmetric Encryption
Chapter 5: Dissecting Asymmetric Encryption
Realizing the need for asymmetric encryption
Understanding cryptographic requirements
Comparing public-key algorithms
Working with digital signatures
Summary
Questions
Further reading
8
Chapter 6: Examining Hash Algorithms
Chapter 6: Examining Hash Algorithms
Describing a hash algorithm
Identifying optimal hash properties
Comparing common hash algorithms
Authenticating a message
Summary
Questions
Further reading
9
Section 3: Applying Cryptography in Today's World
Section 3: Applying Cryptography in Today's World
10
Chapter 7: Adhering to Standards
Chapter 7: Adhering to Standards
Understanding FIPS and PCI DSS
Staying compliant
Leveraging encrypted data
Summary
Questions
Further reading
11
Chapter 8: Using a Public Key Infrastructure
Chapter 8: Using a Public Key Infrastructure
Describing a PKI framework
Managing public keys
Examining a certificate
Summary
Questions
Further reading
12
Chapter 9: Exploring IPsec and TLS
Chapter 9: Exploring IPsec and TLS
Using a VPN
Outlining an IPsec VPN
Understanding TLS
Summary
Questions
Further reading
13
Chapter 10: Protecting Cryptographic Techniques
Chapter 10: Protecting Cryptographic Techniques
Recognizing cryptographic attacks
Attacking the infrastructure
Influence of quantum computing
Summary
Questions
Further reading
14
Assessments
Chapter 1 – Protecting Data in Motion or at Rest
Chapter 2 – The Evolution of Ciphers
Chapter 3 – Evaluating Network Attacks
Chapter 4 – Introducing Symmetric Encryption
Chapter 5 – Dissecting Asymmetric Encryption
Chapter 6 – Examining Hash Algorithms
Chapter 7 – Adhering to Standards
Chapter 8 – Using a Public Key Infrastructure
Chapter 9 – Exploring IPsec and TLS
Chapter 10 – Protecting Cryptographic Techniques
Why subscribe?
15
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Leave a review - let other readers know what you think

Chapter 1: Protecting Data in Motion or at Rest

We live in an exciting yet challenging time. Every second of the day there are zettabytes of data traveling over networks and the internet. Data is constantly being sent and received from our homes, cars, businesses, and billions of Internet of Things (IoT) devices. In this chapter, you'll gain an appreciation for the need to secure our data in a dynamic digital world. We'll begin with a brief look at how, over the past few decades, we have seen advances in technology that have resulted in more of our data being exchanged. Concurrent to the advances in technology, we have seen an increase in the type and amount of threats to our data.

So that you understand the many resources available on guidelines for ensuring our data is not compromised, we'll take a look at the Security architecture for Open Systems Interconnection for CCITT applications, also known as X.800. You'll learn how encryption provides many security services, which include ensuring confidentiality, integrity, authentication, forward secrecy, non-repudiation, and enhanced privacy guarantees. In addition, we'll outline some common cryptographic concepts, such as Trusted Third Party (TTP) and the Public Key Infrastructure (PKI). We'll also cover how we use the story of Bob, Alice, and other personalities to help us understand complex technical concepts.

We'll then cover some basic encryption techniques. You'll see how using substitution or transposition can scramble data into an unreadable form that won't make sense unless you have the key to decrypt the message. In order to better understand substitution and transposition, we will discuss some illustrative examples that employ two basic ciphers, namely pigpen and rail fence. Finally, we'll outline some basic techniques, such as letter frequency analysis, which can be used to break some codes.

This chapter covers the following main topics:

  • Outlining the current threat landscape
  • Understanding security services
  • Introducing common cryptographic concepts
  • Outlining substitution and transposition
Previous Section
End of Section 1
Next Section