book

Serious Cryptography

by Jean-Philippe Aumasson

November 2017

Intermediate to advanced

312 pages

9h 7m

English

No Starch Press

Read now

Unlock full access

This Book’s ApproachWho This Book Is ForHow This Book Is OrganizedAcknowledgments
The BasicsClassical CiphersHow Ciphers WorkPerfect Encryption: The One-Time PadEncryption SecurityAsymmetric EncryptionWhen Ciphers Do More Than EncryptionHow Things Can Go WrongFurther Reading
Random or Non-Random?Randomness as a Probability DistributionEntropy: A Measure of UncertaintyRandom Number Generators (RNGs) and Pseudorandom Number Generators (PRNGs)Real-World PRNGsHow Things Can Go WrongFurther Reading

Defining the ImpossibleQuantifying SecurityAchieving SecurityGenerating KeysHow Things Can Go WrongFurther Reading
What Is a Block Cipher?How to Construct Block CiphersThe Advanced Encryption Standard (AES)Implementing AESModes of OperationHow Things Can Go WrongFurther Reading
How Stream Ciphers WorkHardware-Oriented Stream CiphersSoftware-Oriented Stream CiphersHow Things Can Go WrongFurther Reading
Secure Hash FunctionsBuilding Hash FunctionsThe SHA Family of Hash FunctionsThe BLAKE2 Hash FunctionHow Things Can Go WrongFurther Reading
Message Authentication Codes (MACs)Pseudorandom Functions (PRFs)Creating Keyed Hashes from Unkeyed HashesCreating Keyed Hashes from Block Ciphers: CMACDedicated MAC DesignsHow Things Can Go WrongFurther Reading
Authenticated Encryption Using MACsAuthenticated CiphersAES-GCM: The Authenticated Cipher StandardOCB: An Authenticated Cipher Faster than GCMSIV: The Safest Authenticated Cipher?Permutation-Based AEADHow Things Can Go WrongFurther Reading
Computational HardnessComplexity ClassesThe Factoring ProblemThe Discrete Logarithm ProblemHow Things Can Go WrongFurther Reading
The Math Behind RSAThe RSA Trapdoor PermutationRSA Key Generation and SecurityEncrypting with RSASigning with RSARSA ImplementationsHow Things Can Go WrongFurther Reading
The Diffie–Hellman FunctionThe Diffie–Hellman ProblemsKey Agreement ProtocolsDiffie–Hellman ProtocolsHow Things Can Go WrongFurther Reading
What Is an Elliptic Curve?The ECDLP ProblemDiffie–Hellman Key Agreement over Elliptic CurvesChoosing a CurveHow Things Can Go WrongFurther Reading
Target Applications and RequirementsThe TLS Protocol SuiteTLS 1.3 Improvements over TLS 1.2The Strengths of TLS SecurityHow Things Can Go WrongFurther Reading
How Quantum Computers WorkQuantum Speed-UpWhy Is It So Hard to Build a Quantum Computer?Post-Quantum Cryptographic AlgorithmsHow Things Can Go WrongFurther Reading

Overview

"This practical guide to modern encryption breaks down the fundamental mathematical concepts at the heart of cryptography without shying away from meaty discussions of how they work. You’ll learn about authenticated encryption, secure randomness, hash functions, block ciphers, and public-key techniques such as RSA and elliptic curve cryptography.

You'll also learn:

• Key concepts in cryptography, such as computational security, attacker models, and forward secrecy• The strengths and limitations of the TLS protocol behind HTTPS secure websites• Quantum computation and post-quantum cryptography• About various vulnerabilities by examining numerous code examples and use cases• How to choose the best algorithm or protocol and ask vendors the right questions

Each chapter includes a discussion of common implementation mistakes using real-world examples and details what could go wrong and how to avoid these pitfalls.

Whether you’re a seasoned practitioner or a beginner looking to dive into the field, Serious Cryptography will provide a complete survey of modern encryption and its applications."