CRYPTOGRAPHY AND NETWORKS
SC 546 : Computer Communications and Networks
Spring 2001 Project

 

 

Prof. : D. Starobinski (staro@bu.edu)
GTF : Ms. Fahmida Bashar (fahmidab@bu.edu)
Soojin Kim(soojin@bu.edu)
Sunghwan Bae(diavolo@bu.edu)
Sanghoon Kim(shoonk@bu.edu)
Yao Gong(yaogong@bu.edu)

 

+Project Goals +Analysis +Project report +References

 


+Project Goals

- Nowadays security in network is getting more and more important. Whether sharing financial, personal, military information, people want to do it securely.Cryptography is one way to achieve the security goal. No one else can understand the encrypted message without prior information. Only people who have the information - called key - can decrypt the cipher text and then can understand it. Even though this cryptography can resolve the security problem, it also creates some drawbacks.
- The major part of the disadvantage is computational overhead. There is no perfect encryption algorithm so far. So people who want more secure system are trying to make the encryption algorithm more complex so that no one can break the system. But complex encryption algorithm takes more time to encrypt a message as the complexity of the crypto system increases. In other words, if you want to use more secure system, you have to spend more time on communication. Another problem is data overhead. During the securing procedure, depending on the algorithm that used to make it secure, it may generate some additional data. It is also an overhead in network point of view.
- In this project, by simulating encryption algorithm in SSL protocol which is the most common data encryption protocol being used in HTTP, in various network conditions, we will see how the encryption algorithm affect the network performance.

 

 

+Analysis
-Fixed bandwidth




-Those three figures show that test results for different data size with the fixed bandwidth. DES and MD5 part is linear to the data size, and RSA is constant. Encrypted data transmission time is also linear to the data size. Even though the RSA is constant, it takes only small part of total processing time, so the total processing time is almost linear to the data size. Unsecured communication is strictly dependent on the data size, so with crypto/without crypto is almost constant.


-Fixed data size

-These show that test results for different bandwidth with the fixed data size. As the bandwidth grows, transmission time decreases, and the time used for cryptography stays constant. So the time with crypto/without crypto is getting bigger.
-This simulation program shows the effect of cryptography in network. Cryptography creates considerable overhead in latency time. Even though all cryptography algorithms that used in SSL are included, the application does not simulate the actual protocol. In real SSL session, the major overhead is from handshaking protocol that includes RSA and negotiation. This test program does not consider the negotiation, so it doesn't show exactly same SSL protocol simulation. It only shows the overhead caused by computations but this can gives intuition about cryptograph effect on the network communication.






+Project report
-report.pdf

 

 



+References

  1. G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha. Securing Electronic Commerce: Reducing the SSL Overhead. IEEE Network, pages 8--16, July/August 2000.
  2. L. Peterson and B. Davie. Computer Networks: A system approach, Morgan Kaufmann, 2000
  3. A. Frier, P. Karlton, and P. Kocher. The SSL 3.0 Protocol. Netscape Communications Corporation, November 1996.
  4. D. Stinson. Cryptography: Theory and Practice. CRC Press, 1995
  5. P. Flinn and J. Jordan. Using the RSA Algorithm for Encryption and Digitial Signitures:
  6. Can You Encrypt, Decrypt, Sign and Verify without Infringing the RSA Patent? 2000. http://geocities.com/einsmir/cyber_law.htm