Computing a private key from a public key

Computing a public key from a private key

Computing the modular inverse of a number

Factoring large semi-prime numbers

Multiplying large prime numbers

1

2

3

4

5

Block cipher encryption

Hashing

MAC

Public-key encryption

AES encryption

AES MAC

RSA encryption

RSA signatures

SHA-1 hashing

Diffie-Hellman key exchange

Firewalls

OTR messaging (setup phase)

OTR messaging (actual message exchange)

TLS interception

The vendor attests to having released the code

The vendor attests to the code being bug-free

Verisign attests to having released the code

Verisign attests to the code being correct

Verisign attests to the vendor owning their public key

Binding to port 80

Binding to port 8000

Connecting to port 80

Connecting to port 8000

Firewalls commonly block pings

Ping is directed at a low-numbered port

Ping is sent from a low-numbered port

Ping is not carried over SCTP, TCP or UDP

The remote host may not wish to be pinged

Break into both end hosts

Break into either end host

Read network bytes

Send network bytes

Stop network bytes

Alice can decrypt $M$

Alice knows that Bob said $M$

Bob can decrypt $M$

Bob knows that Alice said $M$

$X_A$

$X_B$

$\alpha^{X_A}$

$\alpha^{X_B}$

$\alpha^{X_A} \cdot \alpha^{X_B}$

Mallory can’t send her own $\alpha^{X_A}$

Mallory can’t generate a $k_{AM}$ with Alice

Mallory can’t generate a signature on $k_{AM}$

Mallory can’t fake Alice’s signature on $k_{AB}$

The symmetric key Alice signs won’t match the one Bob is using

Confidentiality

Integrity

Non-repudiability

Perfect forward secrecy

Repudiability

They change keys often

They support multiple devices

They use digital signatures

They use symmetric-key MACs

BGP

IP

SSH

TCP

UDP