SlideShare a Scribd company logo

Database security and privacy

Download as PPTX, PDF
M
Md. Ahasan Hasib

This document discusses database security and privacy. It covers various types of security including discretionary access control based on granting and revoking privileges, mandatory access control and role-based access control. It also discusses threats to database security such as loss of integrity, availability and confidentiality. Methods to protect against these threats include access control, flow control, encryption and decryption. The document also covers public key infrastructure and encryption standards such as DES and AES.

Engineering
1 of 20
Downloaded 17 times
1
2
Most read
3
Most read
4
5
6
7
8
9
10
11
12
13
14
15
16
Most read
17
18
19
20
Database Security And Privacy 1
➢Database security issues ➢Discretionary access control based on grant & revoking privilege. ➢Mandatory access control and role based access ➢Control for multilevel security ➢Encryption & public key infrastructures Security and Privacy
Types of Security: ▶ Legal & Ethical issues regarding the right to access certain information. ▶ System related issues such as the system levels at which various security functions should be enforced , for e.g whether a security function should be handled at the physical hardware level, the operating system level or the DBMSlevel. ▶ The need in some organizations to identify multiple security levels & to categorize the data & users based on these classifications , for e,g top secret, secret, confidential, & unclassified. ▶ Policy issues at the governmental, institutional or corporate level as to what kind of information should be made publicly available, for e.g credit ratings & personal medical records. Database Security Issues
Threats to database result in loss or degradation of following security goals: ▶ Loss of Integrity: Database Integrity refers to the requirement that information be protected from improper modification. ▶ Loss of Availability: Database availability refers to making objects available to the user or a program to which they have a legitimate right. ▶ Loss of Confidentiality: Refers to the protection of data from unauthorized disclosure. ▶ Unauthorized , unanticipated or unintentional disclosure could result in loss of public confidence ▶ Modification of data includes creation, insertion , modification, changing the status of data & deletion. ▶ Integrity is lost if unauthorized changes are made to the data by either intentional or accidental acts. By:-Gourav Kottawar 4 Threats to Database
To protect database against these types of threats four countermeasures can be implemented: ▶ Access Control ▶ Flow Control ▶ Encryption ▶ Decryption By:-Gourav Kottawar 5 Threats to Database(Cont.)
In a multi-user Database System , DBMS must provide techniques to enable certain users or user groups to access selected portions of a database without granting access to the rest of the database. ❖ There are two types of security mechanisms: ▶ Discretionary security Mechanisms: These are used to grant privileges to users, including the capability to access specific data files, records , or fields in a specific mode (such as read, insert, delete or update) ▶ Mandatory Security Mechanisms: These are used to enforce multilevel security by classifying data & users into various security classes. ▶ Example: A role based security, which enforces policies & privileges based on the concept of roles. By:-Gourav Kottawar 6 Methods for Database Security
▶ A major problem to all computer systems is that of preventing unauthorized persons from accessing the system itself. ▶ The security mechanisms of DBMS must include provisions for restricting access to the database system as a whole. ▶ The function is called Access Control & is handled by creating user accounts & passwords to control the login process by the DBMS. By:-Gourav Kottawar 7 Access Control
DBA is the central authority for managing a database system. DBA’s responsibilities include: ▶ Account Creation ▶ Privilege granting ▶ Privilege revocation ▶ Security level assignment Access Control (Cont.)
▶ The typical method of enforcing discretionary access control in a database system is based on the granting & revoking of privileges. Types of Discretionary Privileges: ▶ There are two levels for assigning privileges to use the database system: ◦ The account level: DBA specifies the particular privileges that each account holds independently of the relations in the database. ◦ The relation (table) level: DBA can control the privileges to access each individual relation in the database. 9 Discretionary Access Control
▶ A user who creates a view has precisely those privileges on the view that he or she has on the base tables used to define the view. ▶ The user creating the view must have the SELECT privilege on each underlying table ,so is always granted the SELECT privilege on the view. ▶ The creator of the view has the SELECT privilege with the grant option only if he or she has the SELECT privilege with the grant option on every underlying table. ▶ The user automatically gets the same privilege on the view. ▶ A view may be dropped as a SELECT privilege is revoked from the user who created the view. ▶ If the creator of the view gains additional privilege on the underlying tables, he or she automatically gains additional privileges on the view. By:-Gourav Kottawar 10 Grant & Revoke on views & Integrity Constraints
◦ In this method a user either has or does not have a certain privilege. ◦ This approach is known as mandatory access control. ◦ It is important to note that most of the commercial DBMSs currently provide mechanisms only for discretionary access control. However the need for multilevel security exists in government, military & intelligence applications , as well as in many industrial & corporate applications. Typical security classes are: ◦ Top secret (TS) ◦ Secret (S) ◦ Confidential( C) ◦ Unclassified (U) 12 Mandatory Access Control
▶ Subjects: Individuals who perform some activity on the database. Might include specific people or a group of users. ▶ Objects: Database units that require authorization in order to manipulate. Database units might include an entire table, specific columns in a table, specific rows in a table, etc. ▶ Actions: Any activity that might be performed on an object by a subject. For example: Read, Modify, Insert, Write, Delete, Grant . ▶ Constraint: A more specific rule regarding an aspect of the object and action. By:-Gourav Kottawar 12 Mandatory Access Control(Cont.)
▶ RBAC emerged in 1990s as a proven technology for managing & enforcing security in large scale enterprise wide systems. ▶ Its basic notion is that permissions are associated with roles, & users are assigned to appropriate roles. ▶ Roles can be created using CREATE ROLE & DESTROY ROLE commands. ▶ RBAC appears to be a viable alternative to traditional discretionary & mandatory access controls; it ensures that only authorized users are given access to certain data or resources. ▶ User create sessions during which they may activate a subset of roles to which they belong. By:-Gourav Kottawar 13 Role Based Access Control
▶ The previous access control mechanisms being strong countermeasures, may not be able to protect databases from some threats. ▶ Suppose we communicate data, but our data falls into the hands of some invalid user. ▶ In this situation , by using encryption we can disguise the message so that even if the transmission is diverted, the message will not be revealed. ▶ Encryption is a means of securing data in a insecure environment. ▶ Encryption consists of applying an encryption algorithm to data using some pre specified encryption key. ▶ The resulting data has to be decrypted using a decryption key. By:-Gourav Kottawar 14 Encryption & Public Key Infrastructure
▶ The DES (Data Encryption Standard) is a system developed by the U.S government for use by the general public. ▶ The DES algorithm is a careful & complex combination of two of the fundamental building blocks of encryption: Substitution & Transposition ▶ The AES is a symmetric block cipher chosen by U.S government to protect classified information and is implemented in software and hardware throughout the world to encrypt data. By:-Gourav Kottawar 15 The Data & Advanced Encryption Standards
▶ Public-key systems are becoming popular for transmitting information via the Internet. They are extremely secure and relatively simple to use. The only difficulty with public-key systems is that you need to know the recipient's public key to encrypt a message for him or her. ▶ Private-key system are known as a secrete type of key. It is created as a part of Public-key. Public-key and Private-key are created are paired for secured communication.Such as an Email. Public-Key and Private-key
The Public key Encryption scheme: ◦ Plain Text ◦ Encryption Algorithm ◦ Public key & Private key : Public key is used for encryption & Private key used for decryption. ◦ Cipher Text ◦ Decryption Algorithm By:-Gourav Kottawar 17 Public Key Encryption
▶ Ciphertext (or cyphertext) is the result of encryption performed on plaintext using an algorithm, called a cipher . Ciphertext is also known as encrypted or encoded information because it contains a form of the original plaintext that is unreadable by a human or computer without the proper cipher to decrypt it. Decryption, the inverse of encryption, is the process of turning ciphertext into readable plaintext. By:-Gourav Kottawar 18 Cipher text
▶ Plaintext is information a sender wishes to transmit to a receiver. Cleartext is often used as a synonym. Plaintext has reference to the operation of cryptographic algorithms, usually encryption algorithms Plaintext
Thank You

More Related Content

PDF
Ch05
cs19club
 
PDF
Database backup and recovery
Anne Lee
 
PPTX
Directory structure
sangrampatil81
 
PPTX
File Organization
RAMPRAKASH REDDY ARAVA
 
PPTX
Concurrency Control in Database Management System
Janki Shah
 
PPSX
Functional dependency
Dashani Rajapaksha
 
PDF
Introduction to Database Management System
Amiya9439793168
 
PDF
Dbms 3: 3 Schema Architecture
Amiya9439793168
 
Ch05
cs19club
 
Database backup and recovery
Anne Lee
 
Directory structure
sangrampatil81
 
File Organization
RAMPRAKASH REDDY ARAVA
 
Concurrency Control in Database Management System
Janki Shah
 
Functional dependency
Dashani Rajapaksha
 
Introduction to Database Management System
Amiya9439793168
 
Dbms 3: 3 Schema Architecture
Amiya9439793168
 

What's hot (20)

PPTX
Database indexing techniques
ahmadmughal0312
 
PPTX
Data Dictionary
Vishal Anand
 
PDF
Sql grant, revoke, privileges and roles
Vivek Singh
 
PPTX
Integrity Constraints
Megha yadav
 
PPTX
Object relational database management system
Saibee Alam
 
PPTX
Register allocation and assignment
Karthi Keyan
 
PPTX
Three Address code
Pooja Dixit
 
PDF
Users of dbms
Preet Hanspal
 
PPT
12. Indexing and Hashing in DBMS
koolkampus
 
PPSX
Parallel Database
VESIT/University of Mumbai
 
PPTX
Principal source of optimization in compiler design
Rajkumar R
 
PPTX
Introduction to distributed database
Sonia Panesar
 
PDF
Chapter 6 Database Security and Authorization (4).pdf
abrehamcheru14
 
PPTX
Recovery techniques
Dr. C.V. Suresh Babu
 
PPTX
Error Detection & Recovery.pptx
MohibKhan79
 
PPTX
1.4 data independence
BHARATH KUMAR
 
PPS
Architecture of-dbms-and-data-independence
Anuj Modi
 
PPTX
Dbms 4NF & 5NF
Soham Kansodaria
 
PPT
11 Database Concepts
Praveen M Jigajinni
 
PPTX
Syntax-Directed Translation into Three Address Code
sanchi29
 
Database indexing techniques
ahmadmughal0312
 
Data Dictionary
Vishal Anand
 
Sql grant, revoke, privileges and roles
Vivek Singh
 
Integrity Constraints
Megha yadav
 
Object relational database management system
Saibee Alam
 
Register allocation and assignment
Karthi Keyan
 
Three Address code
Pooja Dixit
 
Users of dbms
Preet Hanspal
 
12. Indexing and Hashing in DBMS
koolkampus
 
Parallel Database
VESIT/University of Mumbai
 
Principal source of optimization in compiler design
Rajkumar R
 
Introduction to distributed database
Sonia Panesar
 
Chapter 6 Database Security and Authorization (4).pdf
abrehamcheru14
 
Recovery techniques
Dr. C.V. Suresh Babu
 
Error Detection & Recovery.pptx
MohibKhan79
 
1.4 data independence
BHARATH KUMAR
 
Architecture of-dbms-and-data-independence
Anuj Modi
 
Dbms 4NF & 5NF
Soham Kansodaria
 
11 Database Concepts
Praveen M Jigajinni
 
Syntax-Directed Translation into Three Address Code
sanchi29
 
Ad

Similar to Database security and privacy (20)

PPTX
Presentation on Database Security in DBMS
Gaurav977214
 
PPTX
Database Security Methods, DAC, MAC,View
Dr-Dipali Meher
 
PPTX
security and privacy in dbms and in sql database
gourav kottawar
 
PPTX
Security of the database
Pratik Tamgadge
 
PPT
8034.ppt
ssuser77162c
 
PPTX
Database managementsystemes_Unit-7.pptxe
chnrketan
 
PPTX
databasemanagementsystemsecuritycyb.pptx
MuhammadMamman2
 
PPT
UNIT-1-Security.ppt
DharaDarji5
 
PDF
ch23-Database Security and Authorization.pdf
MULE38
 
PDF
ch23-Database Security and Authorization.pdf
MULE38
 
PPT
Security and Authorization introductory notes.ppt
SubburamSivakumar1
 
PDF
UNIT 3- DATABASE INTEGRITY AND SECURITY CONCEPTS (1).pdf
KavitaShinde26
 
PPTX
01 database security ent-db
uncleRhyme
 
PPTX
3130703_DBMS_GTU_Study_Material_Presentations_Unit-8_16102020044754AM.pptx
RameshPrasadBhatta2
 
PPT
Data base security
Sara Nazir
 
PPTX
Database Security and Management Systems
IsmaelKakaRealsoft
 
PPTX
Group 8 - Database Security Version 1.pptx
HenryQuang1
 
PPT
UNIT 1 DBMS Security made by me it hrlps you to makr your future bright.ppt
AnuradhaGupta789099
 
PPTX
unit 5 in the database for master of Engineering
poonkodiraja2806
 
PPTX
Database security
Software Engineering
 
Presentation on Database Security in DBMS
Gaurav977214
 
Database Security Methods, DAC, MAC,View
Dr-Dipali Meher
 
security and privacy in dbms and in sql database
gourav kottawar
 
Security of the database
Pratik Tamgadge
 
8034.ppt
ssuser77162c
 
Database managementsystemes_Unit-7.pptxe
chnrketan
 
databasemanagementsystemsecuritycyb.pptx
MuhammadMamman2
 
UNIT-1-Security.ppt
DharaDarji5
 
ch23-Database Security and Authorization.pdf
MULE38
 
ch23-Database Security and Authorization.pdf
MULE38
 
Security and Authorization introductory notes.ppt
SubburamSivakumar1
 
UNIT 3- DATABASE INTEGRITY AND SECURITY CONCEPTS (1).pdf
KavitaShinde26
 
01 database security ent-db
uncleRhyme
 
3130703_DBMS_GTU_Study_Material_Presentations_Unit-8_16102020044754AM.pptx
RameshPrasadBhatta2
 
Data base security
Sara Nazir
 
Database Security and Management Systems
IsmaelKakaRealsoft
 
Group 8 - Database Security Version 1.pptx
HenryQuang1
 
UNIT 1 DBMS Security made by me it hrlps you to makr your future bright.ppt
AnuradhaGupta789099
 
unit 5 in the database for master of Engineering
poonkodiraja2806
 
Database security
Software Engineering
 
Ad

Recently uploaded (20)

PPTX
MET 305 2019 SCHEME MODULE 2 COMPLETE.pptx
VinayB68
 
PDF
Mitigating Risks through Effective Management for Enhancing Organizational Pe...
IJAEMSJORNAL
 
PDF
Unit I ESSENTIAL OF DIGITAL MARKETING.pdf
Nitin Shelake
 
PPTX
Sustainable Sites - Green Building Construction
mhdumerali
 
PPTX
Safety Seminar civil to be ensured for safe working.
DILJEETKUMAR8
 
PDF
Model Code of Practice - Construction Work - 21102022 .pdf
AinieButt1
 
PPT
Mechanical Engineering MATERIALS Selection
arsalanahmad705384
 
PPT
Project quality management in manufacturing
BarMusaTetik
 
PPTX
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
PPTX
Engineering Ethics, Safety and Environment [Autosaved] (1).pptx
MehrabTaseenTalukder
 
PPTX
web development for engineering and engineering
keshriji700
 
PDF
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
PDF
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
PPTX
CH1 Production IntroductoryConcepts.pptx
RacemMellouli1
 
PDF
The CXO Playbook 2025 – Future-Ready Strategies for C-Suite Leaders Cerebrai...
Cerebraix Technologies
 
PDF
Mohammad Mahdi Farshadian CV - Prospective PhD Student 2026
Educational Group Mohammad Farshadian
 
PDF
Enhancing Cyber Defense Against Zero-Day Attacks using Ensemble Neural Networks
IJCNCJournal
 
DOCX
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
PDF
BMEC211 - INTRODUCTION TO MECHATRONICS-1.pdf
ryankakungu
 
PPTX
CARTOGRAPHY AND GEOINFORMATION VISUALIZATION chapter1 NPTE (2).pptx
abhi1361yadav
 
MET 305 2019 SCHEME MODULE 2 COMPLETE.pptx
VinayB68
 
Mitigating Risks through Effective Management for Enhancing Organizational Pe...
IJAEMSJORNAL
 
Unit I ESSENTIAL OF DIGITAL MARKETING.pdf
Nitin Shelake
 
Sustainable Sites - Green Building Construction
mhdumerali
 
Safety Seminar civil to be ensured for safe working.
DILJEETKUMAR8
 
Model Code of Practice - Construction Work - 21102022 .pdf
AinieButt1
 
Mechanical Engineering MATERIALS Selection
arsalanahmad705384
 
Project quality management in manufacturing
BarMusaTetik
 
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
Engineering Ethics, Safety and Environment [Autosaved] (1).pptx
MehrabTaseenTalukder
 
web development for engineering and engineering
keshriji700
 
BIO-INSPIRED HORMONAL MODULATION AND ADAPTIVE ORCHESTRATION IN S-AI-GPT
ijaia
 
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
CH1 Production IntroductoryConcepts.pptx
RacemMellouli1
 
The CXO Playbook 2025 – Future-Ready Strategies for C-Suite Leaders Cerebrai...
Cerebraix Technologies
 
Mohammad Mahdi Farshadian CV - Prospective PhD Student 2026
Educational Group Mohammad Farshadian
 
Enhancing Cyber Defense Against Zero-Day Attacks using Ensemble Neural Networks
IJCNCJournal
 
ASol_English-Language-Literature-Set-1-27-02-2023-converted.docx
AYUSHMANAV
 
BMEC211 - INTRODUCTION TO MECHATRONICS-1.pdf
ryankakungu
 
CARTOGRAPHY AND GEOINFORMATION VISUALIZATION chapter1 NPTE (2).pptx
abhi1361yadav
 

Database security and privacy

  • 2. ➢Database security issues ➢Discretionary access control based on grant & revoking privilege. ➢Mandatory access control and role based access ➢Control for multilevel security ➢Encryption & public key infrastructures Security and Privacy
  • 3. Types of Security: ▶ Legal & Ethical issues regarding the right to access certain information. ▶ System related issues such as the system levels at which various security functions should be enforced , for e.g whether a security function should be handled at the physical hardware level, the operating system level or the DBMSlevel. ▶ The need in some organizations to identify multiple security levels & to categorize the data & users based on these classifications , for e,g top secret, secret, confidential, & unclassified. ▶ Policy issues at the governmental, institutional or corporate level as to what kind of information should be made publicly available, for e.g credit ratings & personal medical records. Database Security Issues
  • 4. Threats to database result in loss or degradation of following security goals: ▶ Loss of Integrity: Database Integrity refers to the requirement that information be protected from improper modification. ▶ Loss of Availability: Database availability refers to making objects available to the user or a program to which they have a legitimate right. ▶ Loss of Confidentiality: Refers to the protection of data from unauthorized disclosure. ▶ Unauthorized , unanticipated or unintentional disclosure could result in loss of public confidence ▶ Modification of data includes creation, insertion , modification, changing the status of data & deletion. ▶ Integrity is lost if unauthorized changes are made to the data by either intentional or accidental acts. By:-Gourav Kottawar 4 Threats to Database
  • 5. To protect database against these types of threats four countermeasures can be implemented: ▶ Access Control ▶ Flow Control ▶ Encryption ▶ Decryption By:-Gourav Kottawar 5 Threats to Database(Cont.)
  • 6. In a multi-user Database System , DBMS must provide techniques to enable certain users or user groups to access selected portions of a database without granting access to the rest of the database. ❖ There are two types of security mechanisms: ▶ Discretionary security Mechanisms: These are used to grant privileges to users, including the capability to access specific data files, records , or fields in a specific mode (such as read, insert, delete or update) ▶ Mandatory Security Mechanisms: These are used to enforce multilevel security by classifying data & users into various security classes. ▶ Example: A role based security, which enforces policies & privileges based on the concept of roles. By:-Gourav Kottawar 6 Methods for Database Security
  • 7. ▶ A major problem to all computer systems is that of preventing unauthorized persons from accessing the system itself. ▶ The security mechanisms of DBMS must include provisions for restricting access to the database system as a whole. ▶ The function is called Access Control & is handled by creating user accounts & passwords to control the login process by the DBMS. By:-Gourav Kottawar 7 Access Control
  • 8. DBA is the central authority for managing a database system. DBA’s responsibilities include: ▶ Account Creation ▶ Privilege granting ▶ Privilege revocation ▶ Security level assignment Access Control (Cont.)
  • 9. ▶ The typical method of enforcing discretionary access control in a database system is based on the granting & revoking of privileges. Types of Discretionary Privileges: ▶ There are two levels for assigning privileges to use the database system: ◦ The account level: DBA specifies the particular privileges that each account holds independently of the relations in the database. ◦ The relation (table) level: DBA can control the privileges to access each individual relation in the database. 9 Discretionary Access Control
  • 10. ▶ A user who creates a view has precisely those privileges on the view that he or she has on the base tables used to define the view. ▶ The user creating the view must have the SELECT privilege on each underlying table ,so is always granted the SELECT privilege on the view. ▶ The creator of the view has the SELECT privilege with the grant option only if he or she has the SELECT privilege with the grant option on every underlying table. ▶ The user automatically gets the same privilege on the view. ▶ A view may be dropped as a SELECT privilege is revoked from the user who created the view. ▶ If the creator of the view gains additional privilege on the underlying tables, he or she automatically gains additional privileges on the view. By:-Gourav Kottawar 10 Grant & Revoke on views & Integrity Constraints
  • 11. ◦ In this method a user either has or does not have a certain privilege. ◦ This approach is known as mandatory access control. ◦ It is important to note that most of the commercial DBMSs currently provide mechanisms only for discretionary access control. However the need for multilevel security exists in government, military & intelligence applications , as well as in many industrial & corporate applications. Typical security classes are: ◦ Top secret (TS) ◦ Secret (S) ◦ Confidential( C) ◦ Unclassified (U) 12 Mandatory Access Control
  • 12. ▶ Subjects: Individuals who perform some activity on the database. Might include specific people or a group of users. ▶ Objects: Database units that require authorization in order to manipulate. Database units might include an entire table, specific columns in a table, specific rows in a table, etc. ▶ Actions: Any activity that might be performed on an object by a subject. For example: Read, Modify, Insert, Write, Delete, Grant . ▶ Constraint: A more specific rule regarding an aspect of the object and action. By:-Gourav Kottawar 12 Mandatory Access Control(Cont.)
  • 13. ▶ RBAC emerged in 1990s as a proven technology for managing & enforcing security in large scale enterprise wide systems. ▶ Its basic notion is that permissions are associated with roles, & users are assigned to appropriate roles. ▶ Roles can be created using CREATE ROLE & DESTROY ROLE commands. ▶ RBAC appears to be a viable alternative to traditional discretionary & mandatory access controls; it ensures that only authorized users are given access to certain data or resources. ▶ User create sessions during which they may activate a subset of roles to which they belong. By:-Gourav Kottawar 13 Role Based Access Control
  • 14. ▶ The previous access control mechanisms being strong countermeasures, may not be able to protect databases from some threats. ▶ Suppose we communicate data, but our data falls into the hands of some invalid user. ▶ In this situation , by using encryption we can disguise the message so that even if the transmission is diverted, the message will not be revealed. ▶ Encryption is a means of securing data in a insecure environment. ▶ Encryption consists of applying an encryption algorithm to data using some pre specified encryption key. ▶ The resulting data has to be decrypted using a decryption key. By:-Gourav Kottawar 14 Encryption & Public Key Infrastructure
  • 15. ▶ The DES (Data Encryption Standard) is a system developed by the U.S government for use by the general public. ▶ The DES algorithm is a careful & complex combination of two of the fundamental building blocks of encryption: Substitution & Transposition ▶ The AES is a symmetric block cipher chosen by U.S government to protect classified information and is implemented in software and hardware throughout the world to encrypt data. By:-Gourav Kottawar 15 The Data & Advanced Encryption Standards
  • 16. ▶ Public-key systems are becoming popular for transmitting information via the Internet. They are extremely secure and relatively simple to use. The only difficulty with public-key systems is that you need to know the recipient's public key to encrypt a message for him or her. ▶ Private-key system are known as a secrete type of key. It is created as a part of Public-key. Public-key and Private-key are created are paired for secured communication.Such as an Email. Public-Key and Private-key
  • 17. The Public key Encryption scheme: ◦ Plain Text ◦ Encryption Algorithm ◦ Public key & Private key : Public key is used for encryption & Private key used for decryption. ◦ Cipher Text ◦ Decryption Algorithm By:-Gourav Kottawar 17 Public Key Encryption
  • 18. ▶ Ciphertext (or cyphertext) is the result of encryption performed on plaintext using an algorithm, called a cipher . Ciphertext is also known as encrypted or encoded information because it contains a form of the original plaintext that is unreadable by a human or computer without the proper cipher to decrypt it. Decryption, the inverse of encryption, is the process of turning ciphertext into readable plaintext. By:-Gourav Kottawar 18 Cipher text
  • 19. ▶ Plaintext is information a sender wishes to transmit to a receiver. Cleartext is often used as a synonym. Plaintext has reference to the operation of cryptographic algorithms, usually encryption algorithms Plaintext