Thut ton m ho bo mt DES Tm tt: DES l thut ton m ho bo mt c s dng rng ri nht trn th gii, thm ch, i vi nhiu

ngi DES v m ho bo mt l ng ngha vi nhau. Bi bo ny gii thiu v thut ton bo mt DES v mt s ng dng thc t ca DES.
Tc gi: Nguyn L Cng

Data Encryption Standard (DES)

I. M u Nm 1972, Vin tiu chun v cng ngh quc gia Hoa k (National Institute of Standards and Technology-NIST) t ra yu cu xy dng mt thut ton m ho bo mt thng tin vi yu cu l d thc hin, s dng c rng ri trong nhiu lnh vc v mc bo mt cao. Nm 1974, IBM gii thiu thut ton Lucifer, thut ton ny p ng hu ht cc yu cu ca NIST. Sau mt s sa i, nm 1976, Lucifer c NIST cng nhn l chun quc gia Hoa k v c i tn thnh Data Encryption Standard (DES). DES l thut ton m ho bo mt c s dng rng ri nht trn th gii, thm ch, i vi nhiu ngi DES v m ho bo mt l ng ngha vi nhau. thi im DES ra i ngi ta tnh ton rng vic ph c kho m DES l rt kh khn, n i hi chi ph hng chc triu USD v tiu tn khong thi gian rt nhiu nm. Cng vi s pht trin ca cc loi my tnh v mng my tnh c tc tnh ton rt cao, kho m DES c th b ph trong khong thi gian ngy cng ngn vi chi ph ngy cng thp. D vy vic ny vn vt xa kh nng ca cc hacker thng thng v m ho DES vn tip tc tn ti trong nhiu lnh vc nh ngn hng, thng mi, thng tin... nhiu nm na c bit vi s ra i ca th h DES mi-"Triple DES". Vy DES hot ng nh th no, bi bo ny s gii thiu nguyn tc lm vic ca DES, mt s ng dng c th ca bo mt DES trong bo mt thng tin trn th gii cng nh nc ta xin c gii thiu trong cc bi vit sau. K t khi DES ra i, nhiu thut ton m ho bo mt khc cng c pht trin tng t DES hoc da trn DES, mt khi nm c cc nguyn tc ca DES bn s d dng hiu cc thut ton ny. Yu cu t ra nu mun bo mt tt hn l phi tm c mt thut ton sao cho vic thc hin khng qu phc tp nhng xc sut tm ra cha kho bng cch th tt c cc trng hp (bruteforce) l rt nh (s ln th phi rt ln). II. Thut ton bo mt DES. V mt khi nim, thng thng thut ton m ho DES l thut ton m, ngha l mi ngi u bit thut ton ny. iu quan trng nht l cha kho ca DES c di ti 56 bit, ngha l s ln th ti a tm c cha kho ln n 2^56, trung bnh l 2^55 = 36.028.797.018.963.968 ln, mt con s rt ln!.

DES c thc hin nh cc php dch, hon v v cc php ton logic trn cc bit. Mi k t trong bc th hay bn tin cn m ho c biu din bi 2 s hexa hay 8 bt. DES m ho tng khi 64 bt tng ng 16 s hexa. thc hin vic m ho DES s dng mt cha kho cng di dng 16 s hexa hay 64 bt tc 8 byte, nhng cc bt th 8 trong cc byte ny b b qua trong khi m ho v vy ln thc t ca cha kho l 56 bit. V d, ta m ho mt bn tin hexa "0123456789ABCDEF" vi cha kho l "5A5A5A5A5A5A5A5A" th kt qu l "72AAE3B3D6916E92". Nu kt qu ny c gii m vi cng cha kho "5A5A5A5A5A5A5A5A" th ta s thu li c ng bn tin "0123456789ABCDEF". DES bao gm 16 vng, ngha l thut ton chnh c lp li 16 ln to ra bn tin c m ho. Sau y chng ti s trnh by quy trnh ca thut ton DES. Chun b cha kho: Bc u tin l chuyn 64 bit cha kho qua mt bng hon v gi l Permuted Choice hay PC-1 thu c cha kho mi c 56 bit. Sau khi vc chun b cha kho v d liu m ho hon thnh, thc hin m ho bng thut ton DES. u tin, khi d liu u vo 64 bit c chia thnh hai na, L v R. L gm 32 bit bn tri v R gm 32 bit bn phi. Qu trnh sau y c lp li 16 ln to thnh 16 vng ca DES gm 16 cp L[0]-L[15] v R[0]-R[15]:

1. R[r-1]- y r l s vng, bt u t 1- c ly v cho qua bng E (E-bit Selection Table), bng ny ging nh mt bng hon v, c iu l mt s bit c dng hn mt ln do vy n s m rng R[r-1] t 32 bit ln 48 bit chun b cho bc tip theo. 2. 48 bit R[r-1] c XOR vi K[r] v c lu trong b nh m, v vy R[r-1] khng thay i. 3. Kt qu ca bc trc li c chia thnh 8 on, mi on 6 bit, t B[1] n B[8]. Nhng on ny to thnh ch s cho cc bng S (Substitution) c s dng bc tip theo. Cc bng S, l mt b 8 bng (S[1]-S[8]) 4 hng, 16 ct. Cc s trong bng c di 4 bit v vy c gi tr t 0 n 15. 4. Bt u t B[1], bit u v cui ca khi 6 bit c ly ra v s dng lm ch s hng ca bng S[1], n c gi tr t 0 n 3, v 4 bit gia c dng lm ch s ct, t 0 n 15. Gi tr c ch n trong bng S c ly ra v lu li. Vic ny c lp li i vi B[2] v S[2] cho n B[8] v S[8]. Lc ny bn c 8 s 4 bit, khi ni li vi nhau theo th t thu c s to ra mt chui 32 bit. 5. Kt qu ca bc trc c hon v bit bng bng hon v P (Permutation). 6. Kt qu thu c sau khi hon v c XOR vi L[r-1] v chuyn vo R[r]. R[r-1] c chuyn vo L[r]. 7. Lc ny bn c L[r] v R[r] mi. Bn tip tc tng r v lp li cc bc trn cho n khi r= 17, Iu c ngha l 16 vng c thc hin v cc cha kho ph K[1]K[16] c s dng.
Khi c L[16] v R[16], chng c ghp li vi nhau theo cch chng b tch ra (L[16] bn tri v R[16] bn phi) thnh 64 bit. 64 bit ny c hon v to ra kt qu cui cng l d liu 64 bit c m ho. Gii m: Vic gii m dng cng mt thut ton nh vic m ho. gii m d liu c m ho, qu trnh nh ging nh m ho c lp lI nhng cc cha kho ph c dng theo th t ngc lI t K[16] n K[1], ngha l trong bc 2 ca qu trnh m ho d liu u vo trn R[r-1] s c XOR vi K[17-r] ch khng phI vi K[r]. Cc ch ca DES: Thut ton DES m ho on tin 64 bit thnh on tin m ho 64 bit. Nu mi khi 64 bit c m ho mt cch c lp th ta c ch m ho ECB (Electronic Code Book). C hai ch khc

ca m ho DES l CBC (Chain Block Coding) v CFB (Cipher Feedback), n lm cho mi on tin m ho 64 bit ph thuc vo cc on tin trc thng qua php ton XOR.

Triple DES:
Triple-DES chnh l DES vi hai cha kho 56 bit. Cho mt bn tin cn m ho, cha kho u tin c dng m ho DES bn tin , kt qu thu c lI c cho qua qu trnh gii m DES nhng vi cha kho l cha kho th hai, bn tin sau qua c bin i bng thut ton DES hai ln nh vy li c m ho DES vi mt ln na vi cha kho u tin ra c bn tin m ho cui cng. Qu trnh m ho DES ba bc ny c gi l Triple-DES.

ng dng ca DES
DES thng c dng m ho bo mt cc thng tin trong qu trnh truyn tin cng nh lu tr thng tin. Mt ng dng quan trng khc ca DES l kim tra tnh xc thc ca mt khu truy nhp vo mt h thng (h thng qun l bn hng, qun l thit b vin thng), hay to v kim tnh hp l ca mt m s b mt (th internet, th in thoi di ng tr trc), hoc ca mt th thng minh (th tn dng, th payphone). Ph kha DES Nm 1998, mt nhm nghin cu chi ph 220.000USD ch to mt thit b c th th ton b s cha kho DES 56 bit trong trung bnh 4,5 ngy. Thng 7 nm 1998 h thng bo ph cha kho DES trong 56 gi. Thit b ny gi l Deep Crack gm 27 board mch, mi board cha 64 chip v c kh nng th 90 t cha kho trong mt giy. Tuy nhin, vic ph kha Triple DES l iu rt kh khn, mt chuyn gia v bo mt cho rng " Khng c silic trong gii ngn h ( ch to chip-TG) cng nh khng thi gian trc khi mt tri b ph hu ph kho Triple DES". III. Kt lun Khng th ph nhn l thut ton DES c nhiu ng dng trong vin thng v cng ngh thng tin, vic lm ch v cng ha cc thut ton rt c ngha i vi s an ton trong cc giao dch trn mng. Nhn chung, i vi Vit Nam, vic lm ch cng ngh cng ha thut ton DES rt c ngha trong vic m bo an ton giao dch trn mng, m bo an ton trong truyn tin cho cc n v c yu ti Vit Nam. Hin nay, chng ti ang trin khai cng ha thut ton DES nh cc cng ngh thit k s hin i, cc chng trnh v mch phn cng s c chng ti cp n trong cc bi bo tip theo.