The seminar will discuss aspects of Computer Security: (1) the damage
caused by breakins, (2) Cryptography, (3) common holes in computer systems, (4) legal issues
in computer security. The goal is to increase awareness of security issues and to expose
students to a side of Computer Science they may be not be aware of.
Topics - tentative
Introduction.
History. Overview of cryptography and computer security.
Symmetric
key encryption.
System
level security.
Common operating system holes. Buffer overflows. Misconfigured
services.
Public
key encryption.
Digital
signatures and message authentication.
Breaking
security systems.
Implementation attacks: timing and power analysis, fault attacks.
Payment
schemes.
Micropayments. SET. Anonymous digital cash. Auctions.
Anonymity
on the Internet.
The need for privacy. Policy issues. Techniques for providing anonymity.
Identification
techniques.
Passwords. One-time passwords. Challenge-response. Zero
knowledge.
Web
security.
Mobile code. Viruses. Security protocols, e.g. SSL.
|