COMP 232, Cybersecurity

COMP 232, Cybersecurity

Details

Full syllabus for COMP232 (TBA)

Lecturer: Alexei Lisitsa

Demonstrators:

Micheal Abaho

Duncan Adamson

Farah Al-Shareefi

Ryan Ward

Lectures

Monday, 14:00, ENG-WLT (Engineering Building, Walter Lecture Theatre

Tuesday,15:00, ELEC-204 (EEE Building, Room 204)

Wednesday, 10:00, MATH-029 (Mathematics Building, Room 029)

Textbooks

Richard R. Brooks, Introduction to Computer and Network Security, Navigating Shades of Grey, CRC Press, 2014

William Stallings, Network Security Essentials: Applications and Standards, Prentice Hall, 2000 (and later editions )

Useful and Interesting Links related to Cybersecurity

Additional Books

A. Menezes, P. van Oorschot, and S. Vanstone, Handbook of Applied Cryptography, CRC Pres, 1996

Lecture notes (slides) PDF

Introduction Video

Basic Concepts in Security Video

Identification and Authentication Video

RFID repeater used to steal a car
Vulnerabilities in Biometric Systems

Elements of cryptography. Symmetric encryption Video I, Video II

Elements of cryptography. Symmetric encryption, 2 Video

Public Key Encryption Video

RSA algorithm Video (TBA)

Diffie-Hellman key exchange Video (TBA)

Message authentication and hash functions Video,I (TBA)Video,II(TBA)

Additional reading:

Cryptographic Hash Function

Quantum Cryptography and Computations

IBM Q Experience (online platform for quantum computing
Quantum in the Cloud (online access to real quantum processor)
Quantum Access Network
D-Wave. The Quantum Computing Company

Computing over Encrypted Data: homomorphic encryption and CryptDB

Advanced crypto: zero-knowledge proofs and multi-party secure computations

Additional links/reading:

A curated list of multi party computation resources and links

Interactive zero knowledge 3-colorability demonstration
Zero Knowledge Proofs Primer
Zero Knowledge Proofs and Secure Multi Party Computations

Additional reading:

Embedding Covert Channels into TCP/IP, by Steven J. Murdoch and Stephen Lewis

Security Protocols and their Analysis

Further protocols: Electronic voting

Monitoring and intrusion detection

Techniques for intrusion detection

Techniques for Anonymity

Malicious software. Attacks and countermeasures

Additional reading: Chapters 7 and 9 of Richard R. Brooks, Introduction to Computer and Network Security, Navigating Shades of Grey, CRC Press, 2014
DeterLab Session:

SQL injection Exercise

Mock exam paper (it is for COMP522, but the composition of the actual paper is very similar)

Mock exam paper Organization of the real paper will be slightly different. There will be 5 questions of smaller size (3 items in each) from which you have to choose and answer 4 questions.

-->

Practical sessions

Lab 1 (Session B, week starting 04.02): Practical attacks on passwords

Lab 2 (Session A, week starting 11.02): Symmetric Encryption in Java

Lab 3 (Session B, week starting 11.02): How fast is DES encryption?

Labs 4-5 (Sessions A and B, week starting 18.02): Message Authentication and Digital Signatures

Labs 6-7 (Sessions A and B, week starting 25.02): Diffie-Hellman Key Exchange

Lab 8 (Session A, week starting 04.03): HMAC-SHA256: Message Authentication

Lab 9 (Session B, week starting 04.03): Assignment 2

Labs 10-11 (Sessions A and B, week starting 11.03): Intro to Linux and Multi-Party Secure Computations with ObliVM

Labs 12-13 (Sessions A and B, week starting 18.03): Introduction to DeterLab

DeterLab: Cyber-Defense Technology Experimental Research Laboratory

Labs 14-15 (Sessions A and B, week starting 25.03): Securing Legacy Systems with Snort

Securing Legacy Systems, by Jeff Mates

PacketTotal (online PCAP analysis)

Labs 16-17 (Sessions A and B, week starting 01.04): Assignment 3

Additional DeterLab Session:

SQL injection Exercise

Practical assignments

Assignment 1 (Deadline for submission is 1st of March 2019, Friday, 17.00)

Assignment 2 (Deadline for submission is 18th of March 2019, Monday, 17.00)

Assignment 3 (Deadline for submission is 3rd of May 2019, Friday, 17.00)

Programming with JCA

JCA/JCE Reference manual

DES encryption in Java with JCA

AES encryption in Java with JCA

Utility class implementing array of bytes to hex strings conversion

RSA encryption and message digest computing with JCA

Diffie-Hellman Key Exchange with JCA

Message Authentication

HMAC-SHA256 Message Authentication

Last updated 31.03.2019