As a crucial part of
computer security, cryptography has become increasingly important. However, due
to the mathematically complex nature of cryptography, misunderstandings,
misuses, and abuses of cryptographic techniques are very common. There is a
huge gap between the theory of cryptography and its application.
In this course, we study
cryptography in a rigorous manner. Our focus is correct application of
cryptographic techniques in practical scenarios, rather than the mathematical
foundations of these techniques. We stress careful design and analysis of
secure systems using existing building blocks. Topics to be covered include
private communications (DES, AES, ECB, CBC, RSA, Rabin), identification and
authentication techniques (passwords, certificates, SSH, Kerberos), secure
protocols (digital cash, Internet auction, electronic voting).
Introductory
course in theory of computing (e.g., CSE 531 or CSE 596) or permission of the
instructor.
¡¤
Security model
and cryptographic tools
¡¤
Encryption
o
Block ciphers: DES,
AES.
o
Chaining modes:
ECB, CBC, CFB, OFB.
o
Public key
systems: RSA, Rabin, ElGamal.
¡¤
Message
authentication
o
Message
Authentication Code (MAC)
o
Digital
signatures
¡¤
Entity
authentication
o
Tools: passwords,
certificates, FFS identification.
o
Systems: IPSec,
SSH, Kerberos.
¡¤
Cryptographic
protocols
o
Models:
knowledge-based security vs. information-based security.
o
Tools: bit
commitments, interactive proofs.
o
Applications:
digital cash, Internet auctions, electronic voting.
¡¤
Additional topics
(if time allows).
Wenbo Mao, Modern
cryptography: theory and practice. Prentice-Hall, PTR.
Douglas Stinson, Cryptography: theory and practice. CRC Press.
Course grades will be
based on problem sets (40%), course project (40%), and class participation
(20%).
See here.
See here.