Presentation is loading. Please wait.

Presentation is loading. Please wait.

Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2004.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2004."— Presentation transcript:

1 Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2004

2 Introduction UC Davis –PhD in 2000 –Cryptography –Interested in broader security as well UNR two years CU Boulder two years Computer and Communications Security Center My teaching style and personality

3 This Class http://www.cs.colorado.edu/~jrblack/class/csci6268/f04/ Use above for all materials –Available from my home page –Available from WebCT as well This is a CAETE course –About 4 distance-learning students Any live students today? –Lectures from WebCT, I think –Lectures on VHS in library in Math bldg

4 Logistics TR, ECCS 1B12, 9:30am – 10:45am Final, Monday Dec. 13 th, 10:30am – 1pm Office Hours –ECOT 627, W 4-4:50pm; R 9:00-10:00am –More as needed –jrblack@cs.colorado.edu (better than dropping by without an appt)

5 Grading See course info sheet –Let’s go over it nowit Course Topics –Why no book? –Cryptography and Network Security Quite a blend of math, hacking, and thinking

6 Topics Policy, Law, History –Today Cryptography (can’t help it) –Not how to make it, but how to use it Hacking –Buffer overruns, WEP attack, TCP session hijacking, DDoS, prevention –Some hands-on, but depends on distance students

7 Class Format Informal –Small class –Ask questions –Class participation counts for 5% of grade –(Not sure what to do with distance folks for this yet.)

8 History Early days of Cryptography Lucifer and DES Export restrictions –40 bit keys! Public Key Cryptography –MI6 had it first?! Differential cryptanalysis –NSA knew first

9 Who is the NSA? National Security Agency –Huge –Fort Meade, MD –More mathematicians than anywhere –Classified budget

10 Laws DMCA –Felten RIAA/SDMI case most famous 2001 SDMI challenge –Many believe it’s the right idea, but a bad law –All reverse-engineering is sketchy CALEA (1994) –Communications Assistance for Law Enforcement Act –Recently ruling says VoIP must provide compliance Still in the courts Patriot Act

11 Case Study Accountant for crime ring –Used PGP Pretty Good Privacy Phil Zimmerman –Feds seized computer Couldn’t read files! –Subpoena for keylogger –Worked like a charm!

12 Policy Government has attempted to control encryption before –Skipjack –Key Escrow –Clipper Chip Ultimately failed due to massive protest from “privacy advocates” –Electronic Frontier Foundation (John Gilmore)

13 Economist Survey Please read it Main points –Security is a MUCH broader topic than just SSL and viruses –Firewalls don’t always work –Economics are a factor –And more...

14 What IS Computer Security? Cryptography –Mostly based in mathematics Network Services –Offense: Overflows, SQL injection, format strings, etc –Defense: Firewalls, IDSes, Sandboxing, Honeypots Software Engineering –You have to find all flaws, they only have to find one Soft Science –Trust Models (Bell-LaPadula, Insider Threat, etc) –Economics, Game Theory –Social Engineering

15 What IS Computer Security? Education –Students become our programmers Insufficient training in security issues Various –Credit Card Scanners Should you trust your CC# on the Internet? –ATM story

Download ppt "Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2004."

Similar presentations

Chapter 1  Introduction 1 Introduction Chapter 1  Introduction 2 The Cast of Characters  Alice and Bob are the good guys  Trudy is the bad guy 

Chapter 1  Introduction 1 Introduction Chapter 1  Introduction 2 The Cast of Characters  Alice and Bob are the good guys  Trudy is the bad guy 
Chapter 1  Introduction 1 Chapter 1: Introduction.

Chapter 1  Introduction 1 Chapter 1: Introduction.
Chapter 1  Introduction 1 Chapter 1: Introduction “Begin at the beginning,” the King said, very gravely, “and go on till you come to the end: then stop.”

Chapter 1  Introduction 1 Chapter 1: Introduction “Begin at the beginning,” the King said, very gravely, “and go on till you come to the end: then stop.”
Information Systems Ethics, Computer Crime, and Security

Information Systems Ethics, Computer Crime, and Security
A Gift of Fire, 2edChapter 3: Encryption and Interception of Communications1 PowerPoint ® Slides to Accompany A Gift of Fire : Social, Legal, and Ethical.

A Gift of Fire, 2edChapter 3: Encryption and Interception of Communications1 PowerPoint ® Slides to Accompany A Gift of Fire : Social, Legal, and Ethical.
Foundations of Network and Computer Security J J ohn Black Lecture #2 Aug 26 th 2004 CSCI 6268/TLEN 5831, Fall 2004.

Foundations of Network and Computer Security J J ohn Black Lecture #2 Aug 26 th 2004 CSCI 6268/TLEN 5831, Fall 2004.
Class on Security Raghu. Current state of Security Cracks appear all the time Band Aid solutions Applications are not designed properly OS designs are.

Class on Security Raghu. Current state of Security Cracks appear all the time Band Aid solutions Applications are not designed properly OS designs are.
Foundations of Network and Computer Security J J ohn Black Lecture #37 Dec 14 th 2007 CSCI 6268/TLEN 5831, Fall 2007.

Foundations of Network and Computer Security J J ohn Black Lecture #37 Dec 14 th 2007 CSCI 6268/TLEN 5831, Fall 2007.
Foundations of Network and Computer Security J J ohn Black Lecture #2 Aug 26 th 2009 CSCI 6268/TLEN 5550, Fall 2009.

Foundations of Network and Computer Security J J ohn Black Lecture #2 Aug 26 th 2009 CSCI 6268/TLEN 5550, Fall 2009.
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
Chapter 9 Information Systems Ethics, Computer Crime, and Security

Chapter 9 Information Systems Ethics, Computer Crime, and Security
Copyright © 1995-2006 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci530 Computer Security Systems Lecture.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci530 Computer Security Systems Lecture.
Chapter 21 E-Policy The debate rages. Cryptography Policy What do you think about: Who controls the keys? Public opinion with government IT, civil liberty.

Chapter 21 E-Policy The debate rages. Cryptography Policy What do you think about: Who controls the keys? Public opinion with government IT, civil liberty.
January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS 4600 - © Abdou Illia.

January 14, 2010 Introduction to Ethical Hacking and Network Defense MIS © Abdou Illia.
CIS700: Hardware Support for Security Professor Milo Martin

CIS700: Hardware Support for Security Professor Milo Martin
Chapter 1  Introduction 1 Chapter 1: Introduction “Begin at the beginning,” the King said, very gravely, “and go on till you come to the end: then stop.”

Chapter 1  Introduction 1 Chapter 1: Introduction “Begin at the beginning,” the King said, very gravely, “and go on till you come to the end: then stop.”
Foundations of Network and Computer Security J J ohn Black Lecture #27 Dec 8 th 2005 CSCI 6268/TLEN 5831, Fall 2005.

Foundations of Network and Computer Security J J ohn Black Lecture #27 Dec 8 th 2005 CSCI 6268/TLEN 5831, Fall 2005.
CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: 509-359-6908 Office.

CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: Office.
Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2007.

Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2007.
CMSC 414 Computer (and Network) Security Jonathan Katz.

CMSC 414 Computer (and Network) Security Jonathan Katz.

Similar presentations

Ads by Google