This course analyzes various security threats to the Internet and discusses countermeasures in the form of cryptographic algorithms and protocols. Threats include denial of service, masquerade, spoofing and identity theft. Specific examples will be drawn from the Computer Early Response Team (CERT) and Internet Engineering Task Force (IETF). These include secure DNS, secure NTP, secure mail and secure electronic commerce. The emphasis is on cryptographic architectures, protocols and algorithms, including public key cryptography, zero-knowledge identity schemes and secret sharing schemes. Of particular importance are schemes to detect and deflect distributed denial of service attacks using sampling techniques.
Prerequisites: ELEG651 or CISC650 or permission of instructor
Supplemental materials: recent papers and reports from IEEE/ACM journals, symposia and IETF archive sites
Exams: Midterm (30%) and final (70%); closed book; no notes