Advanced Technology Group

• Home
• Lecturers
• Consultancy
• Contact

Seminars in 2012

 

Information Security
and Cryptography

 

Building Secure
Software Systems

 

Wireless and Mobile
Network Security

 

Applied Information Security, Hands-on!

 

Venue

 

Seminar Enrollment

 

Seminar 1

Information Security and Cryptography —
Fundamentals and Applications

Monday, June 11 (09:00h) – Wednesday, June 13, 2012 (17:00h)
Lecturers: David Basin and Ueli Maurer

 

This seminar provides an in-depth coverage of Information Security and Cryptography from both a conceptual and application-oriented viewpoint. At the same time, the mathematical, algorithmic, protocol-specific, and system-oriented aspects are explained in a way understandable to a wide audience. This includes the foundations needed to understand the different approaches, a critical look at the state-of-the-art, and a perspective on future security technologies.

The material is presented at three different levels. At the highest level, the basic concepts are presented in detail, but abstractly (e.g., as black boxes), without mathematics. No background is required to follow at this level. At an intermediate level, the most important concrete schemes, models, algorithms, and protocols are presented as well as their applications. Here some minimal mathematical and systems background is assumed. At the deepest level, which is not required to understand the higher levels, different special topics, requiring some mathematical background, are discussed

 

Information Security: An Overview

• Information at Risk: Threats, Security Objectives, and Security Measures
• Classification of the Fundamental Information Security Problems
• Information Security as Policy Compliance
• Information Security as Risk Minimization

 

Cryptography: Basic Concepts and Terminology

• Some History
• Types and Models of Cryptographic Systems
• Cryptographic Functions, Hash Functions
• Secrecy, Authenticity, and their Duality and Independence
• Cryptographic Calculus of Channel Security Properties
• Symmetric Cryptography: Block Ciphers, Stream Ciphers, MACs, etc.
• Randomness and Pseudo-Randomness
• Cryptanalytic Attacks, Assumptions, Security Definitions
• Public-Key Cryptosystems, Public-Key Agreement
• Digital Signatures

 

Cryptography Foundations

• Basics of Discrete Mathematics
• Theoretical Foundations of Cryptography
• Discrete Logarithms, Factoring, and other Hard Problems
• Design and Analysis of Cryptographic Systems
• RSA: Workings and Security Analysis
• Diffie-Hellman Protocol: Workings and Security Analysis
• Digital Signature Standard (DSS)
• Elliptic Curve Cryptography
• Modes of Operation for Cryptographic Systems
• Indistinguishability of Systems
• Simulation-based Security Definitions and Proof
• Constructive Cryptography and Universal Composability
• Provable Security

 

System and Network Security

• Review of Networking Essentials
• Trade-offs in Securing Network Layers
• Security Protocols including Kerberos, SSL, IPsec
• Security Architectures
• Firewalls and Intrusion Detection

 

PKI and Key Management

• Key Management Problems
• PKI Certificates, Architectures, and Standards
• Key Revocation and Recovery
• Trust Models (Direct, Cross, Hierarchical, Web of Trust)
• X.509 and PGP
• Naming and Identity
• Certificate Handling in Web Browsers

 

Nonrepudiation and Digital Evidence

• The Digital Evidence Dilemma
• Types of Digital Evidence
• Semantics of Digital Signatures, Certificates, Time-stamps
• Revalidation, Revocation
• Digital Signatures vs. Handwritten Signatures
• Digital Signature Legislation

 

Authentication, Authorization, and Access Control

• AAA Architectures: Authentication, Authorization, and Access Control
• Authentication: Passwords, Biometrics, and Token-based
• Policies and Models
• Access Control Matrix Model
• DAC and MAC Models
• BLP, Biba, and Chinese Wall Models
• RBAC, XACML
• Single Sign-on
• Identity Management

 

Privacy and Usage Control

• Data Protection and Control of Intellectual Property
• Anonymity and Privacy-enhancing Technologies
• Proxies, Mix Networks, and other Anonymity Approaches
• Usage Control Architectures
• Digital Rights Management
• Trusted Computing

 

Advanced Topics in Cryptography

• Cryptographic Protocols
• Zero-Knowledge Protocols
• Digital Payment Systems, E-Cash
• Secure Multi-Party Computation
• E-Voting
• Quantum Cryptography

 

 

Download PDFs here:

• Course description
• Seminar enrollment

 

Here you will find more information about the venue.

 

Seminar's format

The seminar takes place at the Courtyard Zurich North and begins on Monday at 9 AM. The sessions are interactive, with the possibility to decide, on demand, which topics should be treated in more depth. There are coffee breaks in the morning and afternoon. The lecturers will also be available for discussions on all related topics. The lectures and all course material are in English.

 

The seminar is in collaboration with the Department of Computer Science, ETH Zurich

 

Advanced Technology Group GmbH © 2011