Introduction to Computer Security (215010)

The Introduction to Computer Security course is primarily intended for first year master students in the Kerckhoff Master Security but it is also suitable for other master students with an interest in security.

Objectives

After completing this course successfully, the student can:
  1. Describe the important concepts in computer security. (E.g. attributes such as Availability, Confidentiality, Integrity, Privacy, methods and mechanisms such as Security Policies, Security Protocols, Identification, Authorization, Physical Tamper Resistance)
  2. Place security techniques in an overall security context; for example, design a system or analyse a situation and determine what the different security techniques could achieve in a given scenario, what techniques to apply to reach a given goal, etc.
  3. Find, survey, and use/explain basic security literature and be able to present this in the form of a scientific paper in English.

Prerequisites

As a prerequisite the course assumes students have the level of a BSc Computer Science, Electrical Engineering, or Mathematics.

Organisation

Language: The class is taught in English.
Lecturer: Prof Dr Pieter Hartel
Teaching assistant: Trajce Dimkov
Time and venue: Mondays 10:45-12:30 in Spiegel building room SP7 but from Nov 8 onwards in Cubicus building room C238 how to get there
Examination: Written examination 50%
Course work: An experiment, a 6 page paper (in a team of three) and peer review 50% instructions in pdf
Credits: 6EC

Contents

Date Topic Pentest Hand in *) Copies Slides Literature Videos
30 Aug Introduction (Crypto, Protocols)   Team & Topics   Power Point [Lam04,Chapter 1 of Men01a] Cold Boot, Card Catcher
6 Sep Biometrics (Fingerprint, Face) Attack scenarios Abstract 1 Power Point [Jai00] Fake Fingerprint
13 Sep Physical (Smart card, RFID, PUF) Attacks Table of contents 1 Power Point [Wit02] Mifare Hack, Keyboard
20 Sep Software (Java, Java Card, PCC) Scout     Power Point [Che00] Alicante, Blue Screen
27 Sep Storage (Database, Disk) Attack scenarios     Power Point [Bri04b,Har08] Millipede, Vanish
4 Oct Network (Internet, WSN) Digital     Power Point [Zam07a,Su07] Longest WSN, WSN on Mars
11 Oct Crime Science       Power Point [Har10] 419 Fraud, Lockpicking
18 Oct Penetration testing and social engineering -
hunt for the digital crown jewels using a door handle
Tom Schuurmans (Guest Lecturer) 		Execute attacks Paper draft 1 Part 1,Part 2 [All06,Cic03,Gra02,Wai02] The Hacker
25 Oct Exam            
8 Nov Reviewing & Paper assignment   Final Paper 4 Power Point [Ros07]  
15 Nov Programme Committee Meeting   Reviews 14      
29 Nov Mini conference   Slides 1      
*) Please hand in your team names, abstracts, papers, and reviews at the beginning of the lecture, on paper. Bring the number of copies specified.

Mini conference

Time and venue: Monday Nov 29 2010 10:45-12:30, Cubicus C238
Call for papers Word and review form Word
Program:
Time # Title and Authors Slides prize
10:50 4 Portunes: tracking insiders through simulation of multiple domains
Rens van der Heide, Christiaan Schade, Keith Davelaar		 power Point  
11:10 6 Criteria for Ranking Attack Scenarios
Marlon Baeten, Joerie de Gram, Joost Wolfswinkel		 power Point  
11:30 5 An Overview of Password Entry Methods for Mobile Devices
Paul Stapersma, Hugo Ideler, Stas Verberkt		 power Point First prize
11:50 11 Efficient Implementation of a Searchable Encryption
Robert Lie, Zhuo Chen, Ping Chen		 power Point Second prize
12:10 12 Do you care about my privacy?
Simona Posea, Andrei Calin, Sebastian Banescu		 power Point Third prize

Examinations

  1. Monday October 25, 13:45-17:30, venue CR 1D Written Examination (Open book, no electronics)
    Past exam papers:
    1. 2008/2009 Word
    2. 2009/2010 Word
    3. 2010/2011 Word
  2. TBA Written Examination (Open book, no electronics, second and last chance in 2010/2011)