+++ b/app0.scala	Wed Sep 26 02:08:55 2012 +0100
import io.Source
def get_page(url: String) : String = { 
Source.fromURL(url).take(10000).mkString  
+++ b/app1.scala	Wed Sep 26 02:08:55 2012 +0100
import io.Source
import scala.util.matching.Regex
// gets the first ~10K of a page
def get_page(url: String) : String = { 
try {
Source.fromURL(url).take(10000).mkString  
}
catch {
case e => {
println("  Problem with: " + url)
""
}
}
// staring URL for the crawler
val startURL = """"""
// regex for URLs
val http_pattern = """\"https?://[^\"]*\"""".r
def unquote(s: String) = s.drop(1).dropRight(1)
def get_all_URLs(page: String) : Set[String] = {
(http_pattern.findAllIn(page)).map { unquote(_) }.toSet
// naive version - seraches until a given depth
// visits pages potentially more than once
def crawl(url: String, n: Int) : Unit = {
if (n == 0) ()
else {
println("Visiting: " + n + " " + url)
for (u <- get_all_URLs(get_page(url))) crawl(u, n - 1)
}
crawl(startURL, 2)
+++ b/crawler.scala	Wed Sep 26 02:08:55 2012 +0100
import io.Source
import scala.util.matching.Regex
// gets the first ~10K of a page
def get_page(url: String) : String = { 
try {
Source.fromURL(url).take(10000).mkString  
}
catch {
case e => {
println("  Problem with: " + url)
""
}
}
// non-existing page -> returns the empty string
// staring URL for the crawler
val startURL = """"""
// starts with an "
// then either http or https
// then ://
// then any character that is not "
// finally "
val http_pattern = """\"((?:http|https)://(?:[^\"])*)\"""".r
val http_pattern = """\"(https?://[^\"]*)\"""".r
def unquote(s: String) = s.drop(1).dropRight(1)
def get_all_URLs(page: String) : Set[String] = {
(http_pattern.findAllIn(page)).map { unquote(_) }.toSet
// get all urls in startURL
// number of all urls in startURL 
// naive version - seraches until a given depth
// visits pages potentially more than once
def crawl(url: String, n: Int) : Unit = {
if (n == 0) ()
else {
println("Visiting: " + n + " " + url)
for (u <- get_all_URLs(get_page(url))) crawl(u, n - 1)
}
crawl(startURL, 2)
//breadth-first version without visiting 
//pages twice
def bf_crawl(todo: Set[String], visited: Set[String], n: Int) : Unit = {
if (n == 0) ()
else {
val new_todo = todo.flatMap { 
url => {
if (visited.contains(url)) Set[String]()
else {
println("Visiting: " + n + " " + url)
get_all_URLs(get_page(url))
}
}
} 
bf_crawl(new_todo, visited union todo, n - 1)
}
bf_crawl(Set(startURL1), Set(), 2)
//breadth-first version without visiting 
//pages twice and only in "my" domain
val my_pattern = """urbanc""".r
// breadth first search avoiding double searches
def bf_crawl2(todo: Set[String], visited: Set[String], n: Int) : Unit = {
if (n == 0) ()
else {
val new_todo = todo.flatMap { 
url => {
if (visited.contains(url)) Set[String]()
else if (my_pattern.findFirstIn(url) == None) Set[String]()
else {
println("Visiting: " + n + " " + url);
get_all_URLs(get_page(url))
}
}
} 
bf_crawl2(new_todo, visited union todo, n - 1)
}
bf_crawl2(Set(startURL1), Set(), 5)
// email harvester
// from 
val email_pattern = """([a-z0-9_\.-]+)@([\da-z\.-]+)\.([a-z\.]{2,6})""".r
def bf_crawl3(todo: Set[String], visited: Set[String], n: Int) : Unit = {
if (n == 0) ()
else {
val new_todo = todo.flatMap { 
url => {
if (visited.contains(url)) Set[String]()
else {
println("Visiting: " + n + " " + url);
val page = get_page(url)
println(email_pattern.findAllIn(page).mkString("\n"))
get_all_URLs(get_page(url))
}
}
} 
bf_crawl3(new_todo, visited union todo, n - 1)
}
bf_crawl3(Set(startURL1), Set(), 3)
// depth-first version does not work,
// because it might visit pages at depth 1
// while it still wants to visit them at 
// depth 2 
var visited = Set("")
def crawl(url: String, n: Int) : Unit = {
if (n == 0) ()
else if (visited.contains(url)) () //println("Already visited: " + n + " " + url)
else {
println("Visiting: " + n + " " + url);
visited += url
for (u <- getAllURLs(getURLpage(url))) crawl(u, n - 1);
}
+++ b/crawler1.scala	Wed Sep 26 02:08:55 2012 +0100
import io.Source
import scala.util.matching.Regex
// gets the first ~10K of a page
def get_page(url: String) : String = { 
try {
Source.fromURL(url).take(10000).mkString  
}
catch {
case e => {
println("  Problem with: " + url)
""
}
}
// staring URL for the crawler
val startURL = """"""
// regex for URLs
val http_pattern = """\"https?://[^\"]*\"""".r
def unquote(s: String) = s.drop(1).dropRight(1)
def get_all_URLs(page: String) : Set[String] = {
(http_pattern.findAllIn(page)).map { unquote(_) }.toSet
// naive version - seraches until a given depth
// visits pages potentially more than once
def crawl(url: String, n: Int) : Unit = {
if (n == 0) ()
else {
println("Visiting: " + n + " " + url)
for (u <- get_all_URLs(get_page(url))) crawl(u, n - 1)
}
crawl(startURL, 2)
+++ b/crawler2.scala	Wed Sep 26 02:08:55 2012 +0100
import io.Source
import scala.util.matching.Regex
// gets the first ~10K of a page
def get_page(url: String) : String = { 
try {
Source.fromURL(url).take(10000).mkString  
}
catch {
case e => {
println("  Problem with: " + url)
""
}
}
// staring URL for the crawler
val startURL = """"""
// regex for URLs
val http_pattern = """\"https?://[^\"]*\"""".r
+val my_urls = """urbanc""".r
+def unquote(s: String) = s.drop(1).dropRight(1)
+def get_all_URLs(page: String) : Set[String] = {
+  (http_pattern.findAllIn(page)).map { unquote(_) }.toSet
+// naive version - seraches until a given depth
+// visits pages potentially more than once
+def crawl(url: String, n: Int) : Unit = {
+  if (n == 0) ()
+  else if (my_urls.findFirstIn(url) == None) ()
+  else {
+    println("Visiting: " + n + " " + url)
+    for (u <- get_all_URLs(get_page(url))) crawl(u, n - 1)
+  }
+// can now deal with depth 3
+crawl(startURL, 3)
+++ b/scraper.scala	Wed Sep 26 02:08:55 2012 +0100
+val url = new URL("")
+//connect to url
+val conn = url.openConnection
+conn.setRequestProperty("User-Agent", "")
+//sending data
+val wr = new OutputStreamWriter(conn.getOutputStream())
+//receiving data
+val page = fromInputStream(conn.getInputStream).getLines.mkString("\n")
+// regular expression . excludes newlines, 
+// therefore we have to use [\S\s]
+val regex1 = """<tr align="center">[\S\s]*?</tr>""".r
+val rows = regex1.findAllIn(page).toList
+val regex2 = """<td align="center">([\S\s]*?)</td>""".r
+def aux(s: String) : Array[String] = {
+  for (m <- regex2.findAllIn(s).toArray) yield m match {
+    case regex2(value) => value.trim
+  }
+val data = { aux }
+def compare(i: Int)(e: Array[String], f: Array[String]) = e(i).toInt < f(i).toInt
+//day with highest particle pollution (PM_10)
+//day with highest sulfur dioxide (SO_2)
+//day with highest nitro dioxide (NO_2)
+//days with highest PM_10
+val groups = data.groupBy(_(1).toInt)
+val max_key = groups.keySet.max
+++ b/slides01.tex	Wed Sep 26 02:08:55 2012 +0100
 % beamer stuff 
-\renewcommand{\slidecaption}{APP 01, King's College London, 25.~September 2012}
+\renewcommand{\slidecaption}{AFL 01, King's College London, 26.~September 2012}
   \begin{tabular}{@ {}c@ {}}
-  \LARGE Access Control and \\[-3mm] 
-  \LARGE Privacy Policies (1)\\[-6mm] 
+  \\[-3mm]
+  \LARGE Automata and \\[-2mm] 
+  \LARGE Formal Languages (1)\\[-3mm] 
-  %\includegraphics[scale=1.3]{pics/barrier.jpg}
+  \includegraphics[scale=0.3]{pics/ante1.jpg}\hspace{5mm}
+  \includegraphics[scale=0.31]{pics/ante2.jpg}\\
+  \footnotesize\textcolor{gray}{Antikythera automaton, 100 BC (Archimedes?)}
@@ -104,183 +107,46 @@
- %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%     
-\frametitle{\begin{tabular}{@ {}c@ {}}Security Engineers\end{tabular}}
-According to Bruce Schneier, {\bf security engineers} require
-a particular {\bf mindset}:\bigskip
-\draw (0,0) node[inner sep=2mm,fill=cream, ultra thick, draw=red, rounded corners=2mm] 
-``Security engineers --- at least the good ones --- see the world dif$\!$ferently. 
-They can't walk into a store without noticing how they might shoplift. They can't 
-use a computer without wondering about the security vulnerabilities. They can't 
-vote without trying to figure out how to vote twice. They just can't help it.''
-\frametitle{\begin{tabular}{@ {}c@ {}}Chip-and-PIN\end{tabular}}
-\item Chip-and-PIN was introduced in the UK in 2004
-\item before that customers had to sign a receipt\medskip
-\item Is Chip-and-PIN a more secure system?
-\small\textcolor{gray}{(Some other countries still use the old method.)}
-\frametitle{\begin{tabular}{@ {}c@ {}}Yes \ldots\end{tabular}}
-\draw (0,0) node[inner sep=2mm,fill=cream, ultra thick, draw=red, rounded corners=2mm] 
-``Chip-and-PIN is so effective in this country [UK] that fraudsters are starting to move their activities overseas,'' 
-said Emile Abu-Shakra, spokesman for Lloyds TSB (in the Guardian, 2006).
-\item mag-stripe cards cannot be cloned anymore
-\item stolen or cloned cards need to be used abroad 
-\item fraud on lost, stolen and counterfeit credit cards was down \pounds{}60m (24\%) on 2004's figure
-\frametitle{\begin{tabular}{c}But let's see \ldots\end{tabular}}
-\small Bank
+\small Server
-\small costumer / you
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1,-1) node (Y) {};
-  \draw[red, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1,1) node (Y) {};
-  \draw[red, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
+  \begin{tikzpicture}[scale=1.1]
+  \draw[white] (0,1) node (X) {};
+  \draw[white] (2,1) node (Y) {};
+   \draw[white] (0,0) node (X1) {};
+  \draw[white] (2,0) node (Y1) {};
+   \draw[white] (0,-1) node (X2) {};
+  \draw[white] (2,-1) node (Y2) {};
+  \draw[red, <-, line width = 2mm] (X) -- (Y);
+  \node [inner sep=5pt,label=above:\textcolor{black}{GET request}] at ($ (X)!.5!(Y) $) {};
+  \draw[red, ->, line width = 2mm] (X1) -- (Y1);
+  \node [inner sep=5pt,label=above:\textcolor{black}{webpage}] at ($ (X1)!.5!(Y1) $) {};
+  \draw[red, <-, line width = 2mm] (X2) -- (Y2);
+  \node [inner sep=7pt,label=above:\textcolor{black}{POST data}] at ($ (X2)!.5!(Y2) $) {};
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1.4,0) node (Y) {};
-  \draw[red, <->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-\small card\\[-2mm]\small terminal\\[-2mm] \small producer
+\small Browser
-  \begin{tikzpicture}[scale=1.6]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (-1,0.6) node (Y) {};
-  \draw[red, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-\item A ``tamperesitant'' terminal playing Tetris on 
+\item programming languages, compilers
@@ -289,62 +155,93 @@
+transforming strings into structured data\\[10mm]
+{\LARGE\bf Lexing}\medskip\\
+\hspace{5mm}(recognising ``words'')\\[6mm]
-\item in 2006, Shell petrol stations stopped accepting Chip-and-PIN after \pounds{}1m had been stolen from customer accounts\smallskip 
-\item in 2008, hundreds of card readers for use in Britain, Ireland, the Netherlands, Denmark, and Belgium had been 
-expertly tampered with shortly after manufacture so that details and PINs of credit cards were sent during the 9 months 
-before over mobile phone networks to criminals in Lahore, Pakistan
+{\LARGE\bf Parsing}\medskip\\
+\hspace{5mm}(recognising ``sentences'')
-\frametitle{\begin{tabular}{c}Chip-and-PIN is Broken\end{tabular}}
+The subject is quite old:
-\item man-in-the-middle attacks by the group around Ross Anderson\medskip
+\item Turing Machines, 1936
+\item first compiler for COBOL, 1957 (Grace Hopper)
+\item but surprisingly research papers are still published now
+\footnotesize\textcolor{gray}{Grace Hopper}
+{\footnotesize\textcolor{gray}{(she made it to David Letterman's Tonight Show, \url{})}}
+\frametitle{\begin{tabular}{c}This Course\end{tabular}}
-\footnotesize on BBC Newsnight\\[-2mm] 
-\footnotesize in 2010 or \textcolor{blue}{\href{}{youtube}}
+\item regular expression / regular expression matching
+\item a bit of sets (of strings)
+\item automata
+\item the Myhill-Nerode theorem
+\item parsing
+\item grammars
+\item a small interpreter / webbrowser
+\frametitle{\begin{tabular}{c}This Course\end{tabular}}
+\item the ultimate goal is to implement a small web-browser (really small)\bigskip
+Let's start with:
+\item a web-crawler
+\item an email harvester
+\item a web-scraper
-\frametitle{\begin{tabular}{@ {}c@ {}}Chip-and-PIN is Really Broken\end{tabular}}
+\footnotesize a simple function for reading webpages
-\item same group successfully attacked this year card readers and ATM machines
-\item the problem: several types of ATMs generate poor random numbers, which are used as nonces
-\frametitle{\begin{tabular}{c}The Problem \ldots\end{tabular}}
-\small Bank
-\small terminal\\[-2mm] \small producer
-\small costumer / you
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1,-1) node (Y) {};
-  \draw[gray, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1,1) node (Y) {};
-  \draw[gray, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1.4,0) node (Y) {};
-  \draw[gray, <->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-  \begin{tikzpicture}[scale=1.6]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (-1,0.6) node (Y) {};
-  \draw[gray, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-\item the burden of proof for fraud and financial liability was shifted to the costumer
-\end {itemize} 
-\frametitle{\begin{tabular}{c}Being Screwed Again\end{tabular}}
-\item {\bf Responsibility}\\
-``You understand that you are financially responsible for all uses of RBS Secure.''\\
-\frametitle{\begin{tabular}{c}Web Applications\end{tabular}}
-\small Servers from\\[-2mm] 
-\small Inc.
-  \begin{tikzpicture}[scale=2.5]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1,0) node (Y) {};
-  \only<2>{\draw[red, <-, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{GET request}] at ($ (X)!.5!(Y) $) {};}
-  \only<3>{\draw[red, ->, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{webpage}] at ($ (X)!.5!(Y) $) {};}
-  \only<4>{\draw[red, <-, line width = 2mm] (X) -- (Y);
-  \node [inner sep=7pt,label=above:\textcolor{black}{POST data}] at ($ (X)!.5!(Y) $) {};}
-  \end{tikzpicture}
-\small Client(s)
-\item What are pitfalls and best practices?
-\frametitle{\begin{tabular}{c}Scala + Play\end{tabular}}
-\footnotesize a simple response from the server:
-alternative response:\\
-\texttt{\lstinline{Ok("<H1>Hello world!</H1>").as(HTML)}}}
@@ -704,296 +439,23 @@
-\item data integrity needs to be ensured
-\item the counter/hash pair is intended to prevent tampering
-\item SHA-1 is a cryptographic hash function\\
-(MD5, SHA-256, SHA-512, \ldots) 
-\item message $\rightarrow$ digest
-\item no known attack exists, except brute force\bigskip\pause
-\item but dictionary attacks are very ef$\!$fective for extracting passwords (later)
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (3,0) node (Y) {};
-  \draw[red, <-, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:\textcolor{black}{\small should be random}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-  \begin{tikzpicture}[scale=1.3]
-  \draw[white] (0,0) node (X) {};
-  \draw[white] (1,-1) node (Y) {};
-  \draw[red, <-, line width = 2mm] (X) -- (Y);
-  \node [inner sep=5pt,label=above:{}] at ($ (X)!.5!(Y) $) {};
-  \end{tikzpicture}
-\frametitle{\begin{tabular}{c}Unix Passwords\end{tabular}}
-\item passwords are \alert{\bf not} stored in clear text
-\item instead \texttt{/etc/shadow} contains
-\item \texttt{\$} is separator
-\item \texttt{1} is MD5 (actually SHA-512 is used nowadays, \texttt{6})
-\item \texttt{QIGCa} is salt
-\item \texttt{ruJs8AvmrknzKTzM2TYE} $\rightarrow$ password + salt
-(\texttt{openssl passwd -1 -salt QIGCa pippo})
-% Unix password
-\frametitle{\begin{tabular}{c}Password Blunders\end{tabular}}
-\item in late 2009, when an SQL injection attack against online games 
-service exposed 32 million \alert{plaintext} passwords
-\item  1.3 million Gawker credentials exposed in December 2010 containing 
-unsalted(?) \alert{MD5} hashes
-\item June 6th, 2012, 6 million unsalted SHA-1 passwords were leaked from linkedIn
-% linkedIn password
-Web user maintains 25 separate accounts but uses just 6.5 passwords
-%For instance, SHA512crypt, which is included in Mac OS X and most Unix-based operating systems, passes text through 5,000 iterations, a %hurdle that would have limited Gosney to slightly less than 2,600 guesses per second. The Bcrypt algorithm is even more computationally %expensive, in large part because it subjects text to multiple iterations of the Blowfish cipher that was deliberately modified to increase the %time required to generate a hash. PBKDF2, a function built into Microsoft's .Net software developer framework, offers similar benefits.
-% rainbow tables
-\frametitle{\begin{tabular}{c}Brute Forcing Passwords\end{tabular}}
-\item How fast can hackers crack SHA-1 passwords? \pause
-\item The answer is 2 billion attempts per second\\ 
-using a Radeon HD 7970
-\begin{tabular}{@ {\hspace{-12mm}}rl}
-password length & time\smallskip\\\hline
-5 letters & 5 secs\\
-6 letters & 500 secs\\
-7 letters & 13 hours\\
-8 letters & 57 days\\
-9 letters & 15 years\\
-5 letters $\approx$ 100$^5$ $=$ 10 billion combinations\\ 
-(1 letter - upper case, lower case, digits, symbols $\approx$ 100)
-\footnotesize graphics card\\[-1mm]
-\footnotesize ca.~\pounds{}300
-How to recover from a breakin?\pause\medskip
-\item Do not send passwords in plain text.
-\item Security questions are tricky to get right.
-\item QQ (Chinese Skype) authenticates you via contacts.
-\frametitle{\begin{tabular}{c}This Course\end{tabular}}
-\item break-ins (buffer overflows)
-\item access control\\ (role based, data security / data integrity)
-\item protocols\\
-\item access control logic
-\item privacy
-Scott McNealy: \\``You have zero privacy anyway. Get over it.''
-\frametitle{\begin{tabular}{c}Books + Homework\end{tabular}}
-\item there is no single book I am following
-\item The question ``Is this relevant for the exams'' is not appreciated!\medskip\\
+\item The question ``Is this relevant for the exams?'' is not appreciated!\bigskip\\
 Whatever is in the homework sheets (and is not marked optional) is relevant for the
-exam. No code needs to be written.
+exam.\\ No code needs to be written.
-\frametitle{\begin{tabular}{c}Take-Home Points\end{tabular}}
-\item Never store passwords in plain text.\medskip
-\item Always salt your hashes!\medskip
-\item Use an existing algorithm; do not write your own!
-\frametitle{\begin{tabular}{c}Thinking as a Defender\end{tabular}}
-\item What are you trying to protect?
-\item What properties are you trying to enforce?\medskip
-\item Who are the attackers? Capabilities? Motivations?
-\item What kind of attack are we trying to protect?
-\item Who can fix any vulnerabilities?\medskip
-\item What are the weaknesses of the system?
-\item What will successful attacks cost us?
-\item How likely are the attacks?
-\textcolor{gray}{Security almost always is {\bf not} free!}
-\frametitle{\begin{tabular}{c}The Security Mindset\end{tabular}}
-\item How things can go wrong.
-\item Think outside the box.
-The difference between being criminal is to only \alert{\bf think} about how things can go wrong.