Mercurial Mercurial > hg > sen-material / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
slides/slides05.tex
changeset 254 0d491b5654f9
parent 253 4020ba76cc07
child 255 9cf486aea756
equal deleted inserted replaced
253:4020ba76cc07 254:0d491b5654f9 
   312 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%      
   312 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%      
   313 
   313 
   314 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
   314 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
   315 \mode<presentation>{
 
   315 \mode<presentation>{
 
   316 \begin{frame}[c]
 
   316 \begin{frame}[c]
 
       
   317 \frametitle{Trusted Third Party}
 
       
   318 
       
   319 Simple protocol for establishing a secure connection via a mutually
 
       
   320 trusted 3rd party (server):
 
       
   321 
       
   322 \begin{center}
 
       
   323 \begin{tabular}{r@ {\hspace{1mm}}l}
 
       
   324 \bl{$A \rightarrow S :$} & \bl{$A, B$}\\
 
       
   325 \bl{$S \rightarrow A :$} & \bl{$\{K_{AB}\}_{K_{AS}}$} and \bl{$\{\{K_{AB}\}_{K_{BS}} \}_{K_{AS}}$}\\
 
       
   326 \bl{$A \rightarrow B :$} & \bl{$\{K_{AB}\}_{K_{BS}} $}\\
 
       
   327 \bl{$A \rightarrow B :$} & \bl{$\{m\}_{K_{AB}}$}\\
 
       
   328 \end{tabular}
 
       
   329 \end{center}
 
       
   330 
       
   331 \end{frame}}
 
       
   332 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
       
   333 
       
   334 
       
   335 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
       
   336 \mode<presentation>{
 
       
   337 \begin{frame}[c]
 
   317 \frametitle{Protocol Attacks}
 
   338 \frametitle{Protocol Attacks}
 
   318 
   339 
   319 \begin{itemize}
 
   340 \begin{itemize}
 
   320 \item replay attacks
 
   341 \item replay attacks
 
   321 \item reflection attacks
 
   342 \item reflection attacks
 
   337 \frametitle{Public-Key Infrastructure}
 
   358 \frametitle{Public-Key Infrastructure}
 
   338 
   359 
   339 \begin{itemize}
 
   360 \begin{itemize}
 
   340 \item the idea is to have a certificate authority (CA)
 
   361 \item the idea is to have a certificate authority (CA)
 
   341 \item you go to the CA to identify yourself
 
   362 \item you go to the CA to identify yourself
 
   342 \item CA: ``I, the CA, have verified that public key \bl{$P^{pub}_{Bob}$} belongs to Bob''\bigskip
 
   363 \item CA: ``I, the CA, have verified that public key 
       
   364   \bl{$P^{pub}_{Bob}$} belongs to Bob''\bigskip
 
   343 \item CA must be trusted by everybody
 
   365 \item CA must be trusted by everybody
 
   344 \item What happens if CA issues a false certificate? Who pays in case of loss? (VeriSign 
   366 \item What happens if CA issues a false certificate? Who pays in case of loss? (VeriSign 
   345 explicitly limits liability to \$100.)
 
   367 explicitly limits liability to \$100.)
 
   346 \end{itemize}
 
   368 \end{itemize}
 
   347 
   369 
   428 
   450 
   429 \end{frame}
 
   451 \end{frame}
 
   430 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
   452 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
   431 
   453 
   432 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
   454 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
       
   455 \begin{frame}[c]
 
       
   456 \frametitle{Person-in-the-Middle}
 
       
   457 
       
   458 \begin{itemize}
 
       
   459 \item Border Gateway Protocol (BGP) --- routers believe 
       
   460   their neighbours
 
       
   461 \item it is possible to advertise bad routes
 
       
   462 \item can be done over continents\bigskip 
       
   463 \end{itemize}
 
       
   464 
       
   465 \hfill\footnotesize\url{http://www.renesys.com/2013/11/mitm-internet-hijacking/}
 
       
   466 \end{frame}
 
       
   467 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% 
       
   468 
       
   469 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
   433 \mode<presentation>{
 
   470 \mode<presentation>{
 
   434 \begin{frame}[c]
 
   471 \begin{frame}[c]
 
   435 \frametitle{Best Practices}
 
   472 \frametitle{Best Practices}
 
   436 
   473 
   437 {\bf Principle 1:} Every message should say what it means: the interpretation of 
   474 {\bf Principle 1:} Every message should say what it means: the interpretation of 
   497 \end{quote}
 
   534 \end{quote}
 
   498 
   535 
   499 \end{frame}}
 
   536 \end{frame}}
 
   500 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
   537 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
   501 
   538 
       
   539 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 
       
   540 \begin{frame}[c]
 
       
   541 \frametitle{Mid-Term}
 
       
   542 
       
   543 \begin{itemize}
 
       
   544 \item homework, handouts, programs\ldots
 
       
   545 \end{itemize}\bigskip\bigskip\bigskip
 
       
   546 
       
   547 \begin{center}
 
       
   548 {\huge\bf\alert{Any Questions?}}
 
       
   549 \end{center}
 
       
   550 
       
   551 \end{frame}
 
       
   552 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
       
   553 
       
   554 
   502 \end{document}
 
   555 \end{document}
 
   503 
   556 
   504 %%% Local Variables:  
   557 %%% Local Variables:  
   505 %%% mode: latex
 
   558 %%% mode: latex
 
   506 %%% TeX-master: t
 
   559 %%% TeX-master: t
sen-material