sen-material: comparison handouts/ho01.tex

equal deleted inserted replaced

-:5b943e29b717
+:3e1a2c8ed980
 \lstset{language=JavaScript}
 \begin{document}
-\fnote{\copyright{} Christian Urban, 2014}
+\fnote{\copyright{} Christian Urban, 2014, 2015}
 \section*{Handout 1 (Security Engineering)}
 Much of the material and inspiration in this module is taken
 that a signature was used. This is a kind of \emph{protocol
 failure}. After discovery, the flaw was mitigated by requiring
 that a link between the card and the bank is established at
 every time the card is used. Even later this group found
 another problem with Chip-and-PIN and ATMs which did not
-generate random enough numbers (nonces) on which the security
+generate random enough numbers (cryptographic nonces) on which
-of the underlying protocols relies.
+the security of the underlying protocols relies.
 The overarching problem with all this is that the banks who
 introduced Chip-and-PIN managed with the new system to shift
 the liability for any fraud and the burden of proof onto the
 customer. In the old system, the banks had to prove that the
 knowing the output. This is often called \emph{preimage
 resistance}. Cryptographic hash functions also ensure that
 given a message and a hash, it is computationally infeasible to
 find another message with the same hash. This is called
 \emph{collusion resistance}. Because of these properties hash
-functions are often called \emph{one-way functions}\ldots you
+functions are often called \emph{one-way functions}: you
 cannot go back from the output to the input (without some
 tricks, see below).
 We can use hashes in our web-application and store in the
 cookie the value of the counter in plain text but together
 with its hash. We need to store both pieces of data in such a
 way that we can extract them again later on. In the code below
-I will just separate them using a \pcode{"-"}, for example
+I will just separate them using a \pcode{"-"}. For the
+counter \pcode{1} for example
 \begin{center}
 \pcode{1-356a192b7913b04c54574d18c28d46e6395428ab}
 \end{center}
-\noindent for the counter \pcode{1}. If we now read back the
+\noindent If we now read back the
 cookie when the client visits our webpage, we can extract the
 counter, hash it again and compare the result to the stored
 hash value inside the cookie. If these hashes disagree, then
 we can deduce that the cookie has been tampered with.
 Unfortunately, if they agree, we can still not be entirely
 to keep the salt secret. Once the salt is public, we better
 ignore all cookies and start setting them again with a new
 salt.
 There is an interesting and very subtle point to note with
-respect to the New York Times' way of checking the number
+respect to the 'New York Times' way of checking the number
 visits. Essentially they have their `resource' unlocked at the
 beginning and lock it only when the data in the cookie states
 that the allowed free number of visits are up. As said before,
 this can be easily circumvented by just deleting the cookie or
 by switching the browser. This would mean the New York Times
 not work, because then this newspaper will cut off any new
 readers, or anyone who gets a new computer. In contrast, our
 web-application has the resource (discount) locked at the
 beginning and only unlocks it if the cookie data says so. If
 the cookie is deleted, well then the resource just does not
-get unlocked. No mayor harm will result to us. You can see:
+get unlocked. No major harm will result to us. You can see:
 the same security mechanism behaves rather differently
 depending on whether the ``resource'' needs to be locked or
 unlocked. Apart from thinking about the difference very
 carefully, I do not know of any good ``theory'' that could
 help with solving such security intricacies in any other way.

changeset 383	3e1a2c8ed980
parent 381	036a762b02cf
child 431	4b53f83c070c