1 \documentclass[dvipsnames,14pt,t]{beamer}

     2 \usepackage{proof}

     3 \usepackage{beamerthemeplainculight}

     4 \usepackage[T1]{fontenc}

     5 \usepackage[latin1]{inputenc}

     6 \usepackage{mathpartir}

     7 \usepackage{isabelle}

     8 \usepackage{isabellesym}

     9 \usepackage[absolute,overlay]{textpos}

    10 \usepackage{ifthen}

    11 \usepackage{tikz}

    12 \usepackage{courier}

    13 \usepackage{listings}

    14 \usetikzlibrary{arrows}

    15 \usetikzlibrary{positioning}

    16 \usetikzlibrary{calc}

    17 \usepackage{graphicx} 

    18 

    19 \isabellestyle{rm}

    20 \renewcommand{\isastyle}{\rm}%

    21 \renewcommand{\isastyleminor}{\rm}%

    22 \renewcommand{\isastylescript}{\footnotesize\rm\slshape}%

    23 \renewcommand{\isatagproof}{}

    24 \renewcommand{\endisatagproof}{}

    25 \renewcommand{\isamarkupcmt}[1]{#1}

    26 

    27 % Isabelle characters

    28 \renewcommand{\isacharunderscore}{\_}

    29 \renewcommand{\isacharbar}{\isamath{\mid}}

    30 \renewcommand{\isasymiota}{}

    31 \renewcommand{\isacharbraceleft}{\{}

    32 \renewcommand{\isacharbraceright}{\}}

    33 \renewcommand{\isacharless}{$\langle$}

    34 \renewcommand{\isachargreater}{$\rangle$}

    35 \renewcommand{\isasymsharp}{\isamath{\#}}

    36 \renewcommand{\isasymdots}{\isamath{...}}

    37 \renewcommand{\isasymbullet}{\act}

    38 

    39 

    40 

    41 \definecolor{javared}{rgb}{0.6,0,0} % for strings

    42 \definecolor{javagreen}{rgb}{0.25,0.5,0.35} % comments

    43 \definecolor{javapurple}{rgb}{0.5,0,0.35} % keywords

    44 \definecolor{javadocblue}{rgb}{0.25,0.35,0.75} % javadoc

    45 

    46 \lstset{language=Java,

    47 	basicstyle=\ttfamily,

    48 	keywordstyle=\color{javapurple}\bfseries,

    49 	stringstyle=\color{javagreen},

    50 	commentstyle=\color{javagreen},

    51 	morecomment=[s][\color{javadocblue}]{/**}{*/},

    52 	numbers=left,

    53 	numberstyle=\tiny\color{black},

    54 	stepnumber=1,

    55 	numbersep=10pt,

    56 	tabsize=2,

    57 	showspaces=false,

    58 	showstringspaces=false}

    59 

    60 \lstdefinelanguage{scala}{

    61   morekeywords={abstract,case,catch,class,def,%

    62     do,else,extends,false,final,finally,%

    63     for,if,implicit,import,match,mixin,%

    64     new,null,object,override,package,%

    65     private,protected,requires,return,sealed,%

    66     super,this,throw,trait,true,try,%

    67     type,val,var,while,with,yield},

    68   otherkeywords={=>,<-,<\%,<:,>:,\#,@},

    69   sensitive=true,

    70   morecomment=[l]{//},

    71   morecomment=[n]{/*}{*/},

    72   morestring=[b]",

    73   morestring=[b]',

    74   morestring=[b]"""

    75 }

    76 

    77 \lstset{language=Scala,

    78 	basicstyle=\ttfamily,

    79 	keywordstyle=\color{javapurple}\bfseries,

    80 	stringstyle=\color{javagreen},

    81 	commentstyle=\color{javagreen},

    82 	morecomment=[s][\color{javadocblue}]{/**}{*/},

    83 	numbers=left,

    84 	numberstyle=\tiny\color{black},

    85 	stepnumber=1,

    86 	numbersep=10pt,

    87 	tabsize=2,

    88 	showspaces=false,

    89 	showstringspaces=false}

    90 

    91 % beamer stuff 

    92 \renewcommand{\slidecaption}{APP 06, King's College London, 29 October 2012}

    93 

    94 \newcommand{\bl}[1]{\textcolor{blue}{#1}}

    95 \begin{document}

    96 

    97 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

    98 \mode<presentation>{

    99 \begin{frame}<1>[t]

   100 \frametitle{%

   101   \begin{tabular}{@ {}c@ {}}

   102   \\

   103   \LARGE Access Control and \\[-3mm] 

   104   \LARGE Privacy Policies (6)\\[-6mm] 

   105   \end{tabular}}\bigskip\bigskip\bigskip

   106 

   107   %\begin{center}

   108   %\includegraphics[scale=1.3]{pics/barrier.jpg}

   109   %\end{center}

   110 

   111 \normalsize

   112   \begin{center}

   113   \begin{tabular}{ll}

   114   Email:  & christian.urban at kcl.ac.uk\\

   115   Of$\!$fice: & S1.27 (1st floor Strand Building)\\

   116   Slides: & KEATS (also homework is there)\\

   117   \end{tabular}

   118   \end{center}

   119 

   120 

   121 \end{frame}}

   122  %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%     

   123 

   124 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   125 \mode<presentation>{

   126 \begin{frame}[c]

   127 \frametitle{1st Week}

   128 

   129 \begin{itemize}

   130 \item What are hashes and salts?\bigskip\pause

   131 \item \ldots can be use to store securely data on a client, but

   132 you cannot make your protocol dependent on the

   133 presence of the data\bigskip\pause

   134 \item \ldots can be used to store and verify passwords

   135 

   136 \end{itemize}

   137 

   138 \end{frame}}

   139 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   140 

   141 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   142 \mode<presentation>{

   143 \begin{frame}[c]

   144 \frametitle{2nd Week}

   145 

   146 \begin{itemize}

   147 \item Buffer overflows\bigskip

   148 \item choice of programming language can mitigate or even eliminate this problem

   149 \end{itemize}

   150 

   151 \end{frame}}

   152 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   153 

   154 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   155 \mode<presentation>{

   156 \begin{frame}[c]

   157 \frametitle{3rd Week}

   158 

   159 \begin{itemize}

   160 \item defence in depth\bigskip

   161 \item privilege separation afforded by the OS

   162 \end{itemize}

   163 

   164 \begin{center}

   165 \begin{tikzpicture}[scale=1]

   166   

   167   \draw[line width=1mm] (0, 1.1) rectangle (1.2,2);

   168   \draw (4.7,1) node {Internet};

   169   \draw (0.6,1.7) node {\footnotesize Slave};

   170   \draw[line width=1mm] (0, 0) rectangle (1.2,0.9);

   171   \draw (0.6,1.7) node {\footnotesize Slave};

   172   \draw (0.6,0.6) node {\footnotesize Slave};

   173   \draw (0.6,-0.5) node {\footnotesize \begin{tabular}{c}unprivileged\\[-1mm] processes\end{tabular}};

   174   \draw (-2.7,-0.4) node {\footnotesize \begin{tabular}{c}privileged\\[-1mm] process\end{tabular}};

   175   

   176   \draw[line width=1mm] (-1.8, 0) rectangle (-3.6,2);

   177   \draw (-2.9,1.7) node {\footnotesize Monitor};

   178 

   179   \draw[white] (1.7,1) node (X) {};

   180   \draw[white] (3.7,1) node (Y) {};

   181   \draw[red, <->, line width = 2mm] (X) -- (Y);

   182  

   183   \draw[red, <->, line width = 1mm] (-0.4,1.4) -- (-1.4,1.1);

   184   \draw[red, <->, line width = 1mm] (-0.4,0.6) -- (-1.4,0.9);

   185 

   186   \end{tikzpicture}

   187 \end{center}

   188 

   189 \end{frame}}

   190 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   191 

   192 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   193 \mode<presentation>{

   194 \begin{frame}[c]

   195 \frametitle{4th Week}

   196 

   197 \begin{itemize}

   198 \item voting\ldots has security requirements that are in tension with each other

   199 \begin{center}

   200 integrity vs ballot secrecy\\

   201 authentication vs enfranchisment 

   202 \end{center}\bigskip

   203 

   204 \item electronic voting makes `whole sale' fraud easier as opposed to `retail attacks' 

   205 \end{itemize}

   206 

   207 \end{frame}}

   208 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   209 

   210 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   211 \mode<presentation>{

   212 \begin{frame}[c]

   213 \frametitle{5th Week}

   214 

   215 \begin{itemize}

   216 \item access control logic\bigskip

   217 

   218 \item formulas

   219 \item judgements

   220 \item inference rules

   221 \end{itemize}

   222 

   223 \end{frame}}

   224 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   225 

   226 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   227   \mode<presentation>{

   228   \begin{frame}[t]

   229   \frametitle{\Large\begin{tabular}{@ {}c@ {}}Access Control Logic\end{tabular}}

   230   

   231   Formulas

   232   

   233   \begin{itemize}

   234   \item[]

   235   

   236   \begin{center}\color{blue}

   237   \begin{tabular}[t]{rcl@ {\hspace{10mm}}l}

   238   \isa{F} & \isa{{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3A}{\isacharcolon}}{\isaliteral{3D}{\isacharequal}}} & \isa{true} \\

   239             & \isa{{\isaliteral{7C}{\isacharbar}}} & \isa{false} \\

   240             & \isa{{\isaliteral{7C}{\isacharbar}}}   & \isa{F\ {\isaliteral{5C3C616E643E}{\isasymand}}\ F} \\

   241             & \isa{{\isaliteral{7C}{\isacharbar}}}   & \isa{F\ {\isaliteral{5C3C6F723E}{\isasymor}}\ F} \\

   242             & \isa{{\isaliteral{7C}{\isacharbar}}}   & \isa{F\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ F}\\

   243             & \isa{{\isaliteral{7C}{\isacharbar}}}   & \isa{p\ {\isaliteral{28}{\isacharparenleft}}t\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}{\isaliteral{2C}{\isacharcomma}}{\isaliteral{5C3C646F74733E}{\isasymdots}}{\isaliteral{2C}{\isacharcomma}}t\isaliteral{5C3C5E697375623E}{}\isactrlisub n{\isaliteral{29}{\isacharparenright}}} \\  

   244             & \isa{{\isaliteral{7C}{\isacharbar}}}   & \alert{\isa{P\ says\ F}} & \textcolor{black}{``saying predicate''}\\ 

   245   \end{tabular}

   246   \end{center}

   247   

   248   \end{itemize}

   249   

   250 Judgements

   251 

   252 \begin{itemize}

   253 \item[] \mbox{\hspace{9mm}}\bl{$\Gamma \vdash \text{F}$}

   254 \end{itemize}

   255   

   256   \end{frame}}

   257   %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   258 

   259 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   260 \mode<presentation>{

   261 \begin{frame}[c]

   262 \frametitle{Inference Rules}

   263 

   264 \begin{center}

   265 \bl{\infer{\Gamma, F\vdash F}{}}\bigskip\\

   266 

   267 \bl{\infer{\Gamma \vdash F_2}{\Gamma \vdash F_1 \Rightarrow F_2 \quad \Gamma \vdash F_2}}

   268 \qquad

   269 \bl{\infer{\Gamma \vdash F_1 \Rightarrow F_2}{F_1, \Gamma \vdash F_2}}\bigskip\\

   270 

   271 \bl{\infer{\Gamma \vdash P\,\text{says}\, F}{\Gamma \vdash F}}\medskip\\

   272 

   273 \bl{\infer{\Gamma \vdash P \,\text{says}\, F_2}

   274               {\Gamma \vdash P \,\text{says}\, (F_1\Rightarrow F_2) \quad 

   275                \Gamma \vdash P \,\text{says}\, F_1}}

   276 \end{center}

   277 

   278 \end{frame}}

   279 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   280 

   281 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   282 \mode<presentation>{

   283 \begin{frame}[c]

   284 \frametitle{Proofs}

   285 

   286 

   287 

   288 \end{frame}}

   289 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   290 

   291 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   292 \mode<presentation>{

   293 \begin{frame}[c]

   294 \frametitle{The Access Control Problem}

   295 

   296 

   297 \begin{center}

   298   \begin{tikzpicture}[scale=1]

   299   

   300   \draw[line width=1mm] (-.3, -0.5) rectangle (1.5,2);

   301   \draw (-2.7,1) node {\begin{tabular}{l}access\\request\\ (\bl{$F$})\end{tabular}};

   302   \draw (4.2,1) node {\begin{tabular}{l}provable/\\not provable\end{tabular}};

   303   \draw (0.6,0.8) node {\footnotesize \begin{tabular}{l}AC-\\ Checker:\\ applies\\ inference\\ rules\end{tabular}};

   304  

   305   \draw[red, ->, line width = 2mm] (1.7,1) -- (2.7,1); 

   306   \draw[red,<-, line width = 2mm] (-0.6,1) -- (-1.6,1);

   307   \draw[red, <-, line width = 3mm] (0.6,2.2) -- (0.6,3.2); 

   308   

   309   \draw (0.6,4) node {\begin{tabular}{l}\large Access Policy (\bl{$\Gamma$})\end{tabular}};

   310 

   311   \end{tikzpicture}

   312 \end{center}

   313 

   314 \end{frame}}

   315 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   316      

   317 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   318   \mode<presentation>{

   319   \begin{frame}[c]

   320   \frametitle{}

   321 

   322   Recall the following scenario:

   323 

   324   \begin{itemize}

   325   \item If \textcolor{blue}{Admin} says that \textcolor{blue}{\isa{file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}}} 

   326   should be deleted, then this file must be deleted.

   327   \item \textcolor{blue}{Admin} trusts \textcolor{blue}{Bob} to decide whether 

   328   \textcolor{blue}{\isa{file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}}} should be deleted.

   329   \item \textcolor{blue}{Bob} wants to delete \textcolor{blue}{\isa{file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}}}.

   330   \end{itemize}\bigskip

   331 

   332   \small

   333   \textcolor{blue}{\isa{{\isaliteral{5C3C47616D6D613E}{\isasymGamma}}\ {\isaliteral{3D}{\isacharequal}}}\small\begin{tabular}{l}

   334   \isa{{\isaliteral{28}{\isacharparenleft}}Admin\ says\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}},\\

   335   \isa{{\isaliteral{28}{\isacharparenleft}}Admin\ says\ {\isaliteral{28}{\isacharparenleft}}{\isaliteral{28}{\isacharparenleft}}Bob\ says\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}{\isaliteral{29}{\isacharparenright}}\ {\isaliteral{5C3C52696768746172726F773E}{\isasymRightarrow}}\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}{\isaliteral{29}{\isacharparenright}}{\isaliteral{29}{\isacharparenright}}},\\

   336   \isa{Bob\ says\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}}\\

   337   \end{tabular}}\medskip

   338 

   339   \textcolor{blue}{\isa{{\isaliteral{5C3C47616D6D613E}{\isasymGamma}}\ {\isaliteral{5C3C7475726E7374696C653E}{\isasymturnstile}}\ del{\isaliteral{5F}{\isacharunderscore}}file\isaliteral{5C3C5E697375623E}{}\isactrlisub {\isadigit{1}}}}

   340   \end{frame}}

   341   %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   342 

   343 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   344 \mode<presentation>{

   345 \begin{frame}[c]

   346 

   347 How to prove \bl{$\Gamma \vdash F$}?\bigskip\bigskip

   348 

   349 \begin{center}

   350 \Large \bl{\infer{\Gamma, F\vdash F}{}}

   351 \end{center}

   352 

   353 \end{frame}}

   354 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   

   355 

   356 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   357 \mode<presentation>{

   358 \begin{frame}[c]

   359 

   360 \begin{center}

   361 \Large 

   362 \bl{\infer{\Gamma \vdash F_1 \Rightarrow F_2}{F_1, \Gamma \vdash F_2}}

   363 \end{center}

   364 

   365 \end{frame}}

   366 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  

   367 

   368 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   369 \mode<presentation>{

   370 \begin{frame}[c]

   371 

   372 \begin{center}

   373 \Large 

   374 \bl{\infer{\Gamma \vdash P \,\text{says}\, F}{\Gamma \vdash F}}

   375 \end{center}

   376 

   377 \end{frame}}

   378 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  

   379 

   380 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   381 \mode<presentation>{

   382 \begin{frame}[c]

   383 

   384 \begin{center}

   385 \Large 

   386 \bl{\infer{\Gamma \vdash F_1 \vee F_2}{\Gamma \vdash F_1}}\qquad

   387 \bl{\infer{\Gamma \vdash F_1 \vee F_2}{\Gamma \vdash F_2}}\

   388 \end{center}

   389 

   390 \end{frame}}

   391 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  

   392 

   393 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   394 \mode<presentation>{

   395 \begin{frame}[c]

   396 

   397 \begin{center}

   398 \Large 

   399 \bl{\infer{\Gamma \vdash F_1 \wedge F_2}{\Gamma \vdash F_1 \quad \Gamma \vdash F_2}}

   400 \end{center}

   401 

   402 \end{frame}}

   403 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  

   404 

   405 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%

   406 \mode<presentation>{

   407 \begin{frame}[t]

   408 

   409 I want to prove \bl{$\Gamma \vdash \text{Pred}$}\bigskip\bigskip\pause

   410 

   411 \begin{enumerate}

   412 \item I found that \bl{$\Gamma$} contains the assumption \bl{$F_1 \Rightarrow F_2$}\bigskip\pause

   413 \item If I can prove \bl{$\Gamma \vdash F_1$},\pause{} then I can prove

   414 \begin{center}

   415 \bl{$\Gamma \vdash F_2$}

   416 \end{center}\bigskip\pause

   417 

   418 \item So better I try to prove \bl{$\Gamma \vdash \text{Pred}$} with the additional assumption

   419 \bl{$F_2$}.\bigskip

   420 \begin{center}

   421 \bl{$F_2, \Gamma \vdash \text{Pred}$}

   422 \end{center}

   423 

   424 \end{enumerate}

   425 

   426 \end{frame}}

   427 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  

   428 

   429 \end{document}

   430 

   431 %%% Local Variables:  

   432 %%% mode: latex

   433 %%% TeX-master: t

   434 %%% End: 

   435