Course Calendar Fall 2002

• Outline of Course [OC02]
• Basic security properties (Chapter 1) 
• Conventional Encryption: (Chapter 3.1 - 3.3, 3.7)
• DES, Electronic Code Book, Cipher Block Chaining

What was covered in class:

• Course outline
• Feistel ciphers

•  Confidentiality: (Chapter 5.1 - 5.3)
• Placement of Encryption, Traffic Confidentiality, Key Distribution

What was covered in class:

• Introduction to key distribution protocols
• Needham Schroeder secret key protocol
• Introduction to BAN logic

• Public-Key Cryptography (Chapter 6.1 - 6.3)
• Principles of Public-Key Cryptosystems, RSA, Key Management
• Message Authentication and Hash Functions (Chapter 8.1 - 8.4)
• Authentication requirements, authentication functions, message authentication codes, hash functions
• Hash Functions (Chapter 9.2)
• Secure Hash Algorithm (SHA-1)

What was covered in class

• Analysis of Needham-Schroeder Protocol with shared keys using the BAN logic

• Digital Signatures and Authentication Protocols (Chapter 10.1 - 10.3)
• Digital signatures, authentication protocols, digital signature standard

What was covered in class

• Conclusion of BAN analysis of Needham-Schroeder protocol
• Introduction to digital signatures & public-key certificates

• Authentication Applications (Chapter 11.1 - 11.2)
• Kerberos, X.509 Authentication Service

What was covered in class

• Description of Kerberos in BAN logic
• Using predicate calculus to describe cryptographic protocols and algorithms

• Fundamentals: Focus on textbook through Chapter 11
• BAN logic

• Properties
• Examples 

What was covered in class

• Definitions and properties of RBAC

• Properties 
• Examples 

What was covered in class

• Proof of theorem 1: Consistency of static separation of duty (SSD) and containment.  Two non-empty roles, i and j, can be mutually exclusive only if they are incomparable within the role hierarchy poset.

• Modal  Logic and Model

What was covered in class

• Notation of the calculus
• Kripke structures
• Example illustrating possible worlds

• Modal Logic and model 

What was covered in class

• Modal logic and its relationship to the calculus

• Statements, Principals, Handoff, and Credentials

What was covered in class

• Modal logic and its relationship to the calculus

• Encryption, Encryption Channels
• Broadcast Encryption Channels, Node-to-Node Secure Channels

What was covered in class

• Encryption channels

• Role-Based Access Control 
• Modal Logic and model for access control calculus
• Basic Axioms

• Group Names

What was covered in class

• Encryption channels

• Program Loading, Booting

What was covered in class

• Guest lecture by Polar Humenn on roles (Chin at conference in Taiwan)

• Delegation with and without certificates
• Encoding Delegations

What was covered in class

• Guest lecture by Polar Humenn on roles (Chin at conference in Taiwan)

• Delegation at login

What was covered in class

• Description of roles in the calculus

• Representing ACLs, grammar for ACLs, examples

What was covered in class

• Description of roles in the calculus

• Authentication and Authorization
• Credentials Manager
• Boot and Login Certificates

What was covered in class

• Delegation and certificates

• Channels and Encryption
• Group Names
• Roles and Programs
• Delegation
• Interprocess Communication

What was covered in class

• Delegation and certificates

• Authentication and Authorization
• Credentials Manager
• Boot and Login Certificates 

• Modal Logic and model for access control calculus
• Relating/formal proofs of basic axioms of the calculus in the modal logic
• Reasoning about roles, certificates, and delegations in the principal calculus

• Access Control Decisions
• Reasoning About Credentials and Certificates
• Extensions
• Applications