课程名称 (Course Name) : Security Engineering
课程代码 (Course Code): X033531
学分/学时 (Credits/Credit Hours): 36/2
开课时间 (Course Term ): Fall
开课学院(School Providing the Course): EE
任课教师(Teacher): Xuejia Lai
课程讨论时数(Course Discussion Hours):
课程实验数(Lab Hours):
课程内容简介(Course Introduction):
Basic concepts and advanced topics in cryptography and IT-security.
--Establish the right understanding of security, attacks and complexity.
--Principles, structures and methods in the design of the block ciphers DES, IDEA, AES; Explain the strength and weakness in each algorithms and designs. Ideas and methods of varies attacks on block ciphers, main topic is differential attack;
--Fundamental and construction of iterated hash functions. Attacks on hash functions: pre-image and collision, especially the recent results on MD4, MD5,SHA-1.
--Concept and methods of authentication. Security requirements on protocols of challenge-response type. The use of standard protocols such as SSL, public-key certificates, PKI, S/MIME in real applications like e-bank, web-security and email.
教学大纲(Course Teaching Outline):
|
Introduction: Basic concepts and definitions in information security. Establish the right understanding of security, attacks and complexity.
|
|
Cipher design: Principles, structures and methods in the design of the block ciphers DES, IDEA, AES; Explain the strength and weakness in each algorithms and designs.
|
|
Cryptanalysis: Ideas and methods of varies attacks on block ciphers, main topic is differential attack.
|
|
Hash function: fundamental and construction of iterated hash functions. Attacks on hash functions: pre-image and collision, especially the recent results on MD4, MD5,SHA-1.
|
|
Authentication protocols: concept and methods of authentication. Security requirements on protocols of challenge-response type.
|
|
Standards: Authentication protocols in ISO standards using MAC, hash functions, ciphers, zero-knowledge and password.
|
|
Authentication in applications: SSL, public-key certificates, PKI, S/MIME in e-bank, web-security, email.
|
课程进度计划(Course Schedule):
课程考核要求(Course Assessment Requirements):
Exercise and in-class tests
参考文献(Course References):
Cryptography. CRC Press, 1997, ISBN: 0-8493-8523-7, http://www.cacr.math.uwaterloo.ca/hac/index.html
• B. Schneier, Applied cryptography. John Wiley & Sons, 1995, 2nd edition.
• W. Stallings, Cryptography and network security - principles and practice. (4th edition) ,Prentice Hall, 2005
• Lidong Chen, Guang Gong, Communication and System Security, CRC Press, 2012
• Xuejia Lai, On the design and security of block ciphers, ISBN 3-89191-573-X, Hartung-Gorre Verlag, 1992
• 裴定一,徐祥, 信息安全数学基础, ISBN 978-7-115-15662-4, 人民邮电出版社,2007.
• 卿斯汉, 安全协议, ISBN 7-302-09966-9,清华大学出版社,2005.
• 杨波,现代密码学.ISBN 7-302-06814-3, 清华大学出版社,2003.
• 吴文玲,冯登国,张文涛,分组密码的设计与分析,(第二版),清华大学出版社,2009。
预修课程(Prerequisite Course)
