Final Project
Timeline/Milestones:
- 3/14-3/20: Initial proposal meeting
- 3/21: Submit short written proposal
- 4/16-4/18: Interim status update meeting 1
- 4/28-5/2: Interim status update meeting 2
- 5/5, 5/7: 15 minute in-class demo./presentations
- Mon. 5/12 noon: Final writeup due
Proposed:
- Mac OSX security flaws [A. Cherne]
- Biometric authentication [D. Vartanian]
- Japanese WWII Purple Cipher [M. Gaudet]
- Consequences of Birthday and other statistical attacks [A. Lowenstein]
Some Ideas:
- SSL/TLS or stunnel implementation
- Kerberos authentication protocol
- Secure Shell (SSH)/Secure FTP (SFTP) applications
- Wireless network security protocols
- Instant messaging (IM) security protocols
- Non-repudiation schemes
- OpenID framework for cross application user identification/authentication
- Biometric and other non-password based authentication
- Biometric payment schemes (e.g., Pay by Touch)
- Credit/debit card payment security: Secure Electronic Transaction (SET)/
Payment Card Industry (PCI) Data Security Standard/
PCI Security Standards Council
- Micropayment schemes (see here
for a list of technologies and here
for a list of protocols)
- e-voting technologies
- onion routing/anonymizing networks (e.g. TOR)
- Platform for Privacy Preferences (P3P)
- RSA-OAEP: Using RSA securely
- AES design details (read and summarize paper)
- Electronic health record privacy/security issues
- Quadratic sieve factoring technique
- Linear, differential, or other cryptanalisis technique
- Ring, group, forward-secure, or intrusion-resilient digital signatures
- Signcrypt a combined encryption and signature
-
- Elliptic curve cryptography
- Bi-linear map based cryptography
- Paillier cryptosystem
- Cramer-Shoup cryptosystem
- Searchable encryption schemes
- Private information retrieval schemes
- Zero-knowledge proofs
- Secure function evaluation/joint private computation
- Steganography
