Upload
nicolas-ide
View
218
Download
2
Embed Size (px)
Citation preview
CS 854 – Hot Topics in Computer and Communications Security
Fall 2006
Introduction
Urs Hengartner 2CS 854 - HoTCCS
Overview Goals
Organization
Paper Survey – Part I
Urs Hengartner 3CS 854 - HoTCCS
Goals Research wise
Introduce current research problems in computer and communications security
Study proposed solutions Hopefully come up with new solutions
Research project
Grad-student skills Reviewing papers Giving presentations
Urs Hengartner 4CS 854 - HoTCCS
Topics (tentative) Privacy in general Pervasive computing Location privacy RFID privacy Usability Phishing Graphical passwords Trusted computing Worms/botnets Secure software Electronic voting Side-channel attacks
Urs Hengartner 5CS 854 - HoTCCS
The AOL Privacy Disaster August 6: AOL released 20 million search queries
from 658,000 users
To protect users’ anonymity, AOL assigned random number to each user 4417749 “numb fingers” 4417749 “landscapers in Lilburn, Ga” 17556639 “how to kill your wife”
August 9: New York Times article re-identified user 4417749 Thelma Arnold, 62-year old widow from Lilburn, GA
Urs Hengartner 6CS 854 - HoTCCS
RFID Tags Barcodes of the future
Passive device that receives power from reader
Wireless communication with range of up to several meters
Tag calls out its unique number and static data
Urs Hengartner 7CS 854 - HoTCCS
Wigmodel #4456
(cheap polyester)
Das Kapital and Communist-
party handbook
1500 Eurosin wallet
Serial numbers:597387,389473
…30 items of lingerie
Replacement hipmedical part #459382
The RFID Privacy Problem
Mr. Jones in 2015
© Ari Juels
Urs Hengartner 8CS 854 - HoTCCS
Security and Usability
© Lorrie Cranor
Urs Hengartner 9CS 854 - HoTCCS
Overview Goals
Organization
Paper Survey – Part I
Urs Hengartner 10CS 854 - HoTCCS
Meetings Time: MW 2:30-4pm
Probably 4:05pm with break in the middle
Location: DC 3314
Different from today!
Urs Hengartner 11CS 854 - HoTCCS
Prerequisites No formal prerequisites
Basic knowledge of computer systems/networks helpful
Papers range from high-level discussion about privacy to low-level discussion about stack layouts
Urs Hengartner 12CS 854 - HoTCCS
Lectures First three lectures: cryptography/security
introduction given by me
Following lectures: Two students will each present and lead a discussion on a research paper
See course website for schedule
Urs Hengartner 13CS 854 - HoTCCS
Grading One assignment: 5% Paper presentations: 25% Paper reviews: 10% Class participation: 10%
Includes presentation feedback Research project : 50%
Urs Hengartner 14CS 854 - HoTCCS
Paper Review Goal: learn what makes a good paper
So that you can write your own good papers
Every student should read the two mandatory papers before each lecture See course website for papers
Every student should submit a review for one of the two papers by noon the day of the presentation See course website for instructions
(Anonymized) reviews will be posted online
Urs Hengartner 15CS 854 - HoTCCS
Paper Presentation Goal: practice your presentation skills
Every student should present 2-3 research papers during term
Workshop/conference-style presentation Present work as it is your own Carefully prepare your slides
Figures instead of text Maybe additional background material
About 30 minutes
Send me slides before lecture
Urs Hengartner 16CS 854 - HoTCCS
Paper Discussion Discussion follows presentation
Presenter of paper gives his/her opinion about paper
Presenter comes up with interesting questions and leads a discussion
15 minutes
Urs Hengartner 17CS 854 - HoTCCS
Presentation Feedback Feedback is essential for training speaking skills
Every student should submit a review for each presentation by noon the day after a presentation See course website for review form Look at review form before preparing your
presentation
(Anonymized) feedback will be sent to presenter
Urs Hengartner 18CS 854 - HoTCCS
Project Goal: novel research in the area of security,
cryptography, or privacy Might lead to workshop/conference submission
Free to choose your topic Instructor will present sample topics
In groups of two Proposal: October 16 Presentation: December 4 Write-up: December 6
Urs Hengartner 19CS 854 - HoTCCS
Questions? http://www.cs.uwaterloo.ca/~uhengart
Teaching
Urs Hengartner 20CS 854 - HoTCCS
Overview Goals
Organization
Paper Survey – Part I
Urs Hengartner 21CS 854 - HoTCCS
Paper Survey – Part I Mandatory and optional papers
Optional: Ideas for discussion questions & projects
Each student should present 2-3 mandatory papers
First paper will be assigned September 18 Second paper once registration has settled down
TODO: Send me list of three papers that you would like to present by September 17 Optional: Tell me why