Criptografia e Segurança de Informação

Código:

CC557

Sigla:

CIS

Áreas Científicas
Classificação	Área Científica
OFICIAL	Informática

Ocorrência: 2016/2017 - 1S

Ativa?	Sim
Unidade Responsável:	Departamento de Ciência de Computadores
Curso/CE Responsável:	Programa Doutoral em Informática

Ciclos de Estudo/Cursos

Sigla	Nº de Estudantes	Plano de Estudos	Anos Curriculares	Créditos UCN	Créditos ECTS	Horas de Contacto	Horas Totais
PDMAPI	6	PE Oficial do Programa Doutoral em Informática	1	-	5	49	135
		PE Oficial do Programa Doutoral em Informática a partir de 2016/17	1	-	5	49	135

Língua de trabalho

Inglês

Objetivos

The objective of this course is to expose students to cutting-edge research topics in relevant areas in information security, namely cryptography and systems’ and network security.

It is not intended as an introductory survey in any of these areas. Instead, the focus will be on advanced topics and recent results. The course will emphasise definitions, foundations, and a formal approach to information security. The course is at a similar level and covers overlapping material with the following advanced modules taught at leading academic institutions in the information security area, namely:

• Advanced Topics in Cryptography, J. Katz, Univ. of Maryland
• Current Topics in Information Security, U. Maurer, ETH Zurich
• Foundations of Cryptography, M. Naor, Weizmann Institute of Science
• Network Security, Jason Crampton, Royal Holloway.
• Computer Security, Chris Mitchell, Royal Holloway.

Resultados de aprendizagem e competências

Familiarity with scientific challenges in information security.

• Ability to extract information from scientific papers in the area.
• Technical writing and presentation skills.
• Comfortability with security proofs and ability to think abstractly about information security problems.
• Understand the use and operation of a range of access control and user authentication mechanisms.

Modo de trabalho

Presencial

Programa

• Foundations of Cryptography

– One-way functions, commitment schemes, one-way permutations, hard-core bits, and pseudorandomness.

– Public-key encryption: security definitions, hybrid encryption, example schemes.

– Zero Knowledge, Non-Interactive Zero-Knowledge and its use in achieving chosen ciphertext security.

– Public-key signatures: security definitions, one-time signatures, examples schemes.

• Network security

– Introduction to Networking, Network Security and Secure Protocols.

– Public key certification.

– Secure Protocols: IPSec, SSL/TLS and SSH.

– Network security architectures: 802.11i.

• Access control and user authentication mechanisms

– Security policies; security models; mandatory and discretionary access control; access control matrix, capabilities and access control lists.

– User authentication: passwords, biometrics and user tokens; identity management.

– Introduction to Smart Cards; Assets for Cyber Security.

– Smart Cards in eIDs/Passports

• Privacy and Legal Aspects

– Privacy by Design

– Anonimization Techniques

– Data protection legislation

Bibliografia Obrigatória

Oded Goldreich; Foundations of cryptography , Cambridge university press
M. Bellare and S. Goldwasser ; Lecture Notes on Cryptography
Mihir Bellare and Phillip Rogaway ; Introduction to Modern Cryptography
André Zúquete; Segurança em Redes Informáticas, Editora FCA

Métodos de ensino e atividades de aprendizagem

Lectures (including guest lectures), discussions and student presentations

Tipo de avaliação

Avaliação distribuída com exame final

Componentes de Avaliação

Designação	Peso (%)
Apresentação/discussão de um trabalho científico	25,00
Exame	25,00
Trabalho escrito	25,00
Trabalho prático ou de projeto	25,00
Total:	100,00

Fórmula de cálculo da classificação final

The evaluation is divided in four equal parts, each corresponding to each of the four main content parts. The evaluation may include a writen exam, a project, or a written assignment and a presentation.