Assignment List for CMPTR 237 (Revised 1/1/08)

Unit 1 -

Reading Assignment:

Ch. 1 (Stallings)

Assignment Type: Discussion Board Date Due: January 12, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Introduction to Security -

List and briefly define categories of security services.

List and briefly define categories of security mechanisms.

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: January 12, 2008

Points Possible: 40 Project Duration: 2 - 4 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “What is the OSI security architecture?”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.
 

Assignment Type: Test Due Date: January 12, 2008

Points Possible: 40 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 1 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 1 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  Exams for a given unit will only be displayed during the week that they are applicable.  This is an open book exam.

 

Unit 2 -

Reading Assignment:

Ch. 2 (Stallings)

Assignment Type: Discussion Board Date Due: January 19, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Classical Encryption Techniques -

List and briefly define types of cryptanalytic attacks based on what is known to the attacker.
 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Group Project: Due Date: January 19, 2008

Points Possible: 60 Project Duration: 4 - 6 hours

Deliverable Length: 1 - 2 pages

As a group decrypt the secret message in Problem 2.5 on page 57 of your textbook.  Use a spreadsheet to try several different decipherments, such as brute force method, Caesar cipher, book cipher, etc.  Use a spreadsheet to show your understanding and use of these various techniques.  Include all of the spreadsheets from the various methods that you try, especially the one that worked, as illustrations at the end of your research paper.  Use good APA format to document your answers and findings. I would suggest assigning either a portion of this problem to each members of your group, or collaborating to work on the entire problem as a group. This is an early group assignment, so you should get started on it as soon as possible. Make use of the group collaboration resources of BlackBoard®. This includes a group chat room, a group discussion board, and a members-only virtual classroom for each group. Make use of student e-mail, if necessary. This assignment is due no later than midnight on Saturday. There is no minimum length to this assignment, but you must answer all questions fully to receive the full points for this assignment. Each member must also turn in a peer evaluation form before the project deadline. The blank peer evaluation form can be found on the "Professors Online" website for this class. When you're done, drop off your group assignment in the "Digital Dropbox" of any single member of your group before midnight on Saturday for grading.  Your peer evaluation forms also need to be submitted to the “Digital Dropbox” before midnight on Saturday for a complete grade.
 

Assignment Type: Test Due Date: January 19, 2008

Points Possible: 20 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 2 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 2 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 3 -

Reading Assignment:

Ch. 7 (Stallings)

Assignment Type: Discussion Board Date Due: January 26, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Confidentiality using Symmetric Encryption –

What is the difference between link and end-to-end encryption?

What is traffic padding and what is its purpose?

What is the difference between a session key and a master key?

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: January 26, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “The Potential Locations for a Confidentiality Attack.”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.
 

Assignment Type: Test Due Date: January 26, 2008

Points Possible: 40 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 3 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 3 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 4 -

Reading Assignment:

Ch. 9 (Stallings)

Assignment Type: Discussion Board Date Due: February 2, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Public Key Cryptography and RSA -

What are the principle elements of a public-key cryptosystem?
 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: February 2, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “What are the roles of the public and private key?”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.

 

Assignment Type: Test Due Date: February 2, 2008

Points Possible: 40 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 4 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 4 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 5 -

Reading Assignment:

Ch. 10 (Stallings)

Assignment Type: Discussion Board Date Due: February 9, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Key Management; Other Public-Key Cryptosystem -

Briefly explain Diffie-Hellman key exchange.
 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: February 9, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “What are the essential ingredients of a public-key directory and what is a public-key certificate?”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.
 

Assignment Type: Test Due Date: February 9, 2008

Points Possible: 40 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 5 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 5 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 6 -

Reading Assignment:

Ch. 11 (Stallings)

Assignment Type: Discussion Board Date Due: February 16, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Message Authentication and Hash Functions -

What types of attacks are addressed by message authentication?
 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: February 16, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “What are some approaches to producing message authentication?”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.
 

Assignment Type: Test Due Date: February 16, 2008

Points Possible: 40 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 6 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 6 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 7 -

Reading Assignment:

Ch. 14 (Stallings)

Assignment Type: Discussion Board Date Due: February 23, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Authentication Applications -

What are the principal differences between version 4 and version 5 of Kerberos?
 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: February 23, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “What constitutes a full-service Kerberos environment?”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.

 

Assignment Type: Test Due Date: February 23, 2008

Points Possible: 40 Project Duration: 30 minutes

Deliverable Length: N/A

Finish the CMPTR 237 Week 7 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 7 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 8 -

Reading Assignment:

Ch. 15 (Stallings)

Assignment Type: Discussion Board Date Due: March 1, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Electronic Mail Security -

The first 16 bits of the message digest of a PGP signature are translated in the clear.

a.       To what extent does this compromise the security of the hash algorithm?

b.      To what extent does it in fact perform its intended function, namely, to help determine if the correct RSA key was used to decrypt the digest? 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: March 1, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “How does PGP use the concept of ‘trust?’”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.
 

Assignment Type: Test Due Date: March 1, 2008

Points Possible: 40 Project Duration: 1 hour

Deliverable Length: N/A

Finish the CMPTR 237 Week 8 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 8 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 9 -

Reading Assignment:

Ch. 16 (Stallings)

Assignment Type: Discussion Board Date Due: March 8, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

IP Security -

The IPSec architecture document states that when two transport mode SA’s are bundled to allow both AH and ESP protocols on the same end-to-end flow, only one ordering of security protocols seems appropriate: performing the ESP protocol before performing the AH protocol.  Why is this approach recommended rather than authentication before encryption?
 

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: March 8, 2008

Points Possible: 40 Project Duration: 1 - 2 hours

Deliverable Length: 2 - 3 pages

Research the following topic and write a short paper on “What services are provided by IPSec?  Give a detailed explanation of each IPSec service along with its application.”  Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.
 

Assignment Type: Test Due Date: March 8, 2008

Points Possible: 40 Project Duration: 1 hour

Deliverable Length: N/A

Finish the CMPTR 237 Week 9 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 9 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.
 

Unit 10 -

Reading Assignment:

Ch. 17 (Stallings)

Assignment Type: Discussion Board Date Due: March 15, 2008
Points Possible: 20 Project Duration: 1 - 2 hours

Deliverable Length: 3 - 4 paragraphs

Web Security -

What protocols comprise SSL?

Post your answer on the Discussion Board. Be an active participant in the discussion by responding to a few posts and showing your appreciation for the contributions from your colleagues.
 

Assignment Type: Individual Project: Due Date: March 15, 2008

Points Possible: 40 Project Duration: 2 - 3 hours

Deliverable Length: 2 - 3 pages

Research and write a short paper on the following topic.

Consider the following threats to Web security and describe how each is countered by a particular feature of SSL.

a.       Brute-force Cryptanalytic Attach: An exhaustive search of the key space for a conventional encryption algorithm.

b.      Known Plaintext Dictionary Attack: Many messages will contain predictable plaintext, such as the HTTP GET command.  An attacker constructs a dictionary containing every possible encryption of the known-plaintext message.  When an encrypted message is intercepted, the attacker takes the portion containing the encrypted known plaintext and looks up the ciphertext in the dictionary.  The ciphertext should match against an entry that was encrypted with the same secret key.  If there are several matches, each of these can be tried against the full ciphertext to determine the right one.  This attack is especially effective against small key sizes (e.g. 40-bit keys).

c.       Replay Attack: Earlier SSL handshake messages are replayed.

d.      Man-in-the-Middle Attack: An attacker interposes during key exchange, acting as the client to the server and as the server to the client.

e.       Password Sniffing: Passwords in HTTP or other application traffic are eavesdropped.

f.        IP Spoofing: Uses forged IP addresses to fool a host into accepting bogus data.

g.       IP Hijacking: An active, authenticated connection between two hosts is disrupted and the attacker takes the place of one of the hosts.

h.       SYN Flooding: An attacker send TCP SYN messages to request a connection but does not respond to the final message to establish the connection fully.  The attacked TCP module typically leaves the “half-open connection” around for a few minutes.  Repeated SYN messages can clog the TCP module.

Use good APA format and site at least three sources for your research paper. (For full credit your research paper must be 2 - 3 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday.

 

Assignment Type: Test Due Date: March 15, 2008

Points Possible: 40 Project Duration: 1 hour

Deliverable Length: N/A

Finish the CMPTR 237 Week 10 - Exam before next Sunday.  Log into http://www.evtestcenter.com/ and specify my name - kblackwell - for your "Instructor ID:"  Select "CMPTR 237 Week 10 - Exam."  Then specify your "ID:" as your Student ID (including the hyphens, i.e. 860-11-1111) and your password is your home phone that you provided during registration time (without the area code and with the hyphen, i.e. 555-1212).  Once you've logged in you can take your exam.  The results will automatically be e-mailed to your instructor.  The exam is not timed.  This is an open book exam.

Unit 11 -

Assignment Type: Extra Credit Date Due: March 15, 2008
Points Possible: 100 Project Duration: 4 - 6 hours

Deliverable Length: 2000 words (i.e. 6 - 10 pages using standard, typed, double-spaced text)

Write a 6 - 10 page research paper on the History of Cryptography, using the optional textbook from this class - The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography (Paperback) by Simon Singh [ISBN: 0-385-49532-3] - as your primary reference.  Use good APA format and site at least four other sources for your research paper. (For full credit your research paper must be 6 - 10 pages, not counting the title page and the bibliography). You will be graded on both content and APA format.  When you're done drop off your assignment in the "Digital Dropbox" before midnight on Saturday, March 15th, 2008.