Network and Information Security

  • For graduate students majored in Computer Science and Technology and Computer Technology
  • Class Hours=36
  • Credit=2
  • Contact: Prof. xjfang , email: xjfang @ aust.edu.cn 
    •     About this course       |     Teaching Plan      |       Teaching Courseware     |     Other References and Material     |     Comprehensive Homework    

    About this Course

    Course name:Network & Information security
    Class hour=36
    Teaching aims:
    By learning the basic knowledge, basic theories and basic methods of network and information security, students can apply relevant knowledge to analyze and solve relevant problems in computer network security, information and system security, data security and privacy protection.
    Teaching method:
    Classroom teaching, experimental verification, group discussion, Comprehensive homework, etc.

    Teaching Courseware

    Part 1 Introduction to Network & Information Security

  • Brief Introduction
  • the situation of network and information security in our Country
  • Preliminary Knowledge
  • The Objectives of Network & Information Security
    •

    Part 2 Cryptography and its Applications

  • Classical Cryptography
  • DES/AES cryptography(Block Cipher)
  • Hash Function and its Security
  • Public key Cryptosystem(RSA/ECC)
  • Digital Signature and Certificate
    •

    Part 3 Computer Network security and System Security

  • Network Security Protocol in TCP/IP Architecture
  • The Network Security Technology
  • Anti-Computer Virus
  • Attack Techniques and Defense
  • The Security on Windows and Linux OS
    •

    Part 4 Data Security and Privacy Preserving

  • Summary on Data Security and Privacy Preserving
  • Secure Multi-party Computing
  • Homomorphic Encryption
  • Anonymization and Differential Privacy Preserving
    •

    Teaching Plan

  • Chapter 0 Introduction to this Course(0.5 hour)
  • Chapter 1, Introduction to network and information security(2.5 hours)
    • 1.1 the situation of network and information security in our Country
    1.2 Preliminary Knowledge
    1.3 the objectives of network and information security
  • Chapter 2, Cryptography and its Applications(12 hours)
    • 2.1 DES/AES Encryption algorithm
    2.2 Hash Functions
    2.3 RSA/ECC Encryption algorithm
    2.4 Digital Signature and Public key Certificate
    2.5 Message Authentication and Authority
  • Chapter 3, Computer Network security and System Security(12 hours)
    • 3.1 Network Security Protocol in TCP/IP Architecture
    3.2 the Network Security Technology
    3.3 Anti-Computer Virus
    3.4 Attack techniques and Defense
    3.5 the Security in Windows and Linux OS
  • Chapter 4, Data Security and Privacy Preserving(9 Hours)
    • 4.1 Summary on Data Security and Privacy Preserving
    4.2 Secure Multi-party Computing
    4.3 Homomorphic Encryption
    4.4 Anonymization and Differential Privacy Preserving

    References and Materials

    [1] 谷利泽等,现代密码学教程(第二版). 北京:北京邮电大学出版社,2015年.
    [2] 李凤华等,隐私计算理论与技术. 北京:人民邮电出版社,2021年.
    [3] 安葳鹏,汤永利,刘琨,闫玺玺,叶青. 网络与信息安全. 北京:清华大学出版社,2017年.
    [4] 多表代换Virginia加密算法及秘钥破解算法的实现
    [5] 椭圆曲线加密算法(Elliptic Curve Cryptosystem,ECC)的设计与实现
    [6] Get the latest Nmap for your system
    [7] Get the stable release of Wireshark
    [8] Npcap SDK 1.12

    Comprehensive Homework

  • 大作业1:多表代换Virginia加密算法及秘钥破解算法的实现:编程语言为C语言或其它语言,要求提交加密、解密、破解源代码文件。实现对任意有意义的英文文本文件(*.txt)的Virginia加密、解密算法,其中秘钥是任意输入的一个字符串。要求提供明文文本文件、密文文本文件。在不知道秘钥的情况下,对一个用Virginia加密算法生成的密文文本文件进行破解,包括破解秘钥、生成对应的明文。要求提供程序测试说明文档。
  • 大作业2:椭圆曲线加密算法(Elliptic Curve Cryptosystem,ECC)的设计与实现。给定椭圆曲线:E89(-1,0): y2=x3-x (mod 89),设计任务:(a)编程计算该椭圆曲线上所有在有限域GF(89)上的点;(b)编程实现椭圆曲线上任意一个点P(例如P=(12,5))的倍点运算的递归算法,即计算k*P( k=2,3,…);(c)利用此递归算法找出椭圆曲线上的所有生成元G以及它们的阶n,即满足n*G=O;(d)设计实现某一用户B的公钥、私钥算法,即得到public key=(n, G, PB, Ep(a, b)) , secure key=nB(小于n); (e) 假如用户A发送明文消息“yes”并加密传输给用户B,用户B接收消息后要能解密为明文。试用ECC密码体制实现此功能。
  • 大作业3:分组阅读10篇网络与信息安全领域的顶刊或顶会上的学术论文,并进行分析、讲解、实验复现。
  • 分组讨论3个topics: (1)从数据链路层到应用层,详细分析讲解TCP/IP体系结构中的安全协议;(2)建立一个带有网络安全协议的TCP/IP的应用,利用npcap第三方开发工具包编程(需下载:npcap installer--https://npcap.com/dist/npcap-1.60.exe,Npcap SDK 1.12 (ZIP)-- https://npcap.com/dist/npcap-sdk-1.12.zip,Npcap 1.60 debug symbols (ZIP)-- https://npcap.com/dist/npcap-1.60-DebugSymbols.zip,Npcap 1.60 source code--https://npcap.com/dist/npcap-1.60.zip,分析在网络层、传输层、应用层的这个数据包格式并进行解读。Npcap Users' Guide:https://npcap.com/guide/(3)介绍并使用最新的网络攻击工具(On Windows & Linux OS);(4)介绍并实现Windows and Linux OS的安全加固技术
    •
    This Course website is created by xjfang @ aust.edu.cn, on Feb 22, 2022