Ankh Morpork's Finest Coder

: Name: Sushant Bhatia; Location: Tempe, Az

I work at CUbiC, the Center for Ubiquitous Computing at ASU. We are developing applications and devices for individuals who are blind. I personally am in charge of developing the iCare BookReader. This device will allow individuals who are blind to have print material read to them. The interface is intuitive and accessible. The process is much faster than using a scanner and our BookReader is quite feature rich. On a personal note, I love coding especially in .Net and C#.

View my complete profile

My blog is about coding in .Net and about my interests in general. I love to read, esp Discworld novels by Terry Prattchet. I will post items about work, school, cool stuff and ideas for projects I have. If your ever interested in any of them, let me know as I would love to work on some of them.

Archives

October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005

Links

Appy's Arboretum
Uber Amusing
Eric Gunnerson
Scott Hanselman
Coding Horror
Wintellog
Vivek Iyer
Cubic@ASU
My Website

Ankh Morpork's Finest Coder

Thursday, January 20, 2005

Last Class of my Masters
Yes! FINALLY! The last class of my MS. I'm gonna cherish this class. Hopefully it will be my last class for a very long time. I'm hoping I don't have to do my PHD just yet. I wanna work for a bit and then come back after some time and then do my PHD or MBA.

Today in CSE 539: Applied Cryptography we learnt the EVILS of biometric security. You see, things like passwords that you use for your ATM or your gmail account are called Shared Secrets, meaning that for the ATM pin, you share that with the bank ATM. Shared secrets are VERY easy for malicious people to get. For instance, I can call you up, pretend to be your bank and ask for your personal info for "verification". Well turns out, the world wants to move to Biometric security. Well, the biometric sensor, converts your thumbprint for example into a unique string. Now lets say that you use those for websites as a security tool so that they can verify that you are who you say you are. HERE IN LIES THE PROBLEM!
1) You just transmitted it over the network so anyone else can get it.
2) You just gave your thumbprint to say Amazon. Now they can use it anywhere they want.

The problem of Shared Secrets does not vanish with Biometrics. So whats the solution? I don't know. Thats why I am taking the class. I'll tell you once I figure it out :-)

So what do we do in the Applied Crypto class you say? Well here it is:

1. Introduction

· What is Cryptography?
· Encryption and Cryptoanalysis
· Steganograpy
· Basic protocols and techniques

2. Basic Cryptographic Algorithms

· Encryption schemes
· Random numbers
· Security of encryption methods
· Public Key encryption

3. Basic Cryptographic Protocols

· Key Exchange
· Authentication
· Secret Sharing
· Digital Signatures

4. Intermediate Protocols

· Timestamping services
· Subliminal Channels
· Undeniable signatures
· Bit commitment
· Coin flipping on the telephone
· All or nothing disclosure of secrets

5. Advanced Protocols

· Zero Knowledge Proofs
· Digital Certified Mail
· Elections
· Digital Cash

6. Cryptographic Techniques

· DES
· RSA
· DSA
· Key Management
· Compromised key handling

7. The Real World

· Commonly used software
· The law and Cryptography
· Politics

- posted by Sushant Bhatia @ 1:39 AM

About Me

0 Comments: