KJhole.com
Projects

You must write one report during this course. Choose one of the suggested topics listed below. You may also suggest your own topic. Any topic not on the list below requires approval from the course staff. The report must be written in Norwegian or English. A report should contain between 5 and 10 pages of text (title page and abstract should not be counted). Two students may collaborate on a report, in this case the report must contain 10 pages of text. Only reports in the PDF format will be accepted.

The report must be turned in on time. If you fail to meet the deadline, you'll automatically fail the course.

Topics

  1. Cryptographic modules. Answer the questions:
    • What is a cryptographic module?
    • How are cryptographic modules used?
    • Why is some cryptographic modules vulnerable to attacks?
  2. ATM systems.
    • Give an introduction to ATM systems
    • Describe how criminals exploit vulnerabilities in the systems
    • What are the current attack trends?
  3. Identity theft.
    • What is it?
    • How can you protect yourself?
    • Do we need better authentication techniques?
  4. PKI architectures.
    • Give an overview of different architectures
    • When should the different architectures be used?
  5. Introduction to (D)DoS.
    • What is (D)Dos?
    • Describe some common (D)Dos attacks
    • How can you defend against (D)DoS attacks?
  6. Discuss the level of security in Internet banking applications.
    • Why are some Internet banks particularly vulnerable to DDoS attacks?
    • What can be done to reduce DDoS vulnerability?
    • Is there a need for better security on the clients?
  7. Non-repudiation.
    • Describe (traditional) non-repudiation
    • Is non-repudiation really possible in practice?
    • Discuss practical alternatives to non-repudiation
  8. Introduction to BankID.
    • How secure is BankID?
    • Discuss how BankID supports non-repudiation
  9. Database security.
    • Descripe common database attacks
    • Develop threat model
    • Discuss how to protect information
  10. Security and usability.
    • Describe a development process for secure and useable applications
    • Why is it important to consider both security and usability from the start?
    • What can we learn from open-source collaborative techniques?
  11. Introduction to risk management.
    • Describe the steps in a risk management process
    • Illustrate the steps with a case study
    • Describe the main goal of risk management
  12. Introduction to WAP 2.0.
    • Programming model
    • Security model
    • Strengths and weaknesses

Last updated 29.12.07. Webmaster KJH

© Kjell J. Hole. All rights reserved. Terms of Use