Assignment 2 (Ungraded)

COMPSCI 725 Software Security

 

Clark Thomborson

Computer Science Department, University of Auckland

4^th May, 2001

 

Instructions:� This assignment will not be graded.� It is designed to give you some practical experience with the X.509 standard and its applications.� You may work alone or in teams, and you may ask help from anyone in the world.� I will give you feedback on your completed assignment.

1.      Send me a very short email message, signed by an X.509 certificate, from your University email account.� Your message should not be encrypted.� I suggest you start by examining the �help� files in your favourite email client, to discover how to obtain and use a free or inexpensive X.509 certificate.� If your email client is not X.509-aware, you will have to use a different email client to complete this assignment.� Hint: you may obtain a �free personal email certificate� from Thawte Digital Certificate Services (http://www.thawte.com).

2.      Examine my encrypted response to your signed message.� My email message to you will be encrypted with your public key.� Discover a way to prepare a textfile containing my complete response message, in both its encrypted and cleartext forms, and send this textfile back to me by email.

3.      Many of you have off-campus email accounts as well as University ones.� Design or discover (by internet or literature search) a protocol that would allow such students to communicate their off-campus email addresses to me, so that I can easily and safely maintain an �email alias� list for my students who prefer to use off-campus email for University work.� Your protocol should have the following attributes:

�        Efficiency (ideally your protocol would consist of a single, short, self-explanatory email message which asks an instructor to add or delete an alias)

�        Convenience from the student�s perspective (ideally your protocol would be easily explained to any postgraduate computer science student, who could then execute your protocol in a few minutes after they obtain an X.509 certificate)

�        Convenience from the instructor�s perspective (ideally your protocol would be easily used by any computer science instructor, who wouldn�t have to spend more than a few seconds to add or delete an �email alias� for a student)

�        Integrity (only a student with access to a University email account should be able to convince an instructor to add or delete an off-campus alias)

�        Auditability (both the student and the instructor should be able to conduct a �security audit� which will have some chance of discovering attacks on the security of your protocol)

�        Non-repudiation (an instructor could show a student a transcript of the messages requesting changes to their alias list.� Unless the underlying cryptography is �broken�, this transcript would prove one of two things: either the student lost control of their X.509 signature authority, or the student actually did request the changes shown in the transcript.)

I cannot promise to give you a complete security analysis of your protocol, however I will comment on any protocols I receive.� If you work in teams on this problem, please submit as a team so that I do not waste time commenting on the same protocol more than once.