A course in Cryptography is scheduled to be offered as a special topics course (AM/PM 4282) in the Department of Mathematics and Statistics during the Winter 2001 semester. Interested students may find the following information helpful in deciding whether to take the course, as well as ensuring that they will have completed the necessary pre-requisites (particularly PM 3370 (Introductory Number Theory), which is offered in the Fall 2000 term ... it should be noted that CS 2740 is acceptable as a pre-requisite for PM 3370).
For more information about the course, etc, contact Dr. David Pike (dapike@math.mun.ca).
Summary of Topics. Topics include private-key cryptosystems (such as classical ciphers, the Hill cipher, and DES), computational complexity and relevant number theoretic problems (such as primality testing, factoring, and the discrete logarithm problem), public-key cryptosystems (such as RSA, Rabin, and ElGamal), digital signatures, and authentication protocols.
Format: Three hours of lecture per week.
Pre-requisites: PM 3370 (Introductory Number Theory) and a computing course (AM 2120 or CS 2710 or CS 2602).
Suggested Text: ``Cryptography - Theory and Practice'' by Douglas R. Stinson.
Included in this topic will be the question of how secure a cryptosystem is. For instance, what types of attack might it be susceptible to, such types including known plaintext attacks, chosen plaintext attacks, and known ciphertext attack. Also there's the distinction between absolute security and computational security.
In addition to studying the encryption/decryption protocols of each cipher, we will analyse the security of each cipher and show how each is insecure.
The first example we consider is the New Data Seal, covering it's design as well as how it can be broken. Attention then shifts to the Data Encryption Standard (DES) which is a commercially-used cryptosystem.
Up to this point all ciphers mentioned have been private-key systems. The nature of private-key cryptosystems is such that there are issues of key management and distribution. There are also the issues of how to achieve authentication (which introduces the concept of a digital signature), as well as how to agree upon a key in the first place (this would be a good spot to discuss the Diffie-Hellman key exchange protocol, but doing so first requires a discussion of the discrete logarithm problem).
The first cipher to be discussed is RSA. To fully appreciate and understand the mechanics and theoretical reliability of the RSA cryptosystem requires that we also study the topics of primality testing and factoring, which is where we get into some advanced number theory (particularly when discussing primality testing, where we look at quadratic residues, Legendre symbols, and Jacobi symbols). With respect to factoring, several methods are discussed:
RSA can be used to implement digital signatures and authentication protocols, which we then discuss.
The Rabin cryptosystem is introduced as a cipher whose security is provably equal to the difficulty of factoring.
The ElGamal cryptosystem is an example of a cipher based upon the discrete logarithm problem. Methods for solving the discrete logarithm problem are therefore discussed.
Time permitting, elliptic curves, the elliptic curve discrete logarithm problem, and elliptic curve cryptography will be introduced. This can be tied in nicely with the work being done by Certicom (see www.certicom.com).