Applied Information Security : 08 Cryptography Integrity

Preparation

Hashing (SHA)

Crypto101, by van Houtven, Chapters 10 (15 ½pages, ~7 pages)

Authentication

of messages (HMAC, OCB)
- Crypto101, by van Houtven, Chapters 10-11 (22 ½pages, ~11 pages)
of users (RSA)
- Crypto101, by van Houtven, Chapters 9 and 12 (19 ½pages, ~10 pages)

Cryptosystems

data in motion (SSL/TLS)
- Crypto101, by van Houtven, Chapter 15 (13 ½pages, ~7 pages)
data at rest (PGP)
- Crypto101, by van Houtven, Chapter 16 (4 ½pages, ~2 pages)
off-the-record (OTR)
- Crypto101, by van Houtven, Chapter 17 (7 ½pages, ~3 pages)

Password storage

Book, by Fred B. Schneider, Chapter 5 section 5.1.2 (5 pages)

Lecture

Slides
Video (HMAC, RSA, TLS), Video (PGP, password storage, OTR) (by Raúl Pardo)

Exercise

Exercises
Files: 1, 2, 3

Further Reading

Password Cracking: Computerphile (20:19)
Password Hashing, Salt, Pepper: Seytonic (4:29)
Password Managers: Computerphile (12:08)
SHA: Computerphile (10:20)
HMAC: Computerphile (9:23)
RSA: Computerphile (6:19)
Kerberos: ComputerPhile (16:05)
TLS: Computerphile (12:19)
TLS 1.2 and TLS 1.3 detailed guides, by Gabriel Corona
TLS attacks: LOGJAM, POODLE, BEAST, CRIME, BREACH, Heartbleed
PGP: ProtonMail
OTR: Computerphile (actually, this is E2EE in general) (8:11)