P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg titulka PV204 Security technologies Team projects •Petr Švenda •Faculty of Informatics, Masaryk University, Brno, CZ •| PV204 - Security technologies P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg Project idea 1.Select existing open-source application which requires password or key from user 2.Create applet which will provide secure key storage or processing 3.Create secure channel between original app and card •| PV204 - Security technologies P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg D:\Documents\Obrazky\is2\Office-Girl-icon.png Situation before your project • •| PV204 - Security technologies D:\Documents\Obrázky\is2\Computer_Icon.png D:\Documents\Obrázky\is2\Body-Brain-icon.png Password Sfdlk2c&4 32mo% C:\Picts\keepass_logo.png •Open-source application •password manager, •disk encryption, •zip encryption… D:\Documents\Obrázky\is2\Key-icon.png •User stores keys •Memory, paper… •Key transmitted to PC app P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg Project work • •| PV204 - Security technologies D:\Documents\Obrázky\is2\Computer_Icon.png C:\Picts\keepass_logo.png •Open-source app •password manager, •disk encryption, •zip encryption… D:\Documents\Obrázky\is2\gcr-smart-card.png D:\Documents\Obrázky\is2\Key-icon.png D:\Documents\Obrazky\MS-DOS-Application-icon.png D:\Documents\Obrázky\is2\Key-icon.png D:\Documents\Obrázky\is2\Key-icon.png •JavaCard applet •Secure key storage •Processing with key •Secure channel D:\Documents\Obrazky\java-278.png •Secure channel D:\Documents\Obrazky\is2\Office-Girl-icon.png •PC application •Secure channel with card •Facilitate use of key by app •C/C++/Java D:\Documents\Obrázky\is2\Key-icon.png P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg Project 1.Identify suitable target scenario with need for cryptographic keys (disk encryption, remote authentication, DRM app…) –Open-source application 2.Design and implement JavaCard smart card applet –Storage and processing of secrets (keys) –Authentication and secure channel with PC application –Source code and installation scripts provided to other teams (code review) 3.Design and implement PC-based counterpart application –Establish secure channel with smart card applet –Transmit key from card or transmit data for processing 4.Review implementations of other teams –Review design choices made by other team –Review source code of other team applet and application (just newly added parts) – •| PV204 - Security technologies P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg Teams •3 people per team –Assigned today (within group), available in IS •Teams must use GitHub for cooperation –Distribute work load between all members –Contribution from all team members must be visible in commits (git commits from the member) –Your evaluation will be partially based on your participation •Start working early, especially with implementation •Teams may use own existing code from previous assignments (SimpleApplet etc.) • | PV204 - Security technologies P:\CRCS\2012_0178_Redesign_loga_a_JVS\PPT_prezentace\sablona\pracovni\normalni.jpg Projects - timeline 1.Identify target scenario, design of applications: 3 points (6.4.2017) –Report (max. 2 pages A4) –Deadline moved to 11.4. 2.Write code (GitHub): 10 points (before 4.5.2017) –JavaCard application, PC-based application –Design, code + presentation (4.5.2017, your seminar group, random team member) – presentation moved to 27.4. 3.Review and attack implementations: 7 points (before 18.5.2017) –Up to 4 points assigned by reviewers, up to 3 points by me –Review and attack implementations of other teams –Report + presentations (18.5.2017, random team member) •At least 10 points (total) from project are required •| PV204 - Security technologies