In this MOOC, we will learn the basic concepts and principles of crytography, apply basic cryptoanalysis to decrypt messages encrypted with mono-alphabetic substitution cipher, and discuss the strongest encryption technique of the one-time-pad and related quantum key distribution systems. We will also learn the efficient symmetric key cryptography algorithms for encrypting data, discuss the DES and AES standards, study the criteria for selecting AES standard, present the block cipher operating modes and discuss how they can prevent and detect the block swapping attacks, and examine how to defend against replay attacks. We will learn the Diffie-Hellman Symmetric Key Exchange Protocol to generate a symmetric key for two parties to communicate over insecure channel. We will learn the modular arithmetic and the Euler Totient Theorem to appreciate the RSA Asymmetric Crypto Algorithm, and use OpenSSL utility to realize the basic operations of RSA Crypto Algorithm. Armed with these knowledge, we learn how to use PHP Crypto API to write secure programs for encrypting and decrypting documents and for signing and verify documents. We then apply these techniques to enhance the registration process of a web site which ensures the account created is actually requested by the owner of the email account.
Ce cours fait partie de la Spécialisation Fundamentals of Computer Network Security
Basic Cryptography and Programming with Crypto API
proposé par
Programme du cours : ce que vous apprendrez dans ce cours
Semaine
1Basic Cryptography
In this module we learn the basic concepts and principles of crytography, introduce the basic concept of cryptoanalysis using mono-alphabetic substitution cipher as an example, and discuss the one-time-pad and quantum key distribution concepts.
6 vidéos (Total 50 min), 5 lectures, 1 quiz
6 vidéos
Course Overview3 min
Basic Cryptography10 min
Kerckhoff's Principle9 min
CryptoAnalysis of Monoalphabetic Substitution Cipher13 min
Columnar Transposition Ciphers4 min
One-Time Pad & Quantum Key Distribution10 min
5 lectures
Introduction to cryptology, Part1, from IBM developerWorks30 min
What makes a cryptographic protocol strong?30 min
Basic Cryptoanalysis. Three Basic Variations of Cryptoanalysis or Cipher Attack:30 min
Columnar transposition Ciphers30 min
One time pad encryption30 min
1 exercice pour s'entraîner
Exam 2.130 min
Semaine
2Symmetric Key Cryptography
In this module we present the basic mechanism of symmetric key crytography algorithms, discuss the DES and AES standard, describe the criteria for selecting AES standard, present the block cipher operating modes and discuss how the block swapping attacks and replay attacks can be prevented and detected.
6 vidéos (Total 55 min), 5 lectures, 2 quiz
6 vidéos
Advanced Encryption Standard9 min
AES Expansion/Schedule4 min
AES Selection Criteria13 min
Dealing with Block Swapping and Replay Attacks7 min
Block Cipher Mode of Operation11 min
5 lectures
Symmetric Key Encryption and DES15 min
AES: The Advanced Encryption Standard by Avi Kak15 min
Section 8.8 Key Expansion Algorithm from Prof. Section 8.8 Key Expansion Algorithm Lecture Note15 min
Report on the Development of the Advanced Encryption Standard (AES)15 min
Block cipher mode of operation15 min
1 exercice pour s'entraîner
Exam 2.2. Symmetric Key Algorithm20 min
Semaine
3Asymmetric Key Cryptography
In this module we will learn the modular arithmetic, the Euler Totient Theorm, the RSA Asymmetric Crypto Algorithm, use OpenSSL to realize the basic operations of RSA Crypto Algorithm, and Diffie-Hellman Symmetric Key Exchange Protocol to derive session keys.
5 vidéos (Total 58 min), 5 lectures, 2 quiz
5 vidéos
Modular Arithmetic13 min
Euler Totient Theorem13 min
RSA Asymmetric Crypto Algorithm17 min
Understanding RSA with OpenSSL6 min
5 lectures
Diffie-Hellman Key Exchange Protocol20 min
Modular Arithemetic20 min
Euler's Totient Theorem20 min
RSA Cryptosystem10 min
OpenSSL Command-Line HOWTO10 min
1 exercice pour s'entraîner
Exam 2.3. Asymmetric Key Cryptography20 min
Semaine
4Develop Secure Programs with Crypto API
In this module, we learn how to use Crypto API to write secure programs for encrypting and decrypting documents, and for signing and verify documents. We then apply the techniques to enhance the registration process of a web site which ensures the account created is actually belonging to the owner of the email account the request profile.
3 vidéos (Total 45 min), 3 lectures, 1 quiz
3 vidéos
Use Crypto API to Sign and Verify9 min
Mini Capstone: Enhance Registration Web Site Security20 min
3 lectures
PHP encrypt and decrypt crypto api20 min
PHP Openssl sign and verify API20 min
Ashley Madison Case30 min
1 exercice pour s'entraîner
Exam 2.4. Develop Secure Programs with Crypto API30 min
3.9
3 avisMeilleurs avis
par LB•Apr 2nd 2018
The course content is excellent. It would be much better if some errors (like misspelled words, improper capitalization etc) would be corrected
Enseignant
Edward Chow
ProfessorComputer Science
À propos de University of Colorado System
The University of Colorado is a recognized leader in higher education on the national and global stage. We collaborate to meet the diverse needs of our students and communities. We promote innovation, encourage discovery and support the extension of knowledge in ways unique to the state of Colorado and beyond.
À propos de la Spécialisation Fundamentals of Computer Network Security
This specialization in intended for IT professionals, computer programmers, managers, IT security professionals who like to move up ladder, who are seeking to develop network system security skills. Through four courses, we will cover the Design and Analyze Secure Networked Systems, Develop Secure Programs with Basic Cryptography and Crypto API, Hacking and Patching Web Applications, Perform Penetration Testing, and Secure Networked Systems with Firewall and IDS, which will prepare you to perform tasks as Cyber Security Engineer, IT Security Analyst, and Cyber Security Analyst.
The learning outcomes of this specialization include:
you should be able to create public/private keys, certificate requests, install/sign/verify them for web server and client authentication, secure emails, and code signing.
you should be able to write secure web apps with Crypto API to implement the confidentiality, integrity, and availability basic security services.
you should be able to hack web applications with vulnerabilities and patch them.
you should be able to apply penetration testing tool to exploit vulnerable systems.
you should be able to crack passwords given the hashes in password file using AWS P2 GPU.
you should be able to configure firewall and IDS for secure network systems
you should be able to specify effective security policies and implement efficient enforcement procedures by applying security design principles for securing network systems.
Foire Aux Questions
Quand aurai-je accès aux vidéos de cours et aux devoirs ?
Une fois que vous êtes inscrit(e) pour un Certificat, vous pouvez accéder à toutes les vidéos de cours, et à tous les quiz et exercices de programmation (le cas échéant). Vous pouvez soumettre des devoirs à examiner par vos pairs et en examiner vous-même uniquement après le début de votre session. Si vous préférez explorer le cours sans l'acheter, vous ne serez peut-être pas en mesure d'accéder à certains devoirs.
À quoi ai-je droit si je m'abonne à cette Spécialisation ?
Lorsque vous vous inscrivez au cours, vous bénéficiez d'un accès à tous les cours de la Spécialisation, et vous obtenez un Certificat lorsque vous avez réussi. Votre Certificat électronique est alors ajouté à votre page Accomplissements. À partir de cette page, vous pouvez imprimer votre Certificat ou l'ajouter à votre profil LinkedIn. Si vous souhaitez seulement lire et visualiser le contenu du cours, vous pouvez accéder gratuitement au cours en tant qu'auditeur libre.
Quelle est la politique de remboursement ?
Une aide financière est-elle possible ?
D'autres questions ? Visitez le Centre d'Aide pour les Etudiants.
Coursera propose un accès universel à la meilleure formation au monde,
en partenariat avec des universités et des organisations du plus haut niveau, pour proposer des cours en ligne.
© 2018 Coursera Inc. Tous droits réservés.
