Homework III, Foundations of Cryptography 2018
Before you start: 1. The deadlines in this course are strict and stated on the course homepage. 2. Read the detailed homework rules at the course homepage. 3. Read about I and T-points and grades in the course description. The problems are given in no particular order. If something seems wrong, then visit the course homepage to see if any errata was posted. If this does not help, then email [email protected]. Don’t forget to prefix your email subject with DD2448. We may publish hints on the homepage if a problem appears to be harder than expected.
1 Do a literature study of the (in)security of the SSL/TLS protocol (through the years).
1a (5T) Summarize in roughly a page your findings in your own words. Summarizing SSL/TLS and issues with it in one page is challenging. Choose carefully what you present and how you present it.
1b (2T) In class we considered Diffie-Hellman key exchange and noted that we can derive a key for AES, and this is essentially the secure channel functionality provided by SSL/TLS, so why is it so complex? (mention two major reasons)