楊中皇老師九十 八學年度第一學期 (Fall 2009) 「網路安全」參考資料:

  1. 課程大綱

  2. 教科書網站

  3. 出版社教科書簡介

  4. 國立高雄師範大學行事曆
  5. 學校選課學生名單
  6. 高雄師範大學開課資料查詢系統
  8. 1      
    2    
    3      
    4      
    5      
    6  
    7      
           
           
           
           
           

  9. 行政院主計處資安稽核

  10. Claude E. Shannon, "Communication Theory of Secrecy Systems", Bell System Technical Journal, vol.28-4, page 656-715, 1949.

  11. 搜索引擎 All the Web

  12. 搜索引擎 AltaVista

  13. A.J. Menezes, et al, Handbook of Applied Cryptography  (CRC Press Series on Discrete Mathematics and Its Applications), 1996. 參閱http://www.cacr.math.uwaterloo.ca/hac/有PDF電子檔. 

  14. 行政院國家資通安全會報技術服務中心 http://www.icst.org.tw/

  15. FIPS 186-2Digital Signature Standard (DSS) January 2000http://csrc.nist.gov/publications/fips/fips186-2/fips186-2-change1.pdf, http://csrc.nist.gov/publications/drafts/dss_recommendation.pdf

  16. 日本NTT密碼學技術

  17. 國家圖書館 全國博碩士論文資訊網

  18. 美國博碩士論文檢索

  19. 一天內破解DES報導: (1). RSA公司 (2). CNN公司

  20. 歐拉函數(Euler's totient function): 如果兩個整數的最大公因數是 1 時,我們稱它們為互質。歐拉函數 Phi(N)定義為小於N且與N互質的所有正整數的個數。例如N=9,小於9的所有正整數為{1,2,3,4,5,6,7,8},其中與9互質的為{1,2,4,5,7,8}有6個正整數,所以Phi(9)=6。再如N=10,小於10的所有正整數為{1,2,3,4,5,6,7,8,9},其中與10互質的為{1,3,7,9}有4個正整數,所以Phi(10)=4。如果P與Q為質數,則Phi(P*Q)=Phi(P)*Phi(Q)= (P-1)*(Q-1)。

  21. 破解512-bit RSA

  22. Sneakers (神鬼尖兵)

  23. 政府投領標電子採購系統

    24.

  24. 2004年5月中國密碼年會與2004年8月美國Crypto年會的Rump Session,山東大學王小雲教授破解MD5和其他幾個one-way hash function (local copy)。NIST宣佈將於2010年淘汰SHA1 (local copy)

  25. IQ Test 智力測驗

  26. "NIST announces that Rijndael has been selected as the proposed AES,"NIST, October 2, 2000, http://csrc.nist.gov/encryption/aes/.

  27. AES (Advanced Encryption Standard) 原始碼 , rijndeal.c, rijndeal.h, boxes-ref.dat

    28.

  28. FIPS 197: Advanced Encryption Standard (2001年11月)

  29. Rijndeal原始文件

  30. AES動畫(flash)介紹,http://e-handel.mm.com.pl/crypto/rijndael_ingles2004.swf

  31. AES-128測試資料

  32. Chung-Huang Yang, "Performance Evaluation of AES/DES/Camellia On the 6805 and H8/300 CPUs," Proc. The 2001 Symposium on Cryptography and Information Security (SCIS2001), January 2001,  pp. 727-730.

  33. Wi-Fi Security

  34. Wi-Fi Protected Access (WPA)

  35. WPA2 (Wi-Fi Protected Access 2)

  36. An Initial Security Analysis of the IEEE 802.1x Standard (local copy)

  37. 802.11i (How we got here and where are we headed)

  38. Wireless LANs: Defending the Enterprise Airwaves

  39. Hacking the Invisible Network

  40. WLAN War Driving

  41. Taiwan.CNET.com : 企業應用 : 專題報導 : WLAN安全風暴來襲

  42. TW-CERT 無線網路安全白皮書

  43. Eli Biham and Adi Shamir, Differential cryptanalysis of DES-like cryptosystems, Technical report CS90-16, Weizmann Institute of Science, 1990.

  44. Windows平台大數最大公因數GCD/最小公倍數LCM/乘法反元素軟體(羅靖華開發)

  45. Windows平台DES加解密軟體(羅靖華開發)

  46. 美國聯邦調查局的網路監控計畫:Carnivore, 英文介紹(mpeg, rm)

  47. IEEE 802.11, 802.11 LAN/MAN Wireless LANS標準

  48. Wi-Fi聯盟

  49. Mobile Security by NIST

  50. MIT, Dos and Don'ts of Client Authentication on the Web

  51. Nimda Notifyer

  52. IBM企業軟體技術發展暨解決方案論壇

  53. Unix Security

  54. 美國James Madison大學 資訊安全碩士學位(遠距教學)
  55. RFC, IETF 安全工作組
  56. 美國國家標準技術局電腦安全資源中心http://csrc.nist.gov/
  57. 最好的100個網路安全工具
  58. 日本資訊處理機構安全中心

  59. CERT

  60. COAST

  61. Common Vulnerabilities and Exposures (CVE)

  62. SANS

  63. SecurityFocus

  64. 國家圖書館 全國博碩士論文資訊網

  65. 美國博碩士論文檢索

    66.

  66. Bastille Linux

  67. Aryabhata and his commentators

  68. 內政部憑證管理中心

  69. 自然人憑證申請

  70. 財政部網路報繳稅財政部北區國稅局

  71. Internet Drafts

  72. 搜索引擎 All the Web

  73. 搜索引擎 AltaVista

  74. 密碼學常見問題集(FAQ)

  75. 美國國家安全局NSA的Security-Enhanced Linux

  76. BIBPIPE IT Security Research

  77. Research Papers on Strong Password Authentication

  78. W3C XML Digital Signature

  79. W3C XML Encryption 

  80. IETF PKIX Working Group

  81. IETF TLS Working Group, SSLv3TLSv1, OpenSSLRFC 2818  RFC 2817 RFC 2595  RFC 2487

  82. IETF LDAPv3 Revision Working Group, LDAPv3, OpenLDAP

  83. IETF S/MIME Working Group

  84. IETF Multicast Security Working Group

  85. IETF Secure Shell Working Group

  86. SSH

  87. PKCS #11: Cryptographic Token Interface Standard

  89. 打破NATs是安全的假象 (mirror)

  90. DCE team at Stanford University, Security in a Public World: A Survey

  91. Robert B. Reinhardt, An Architectural Overview of UNIX Network Security

  92. Dan Farmer, Improving the Security of Your Site by Breaking Into it

  93. IBM, Things that Go Bump in the Net

  94. IBM, Addressing security issues in Linux

  95. Linux Administrators Security Guide

  96. Securing a default Linux installation

  97. Windows XP Security

  98. Microsoft IIS Lockdown Tool, 23 August 2001

  99. Don Davis, Defective Sign & Encrypt in S/MIME,PKCS#7, MOSS, PEM, PGP, and XML

  100. Red Hat Linux 8.0 Security Guide

  101. Linux Security

  102. MUSCLE (Movement for the Use of Smart Cards in a Linux Environment)

  103. 政府投領標電子採購系統

  104. 美國ISS總代理鈺松國際資訊股份有限公司

  105. 2002年1月微軟資訊安全日防範網路系統的安全威脅

  106. 微軟Windows 2000 Server實力扎根系列研討會

  107. "NIST announces that Rijndael has been selected as the proposed AES,"NIST, October 2, 2000, http://csrc.nist.gov/encryption/aes/.

    108.

  108. One-Way Hash MD5原始碼(RFC1321)

  109. FIPS 180-2Secure Hash Standard (SHS)NIST,2002年8月。

  110. 人類已知最大的質數: 243112609-1 (12,978,189 decimal digits ) = ?  

  111. 木田祐司之UBASIC高速整數運算軟體。

  112. RSA演算法參數(P, Q, N, E, D) 範例一範例二範例三

  113. 大陸信息安全國家重點實驗室(The State Key Laboratory of Information Security,SKLOIS)

  114. 大陸中國網路信息安全

  115. 日本NTT的數位簽章演算法(TSH-EISNG)與公開金鑰加解密演算法(EPOC)

  116. 美國國立密碼博物館(National Cryptologic Museum)

  117. 政府憑證管理中心用戶使用說明

  118. 電子簽章法 (民國90年11月14日公發布)

  119. 電子簽章法施行細則 (民國91年4月10日)

  120. 財政部網路報繳稅財政部北區國稅局

  121. Kerberos: RFC 1510

  122. 微軟公司 Internet Security and Acceleration Server (ISA)

  123. Windows 2000 Security Services

  124. 微軟公司視窗2000安全性服務 (中文)

  125. Benchmarks and Scoring Tool for Windows 2000

  126. 大數分解有獎徵答(總獎金超過美金六十萬元)

  127. 大數分解記錄

  128. Certificate Authorities (CAs), Public-Key Infrastructure (PKI): RFC 2693  RFC 2587  RFC 2585  RFC 2559 RFC 2527  RFC 2528  RFC 2511  RFC 2510  RFC 2459

  129. PGP: RFC 1991, RFC 2015, RFC 2440

  130. S/MIME: RFC 2311, RFC 2312, RFC 2632, RFC 2633, RFC 2634

  131. Virtual Private Networks (VPNs): RFC 2917  RFC 2764  RFC 2547  RFC 2685

  132. NTT's IPv6, Sun's IPv6, IETF IPSec Working Group, FreeS/WAN, KAME

  133. 中華電信研究所IPv6, HiNet IPv6, 台灣IPv6論壇, 下一代IPv6網路之建置

    RFC 3041

    Privacy Extensions for Stateless Address Autoconfiguration in IPv6

    RFC 2409

    Internet Key Exchange (IKE) 

    RFC 2406

    IP Encapsulating Security Payload (ESP)

    RFC 2402

    IP Authentication Header 

    RFC 2401

    Security Architecture for the Internet Protocol 

    RFC 1829

    The ESP DES-CBC Transform

    RFC 1828

    IP Authentication using Keyed MD5 

  134. ICSA certified firewall products

  135. Time Synchronization

  136. Secure Network Time Protocol (stime)

  137. W3C XML Signature Working Group

  138. CISSP (Certified Information System Security Professional資訊系統安全認證專家)證照
  139. 著作權法
    電腦處理個人資料保護法
    電腦處理個人資料保護法施行細則
    行政機關資訊安全管理作業原則
    政府機關資訊安全管理細則
    網路安全管理細則
    電信法
    通訊保障及監察法
    營業祕密法
     

     

  140. 網路管理工具

    Nessus

    http://www.nessus.org/

    Nmap

    http://www.nmap.org/nmap/

    ISS

    http://www.iss.net/

    SATAN

    ftp://ftp.cerias.purdue.edu/pub/tools/unix/scanners/satan/satan/

    Tripwire

    http://sourceforge.net/projects/tripwire/

    COPS

    ftp://ftp.cerias.purdue.edu/pub/tools/unix/scanners/cops/

    TCP Wrappers

    ftp://ftp.cerias.purdue.edu/pub/tools/unix/netutils/tcp_wrappers/

    WinDump

    http://netgroup-serv.polito.it/windump/

    Tiger

    http://www-arc.com/tara/ http://savannah.nongnu.org/projects/tiger/

    portmap

    ftp://ftp.cerias.purdue.edu/pub/tools/unix/netutils/portmap/

    Fremont

    ftp://ftp.cs.colorado.edu/pub/cs/distribs/fremont/

    ipacl

    ftp://ftp.cerias.purdue.edu/pub/tools/unix/netutils/ipacl/

    Argus

    ftp://ftp.andrew.cmu.edu/pub/argus/current/

    NETMAN

    ftp://ftp.cerias.purdue.edu/pub/tools/unix/netutils/netman/

    Sniffit

    http://sniffit.rug.ac.be/%20coder/sniffit/

    Sniffer Pro

    http://www.snifferpro.co.uk/

    ethereal

    http://www.ethereal.com/download.html

    hunt

    ftp://ftp.gncz.cz/pub/linux/hunt/hunt-1.5.tgz

    Anti Sniff

    http://www.securitysoftwaretech.com/antisniff/download.html

    SARA

    http://www-arc.com/sara/

    SAINT

    http://www.wwdsi.com/saint/

    AIDE

    http://www.cs.tut.fi/~rammer/aide.html

    Snort

    http://www.snort.org

    Shadow

    http://www.nswc.navy.mil/ISSEC/CID/
    BSD Airtools http://dachb0den.com/projects/bsd-airtools.html
    WEPCrack http://wepcrack.sourceforge.net/
    FreeS/WAN http://www.freeswan.org/
    KAME http://www.kame.net/
    VNC http://www.realvnc.com/

  141. FTP Security

    RFC0959

    File Transfer Protocol

    RFC1579

    Firewall-Friendly FTP

    RFC2228

    FTP Security Extensions

    RFC2389

    Feature negotiation mechanism for the File Transfer Protocol

    RFC2428

    FTP Extensions for IPv6 and NATs

    RFC2577

    FTP Security Considerations, May 1999.

    RFC2773

    Encryption using KEA and SKIPJACK

  142. RFC 3281, An Internet Attribute Certificate Profile for Authorization, April 2002.

  143. RFC 3280, Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, April 2002.

  144. RFC 3279 Algorithms and Identifiers for the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, April 2002.

  145. RFC 3278, Use of Elliptic Curve Cryptography (ECC) Algorithms in Cryptographic Message Syntax (CMS), April 2002.

  146. RFC 3275, (Extensible Markup Language) XML-Signature Syntax and Processing, March 2002.

  147. RFC 3244, Microsoft Windows 2000 Kerberos Change Password and Set Password Protocols, February 2002.

  148. RFC 3218, Preventing the Million Message Attack on Cryptographic Message Syntax, January 2002.

  149. RFC 3217, Triple-DES and RC2 Key Wrapping, December 2001.

  150. RFC 3211, Password-based Encryption for CMS, December 2001.

  151. RFC 3207, SMTP Service Extension for Secure SMTP over Transport Layer Security, February 2002.

  152. RFC 3206, The SYS and AUTH POP Response Codes, February 2002.

  153. RFC 3193, Securing L2TP using IPsec, November 2001.

  154. RFC 3185, Reuse of CMS Content Encryption Keys, October 2001.

  155. RFC 3183, Domain Security Services using S/MIME, October 2001.

  156. RFC 3174, US Secure Hash Algorithm 1 (SHA1), September 2001.

  157. RFC 3161, Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP)
  158. RFC 2030, Simple Network Time Protocol (SNTP) Version 4, October 1996.
  159. RFC 2986, PKCS #10: Certification Request Syntax Specification Version 1.7.
  160. RFC 2985, PKCS #9: Selected Object Classes and Attribute Types Version 2.0
  161. RFC 2437, PKCS #1: RSA Cryptography Specifications Version 2.0. B. Kaliski, J. Staddon. 
  162. RFC 2315, PKCS #7: Cryptographic Message Syntax Version 1.5.
  163. RFC 2559, Internet X.509 Public Key Infrastructure Operational Protocols - LDAPv2.
  164. RFC 3039, Interne t X.509 Public Key Infrastructure Qualified Certificates Profile
  165. RFC 3029, Internet X.509 Public Key Infrastructure Data Validation and Certification Server Protocols
  166. RFC 3024, Reverse Tunneling for Mobile IP, revised
  167. RFC 3012, Mobile IPv4 Challenge/Response Extensions
  168. RFC 3163, ISO/IEC 9798-3 Authentication SASL Mechanism
  169. RFC 2759, Microsoft PPP CHAP Extensions, Version 2. G. Zorn. January 2000.
  170. RFC 2712, Addition of Kerberos Cipher Suites to Transport Layer Security (TLS). A. Medvinsky, M. Hur. October 1999.
  171. RFC 2692, SPKI Requirements. C. Ellison. September 1999.
  172. RFC 2693, SPKI Certificate Theory. C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, T. Ylonen. September 1999.
  173. RFC 2660, The Secure HyperText Transfer Protocol. E. Rescorla, A. Schiffman. August 1999.
  174. RFC 2632, S/MIME Version 3 Certificate Handling. B. Ramsdell, Ed.. June 1999.
  175. RFC 2633, S/MIME Version 3 Message Specification. B. Ramsdell, Ed.. June 1999.
  176. RFC 2634, Enhanced Security Services for S/MIME. P. Hoffman, Ed.. June 1999.
  177. RFC 2585, Internet X.509 Public Key Infrastructure Operational Protocols: FTP and HTTP. R. Housley, P. Hoffman. May 1999.
  178. RFC 2560, X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP. M. Myers, R. Ankney, A. Malpani, S. Galperin, C. Adams. June 1999.
  179. RFC 2511, Internet X.509 Certificate Request Message Format, March 1999.
  180. RFC 2510, Internet X.509 Public Key Infrastructure Certificate Management Protocols, March 1999.
  181. RFC 2460, Internet Protocol, Version 6 (IPv6) Specification. S. Deering, R. Hinden. December 1998.
  182. RFC 2459, Internet X.509 Public Key Infrastructure Certificate and CRL Profile. R. Housley, W. Ford, W. Polk, D. Solo. January 1999.
  183. RFC 2409, The Internet Key Exchange (IKE). D. Harkins, D. Carrel. November 1998.
  184. RFC 2408, Internet Security Association and Key Management Protocol (ISAKMP). D. Maughan, M. Schertler, M. Schneider, J. Turner. November 1998.
  185. RFC 2407, The Internet IP Security Domain of Interpretation for ISAKMP. D. Piper. November 1998.
  186. RFC 2246, The TLS Protocol Version 1.0. T. Dierks, C. Allen. January 1999.
  187. RFC 1994, PPP Challenge Handshake Authentication Protocol (CHAP). W. Simpson. August 1996.
  188. RFC 1898, CyberCash Credit Card Protocol Version 0.8. D. Eastlake 3rd, B. Boesch, S. Crocker & M. Yesil. February 1996.
  189. RFC 1510,  PS   J. Kohl, B. Neuman, "The Kerberos Network Authentication Service (V5)", 09/10/1993.

  190. 2003年上課參考資料

  191. 2004年上課參考資料

  192. 2005年上課參考資料

  193. 2006年上課參考資料

  194. 2007年上課參考資料

  195. 2008年上課參考資料

教科書目錄:

(一)、基礎理論篇
第1章:網路安全概論
第2章:私密金鑰密碼系統
第3章:公開金鑰密碼系統
第4章:單向雜湊函數
第5章:數位簽章
第6章:橢圓曲線密碼系統
第7章:金鑰管理
第8章:密碼學模組技術
第9章:IC卡
(二)、 網路工具篇
第10章:Wireshark封包分析軟體
第11章:Nmap
第12章:Nessus
第13章:Snort
第14章:AIDE與wxChecksums
第15章:PGP/GnuPG
第16章:開放原始碼的網路安全軟體