Final's Review
                             ================

You are only responsible for all the material that was not covered in the 
mid-term. The exam will test your understanding of the concepts and your 
ability to apply those concepts.

1. Web Security (Ch 8)

-The problem

-Secure Socket Layer (SSL):
  What it achieves, its architecture, and protocol.
   
-Secure Electronic Transation (SET):
  o What services it provides
  o How is works.
  o The concept of dual signature.
        what it achieves and how it works.

2. Intruders and Viruses (Ch 9)

-Problem and intrusion and intruder classification.

-Techniques for guessing passwords

-Unix password scheme.
   o salt

-Password selection strategies

-Password checking mechanisms
   o Markov model
   o Bloom filter

-Intrusion detection
  o Approaches
  o Distributed ID.

-Viruses and malicious programs
  o Various terms and definitions
  o Various types of viruses
  o Handling of viruses

3. Firewalls (Ch 10)

-Threats and how firewalls solve them.

-Firewall definition and characteristics

-Types of firewalls
  o packet filtering
  o application-level gateway
  o circuit-level gateway
  o bastion host

-Firewalls configurations
    three configurations

-Data access control
  o access control matrix
  o access control list and capabilities

-Trusted Systems
  o multilevel security
  o "no read up" and "no write down" rules
  o reference monitor
  o trojan horse defense


4. Authentication in wireless networks 

-Paper by Joos and Tripathi

-Paper by Wang

5. Secure Routing in Ad Hoc Networks (Paper by Gupte and Singhal)

-The problem of secure roting in ad hoc networks.
   o various attacks
   o Secure routing protocol (Section 5 of the paper)
   o Routing using pre-deployed security infrastructure 
                             (Section 6 of the paper)

------------------------- end ---------------------------------------------