Promoting Skepticism in the Security Classroom

Author:
Martin C. Carlisle, Dino Schweitzer
File Size:
453.19 kB
Date:
01 July 2010
Downloads:
1360 x

Generally discussions of digital signatures, cryptography and computer security focus on the complicated technical details behind the systems. Students are often led to the false conclusion that such systems are truly secure. We describe a very simple Trojan horse attack on a Department of Defense digital signature system, and how its demonstration in the classroom led to an improved understanding of weaker links in the security trust chain, and a healthy skepticism of security claims.

Promoting Skepticism in the Security Classroom