Arvutiteaduse instituut
  1. Kursused
  2. 2023/24 sügis
  3. Infoturve (MTAT.07.028)
EN
Logi sisse

Infoturve 2023/24 sügis

  • Home
  • Lectures & labs
  • Homework & course rules
  • Terminology
  • Exam
  • Links

Homework #2 (15p)

Table of contents

  • Written tasks (8p)
    • Submission of written tasks
  • Lab tasks (7p)



Deadline: 12th of November (the solution has to be submitted before Monday)

Recommended reading

  • Announcing the first SHA1 collision, SHAttered
  • HTTPS Certificate Revocation is broken, and it’s time for some new tools

Written tasks

PKC, PKI and HTTPS

  1. What are the two main differences between encryption and hashing? The answer must be formatted as a list so that the two differences are clearly distinguishable. The answer must be short and precise (you can use up to two sentences). This question can have multiple correct answers. (1p)
  2. Read the following article: HTTPS Certificate Revocation is broken, and it’s time for some new tools. Answer the following questions:
    1. Why are certificate revocation lists not guaranteed to work in practice? (1p)
    2. Online Certificate Status Protocol has some issues, briefly name two of these issues. (1p)

Smartcards, e-voting, blockchain

  1. In an opinion story Otto de Voogd wrote about the possibility of the state having access to the secret keys on the Estonian ID-card. As a response to the opinion Agu Kivimägi wrote how private keys are generated. Name two different reasons why the Estonian government can not access / know the secret key that is on your ID-card. The ID-card vulnerabilities that were described in 2017 are out of scope of this question. The answer must be formatted as a list. (1p)
  2. It is difficult to build secure internet voting systems. Some people have proposed to use blockchain as a solution to improve the security of internet voting. You have two tasks. First, choose and read one of the following papers and make a brief summary of the main points presented in the paper regarding the use of blockchain in internet voting. Second, add your own opinion or comments. More specifically, do you agree with the authors? Why? (4p)
    • On Trade-offs of Applying Block Chains for Electronic Voting Bulletin Boards (2018)
    • Going from bad to worse: from Internet voting to blockchain voting (2021)

Lab tasks (7p)

There are four lab tasks that have to be solved. The submission forms are available on the lab page. The deadline for the lab tasks is the same as for the written tasks. If you did not attend the lab, you will have to solve these tasks on your own.

  1. Task is about TLS and certification information.
  2. Task is about using Signal for end-to-end encrypted messaging.
  3. Task is about using DigiDoc4 for providing transport encryption.
  4. Task is about syncing files with Syncthing.

Submission form for the written tasks

The solution for the written tasks has to be submitted through this website. The solution can be submitted once you have logged in with the university credentials. We accept solutions only in .pdf format if it is not stated otherwise in the homework task.

We would like to get feedback about the difficulty of the homework and therefore we would kindly ask you to write in the comments box an estimate of how much time it took to solve the homework tasks.

Lahenduste esitamiseks peate olema sisse loginud ja kursusele registreerunud.
  • Arvutiteaduse instituut
  • Loodus- ja täppisteaduste valdkond
  • Tartu Ülikool
Tehniliste probleemide või küsimuste korral kirjuta:

Kursuse sisu ja korralduslike küsimustega pöörduge kursuse korraldajate poole.
Õppematerjalide varalised autoriõigused kuuluvad Tartu Ülikoolile. Õppematerjalide kasutamine on lubatud autoriõiguse seaduses ettenähtud teose vaba kasutamise eesmärkidel ja tingimustel. Õppematerjalide kasutamisel on kasutaja kohustatud viitama õppematerjalide autorile.
Õppematerjalide kasutamine muudel eesmärkidel on lubatud ainult Tartu Ülikooli eelneval kirjalikul nõusolekul.
Courses’i keskkonna kasutustingimused