Skip to navigation | Skip to main content | Skip to footer

COMP38411: Cryptography and Network Security (2011-2012)

This is an archived syllabus from 2011-2012

Cryptography and Network Security
Level: 3
Credit rating: 10
Pre-requisites: No Pre-requisites
Co-requisites: No Co-requisites
Duration: 11 weeks
Lecturers: Ning Zhang
Course lecturer: Ning Zhang

Additional staff: view all staff
Sem 1 Lecture 1.4 Mon 15:00 - 17:00 -
Sem 1 w2-3,5,7-11 Lab 3rdLab Mon 15:00 - 17:00 -
Assessment Breakdown
Exam: 100%
Coursework: 0%
Lab: 0%

Themes to which this unit belongs
  • Mobile Computing and Networks


The advances in the Internet and wireless communication technologies have led to an impressive growth in the mobile internet. It is now a daily routine for people to share information via, and access services on, the Internet anywhere and anytime. Information that is transmitted, processed, stored, and managed on networked systems is particularly vulnerable to security threats, such as identity theft, manipulation or misuse of valuable or confidential information, deliberate damage to systems and services, and fraud and forgeries in e-banking and e-business dealings. Therefore, how to protect information and resources against these threats has become an important topic.


This course unit is aimed at introducing the technologies and practices that can be used to secure information, computer systems and networks. The course will cover security threats and vulnerabilities, principles of cryptography, and practical topics in network and Internet security. It is designed for students who have some understanding of computer networks and protocols, but no background in security.

Programme outcomeUnit learning outcomesAssessment
A3Understand the principles and practices of cryptographic techniques.
  • Examination
A3 B1Understand a variety of generic security threats and vulnerabilities, and identify and analyse particular security problems for a given application.
  • Examination
A3Understand the design of security protocols and mechanisms for the provision of security services needed for secure networked applications.
  • Examination
A3Appreciate the application of security techniques and technologies in solving real-life security problems in practical systems.
  • Examination
B1Design security protocols and methods to solve specified security problems.
  • Examination
C4Be familiar with current research issues and directions of network security.


Lecture 1

Introduction to security issues: Basic notions of security (confidentiality, integrity and availability), security threats, models, policies, and mechanisms.

Lectures 2-8

Cryptographic building blocks: conventional cryptography (Feistel ciphers, AES), public-key cryptography (RSA), message authentication and cryptographic hash functions (SHA and HMAC), digital signatures, digital certificates and Public Key Infrastructures (PKIs), key management and distribution (Diffie-Hellman, and Needham-Schroeder protocols).

Lectures 9-12

Channel security: IP security (IPSec), secure socket layer (SSL/TLS).

Lectures 13 - 17

Security services: user identification and authentication (unix authentication solution, smart-card authentication solution, Kerberos), access control structures (access control matrix, capabilities and access control list).

Lectures 18 - 21

Advanced topics: e.g. wireless local area network (WLAN) security, e-commerce security, Grid security.

Lecture 22


Reading List

The main text book is Cryptography and Network Security by William Stallings, but there are many other very useful books, e.g. Matthew Bishop, Computer Security: Art and Science Addison-Wesley, 2003, ISBN 0-201-44099-7.
There are also useful resources on the Internet, e.g., and

Core Text
Title: Cryptography and network security: principles and practice (7th edition)
Author: Stallings, William
ISBN: 9781292158587
Publisher: Pearson
Edition: 7th
Year: 2017