Vaclav Matyas Jr. and Michal Vojkuvka

Semestralni projekt pro P018 / P018 Term Project
Faculty of Informatics, Masaryk University, 1996


SECURITY

RECOMMENDED RESOURCES ON THE NET

Nazvy jednotlivych odkazu jsou v anglictine, jejich strucny popis v cestine.
References' headers are in English, their short description in Czech.

Audit
Authentication and Identification Tools & Technq's
Books and Other Documents
Conferences and Updates
Cryptography - Theory and Resources
Cryptography - Applications
Evaluation & Criteria
Firewalls
Hackers & Hacking
Mailing Lists, Usenet News, etc.
Metaindexes and Other Links
Miscellaneous
Mobile Communications Security
Network Security
Organizations - Commercial
Organizations - Non-Profit
OS Security
People
Privacy
Risk Analysis and Management
Security Cards, Chips, Tokens, etc.
Smart Cards, Credit Cards & Payment Systems
Software Protection
Standardization
Universities & Research Groups
Vaccines, Viruses
WWW Security








Audit

Dr Solomon's Audit
Neocenitelny nastroj k zajisteni auditu pro administratory PC.
BACK TO INDEX

Authentication and Identification Tools & Technq's

The Kerberos Network Authentication Service
Podrobnosti tykajici se autentizacniho protokolu Kerberos. Detailni popis cinnosti, jeho uziti pro autorizaci, nejruznejsi modifikace.
Kerberos Users' Frequently Asked Question
Nejcastejsi otazky kolem autentizacniho protokolu Kerberos.
The MIT implementation of the Kerberos 5 protocol
Odkazy na dalsi zdroje tykajici se Kerberosu.
KryptoKnight by IBM
Zajistuje autentizaci, distribuci klicu, ochranu soukromi atd.
Unix Authentication Tools
Ruzne utility pro praci s hesly v Unixu, Kerberos.
BACK TO INDEX

Books and Other Documents

Book Publishers Book Stores
Aegean Park Press
Seznam knih vychazejicich v kryptograficke edici.
BACK TO INDEX

Conferences and Updates

Pokud si myslite, ze by v tomto seznamu mel byt uveden take odkaz na Vasi stranku tykajici se bezpecnosti, zaslete dopis stisknutim vlevo uvedeneho tlacitka. Nezapomente, prosim, uvest strucny popis obsahu stranky a jeji URL adresu.

Please inform us about any relevant event you wish to present in this section. Send us the URL, and also some information on the WWW page you would like to have linked here, together with a short description of the event itself.

BACK TO INDEX

Cryptography - Theory and Resources

The FAQs
Bokler Software's Cryptographic Resources Page
Doug Stinson: Cryptography Theory and Practice
Zajimava ucebnice kryptografie. Srozumitelnym zpusobem popisuje dnesni techniky a uvadi radu nazornych prikladu.
Kryptographie
Odkazy na jednotlive oblasti kryptografie (cast v nemcine).
Quadralay Cryptography Archive
Odkazy na zdroje tykajici se jednotlivych oblasti kryptografie.
Sicherheit
Nemecky psana stranka podavajici zakladni informace o jednotlivych oblastech kryptografie. Hesla, bezpecnost Internetu, elektronicke penize, ochrana soukromi, GSM atd.
Steganography
Nekolik odkazu tykajicich se staganografie.
Vince cate's Cryptorebel/Cypherpunk Page
Spousta odkazu od steganografie (ukryvani zprav do obrazku) az po bezpecnost WWW.
BACK TO INDEX

Cryptography - Applications

Codes, Keys and Conflict: Issues in U.S. Crypto Policy
ACM Crypto Study.
Cryptography and PGP Page
Data Fellows, Ltd. - F-SSH
Secure Connections Over the Internet.
The DEScipher/VBX Page
Programovy produkt od Bokler Software Corp.
BACK TO INDEX

Evaluation & Criteria

The Canadian Trusted Computer Product Evaluation Criteria
The Common Criteria Version 1.0
Common Criteria 1.0 (TNO Physics and Electronics Laboratory)
Online Rainbow Series Books
DoD Rainbow Books - Green, Orange, Yellow & Yellow Book Rationale.
BACK TO INDEX

Firewalls

(This section has been put up by - Radim Pesa - dal dohromady veci k teto problematice).

Knihy a clanky o firewallech

Internet Firewalls Frequently Asked Questions (FAQ)
Jestli nevite kde zacit, zkuste to tady.
Building Internet Firewalls
Kniha autoru D. B. Chapman, E. D. Zwicky vydana v nakladatelstvi O'Reilly & Associates.
Just the Facts About Firewalls
Chey Cobb, NCSA
On the topic of Firewall Testing
Clanek o testovani firewallu od Marcuse J. Ranuma.
Can Firewalls Take the Heat?
Test firewallu z casopisu Data Communications (listopad 1995).
Great Circle Associates
Archiv firewalls mailing listu

Seznamy firewallu

Komercni firewally
Seznam vybranych komercnich firewallu (na tomto serveru).
NCSA Certified Firewall Products
Seznam firewallu, ktere byly certifikovany NCSA.
Commercial Firewalls and Related FW Products
Seznam firewallu na serveru Great Circle Associates.

Jina reseni

Socks
TIS toolkit
Internet firewall toolkit a rada dalsich materialu o bezpecnosti a firewallech
Freestone
Volne dostupny balik odvozeny z firewallu Brimstone od SOS Corporation.
BACK TO INDEX

Hackers & Hacking

Cracker Software Page by Bokler Software Corp.
Skutecnost, ze jen malo aplikaci pro DOS ci Windows zajistuje dostatecnou bezpecnost, ilustruje prave tato stranka. Naleznete zde WPCRACK pro WordPerfect 5.1, ZIPCRACK, PKCRACK a nekolik dalsich programu.
The official Phrack Magazine Web page
Phrack magazin je jednim z nejdele vychazejicich elektronickych casopisu. Od roku 1985 spojuje komunitu hackeru, kteri si tak mezi sebou vymenuji zajimave informace o operacnich systemech, pocitacovych komunikacich, telefonnich sitich apod. Nechybi ani podrobnosti o pocitacovem podzemi.
BACK TO INDEX

Mailing Lists, Usenet News, etc.

Mailing Lists

Usenet News BACK TO INDEX

Metaindexes and Other Links

Bennet Yee's Security Related Net-pointers
Seznam odkazu tykajicich se bezpecnosti.
Links at the INI, University of Cambridge
Jednotlive odkazy jsou cleneny podle statu, kde se nachazeji.
Computer Security Information
Zdroje informaci tykajicich se pocitacove bezpecnosti. Jednotlive oblasti jsou prehledne cleneny.
Kevin McCurley's list
Domovske stranky odborniku zabyvajicich se vyzkumem v oblasti kryptologie.
Mike Just - Cryptography Resources
Centres, FAQs, newsgroups, ...
Ron Rivest's list of links
Odkazy na stranky tykajici se kryptologie a bezpecnosti.
Cryptography Online courses
Odkazy na domovske stranky kurzu zabyvajicich se kryptografii.
BACK TO INDEX

Miscellaneous

TSCM.COM - Counterintelligence and Counterterrorism WWW Page
Pokud se chcete dozvedet zajimavosti nejen ohledne pocitacove bezpecnosti, ale i z oblasti protiteroristickych opatreni, detekce vybusnin, chemickych bojovych latek atd., navstivte rozhodne tuto stranku. Soucasti je i fotogalerie odposlouchavacich zarizeni, ktera jen ztezi uvidite i v tech nejlepsich kriminalnich filmech - hrozby za pouziti te nejmodernejsi techniky (mikrovlnne kamery, stenice a dalsi zajimave veci).
Zakladni vzory monodaktyloskopicke klasifikace
Prevzato z knihy Jan Pjescak a kol.: Kriminalistika.
Random number generators
Stranka vyzkumne skupiny pLab na univerzite v Salzburgu.
BACK TO INDEX

Mobile Communications Security

Communication and Road Traffic Telematics
Vyzkumny projekt na Technicke univerzite Aachen. Mobilni komunikacni systemy; vyvoj, specifikace a standardizace komunikacnich protokolu.
Kolleg "Sicherheit in der Kommunikationstechnik"
Westrade Int.'l Telecom
Spolecnost zabyvajici se prodejem GSM.
BACK TO INDEX

Network Security

Computer and Network Security
Kurz Rona Rivesta na MIT.
IBM Spearheading Intellectual Property Protection Technology for Information on the Internet
INTOUCH NSA - Network Security Agent by Touch Technologies, Inc.
Provides network-wide, automated detection of intrusions and computer-use policy violations.
ISS - Internet Security Systems, Inc.
Zabyva se vyvojem v oblasti detekce zranitelnych mist pocitacovych siti. K nejzajimavejsim produktum patri "attack simulator" ci v soucasnosti velmi uzitecny Internet Scanner.
SAMSON project
Bezpecnost a sprava otevrenych systemu.
SIRENE: Sicherheit in Rechnernetzen
Vyzkumna skupina v oblasti bezpecnosti pocitacovych siti.
TIS - Network Security
Bezpecnost elektronicke posty, firewalls, ...
BACK TO INDEX

Organizations - Commercial

Border Network Technologies Inc.
Border Network Technologies is focused on leading the industry in the delivery of the most impenetrable network security systems that enable organiztions to safely and easily obtain the benefits of Internet communications. Founded 1994.
Canadian Society for Industrial Security Inc.
Profesionalni asociace zabyvajici se bezpecnosti vladnich organizaci a bezpecnosti v prumyslove sfere.
Data Fellows
Finska softwarova firma specializujici se v oblasti vyvoje profesionalniho programoveho vybaveni. Pusobi i v oblasti antivirovych prostredku.
DigiCash
Holandska spolecnost zabyvajici se elektronickymi penezi a smart kartami.
Domus Software
Tato firma se mj. zabyva bezpecnosti API, gateways, Windows WINSOCK interface.
Enigma Logic, Inc.
Resi problemy z oblasti bezpecnosti pocitacovych siti. SafeWord, produkt teto firmy, zajistuje bezpecnost siti Novell, Sun Microsystems, Hewlett-Packard. Zalozena 1982.
IBM Zurich - Security Research
Bezpecnost komercnich sluzeb Internetu, bezpecnostni mechanismy vysokorychlostnich pocitacovych siti, autentizace v distribuovanych systemech.
Lockheed Martin's Advanced Technology Laboratory
Zabyva se vyspelymi pocitacovymi technologiemi - od mikroelektronickych soucastek az po vzdusne obranne systemy. Vyrobce kryptoprocesoru CYPRIS.
NIST - National Institute of Standards and Technology's
Computer Security Resource Clearinghouse.
Norman Data Defense Systems
Mezinarodni spolecnost venujici se ochrane dat.
RSA Data Security, Inc.
Zajistuje bezpecnost Netscape Navigatoru, MS Windows a stovek dalsich programovych produktu. Zalozena roku 1982. V dubnu tohoto roku tuto firmu ziskala Security Dynamics za 200 milionu dolaru.
Safetynet, Inc.
Vyvoj v oblasti bezpecnosti, antivirove ochrany a spravy siti pro DOS, Windows a OS/2.
Security Dynamics
A worldwide leader in information security systems.
Touch Technologies, Inc.
TTI provides award-winning system management and network security products.
TIS - Trusted Information Systems, Inc.
"World leader in computer and communications security"
V-ONE - Virtual Open Network Environment Corp.
Zajisuje bezpecnost pocitacovych komunikaci v obchodni sfere, aplikace smart karet, firewalls.
BACK TO INDEX

Organizations - Non-Profit

CERT - Computer Emergency Response Team
The German Research Network.
CSE - Communications Security Establishment
CSE's INFOSEC activity area provides advice and guidance to government institutions on the means of ensuring the security of communications and computer systems.
EFF - Electronic Frontier Foundation
Civilni organizace bojujici za ochranu soukromi, svobodne vyjadrovani a primy pristup k informacim.
IACR - International Association for Cryptologic Research
Nevydelecna vedecka organizace zabyvajici se vyzkumem v kryptologii a ji pribuznych oblastech.
Information systems Security Association, Inc.
Mezinarodni organizace zajistujici vzdelavaci programy, vedecka sympozia, publikace z oblasti INFOSEC atd.
National Computer Security Association (NCSA)
BACK TO INDEX

OS Security

Unix: Tools for system administration
Sbirka programu na serveru JUMBO!
Macintosh: Security
Sbirka programu na serveru JUMBO!
Windows: Security
Sbirka programu na serveru JUMBO!
SATAN scanning tool
It is designed to scan a Unix host or set of Unix hosts on an IP network and report about well-known security vulnerabilities.
SATAN
Security administartor's tool for analyzing networks
BACK TO INDEX

People

Kevin McCurley's list of cryptographer's home pages BACK TO INDEX

Privacy

Arge Daten Archiv
Mimo jine obsahuje i rakousky Zakon o ochrane dat a dalsi odkazy zabyvajici se touto problematikou.
EFF - Electronic Frontier Foundation
Civilni organizace bojujici za ochranu soukromi, svobodne vyjadrovani a primy pristup k informacim.
Joel McNamara's Electronic Privacy Page
Ochrana soukromi a Internet.
The Privacy Rights Clearinghouse
A nonprofit education and research program administered by the University of San Diego's Center for Public Interest Law.
You Own Your Own Web
Soukromi, svobodne vyjadrovani a etika na Internetu.
Anonymity and privacy on the Internet
Anonymita, zajisteni soukromi a bezpecnosti v pocitacovych sitich.
BACK TO INDEX

Risk Analysis and Management

BACK TO INDEX

Security Cards, Chips, Tokens, etc.

CYPRIS Encryption Processor
Vysoce vykonny CMOS RISC "kryptoprocesor" zalozeny na harvardske architekture. Vyvinula firma Lockheed Martin - ATL.
CYPRIS INFOSEC Crypto Card
Programovatelny kryptograficky akcelerator pro PC (16-bit ISA). Zakladem je procesor CYPRIS. Disponuje vlastni pameti, dvema seriovymi porty s rozhranim RS 232, RS 422/485 a programovatelnym hodinovym generatorem.
Dynamic PassWord Authenticators
Generatory hesel velikosti kreditni karty.
BACK TO INDEX

Smart Cards, Credit Cards & Payment Systems

Electronic Money or E-money
Mnoho zajimavosti a odkazu ohledne elektronickych penez.
Gemplus
Vyrobce cipovych karet s mezinarodni pusobnosti. Dodava mikroprocesorove karty, jejich cteci zarizeni. Zajistuje aplikace pro telekomunikacni techniku - telefonni karty, GSM. Vyvoj platebnich, zdravotnich a dalsich karet.
Introduction to Telephone Cards
Vse, co chcete vedet o telefonnich kartach. Jejich vyvoj, princip cinnosti a elektricke parametry, podrobne informace o vyznamu jednotlivych signalu a organizaci dat na karte.
ISO 7816
Norma definujici parametry asynchronnich smart karet. Popis fyzikalnich vlastnosti, rozmeru a umisteni kontaktu na karte, jednotlivych signalu a prenosovych protokolu.
MasterCard International
Dodavatel platebnich karet.
Money - Past, Present & Future
Zdroje informaci o historii penez, soucasnem vyvoji a vyhlidkach elektronickych penez od Roye Daviese.
SmartCAT - Smart Computer-access Authentication Terminal
Zajistuje efektivni kontrolu pristupu. Komunikuje s PC prostrednictvim paralelniho nebo serioveho portu, norma ISO 7816. Firma V-ONE.
Smart cards, credit cards, payment systems
Stranka odkazu na spolecnosti zabyvajicimi se touto problematikou.
Visa Expo
Dodavatel platebnich karet.
BACK TO INDEX

Software Protection

Bokler Software Corp.
Zabyva se vyvojem kryptografickych nastroju pro programatory. Mezi nejznamejsi produkty patri 16-bitovy DEScipher/VBX ci 32-bitovy DEScipher/OCX.
BACK TO INDEX

Standardization

EDS Shadow Patent Office
Seznam patentu zaregistrovanych u Americkeho patentoveho uradu. Kryptografii naleznete ve tride 380.
IEEE Home Page
The Institute of Electrical and Electronics Engineers, Inc.
ISO Online
Informacni sluzba sekretariatu ISO - the International Organization for Standardization.
NIST - National Institute of Standards and Technology's
Computer Security Resource Clearinghouse.
NSA
BACK TO INDEX

Universities & Research Groups

Computer Security, Cryptology and Coding Theory
Vyzkumny program na Institutu matematickych ved Isaaca Newtona, Univerzita Cambridge.
COSIC: Computer Security and Industrial Cryptography
Vyzkumna skupina zabyvajici se navrhem, hodnocenim a implementaci kryptografickych algoritmu a protokolu vcetne jejich aplikaci v telekomunikacni technice a pocitacovych sitich.
ETH Zurich, Department of Computer Science
Vyzkumna skupina: INFOSEC a kryptografie.
GMD - TKT.SIT Security Technology
Nemecke narodni vyzkumne stredisko pro informacni technologie.
IACR - International Association for Cryptologic Research
Nevydelecna vedecka organizace zabyvajici se vyzkumem v kryptologii a ji pribuznych oblastech.
UCL Microelectronics Laboratory - Crypto Group
BACK TO INDEX

Vaccines, Viruses

ALWIL Software
Ceska firma zalozena v roce 1991. Zabyva se ochranou dat v prostredi MS-DOSu, Windows a Novellu. Mezi jeji nejznamejsi softwarove produkty patri antivirovy program AVAST! a SUP. Graficky pekne zpracovana stranka.
Data Fellows Ltd. - Ant-virus Products
Mezi nejznamejsi produkty patri antivirovy program F-PROT Professional.
Dr Solomon's On-Line
Cerstve informace o pocitacovych virech a dalsi zajimavosti.
LOOK Software Systems Inc.
Antivirove programy, Virus ALERT.
McAfee
K nejznamejsim produktum patri antivirovy program SCAN.
ThunderBYTE Inc.
Antivirove programy.
Virus test center
Informace o virech pro pocitace Amiga, Macintosh i PC z univerzity v Hamburgu.
BACK TO INDEX

WWW Security

CGI Security
Bezpecnost WWW a CGI skriptu.
CGI Security Tutorial
Zajimave veci ohledne CGI skriptu.
Java Security
HotJava(tm): The Security Story.
JavaSoft: FAQ - Applet Security
Zajimave veci o bezpecnosti a zranitelnych mistech Javy primo od firmy SUN.
Security and the World Wide Web
Materialy z konference SIGNIDR 1994.
SSL Version 3.0
Secure Sockets Layer Protocol
The WWW Security FAQ
Mnoho poznatku tykajicich se bezpecnosti WWW.
BACK TO INDEX

This page has accesses since April 17, 1996.

Last modification: Thu Jun 06, 1996.

Send mail if you have some idea for improving this page.


THIS PAGE IS CURRENTLY UNDER DEVELOPMENT !

Vaclav Matyas and Michal Vojkuvka, 1996.
Faculty of Informatics, Masaryk University, Brno.