This course focuses on standards, cryptography, and standards in the field of cryptography. The course aims to provide guidance in the field of cryptographic standards and is addressed to professionals developing and implementing cryptographic solutions within organizations, as well as to students and others who want to understand what cryptography can provide.

In recent years, standards have been issued for most commonly used types of cryptographic schemes and for most common uses of cryptography. This course is designed to provide an introduction to all major types of cryptographic schemes and guidance on standardized techniques. The purpose of the course is to provide sufficient information about the standardized schemes used, in particular, to provide fairly comprehensive information about what standards exist and what they contain. This will allow users to select algorithms for practical use, with the confidence that the algorithms have been studied well enough by the academic community to be standards. Of course, standardization alone does not guarantee that any algorithm will not be subject to attack in the future, but in general standardized methods represent the state of the art in cryptography. However, there are exceptions where cryptographic techniques are used that have not been thoroughly studied by the wider community - such exceptions tend to be application-specific standards. Like all users of cryptography, users of standardized techniques are encouraged to keep abreast of new developments in the field.

Course program

(each topic is designed for a minimum of 1 hour,

thus the minimum course duration is 65 hours)

TECHNOLOGY (from the Greek art, skill, skill and Greek study) - a set of methods and tools to achieve the desired result; a method of transforming the given into the necessary; mode of production. Technology is the application of any scientific knowledge to solve practical problems. Technology includes methods, techniques, mode of operation, sequence of operations and procedures; it is closely related to the means, equipment, tools, and materials used. Technology is a real (practical) solution to a specific scientific, technical, production, economic and socio-political problem. (Nekrasov S.I., Nekrasova N.A. Philosophy of science and technology: thematic dictionary. - Orel: OSU. 2010.)

This course is dedicated to blockchain technology. The course is aimed at giving a general understanding of this technology and is addressed to everyone who wants to understand at a high level how blockchain technology works and what it can be used for.

Currently, there is quite a high level of excitement around the issue of using blockchain, but this technology has not been well studied. Blockchain is not some kind of magic, magic that will help solve all problems. As with all new technologies, there is a tendency to try to apply it to everything imaginable. This course attempts to provide students with a high-level understanding of blockchain technology sufficient to begin effective implementation.

Course program

(each topic is designed for a minimum of 1 hour,

thus the minimum course duration is 15 hours)

1.Blockchain architecture.

1.1. Introduction. History of the issue. Internet. Cryptography. Cypherpunk (Cypherpunks). Tasks. David Chaum and DigiCash. Wei Dai and b-money. Nick Szabo and Bitgold. Nick Szabo and smart contracts. Stuart Haber, W. Scott Stornetta and timestamp server. Adam Back and hashcash. Leslie Lamport and Paxos. Merkle Tree. Satoshi Nakamoto and Bitcoin. Classification of blockchain technology. Components of blockchain technology.

1.2. Cryptographic hash functions. Definition of a cryptographic hash function. Properties. Classification. Cryptographic hash function schemes. KDF. Examples. Application. Hash pointers. Block chain. Merkle Tree.

1.3. Asymmetric cryptography algorithms. Asymmetric cryptography. Digital signatures. Properties. Elliptic Curve Digital Signature Algorithm (ECDSA). Use of private and public keys.

1.4. Transactions. Addresses. Ledgers. Transaction. Information contained in the transaction. Metadata. Amount Inputs. Outputs. ID/Hash. User address. Formation of the address. Private key storage. Wallet. Transactions ledger. Centralized ledgers. Distributed ledgers.

1.5. Blocks. Block chains. Transaction pool. Transaction blocks. Creating blocks. Block data fields. Block number. The current hash value of the block. The previous hash value of the block. Merkle tree root hash. Timestamp. Block size. Nonce value. List of transactions included in the block. Block chains.

2. Consensus algorithms.

2.1. Consensus tasks. Consensus. Agreement protocol. Objectives of the agreement. The Byzantine agreement problem. Consensus problem. Interactive consistency problem. Byzantine agreement protocol. Consensus protocol. Interactive consistency protocol.

2.2. Proof-of-Work algorithm. Description of the algorithm.

2.3. Proof-of-Stake algorithm. Description of the algorithm.

2.4. Modifications to consensus algorithms. Reusable-Proofs-of-Work (RPoW). Delegated Proof-of-Stake (DPoS). Leased Proof of Stake (LPoS). Proof of Importance (Pol). Proof of Activity (POA). Proof of Capacity (PoC) (Proof-of-space). Proof of Burn (PoB). Ouroboros Proof-of-stake (PoS). Proof of Research.

2.5. Review of other consensus algorithms. Byzantine Fault Tolerance (BFT). Proof of Elapsed Time (PoET). Simplified Byzantine Fault Tolerance (SBFT). Delegated Byzantine Fault Tolerance (DBFT). Directed Acyclic Graphs (DAG). Proof of Weight (PoWeight). Proof-of-Authority (PoAuthority).

3. Miscellaneous.

3.1. Forking. Forks. Soft fork. Hard fork. Examples. Replacement of cryptographic algorithms. Quantum computers and post-quantum cryptography.

3.2. Smart contracts. Smart contract. Work principles. Examples. Ethereum.

3.3. Types of blockchain. Permissionless Blockchain (open blockchain). Permissioned Blockchain (closed blockchain). Public blockchains. Consortium blockchains. Fully private blockchains. Permissioned private shared ledgers. Permissioned public shared ledgers. Unpermissioned public shared ledgers.

3.4. Blockchain platforms. Cryptocurrencies. Bitcoin. Bitcoin Cash. Litecoin. Ethereum. Ethereum Classic. Dash. Ripple. Hyperledger. MultiChain. Waves. Nxt. NEM. NEO.

3.5. Possibilities of blockchain technology. Possibility of using blockchain technology. Limitations of application. Misconceptions about application possibilities. Possible areas of application. Flowchart for determining the need for blockchain technology.

Over the past decade, cryptographic protocols have emerged as a major focus of research in theoretical cryptography. For example, at the largest annual international cryptographic conferences Crypto and EUROCRYPT, most of the reports are devoted specifically to protocols. This situation is not only a reflection of the prevailing interests of researchers, but there are also objective grounds for the conclusion that cryptographic protocols have become the main object of cryptographic research. In banking payment systems today, instead of payment orders on paper, their electronic form is used. The benefits of such a replacement are very tangible, and therefore banks will never refuse it, no matter what technical and cryptographic (related to ensuring integrity) difficulties arise. But payment orders are only one of the many types of documents in circulation in business. But there are also documents that government bodies and public organizations work with, legal documents, etc. In recent years, in developed countries there has been a clear trend of transferring all document flow into electronic form. It is important to note that as the transition to electronic documents seems inevitable, there is a need to ensure, on a case-by-case basis, integrity and untraceability, i.e. development of appropriate cryptographic protocols.

In 1994, Timothy C. May first proposed considering the problem of sending a secret message to the future, i.e. the task of encrypting messages that can only be decrypted after a specified time in the future.

Solving this problem has a number of interesting practical applications, for example:

1. “sealing” diaries and records for a certain period of time, and in such a way that even their author could not “unseal” them ahead of time,
2. protection of data obtained as a result of scientific research or experiments until their completion and publication in order to prevent information leakage or pressure from interested parties,
3. concealment of the price offer by bidders until the end of the trading session,
4. protection of intermediate voting data until it is completed in order to exclude influence on the voting process.

The scope can be very broad and includes not only auctions and voting, but also financial markets and their regulation, e-commerce, and law.

There is also a need for such a cryptographic application in the Republic of Kazakhstan. In particular, in 2015, the Government Procurement Web Portal of the Republic of Kazakhstan expressed its need for a tool that would provide encryption of the data of portal users (suppliers), with the ability to decrypt it no earlier than a specified time.

This course proposes to consider a number of cryptographic protocols (distributed key generation protocols, secret sharing protocols, El-Gamal encryption algorithm) to build a data encryption service for a given time.

Course program

Over the past decade, cryptographic protocols have emerged as a major focus of research in theoretical cryptography. For example, at the largest annual international cryptographic conferences Crypto and EUROCRYPT, most of the reports are devoted specifically to protocols. This situation is not only a reflection of the prevailing interests of researchers, but there are also objective grounds for the conclusion that cryptographic protocols have become the main object of cryptographic research. In banking payment systems today, instead of payment orders on paper, their electronic form is used. The benefits of such a replacement are very tangible, and therefore banks will never refuse it, no matter what technical and cryptographic (related to ensuring integrity) difficulties arise. But payment orders are only one of the many types of documents in circulation in business. But there are also documents that government bodies and public organizations work with, legal documents, etc. In recent years, in developed countries there has been a clear trend of transferring all document flow into electronic form. It is important to note that as the transition to electronic documents seems inevitable, there is a need to ensure, on a case-by-case basis, integrity and untraceability, i.e. development of appropriate cryptographic protocols.

Due to the general availability of the used channels for transmitting voice information in IP networks, the confidentiality of VoIP services is of particular relevance. For this, two different approaches are possible: the formation of a direct secure channel between correspondents (for example, a VPN tunnel) and the use of special security protocols for IP services. The first method is widely used when building virtual corporate networks. However, to implement it, correspondents must support the VPN protocol, which is not typical for all VoIP devices (Table 1). Specific IP telephony security protocols can be divided into three categories:

• signaling security protocols (Secured SIP);

• media information security protocols (SRTP);

• key generation/distribution protocols for media information security protocols

(MIKEY, SDES, ZRTP, DTLS).

This course examines encryption key distribution protocols for use in voice over IP (VoIP) (ZRTP) systems.

Course program

A cryptographic algorithm is understood as an algorithm that implements the calculation of one of the cryptographic functions, i.e. functions necessary to implement a cryptographic system. Such functions include: key generation, generation of pseudo-random sequences, encryption function, calculation and verification of message authenticity code values and digital signatures, calculation of hash function values, etc. Cryptographic tasks consist of ensuring confidentiality, integrity, untraceability, authentication, non-repudiation and etc.

This course proposes to consider the basic principles of constructing symmetric block encryption algorithms using the example of existing standards (AES, “Kuznechik”, “Kalina”).

Course program