skip to main content

Department of Computer Science

University of Colorado Boulder

cu: home | engineering | mycuinfo | about | cu a-z | search cu | contact cu

cs: about | calendar | directory | catalog | schedules | mobile | contact cs

	home \| quick links \| site map \| who's where \| cs a-z

· faculty · staff · students · alumni · phone directory · committees · academic advisors · student groups · advisory board · mail lists · who's where

· calendar · colloquia · mailing list · scheduling · defenses · bactac · department meetings · lecture series · cats · tabbs

· catalog · class schedules · spring 2012 · summer 2012 · fall 2012 · prerequisites · web pages · coordinators · caete online classes · fcqs · ta awards · defunct

· bs degree · requirements · foundation and core · tracks · advising · degree audits · concurrent bs/ms degree · minor · senior project · senior thesis · co-ops and internships · inspirational teachers · forms · faqs · prospective student guide · continuous improvement policy · why computer science?

· ms degree · me degree · phd degree · admissions · forms · financial aid · housing · incoming phd guide · grad student handbook · prospective student guide · why computer science?

· Center for Computational Pharmacology (CCP) · Center for Lifelong Learning and Design (L3D) · Colorado Computer Systems Research (CCSR) · Computational Language and Education Research (CLEAR) · Computational Science and Engineering Research Group · ConnectivITy Lab · Database Research Group · Intelligence in Action Lab · MultimodAl NeTworks of In-situ Sensors (MANTIS) · Neural and Statistical Computation Research Group · Protein Folding by Global Optimization · Robotics and Smart Materials · Scalable Game Design · Software Engineering Research Laboratory (SERL) · TerraSpark Geosciences · Tool-Supported Programming Languages Curriculum · Translator Construction (Eli) · University of Colorado Policy Lab (UCPL) · Wellness Innovation and Interaction Lab (WII)

· site map · a to z · who's where · site outline · hot links · about the site · search

home · the department · news ·

Internet Chess Club Security Flaws Uncovered

September 2004

John Black photo

Black

A team led by John Black, working with graduate student Martin Cochran and undergraduate Ryan Gardner, spent part of the summer conducting a security analysis of a popular online chess club called The Internet Chess Club. The ICC boasts over 30,000 members, including many of the world's top chess players.

The team uncovered several security flaws related to how time is measured per player and how encryption works between client and server. Problems were described at each level of the security protocol from the blockcipher to the key exchange mechanism. The research identified methods for improving the site's security in a variety of ways and also led to questions ripe for further research.

The project was partly sponsored by an NSF REU cybersecurity grant which allows undergraduates from around the country to come to Boulder for a summer to gain exposure to research in computer and network security. This summer six students from around the U.S. worked with six Computer Science faculty on various security projects. Summer 2005 will be the final year for this activity.

See also:

Department of Computer Science
College of Engineering and Applied Science
University of Colorado Boulder
Boulder, CO 80309-0430 USA

Questions/Comments?
Send email to

Engineering Center Office Tower
ECOT 717
+1-303-492-7514
FAX +1-303-492-2844

©2012 Regents of the University of Colorado
Privacy · Legal · Trademarks

May 5, 2012 (13:46)