Dan Massey, Interdisciplinary Telecom Program, University of Colorado Boulder

Cybersecurity Rule 6: Use Cryptography Correctly

This talk explores some of the key mathematical concepts used in cybersecurity. Cryptography is one obvious example where mathematics plays a critical role in cybersecurity. However, this talk is not centered around developing new cryptographic algorithms. Instead, the talk explores how mathematical concepts are fundamental to all of cybersecurity, regardless

of whether one is working in cryptanalysis or writing secure software. The talk tile draws from a well known paper on the “Top Ten Software Design Flaws” where flaw number 6 is the failure to use cryptography correctly. The flaw is not that the cryptographic algorithms themselves are broken, but rather the flaw comes from misunderstanding their properties and using cryptographic tools incorrectly. In the talk, we will explore what it means to use cryptography correctly as well as explore other aspects where mathematics and cybersecurity intersect.