Welcome to Skarderud.net

• home
• personal
• works & projects
• Soft-IS
• cv

Works & projects

Written Articles and Reports

Msc - Protecting Sensitive Data on a PC by a Custom Algorithm (July 2005)

This is the Masters Thesis which completed my master’s degree in Information Security. Some of the work presented in this thesis is assessment of different techniques to store sensitive data, and the development of a stream cipher simulated and implemented in c#. Thorough statistical testing and efficiency testing are applied on the cipher, and later analysed within the thesis.

This thesis is available in PDF.

Contract Signing Using PGP (December 2004)

This article was written as a deliverable in a course called Payment Systems and Non-Repudiation. It takes a look on the difficulties of achieving fair and complete contract signing over an untrusted network like the Internet. GnuPG (PGP) technology and server side Perl scripts was developed as a suggestion to a way to handle the difficulties regarding contract signing. A PHP implemented user interface was also developed to act as a notary to solve possible conflicts between the two participating parties.

This article is available in PDF. (Code is not enclosed)

Attacking Fingerprint Sensors (December 2004)

This article was written together with three persons for the course Authentication, and is a practical approach trying to fool many of the fingerprint sensors available on the marked today. This paper describes methods to capture fingerprints from persons in both consensual and un-consensual ways, and the entire process of developing artificial fingers. These fingers are then tested against some fingerprint sensors. The findings and results are quite interesting.

This article is available in PDF.

Availability Monitoring (October 2004)

This article was delivered in the course Security Metrics and tries to make a metric for an automated holistic view of the availability and accessibility for different web pages and e-mail accounts. Perl scripts were developed to automatic gather information from different web pages and e-mail accounts. Different availability tests were divided into three levels to give the best holistic view possible. A special designed graph was then implemented in PHP and displayed different scores based on the results achieved through our metric(s). This graph was designed for easy and intuitive availability reading for the web pages or e-mail accounts in question.

This article is available in PDF. (Code is not enclosed)

TLS Extensions (May 2004)

This article was delivered in the course Network Security. It takes a look at the RFC 3546, TLS technology, and introduces some visions and suggestions for the future of TLS.

This article is available in PDF.

SHABeist - A Java-Based Crypthographic Hash Algorithm (December 2003)

This project was conducted for the course Cryptology, and takes a look at the theory behind some of the most used hash algorithms. A java based hash algorithm was developed and tested against implementations of the widely used algorithms MD5 and Sha1. The project report is written in Norwegian.

This article is available in PDF. (Code is not enclosed)

Current Work

In Norwegian:
Jobber for tiden i IQ Data som produktsjef, løsningsarkitekt.

webmaster: Fredrik L Skarderud
fredrik[at]skarderud.net