Hasso-Plattner-Institut
 
    • de
 

...designed by the team of Prof. Dr. Christoph Meinel

Our Tele-Lab "IT-Security" is a virtual lab that provides a really advanced interactive eLearning experience. Students and any other persons interested in getting practical hands-on experiences in IT-security relevant questions can learn and experiment with various techniques and methods to protect IT-systems and digital information. 

All about Tele-Lab "IT-Security"

The increasing propagation of complex IT systems and rapid growth of the internet more and more attracts notice to the importance of IT security issues. The limits of technical security solutions are set by the lacking awareness of computer users, caused by laziness, inattentiveness and missing education. In the context of awareness creation IT security training has become a topic of strong interest – as well as for companies as for individuals.

Traditional techniques of teaching (i.e. lectures or literature) have turned out to be not suitable for security training, because the trainee cannot apply the principles from the academic approach to a realistic environment within the class. In security training, gaining practical experience through exercises is indispensable for consolidating the knowledge.

Precisely the allocation of an environment for these practical exercises poses a challenge for research and development. That is, because students need privileged access rights (root/administrator-account) on the training system to perform most of the imaginable security exercises. With these privileges, students can easily destroy a training system (by mistake) or even use it to attack other computers in the local network or the internet.

The classical approach is to provide a dedicated computer lab for security training. Such labs bare different drawbacks: they are immobile, expensive to purchase and maintain and must be isolated from all other networks on the site. Of course, students can’t have internet access on the lab computers.


Figure: dedicated, isolated Security Labs are very cost-intensive and hard to maintain

Teleteaching approaches for security education mostly consist of multimedia courseware or demonstration software, which do not offer practical exercises. In simulation systems users have kind of hands on experience, but a simulator doesn’t behave like a realistic environment and simulation of complex systems is very difficult.

The Tele-Lab project provides a novel e-learning system for practical security training in the WWW and inherits the positive characteristics from offline security labs. The Tele-Lab server basically consists of a web-based tutoring system and a training environment built of virtual machines. The tutoring system offers three kinds of content: information chapters, introductions to security- and hacker tools and finally practical exercises. The concentration on hacker tools is respective to the offensive teaching paradigm realized within Tele-Lab.

Students perform those exercises on virtual machines (vm) on the server, which they use via remote desktop access. A virtual machine is a software system that provides a runtime environment for operating systems. Such software-emulated computer systems allow easy deployment and recovery in case of failure.

A learning unit on e.g. “wireless networks” introduces to different WiFi technologies like Wireless LAN or Bluetooth, explains the functionality of mechanisms and protocols for wireless security and highlights weaknesses which lead to security problems. Thereafter, the tutoring system presents wireless tools for Windows and Linux like Kismet or the Aircrack Suite. The chapter concludes with an exercise, where the student is asked to reveal a WEP encryption key from a wireless traffic dump file using aircrack.

For that exercise, the student requests a virtual machine (here: Linux or Windows). If there is a free vm on the server, the student will be assigned to that vm and a remote desktop session will be started in an applet window (see figure 1). After performing the exercise (cracking the wireless dump), the student must enter the revealed WEP key in the tutoring interface. That way he/she can prove the knowledge of the right solution for that exercise. The vm will be reclaimed and restored to its original state automatically after being abandoned by the user.

The list of learning units available at the moment can be found below. Additional chapters can be authored and integrated easily.

Features

  • Accessible from Internet
  • Pure web interface
  • Multi-user support
  • Multimedia lectures included
  • Practical exercises on virtual machines (Windows and Linux)
  • Privileged operations allowed
  • Secure lab environment

Learning Units

The learning units are currently transferred to the new version of Tele-Lab. Therefore, not all existing learning units are available as today. We have already reeingineered the following chapters:

  • Attacks on Accounts and Passwords
  • Reconnaissance
  • Eavesdropping on Network Traffic
  • Wireless Security
  • Web Service Security
  • more learning units will be available soon, check back regularly.

Screenshot

People

  • Principal Investigator
    Prof. Dr. Christoph Meinel
  • Developers
    Christian Willems, Wesam Dawoud
  • Student developers
    Thomas Klingbeil
  • Former contributors
    Dr. Michael Schmitt, Dr. Ji Hu, Dirk Cordel

Join Us

We are offering subjects for master-/bachelor-theses and seminar projects concerning Tele-Lab architecture and design of individual training exercises. Please contact Christian Willems if you are interested.

Tele-Lab in Media

      • Uni Trier entwickelt virtuelles Sicherheitslabor (14.03.2004) (in German)

       

      Selected Publications

      Journal papers:

      • Christian Willems, Christoph Meinel
        Tele-Lab IT-Security: an Architecture for an online virtual IT Security Lab (extended)
        International Journal on Online Engineering (iJOE), Vol. 4 No. 2 (2008), 31-37
      • Christoph Meinel, Ji Hu
        Tele-Lab "IT-Security" on CD: Portable, Reliable and Safe IT Security Training
        Computers & Security Journal, COSE 234, Vol. 23, Iss. 4 (2004) pp. 282-289
      • Michael Schmitt, Ji Hu, Christoph Meinel
        A Tutoring System for IT Security Education
        Journal of Information Warfare, Vol. 2, Issue 3 (2003), 79-85

      Peer-reviewed conference papers:

      Other Links

      ... to our Research
                    Security Engineering - Learning & Knowledge Tech - Design Thinking - former
      ... to our Teaching
                    Tele-Lectures - MOOCs - Labs - Systems 
      ... to our Publications
                    Books - Journals - Conference-Papers - Patents
      ... and to our Annual Reports.