Hasso-Plattner-InstitutSDG am HPI
Hasso-Plattner-InstitutDSG am HPI

Internet Security - Weaknesses and Targets (Wintersemester 2020/2021)

Dozent: Prof. Dr. Christoph Meinel (Internet-Technologien und -Systeme) , Daniel Köhler (Internet-Technologien und -Systeme)

Allgemeine Information

  • Semesterwochenstunden: 4
  • ECTS: 6
  • Benotet: Ja
  • Einschreibefrist: 01.10.-20.11.2020
  • Lehrform: Seminar
  • Belegungsart: Wahlpflichtmodul
  • Lehrsprache: Englisch

Studiengänge, Modulgruppen & Module

IT-Systems Engineering BA
  • ISAE: Internet, Security & Algorithm Engineering
    • HPI-ISAE-G Grundlagen
  • ISAE: Internet, Security & Algorithm Engineering
    • HPI-ISAE-V Vertiefung
  • OSIS: Operating Systems & Information Systems Technology
    • HPI-OSIS-G Grundlagen
  • OSIS: Operating Systems & Information Systems Technology
    • HPI-OSIS-V Vertiefung


"Internet Security - Weaknesses and Targets" is based on "Internet- & WWW-Technologies" and gives a detailed introduction on problems concerning Internet and Intranet security. After starting with some remarks on risk analysis and computer crimes, security weaknesses and targets are discussed in detail. Beside others the following topics are discussed in detail: human factor and technical failures, attacks on accounts and passwords, attacks on Internet protocol, misuse of design and programming errors, weaknesses in common operating systems, targets in the WWW, and viruses. The lecture course concludes with a discussion about the possibilities to detect attacks and intrusions and also describes ethical issues.


Contents of lecture "Internet- und WWW-Technologien" (esp. protocols) should be present.

Important Notice: We are NOT guiding you for hacking and participation in this seminar could NOT be an excuse for any kinds of your malicious actions towards unauthorized resources over Internet!!!


  • Meinel/Sack: Grundlagen der Digitalen Kommunikation
  • Meinel/Sack: Internetworking - Technische Grundlagen und Anwendungen
  • Tanenbaum: Computer Networks
  • Stallings/Brown: Computer Security: Principles and Practice
  • Cheswick/Bellovin/Rubin: Firewalls and internet security. Repelling the Wily Hacker
  • Kaufman/Perlman/Speciner: Network Security: Private Communication in a Public World
  • Egan/Mather: Executive Guide to Information Security: Threats, Challenges, and Solutions
  • Stuttard/Pinto: The Web Application Hacker's Handbook - Discovering and Exploiting Security Flaws
  • Koziol/Litchfield/Aitel/Anley/Eren/Mehta/Hassel: The Shellcoder's Handbook - Discovering and Exploiting Security Holes

Lern- und Lehrformen

Lecture and exercise: Every week a 90 minutes lecture (in English) is held and streamed by tele-TASK over the internet. Students have to solve and submit their exercises bi-weekly.


50% of the maximum exercise points (in 1st and 2nd half of semester) are needed to be able to take part in the examination at the end of the semester. In the middle of the semester there will be a written intermediate exam which counts about 1/3. Every student has to pass the intermediate exam and take actively part in the two Hands-On sessions to take the final exam and to successfully pass the course. At the end of the course there is a second written exam (counts about 2/3). Students who want to improve their mark can also register for an oral examination. Outstanding exercise results and participation in discussion can lead to a better mark.

This results in the following aspects:

  • Exercise Points: 50 % needed for admission to the Exams

The final mark will consist of:

  • Intermediate Exam (1 / 3)
  • Final Exam ( 2 / 3)


  • Examinations:
    • Mid-Term Exam: t.b.a.
    • Final Exam: t.b.a.
  • Hands-On experiences (mandatory)
    • t.b.a.
    • t.b.a.
  • Lecture dates:
    • Wednesdays, 09:00 am to 10:30 am, HS 2
  • Exercise course dates (tentative):
    • Wednesdays, 03:15 pm to 04:45 pm, H E.51/52
    • Fridays, 09:15 am to 10:45 am, A 2.2
  • First lecture will be on November, 4th
  • First exercise session will be on November, 4th