Hasso-Plattner-InstitutSDG am HPI
Hasso-Plattner-InstitutDSG am HPI

Network Security in Practice (Wintersemester 2011/2012)

Dozent: Prof. Dr. Christoph Meinel (Internet-Technologien und -Systeme) , Dr. Feng Cheng (Internet-Technologien und -Systeme)

Allgemeine Information

  • Semesterwochenstunden: 4
  • ECTS: 6
  • Benotet: Ja
  • Einschreibefrist: 1.10.2011 - 31.3.2012
  • Lehrform: SP
  • Belegungsart: Wahlpflichtmodul

Studiengänge & Module

IT-Systems Engineering BA
IT-Systems Engineering MA
  • IT-Systems Engineering A
  • IT-Systems Engineering B
  • IT-Systems Engineering C
  • IT-Systems Engineering D


(last update on 02.03.2012)

In this seminar, we focus on study of the security problems of networked systems or applications. Several network security technologies, such as, firewall, IDS/IPS, SSH, VPN, Application Layer Gateway, Network Scanning and Monitoring, etc. will be concerned in this seminar. Some known implementations, tools and methods, incl. commercial products/open source software, are expected to be reviewed and tested with certain practical deployment scenario. 

Important Notice: We are NOT guiding you for hacking and participation in this seminar could NOT be an excuse for any kinds of your malicious actions towards unauthorized resources over Internet!!! 


Good knowledge in

  • networking technologies (TCP/IP, Routing, ...)
  • operating systems and software engineering
  • security basics (e.g., lectures on "Internet Security - Weaknesses and Targets" or"Informationssicherheit", etc.) 
  • team work


Lern- und Lehrformen

The interested students are expected to contribute with:

  • Throughout investigation of the given topics (Report and Presentation)
  • Design and Implementation of attack scenarios (i.e., examples), where the security methods can be tested (Demo&Presentation)

The final evaluation will be based on: report, presentation, design, implementation, participation in the seminar.



  1. Attack Category and Vulnerability Modeling (mandatory)
  2. Firewall: Principle and Limitation 
  3. IDS/IPS: Challenges and Deployment
  4. Application Layer Gateway and its Examples
  5. Web Security and SSL/TLS
  6. Email Security: PGP, S/MIME, ......
  7. Secure Networked Storage
  8. SIP and Secure VoIP
  9. SSH Tunneling and Virtual Private Network (VPN)
  10. Network Scanning and Monitoring
  11. IPv6, IPSec, and its Security
  12. Secure Routing
  13. Smartphone Security
  14. Wireless Security


The seminar will start from the second week of the new semester. Regular meeting will be held every week or upon request.

  • 24.10.2011 Introduction [Slides]
  • 24.10.-01.11.2011 Team Building, Topic Assignment and Literature Recommendation (per Email)
  • 31.10.2011 No onsite session due to the holiday
  • 02.11.2011 
    • Enrolment Deadline
    • Individual discussion in the room H-1.13 (Topics)
  • 07.11.2011 Organization and Plan [Slides]
  • 14.11.2011 No onsite session
  • 21.11.2011 Discussion Meeting (Q&A, upon request)
  • 28.11.2011 Discussion Meeting (Q&A, upon request)
  • 05.12.2011 Discussion Meeting (Progress Report & Scenario Implementation. Please make an appointment in this week with me.)
  • 12.12.2011 Discussion Meeting (Q&A, upon request)
  • 19.12.2011 Phase I: Presentation & Demonstration (Investigation&Scenario -- Start from 9 am in Room HE.52)
  • 26.12.2011 Merry Christmas!
  • 02.01.2012 No onsite session
  • 09.01.2012 Discussion Meeting(Phase II: Task distribution)
  • 16.01.2012 Discussion Meeting (Q&A, upon request)
  • 23.01.2012 Discussion Meeting (Q&A, upon request)
  • 30.01.2012 Discussion Meeting (Q&A, upon request)
  • 06.02.2012 Discussion Meeting (Q&A, upon request)
  • 13.02.2012 Discussion Meeting (Q&A, upon request)
  • 20.02.2012 Discussion Meeting (Q&A, upon request)
  • 05.03.2012 Phase II: Presentation & Demonstration 
  • 13.03.2012 Report (Phase I and II) Submission Deadline