Network Security in Practice (Wintersemester 2011/2012)

Dozent: Prof. Dr. Christoph Meinel (Internet-Technologien und -Systeme) , Dr. Feng Cheng (Internet-Technologien und -Systeme)

Allgemeine Information

• Semesterwochenstunden: 4
• ECTS: 6
• Benotet: Ja
• Einschreibefrist: 1.10.2011 - 31.3.2012
• Lehrform: SP
• Belegungsart: Wahlpflichtmodul

Studiengänge, Modulgruppen & Module

Beschreibung

(last update on 02.03.2012)

In this seminar, we focus on study of the security problems of networked systems or applications. Several network security technologies, such as, firewall, IDS/IPS, SSH, VPN, Application Layer Gateway, Network Scanning and Monitoring, etc. will be concerned in this seminar. Some known implementations, tools and methods, incl. commercial products/open source software, are expected to be reviewed and tested with certain practical deployment scenario. 

Important Notice: We are NOT guiding you for hacking and participation in this seminar could NOT be an excuse for any kinds of your malicious actions towards unauthorized resources over Internet!!! 

Voraussetzungen

Good knowledge in

• networking technologies (TCP/IP, Routing, ...)
• operating systems and software engineering
• security basics (e.g., lectures on "Internet Security - Weaknesses and Targets" or"Informationssicherheit", etc.) 
• team work

Literatur

• William R. Cheswick, Steven M. Bellovin, “Firewalls and Internet Security”, second Edition, Addison-Wesley, 2003.
• Andrew S. Tanenbaum, "Computer Networks", fourth edition, Prentice Hall PTR, 2003. 
• Charlie Kaufman, Radia Perlman, and Mike Speciner. "Network Security: Private Communication in a Public World", second Edition, Prentice Hall PTR, 2002.
• Dafydd Stuttard, Marcus Pinto, "The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws",  Wiley & Sons, 2007.
• ...... 

Lern- und Lehrformen

The interested students are expected to contribute with:

• Throughout investigation of the given topics (Report and Presentation)
• Design and Implementation of attack scenarios (i.e., examples), where the security methods can be tested (Demo&Presentation)

The final evaluation will be based on: report, presentation, design, implementation, participation in the seminar.

Leistungserfassung

Topics

1. Attack Category and Vulnerability Modeling (mandatory)
2. Firewall: Principle and Limitation 
3. IDS/IPS: Challenges and Deployment
4. Application Layer Gateway and its Examples
5. Web Security and SSL/TLS
6. Email Security: PGP, S/MIME, ......
7. Secure Networked Storage
8. SIP and Secure VoIP
9. SSH Tunneling and Virtual Private Network (VPN)
10. Network Scanning and Monitoring
11. IPv6, IPSec, and its Security
12. Secure Routing
13. Smartphone Security
14. Wireless Security

Termine

The seminar will start from the second week of the new semester. Regular meeting will be held every week or upon request.

• 24.10.2011 Introduction [Slides]
• 24.10.-01.11.2011 Team Building, Topic Assignment and Literature Recommendation (per Email)
• 31.10.2011 No onsite session due to the holiday
• 02.11.2011 
  • Enrolment Deadline
  • Individual discussion in the room H-1.13 (Topics)
• 07.11.2011 Organization and Plan [Slides]
• 14.11.2011 No onsite session
• 21.11.2011 Discussion Meeting (Q&A, upon request)
• 28.11.2011 Discussion Meeting (Q&A, upon request)
• 05.12.2011 Discussion Meeting (Progress Report & Scenario Implementation. Please make an appointment in this week with me.)
• 12.12.2011 Discussion Meeting (Q&A, upon request)
• 19.12.2011 Phase I: Presentation & Demonstration (Investigation&Scenario -- Start from 9 am in Room HE.52)
• 26.12.2011 Merry Christmas!
• 02.01.2012 No onsite session
• 09.01.2012 Discussion Meeting(Phase II: Task distribution)
• 16.01.2012 Discussion Meeting (Q&A, upon request)
• 23.01.2012 Discussion Meeting (Q&A, upon request)
• 30.01.2012 Discussion Meeting (Q&A, upon request)
• 06.02.2012 Discussion Meeting (Q&A, upon request)
• 13.02.2012 Discussion Meeting (Q&A, upon request)
• 20.02.2012 Discussion Meeting (Q&A, upon request)
• 05.03.2012 Phase II: Presentation & Demonstration 
• 13.03.2012 Report (Phase I and II) Submission Deadline

Zurück