Network Security in Practice (Wintersemester 2012/2013)
Dozent: Prof. Dr. Christoph Meinel
(Internet-Technologien und -Systeme)
Dr. Feng Cheng
(Internet-Technologien und -Systeme)
- Semesterwochenstunden: 4
- ECTS: 6
- Einschreibefrist: 1.10.2012 - 31.10.2012
- Lehrform: SP
- Belegungsart: Wahlpflichtmodul
Studiengänge & Module
- Internet & Security Technology
- Operating Systems & Information Systems Technology
- IT-Systems Engineering A
- IT-Systems Engineering B
- IT-Systems Engineering C
- IT-Systems Engineering D
(last update on 07.01.2013)
In this seminar, we focus on study of the security problems of networked systems or applications. Several network security technologies, such as, firewall, IDS/IPS, SSH, VPN, Application Layer Gateway, Network Scanning and Monitoring, IPv6, etc. will be concerned in this seminar. Some known implementations, tools and methods, incl. commercial products/open source software, are expected to be reviewed and tested with certain practical deployment scenario.
Important Notice: We are NOT guiding you for hacking and participation in this seminar could NOT be an excuse for any kinds of your malicious actions towards unauthorized resources over Internet!!!
Good knowledge in
- networking technologies (TCP/IP, Routing, ...)
- operating systems and software engineering
- security basics (e.g., lectures on "Internet Security - Weaknesses and Targets" and "Informationssicherheit", etc.)
- William R. Cheswick, Steven M. Bellovin, “Firewalls and Internet Security”, second Edition, Addison-Wesley, 2003.
- Andrew S. Tanenbaum, "Computer Networks", fourth edition, Prentice Hall PTR, 2003.
- Charlie Kaufman, Radia Perlman, and Mike Speciner. "Network Security: Private Communication in a Public World", second Edition, Prentice Hall PTR, 2002.
- Dafydd Stuttard, Marcus Pinto, "The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws", Wiley & Sons, 2007.
Lern- und Lehrformen
This seminar has a limited number of participants! Up to 16 students can apply!
All the students will work as a project group. Within the whole group, the personnels will be distributed into 8 sub-teams (i.e., 2 for each), which will concentrate on 1-2 topics.
- Attack Category and Vulnerability Modeling
- Firewall: Principle and Limitation
- IDS/IPS: Challenges and Deployment
- Application Layer Gateway and its Examples
- Web Security and SSL/TLS
- Email Security: PGP, S/MIME, ......
- Secure Networked Storage
- SIP and Secure VoIP
- SSH Tunneling and Virtual Private Network (VPN)
- Secure Routing
- Network Scanning and Monitoring
- IPv6 and its Security
- Wireless Security
The interested students are expected to contribute with:
- Throughout investigation of the given topics (Report and Presentation)
- Design and Implementation of attack scenarios, where the security methods can be tested
The final evaluation will be based on: report, presentation, design, implementation, participation in the seminar.
The seminar will start on Oct. 15, 2012. Regular meeting will be held every week or upon request.
15.10.2012 Industration Session (Slides)
22.10.2012 No Seminar (Welcome all of you to C-HPC'12 at HS3, HPI)
29.10.2012 Phase I: Topic Presentation & Team Building (Slides)
29.10.-12.11.2012 Individual Team Meetings (Kick-off)
03.12.-17.12.2012 Individual Team Meetings (Conclusion)
20.12.2012 Phase I: Presentation Session (10 am, HE-51)
07.01.2013 Phase II: Topic Presentation & Team Building (Slides per Email)
07.01.-21.01.2013 Individual Team Meetings (Kick-off)
11.02.-25.02.2013 Individual Team Meetings (Conclusion)
04.03.2013 Phase II: Presentation Session (10 am, H1-36)
31.03.2013 Phase I&II Final Deliverables: Submission Deadline