Network Security [NetSec]

Summer 2012

Contents

This course introduces various aspects of network security. Starting with a discussion of threats and possible attacks, requirements for the design of secure networks will be introduced. We study basic cryptographic algorithms and protocols and, most importantly, their use and integration into state-of-the-art network protocols and architectures. Furthermore, attacks and possible countermeasures will be discussed.

The basic introduction to cryptography and cryptographic protocols follows the recommendations of the Mustercurriculum Kryptologie of the "Fachgruppe für Angewandte Kryptologie der Gesellschaft für Informatik".

    • Cryptography
      Basics, symmetric cryptography, asymmetric cryptography
    • Cryptographic Techniques
      Modification check values, random number generation
    • Security Protocols
      Cryptographic protocols, integrating security services into communication architectures
    • Security of Communication Protocols
      Medium access (PPP, 802.1x, WLAN), network layer (IPSec), transport/session layer (SSL, TLS)
    • Security in Mobile Networks
      Location privacy, pseudonyms, mix networks
    • Attack Detection and Countermeasures
      Attack detection and prevention, IP traceback

Learning Outcome

The learning objective is to unserstand the fundamental concepts of network security. Students understand these concepts and are able to apply this knowledge.

General Information / Methods

This master course will be held in English and all the course material is available in English. Oral exams can be organized in English as well as in German.

  • Lecture, 2 SWS, 4 ECTS
  • Proseminar, 3 SWS, 6 ECTS

Instructors

Schedule

  • Lecture (LV 703779)
    Thursday, 12:15pm - 1:45pm, HS 10 - Attention: no lecture and proseminar on June 14, 2012
  • Proseminar (LV 703780)
    Thursday, 2:15pm - 5:00pm, RR 22 (starting March 22, 2012)

Exams

There will be oral exams for the lecture. We will provide more information at the end of the summer term. The grading of proseminar will be based on the assignments and the discussion of the home work.

Oral examination is by appointment.

Evaluation

Many thanks for the critical and helpful evaluation!

Literature

  • Günter Schäfer, Netzsicherheit: Algorithmische Grundlagen und Protokolle, Heidelberg, dpunkt.verlag, 2003. [BibTeX, Details...]
  • William Stallings, Cryptography and Network Security: Principles and Practice, ed. old edition, Upper Saddle River, Pearson Prentice Hall, 2005. [BibTeX, Details...]

Lecture

  • Course Organization - PDF (Version 2, 11.3.2012, 414kB)
  • Introduction - PDF (Version 1, 12.2.2012, 471kB)
  • Basics of Cryptography - PDF (Version 1, 27.2.2012, 223kB)
  • Symmetric Cryptography - PDF (Version 2, 15.3.2012, 472kB)
  • Asymmetric Cryptography - PDF (Version 1, 11.3.2012, 294kB)
  • Modification Check Values - PDF (Version 1, 30.3.2012, 354kB)
  • Random Number Generation - PDF (Version 1, 30.3.2012, 198kB)
  • Cryptographic Protocols - PDF (Version 1, 25.4.2012, 614kB)
  • Integrating Security Services - PDF (Version 1, 26.4.2012, 444kB)
  • Medium Access - PDF (Version 1, 26.4.2012, 373kB)
  • WLAN Security - PDF (Version 1, 6.5.2012, 281kB)
  • IPSec - PDF (Version 1, 6.5.2012, 653kB)
  • Transport Layer Security - PDF (Version 1, 13.5.2012, 297kB)
  • Location Privacy - PDF (Version 1, 24.5.2012, 262kB)
  • Denial of Service - PDF (Version 1, 31.5.2012, 982kB)
  • Attack Detection - PDF (Version 1, 31.5.2012, 1158kB)
  • Attack Mitigation - PDF (Version 1, 31.5.2012, 682kB)

Proseminar

  • Exercise #1 (22.03.2012) - Introduction, Enigma (PDF)
    assignment00 - Hello World (PDF, Template)
    assignment01 - Enigma (PDF, Template)
  • Exercise #2 (29.03.2012) - RSA (PDF)
    assignment02 - RSA (PDF, Template)
  • Exercise #3 (19.04.2012) - Operation Modes (PDF)
    assignment03 - Operation Modes (PDF, Template)
  • Exercise #4 (26.04.2012) - Birthday Attacks (PDF)
    assignment04 - Birthday Attacks (PDF, Template)
  • Exercise #5 (03.05.2012) - Pseudo Random Number Generators (PDF)
    assignment05 - Crypto Challenge (PDF, Template)
    assignment06 - Weak SSH Keys (PDF, Template)
  • Exercise #6 (10.05.2012) - TLS (PDF)
    assignment07 - TLS (PDF, Template)
  • Exercise #7 (24.05.2012) - Mix Networks and S/MIME (PDF)
    assignment08 - Mix Networks and S/MIME (PDF, Template)
  • Exercise #8 (31.05.2012) - Web Security (PDF)
    assignment09 - Web Security (PDF)
  • Exercise #9 (20.06.2012) - WLAN Security (PDF)