TUM Info VIII: Network Security

Network Security

Modul

Network Security (IN2101)

Course

Lecturers

Prof. Dr.-Ing. Georg Carle, Dr. Heiko Niedermayer, Cornelius Diekmann

SWS

4 (3+1)

ECTS Credits

5.0

Language

English

Dates

Tue 14:15-15:45, Interim HS 2
Thu 10:15-11:45, MI HS 1
Exercises will take place at certain time slots of the lectures; these will be announced during the course.

Contents

This lecture is an introduction to the field of network security and its fundamental topics like cryptographic operations, threats, and security goals. This is used further as a starting point and requirements for the design of secure networks are discussed. Modern security protocols in modern network protocols and architectures are presented as well as vulnerabilities in existing systems.

Registration

TUMOnline.

Exams

Main Exam: Saturday, 06.02.2016. 13.00-15.30 (please be there on time at 13:00! Writing time: 13.30-15:00)
Retake Exam: Yes, there will be a retake exam. Watch TUMonline for the date. Currently scheduled for 06.04.2016. Writing time: 08:30 - 10:00
The exam is closed-book. All you need, and will be allowed to use, is a black or blue pen (not a pencil). Material from the lecture (slide deck, material from tutorial/exercises) or smartphones/smartwatches/google glasses/calculators are not allowed.

News

There will be programming assignments this year. We suggest that you are already familiar with python.
Recommended reading: diveintopython3

* Still looking for a secure mobile messenger with a modern secure channel? Try signal!
* 04.02.1016 (last lecture before exam): 10:30-12:00, exam Q&A
* Beware: The exercise servers will not stay online forever.

Exercises

Exercise 01

Description, client.py
Errata: it should be security goals
Discussion (1/2): Thu 15.10.2015
Discussion (2/2): Tue 20.10.2015
decrypting solution: openssl aes-128-cbc -d -salt -in solution.pdf.aes-128-cbc -out solution.pdf

Exercise 02

Description, client.py, server
: 100 Attempts is not a DOS
Discussion (1/2): Tue 20.10.2015
Discussion (2/2): Thu 22.10.2015 (solution)

Exercise 03

Description
Discussion (1/2): Tue 27.10.2015
Discussion (2/2): Tue 03.11.2015 (solution)

Exercise 04

Description, alice.py, bob.py
Discussion (1/2): Thu 29.10.2015
Discussion (2/2): Thu 05.11.2015

Exercise 05

Description, alice.py, bob.py
Discussion (1/2): Thu 17.11.2015
Discussion (2/2): Tue 19.11 (solution)

Exercise 06

Same as 05 (++port) but Bob changed the format. Does it help? Hint: now you need to do XOR.
alice.py, bob.py
Discussion (1/2): Thu 26.11.2015
Discussion (2/2): Task 1-3: Tue 01.12.2015; Exercise 4-5: 08.12.2015 (solution)

Exercise 07

This time, you need to reverse engineer the protocol. eve.py commonlib.py (online: 26.11.2015)
Discussion (1/2): Tue 08.12.2015
Discussion (2/2): (solution)

Exercise 08

Port 20008
Discussion (1/2): Tue 26.01.2016
Discussion (2/2): (solution.pdf.aes-128-ctr)

Slides

Chapter	Version	1 up
0 Course Organization	1	pdf
1 Introduction to Network Security	1	pdf
2 Langsec	1	pdf
3 Firewalls and Security Policies	1.1	pdf
3.1 Attacks on TCP	1.1	pdf
4.0 Modern Cryptography	10.11.2105 12.11.2015	pdf pdf
4.1 Symmetric Encryption	1	pdf
4.2 Cryptographic Hash Functions Add-On	1	pdf
4.3 Secure Channel	1 (add on 1.0)	pdf pdf
4.4 Public Key Cryptography	see 5.0	-
4.5 Random Numbers	1	pdf
5 PKI	1	pdf
6 Cryptographic protocols	1.2	pdf
6.2 Kerberos	1	pdf
Xmas lecture		pdf
7 IPSec	1	pdf
8 Attacks and Attack Detection in Networks (only few slides exam relevant, see end of slide set)	1	pdf Further reading on resilience (optional)
9 www sec	1	pdf