DM557 Networks and Security

Fall - 2019

News

Exam Info - 15 December 2019

The desctiption of the exam is now available for download: here.

Make sure you read it all.

Contemporary News - 17 September 2019

For the contemporary news we discuss at the lectures, the slide deck is available here. I will try to keep it updated as the course progresses.

Most items will have links to resources where you can read more.

Facebook Group - 16 July 2019

There is a Facebook group available at: https://www.facebook.com/groups/512946516113772/

The Facebook Group will be used for informal discussions, semi-irrelevant announcements etc.

Official announcements on exam etc will come from Blackboard, but it is usually handy for quick communication.

Latest Weekly Note

Weekly Note 14 - Week 50

04 December 2019

Lecture - Monday, December 9th.

16-19 in U170

The lecture is MONDAY - not tuesday

This is the last week of classes, and in this lecture we will wrap up everything.

We will start with covering WiFi security, which we will extend a bit beyond the book, which does not cover WPA2 in depth. We will also study the KRACK vulnerabilities which targets WIFI.

Then, we will take a look at a few tools and methods for penetration testing/ethical hacking and security monitoring. This will include tools for

  • Staying anonymous/hidden (Proxies, MAC address changer)

  • Password cracking

  • DoS options

  • Exploiting using Metaspoit

  • Security testing with Owasp Zap

Please consider if something could be improved in the course. This year, there is no official evaluation, but I’m always open to ideas and opinions, that can improve the experience. You are encouraged to email sugguestions to me.

If there is time left, we will do a bit more pen-testing (either the last assignment), or for those that have handed it in, a different application.

If you have a preferred timeslot or day for the exam, you can signup for this at the class. If you do not sign up, I will assign one of the days. The official list will come from the secretary through blackboard.

Tutorial session

Friday December 13th. 12-14 in U24 or 14-16 in U146

Preparation:

Watch the video from the KRACK attack website.

Prepare a list of 10-15 keywords for the exam question: Mobility, Wireless networks and Wireless security.

Select one of the topics from this list, and prepare to give a 10 min. presentation to the class on the topic:

  1. Functionality and interfaces for the application layer of the TCP/IP model and the functionality of DNS

  2. Functionality and interfaces for the transport layer of the TCP/IP model and the difference between UDP and TCP

  3. Functionality and interfaces for the network layer of the TCP/IP model with focus on the data plane.

  4. Functionality and interfaces for the network layer of the TCP/IP model with focus on the control plane.

  5. Functionality and interfaces for the link layer of the TCP/IP model, including error detection and correction

  6. Symmetric and public key crypography, Key distribution and User authentication

  7. Security: Transport- and Network-layer security

  8. Security: Firewalls, intrusion detection

  9. Mobility, Wireless networks and Wireless security

  10. Penetration Testing: Planning and Methods

In class:

Use the first part of class to work on this exercise and discuss the content of your keyword lists, and consider possible alternatives.

  • P24 - Streaming encryption, and IV

from Chapter 8 in the textbook.

Use the second part of the class to give and see a few presentations that you have prepared at home.

This is You that should make the presentations, the TA will not step in and do them for You!

Material (Slides, etc.)

Available later

Assignments

There will be 9 or 10 assignments in the course. 9 of those must be passed, to pass the assignments as a whole

They will be independent, and the approved assignments are a requirement for being eligible to take the exam.

The assignments will all have to be answered as a "E-Test" in Blackboard, to make the evaluation process go smooth. You can respond to each assignment as many times as you would like, before the deadline. The last turned in attempt is the one that is evaluated.

You do not need to have 100% correct answers, but a decent attempt must be made. (To be decent, at least all questions must be tried answered).

Some of the assignments will have a small programming part.

Content Deadline
Assignment 10 - Exploring Security Holes 2019-12-10 16:00
Assignment 9 - Firewalls 2019-12-07 16:00
Assignment 8 - Implementing RSA 2019-11-23 16:00
Assignment 7 - CRC and ARP 2019-11-02 16:00
Assignment 6 - BGP 2019-10-19 16:00
Assignment 5 - DHCP, NAT and ICMP 2019-10-12 16:00
Assignment 4 - Transport Layer: TCPs Conguestion Control 2019-10-05 16:00
Assignment 3 - Transport Layer: Reliable Data Transfer and UDP 2019-09-28 16:00
Assignment 2 - Application layer and DNS 2019-09-21 16:00
Assignment 1 - History and Introduction 2019-09-15 16:00

Basic Info

This is the homepage for the course "Networks and Security" a 10 ECTS course with regular assignments for students from IMADA

The lecturer is Jacob Aae Mikkelsen (jamik@imada.sdu.dk)

The course is taught in english, if international students will be participating.



Schedule

Should follow roughly mitsdu.sdu.dk/skema

The lectures is scheduled late in the day, as the lecturer is external, and usually not available during business hours.

If you have a need for a meeting, feel free to contact me, but expect it will be slotted around 16 in Vidensbyen/Cortex Park.

If you count the number of lectures (and tutorials) in mitsdu, there are scheduled too many. These will be cancelled at a later time, in case Jacob becomes unavailable due to conditions at work.

If you are in doubt, the weekly notes will tell you the truth. They are likely the most up-to-date information.

Literature

The course textbook will be:

Computer Networking, A Top-Down Approach Global Edition, 7th Edition
James F. Kurose & Keith W. Ross.
ISBN13: 978-1-292-15359-9 - ISBN10:1-292-15359-8

 

Additionally:

BSI - Study A Penetration Testing Model
By the German Office for Information Security.

and:

Owasp Top 10 - 2017
By The Open Web Application Security Project (OWASP).