184.216 Internet Security
Vorlesung mit Uebung (2.0)

Paolo Milani Comparetti and Clemens Kolbitsch

For correspondence, send a mail to inetsec@iseclab.org

Bernhard "Perfect Prime" Miller (InetSec 2 Master Guru)
Markus "Hex Cypher" Kammerstetter (InetSec 2 Master Guru, former tutor, still advising ;-) )

1. 22.06.2010 We have enabled the registration for the next exam on Wed. June 30th 2010! You must register via TUWIS++ to participate in the exam!
2. 22.06.2010 Results for the exam are in. Find them on bandit in your home directory! For questions, come to our office on Friday, June 25th (12-1pm).
3. 11.06.2010 We have enabled the registration for the written exam on Wed. June 16th 2010. You must register via TUWIS++ to participate in the exam!
4. 09.06.2010 The written exam will take place next Wednesday (June 16th 2010, 12:00) in EI 10.
5. 09.06.2010 The lab is over! Congrats to all students who have solved challenges and proved their skills!
6. 26.05.2010 Challenge six is online. Have fun smashing the stack!
7. 12.05.2010 The fifth challenge is online. Enjoy!
8. 29.04.2010 After a 10 hour pause for fixing problems in our grading scripts, challenge4 is back online. Happy XSS-ing!
9. 28.04.2010 Challenge4 is online. XSS anyone ?
10. 21.04.2010 Challenge3 is online. Happy injecting!
11. 14.04.2010 Challenge2 is online now. Have fun!
12. 24.03.2010 Challenge1 has started. Happy sniffing!
13. 16.03.2010 The registration service is back online. Go here to register before the deadline (March 31st).
14. 10.03.2010 We fixed a few issues keeping you from logging into the lab environment. Sorry for the inconveniences!
15. 04.03.2010 Lab registration has started.
16. 01.03.2010 Weekly lecture will start on Wednesday, March 10th 2010, 12:00 (c.t.) in EI 10
17. 01.03.2010 The preliminary meeting (Vorbesprechung) will be held on Wednesday, March 3rd 2010, 12:00 (c.t.) in EI 10
18. 28.02.2010 It's summer semester 2010, let's get rolling!!

Internet security has become part of everyday life where security problems impact practical aspects of our lives. Even though there is a considerable corpus of knowledge about tools and techniques to protect networks, information about what are the actual vulnerabilities and how they are exploited is not generally available. This situation hampers the effectiveness of security research and practice. Understanding the details of network attacks is a prerequisite for the design and implementation of secure systems.

This course presents the principal protocols and applications that are used in the Internet today, discussing in detail the related vulnerabilities and how they are exploited. For each vulnerability, possible protection and detection techniques are examined. The course includes a number of practical lab assignments where participants are required to apply their knowledge as well as a discussion of the current research in the field. Students will learn how the security of networks can be violated and how such attacks can be detected and prevented.

The course aims to make the students "security aware" and gain a basic understanding about security issues. For students who are interested in advanced security topics and practical assignments, we offer the Advanced Internet Security class in the winter semester.