Internet Security (Lecture, SoSe 2015)

As the common utilization of the Internet broadens, the threat from malicious programs and users increases. To counteract this development during the design of new applications and technologies, we will try to identify and discuss the different attacks and threats (e.g., worms, viruses, denial of service). Based on that countermeasures (e.g., firewalls, network intrusion detection/prevention systems, scanners) are introduced and the challenges those are facing are explained. In addition to these active security tools, secure protocols (e.g., SSL, Kerberos, TLS, VPN, IPsec, WLAN Security), key management approaches, and the security of different Internet services (e.g., E-Mail, SSH, VoIP, Network Storage) will be analysed.

Some slides can only be found on ISIS.

If you are interested in attending please make sure you are subscribed to this course in ISIS to receive infomration and announcements.

A module registration is also required for Bachelor and Master students. Further information will be given in the lecture and via ISIS.

There will be neither a tutorial nor exercise sheets.

Exams will probably be oral. Further information, e.g., exam dates and how to register, will be given in the lecture or via ISIS.

• Botnets: The DoS Project's "trinoo" distributed denial of service attack tool

• Ken Dunham. Mobile Malware Attacks and Defense (Paperback). Syngress, November 2008. (english)
• Simson Garfinkel, Gene Spafford, and Alan Schwartz. Practical Unix & Internet Security, 3rd Edition (Paperback). O'Reilly Media, Inc., 2003. (english)
• Matt Bishop. Computer Security: Art and Science. Addison-Wesley Professional, December 2002. (english)
• Joan Daemen and Vincent Rijment. The Design of Rijndael: AES – The Advanced Encryption Standard. Springer, 1st edition, March 2002. (english)
• Charles P. Pfleeger and Shari Lawrence Pfleeger. Security in Computing (4th Edition) . Prentice Hall PTR, Upper Saddle River, NJ, 2006. (english)
• Warwick Ford. Computer Communications Security: Principles, Standard Protocols and Techniques. Prentice Hall PTR, 2006. (english)
• William R. Cheswick, Steven M. Bellovin and Aviel D. Rubin. Firewalls and Internet Security: Repelling the Wily Hacker, Second Edition. Addison-Wesley Professional, 2003. (english)
• William Stallings. Cryptography and Network Security (4th Edition). Prentice Hall, 2005. (english)
• Charlie Kaufman, Radia Perlman and Mike Speciner. Network Security: Private Communication in a Public World, Second Edition. Prentice Hall PTR, 2005. (english)
• Marshall D. Abrams, Sushil Jajodia and Harold J. Podell. Information Security: An Integrated Collection of Essays. IEEE Computer Society Press, Los Alamitos, California, USA, 1994. (english)
• Edward Amoroso. Fundamentals of Computer Security Technology. Prentice Hall PTR, 1994. (english)
• Dorothy Elizabeth Robling Denning. Cryptography and Data Security. Addison-Wesley Pub, 1982. (english)
• Peter J. Denning. Computers Under Attack: Intruders, Worms and Viruses. Addison-Wesley Professional, 1990. (english)
• Douglas R. Stinson. Cryptography: Theory and Practice, Second Edition. Chapman & Hall/CRC, 2002. (english)
• Morrie Gasser. Building a Secure Computer System. Van Nostrand Reinhold, 1988. (english)
• Elizabeth D. Zwicky (Author), Simon Cooper (Author), D. Brent Chapman. Building Internet Firewalls (2nd Edition). O'Reilly Media, Inc., 2000. (english)