The course provides an introduction to methods for proactive and reactive security measures in communication networks. The focus is on security concepts for IP networks and protocols of the Internet protocol suite (IPv4, IPv6, TCP, UDP, IP routing, DNS, etc.).
We start with an introduction to network security threats and general security objectives. Then we look at basic cryptography concepts and show how they are applied to the Internet protocol suite (e.g., IPsec, DNSSEC, BGPSEC) to address different security objectives. We cover security aspect in IPv4 and IPv6 networks.
In the second part of the lecture we look at network supervision techniques and explore several methods to detect anomalies in communication networks. We use statistical data analysis and machine learning techniques to analyze network traffic.
In an outlook we discuss security challenges for communication networks in cyber-physical systems (e.g., smart power grids).
Preliminary discussion and lecture start:
Tuesday, 12.03.2013, 11:15, Seminarraum 389, CG0118
Time and Location
Summer Semester, Tuesday, 11:15 - 13:00 Uhr, Seminarraum 389, CG0118
Attention! Due to the high number of participants we will move to a new room from April 9, 2013:
The slides in the lectures are sufficient to pass the exam. The following links are provided for those who look for additional information. Links to further information (papers, etc.) about specific topics will be given in the lectures.
Introduction to network security
- Mark Stamp: Information Security: Principles and Practice John Wiley & Sons, 2011
- Cheswick, Bellovin, Rubin: Firewalls and Internet Security: Repelling the Wily Hacker, Second Edition, Addison-Wesley Professional; 2 edition, 2003
- Kaufman, Perlman, Speciner: Network Security: Private Communication in a Public World, Prentice Hall; 2 edition, 2002
Cryptography
- Goldwasser, Bellare: Lecture Notes on Cryptography, July 2008 (available at http://cseweb.ucsd.edu/~mihir/papers/gb.pdf)
Protocols