CSE 548: Advanced Computer Network Security

118 downloads 44239 Views 150KB Size Report
5/17/12 11:59 AM. CSE 548: Advanced Computer Network Security - Home. Page 1 of ... 2/29. 1. Introduction (ppt) (updated on 2/29, 3:30pm). 2. IPv4 Tutorial. 3.
CSE 548: Advanced Computer Network Security - Home

5/17/12 11:59 AM

CSE 548: Advanced Computer Network Security Instructor: Dijiang Huang Office: BY470 Office hour: M/W 1:00-2:00pm or by appointment Class Time: M/W 2:00PM - 4:50PM Class Location: BYENG 270 Email: [email protected] TA: Le (Larry) Xu Office: BY460 Office hour: 12-1pm Tu/Th/Fri Email: [email protected]

Objectives This will study the fundamental principles of computer network security. Security related research topics in both wired and wireless networks will be given according to student backgrounds and the process of the lectures. The topics will be covered prmarily in authentication, access control, capability, security policies, basic cryptography, and software vulnerabilities. You will gain exposure to burgeoning areas of network security and learn how to use the tools commonly used for networking research today. Most of these principles will be studied within the scope of concrete systems, such as Linux, Windows, Minix, and Cloud Computing. The course emphasize on "learning by doing". It requires students to conduct a research related project to enhance their understanding of principles, and also to provide students with oppurtunities to apply those principles.

Textbooks Research papers and materials will be posted. Suggested reading: 1. Network Security -- Private Communication in a Public World (Second Edition) by Charlie Kaufman, Radia Perlman, Mike Spenciner. file:///Users/dhuang8/Documents/My%20Web%20Sites/CSE548/2012spring/index.html

Page 1 of 2

CSE 548: Advanced Computer Network Security - Home

5/17/12 11:59 AM

2. Cryptography and Network Security, third edition, by William Stallings Linux Programming and Minix

Brief Summary of the University Policies on Cheating Any incidence of cheating in this class will be severely dealt with. This applies to problem sets, quizes, and projects. The minimum penalty for cheating will be that the student will not obtain any credit for that particular assignment (This means that if in an quize and/or assignment a student is found to have cheated, he/she will obtain zero in that quiz and/or assignment).

Prerequisites This class is appropriate for graduate students with previous background in computer networking and security. Although it is listed as an official prerequisite, CSE468/598 Computer Network Security will be helpful, but is not required. Some familiarity with Linux programming will be helpful.

Grading Grading will be based on problem sets, two exams (including final), and a semester-long project with a presentation and writeup. Participation will be counted. * 10% Problem sets (problems will be added gradually towards the end of the semester) * 30% Final Exam * 60% Project (one group project) Final Grade Percentage A+ >= 90 A >= 85 and < 90 B+ >= 80 and = 75 and < 80 C+>= 70 and < 75 C>= 65 and < 70 D>= 55 and < 65 E< 55

Schedule & Lecture Notes (ASU Academic Calendar) Papers will not be handed out in class. Please print the readings and read them before class. Please note that this schedule is tentative and subject to change throughout the course of the term. Class Schedule & Lecture Notes

file:///Users/dhuang8/Documents/My%20Web%20Sites/CSE548/2012spring/index.html

Page 2 of 2

CSE548 Schedule

5/17/12 11:57 AM

CSE 548: Advanced Computer Network Security Tentitive Class Schedule (Schedule is subject to changes during the semester) Week Date Schedule of Lecture Notes # 1. Introduction (ppt) (updated on 2/29, 3:30pm) 2. IPv4 Tutorial 1 2/29 3. IPv6 (updated on 3/4 9:25pm)

Schedule of Assignments and Projects

Group project starts

* Cryptography Reading Materials 1. IPSec Tutorial 2. IKE for IPsec (updated on 3/7 11:50am)

2

3

IPSec Reading materials 3. IPSec Linux Howto 3/5, 4. IPSecurity (IPSec) 3/7 5. IPSec attack tools: Tutorial using IKEprobe, IKEProbe Download 6. NIST Guides to IPSec VPNs

Authentication: 1. Basic concepts 2. Authentication services (updated12:43 3/12) 3. Authentication Pitfall 4. Multi-factor Authentication * The case for mobile two factor authentication 3/12, * An Overview of PKI Trust Models 3/14 Attack Tree and Attack modeling

Problem set 1, Answer sketch First project report due (Electronic submission through project management site)

Problem set 2, Solutions

* "Attack Trees" by Bruce Schneier, Dr. Dobb's Journal, 1999 * Attack Countermeasure Tree (updated 3/25 9:54PM) file:///Users/dhuang8/Documents/My%20Web%20Sites/CSE548/2012spring/schedule.html

Page 1 of 2

CSE548 Schedule

5/17/12 11:57 AM

* Reading: ACT : Towards unifying the constructs of attack and defense trees 4

3/19, Spring Break, no classes 3/21 Virtual Network and Security notes

5

3/26, Virtual Network and Programmable Network 3/28 Security (updated 11:45pm 3/27)

Second project report due on 3/26 (Electronic submission through project management site) Problem set 1 due on 3/26 (submit a hardcopy before the class starts)

Key management notes

6

1. Key management (ppt) 2. Secure group key management (ppt) updated on 4/4 1:22pm. 4/2, 3. Trust management (ppt) updated on 4/2 1:39 4/4 pm.

Problem set 2 due on 4/4 (submit a hardcopy before the class starts) Problem set 3 (cancelled)

1. Network coding and security (ppt updated 1:42pm 4/4, pdf) 2. Network coding for Mobile Ad hoc Networks (A-WOER) (ppt), A-woer pdf)

7

1. Anonymous Communication Basics (ppt) 4/9, 2. Anonymous Wireless Communication (ppt) 4/11 Reading material ( Unlinkability Measure for IEEE 802.11 Based MANETs)

8

1. Sensor Network Security (ppt) Suggested reading: (Secure Pairwise Key Establishment in Large-scale Sensor Networks: 4/16, an Area Partitioning and Multi-group Key 4/18 Predistribution Approach) 2. Conclusion of the class 3. Final Exam on 4/18 in classroom

9

4/23 Project presentations and demos

file:///Users/dhuang8/Documents/My%20Web%20Sites/CSE548/2012spring/schedule.html

Final project report due on 4/11 (Electronic submission through project management site) Project demos start from 4/11 (will be schedule during instructor and TA's office hours)

Presentation of projects (in class)

Page 2 of 2