course: Current Topics in the Area of Internet Security

number:
141251
teaching methods:
lecture with tutorials
media:
Moodle
responsible person:
Prof. Dr. Jörg Schwenk
lecturer:
Dr.-Ing. Marcus Niemietz (ETIT)
language:
german
HWS:
4
CP:
5
offered in:
winter term

dates in winter term

  • start: Monday the 07.10.2019
  • lecture Mondays: from 08:15 to 09.45 o'clock in ID 04/413
  • tutorial Mondays: from 10:15 to 11.45 o'clock in ID 04/413

Exam

All statements pertaining to examination modalities (for the summer/winter term of 2020) are given with reservations. Changes due to new requirements from the university will be announced as soon as possible.
Form of exam:written
Registration for exam:FlexNow
Date:06.08.2020
Begin:11:30
Duration:120min
Room : HMA 10

goals

Upon successful completion of the module, students will have a comprehensive understanding of current research topics in the field of Internet security. They have become familiar with the latest attacks and security mechanisms. In addition, they know how to deal with security vulnerabilities correctly and how to report them to the manufacturer. Through the science-related topics, students have gained insight into research in the area of Internet security, which has prepared them for their potential research role.

content

The lecture deals with selected IT security topics that have been published by the Chair of Network and Data Security in recent years. Among others the following topics will be covered:

  • Attacks on IPsec and IKE.
  • TLS Scanning, Fuzzing and State Learning
  • Attacks on TLS (Padding Oracles, ROBOT, Invalid Curve)
  • Attacks on email signatures and email encryption (Efail)
  • Attacks on network printers
  • PDF encryption
  • Responsible Disclosure
  • Analysis of the Document Object Model
  • UI redressing and clickjacking
  • Security models in the field of instant messaging
  • 0-RTT in TLS 1.3 and gate

In addition to the systems themselves, published attacks on these systems are also discussed; the students themselves make scientific considerations on how to improve security.

requirements

None

recommended knowledge

The event builds (among other things) on these courses:

  • Network security 1 and 2
  • Introduction to Cryptography

miscellaneous

Exam aids: 2 sheets (= 4 pages) DIN A4 handwritten notes, a scientific calculator (not programmable)