Security Architecture slides
November 20th, 2008 by cmpsci491s-cmisraThese are the slides we started to cover in class today. This covers how we align the various tools we have talked abotu to effectively mitigate the risk to networks and systems.
IDS and SSL slides
November 4th, 2008 by cmpsci491s-cmisraAs discussed in class the past few classes, below are the slides from the IDS lecture, that have already been covered, as well as the SSL and VPN slides that will be covered on Thursday.
Lab 2
November 2nd, 2008 by cmpsci491s-cmisraLab 2 is due at the beginning of class on Thursday 13 November.
TCP/IP and Firewall slides
October 15th, 2008 by cmpsci491s-cmisraBelow are the TCP/IP and firewall slides.
The first four of the firewall slides were covered in class and will be covered on the exam.
Firewalls
October 7th, 2008 by cmpsci491s-cmisraHaving covered many of the basic TCP/IP based attacks, we need to cover defenses against these. The principle tool for network based prevention is the firewall. A firewall is a function that can be performed in hardware or software, at the host or as part of a network, and is often bundled as part of a ‘network security appliance’. We will focus first on the function, and then on the devices.
If you need background on how firewalls operate, take a look at:
TCP/IP security
October 1st, 2008 by cmpsci491s-cmisraIt is worth noting that most of these are not new problems. In fact take a look at this paper from 15 years ago, reprinted with comments from the author, Steve Bellovin, in 2004.http://www.cs.columbia.edu/~smb/papers/ipext.pdf
We will go over the 2004 conclusions from the paper in class.
A good example of a TCP hijacking is shown at:
http://staff.washington.edu/dittrich/talks/agora/script.html
The original paper on TCP hijacking is available here:
http://www.usenix.org/publications/library/proceedings/security95/full_papers/joncheray.txt
Some supplemental material to help cover what we go over in class on Thursday.
http://www.linuxsecurity.com/resource_files/documentation/tcpip-security.html
The slides covered in class are here: 491s-lec7-tcp.pdf
Homework 3
September 30th, 2008 by cmpsci491s-cmisraDue Date: 21 October 2008
Introduction to Computer Security, Matt Bishop
Design Principles: Ch 12 ex 2
Malicious Logic: Ch 19: ex 1
Network Security: Ch 23: ex 4
System Security: Ch 24: ex 4, 7
User Security: Ch 25: ex 5, 6
Exam 1
September 30th, 2008 by cmpsci491s-cmisraExam 1 will be given in class on Thursday 16 October. Exam 1 will cover all material review in the course through the previous class (9 October).
Quiz 2
September 30th, 2008 by cmpsci491s-cmisraQuiz 2 will be given in class on Tuesday 7 October. The quiz will cover all material covered in class through Thursday 2 October. You should also have completed all assigned readings by the time of the quiz.
Protocols and Assurance slides
September 30th, 2008 by cmpsci491s-cmisraPosted below. Note, there are no slides included below that cover the material the Brian covered in class last Thursday. I will get something posted, but you are responsible for the material that was discussed in class.For the duration of class, the slides will more supplement lectures rather than provide the primary information from the course.