Advanced Internet Security/ATSec

Homepage People Research Teaching
Abstract
Topics
Prerequisites
Location
Dates and Times
Slides
Challenges
Hall of Ultra Fame
Hall of Fame
Ratings
Standings
Environment
CTF
Examination
Registration
Mailing List

Advanced Topics in Security (Institute Eurecom)
183.222 Advanced Internet Security (2.0) (TU Wien)
(also known as Internet Security 2)

Lecturers

For TU Wien students:

Christopher Kruegel (University of California, Santa Barbara) and Engin Kirda (Institute Eurecom)

For Institute Eurecom students:

 Engin Kirda (Institute Eurecom) and Davide Balzarotti (Institute Eurecom)

For correspondence, send a mail to inetsec@iseclab.org

Tutors

Markus "Hex Cypher" Kammerstetter (InetSec 2 Master Guru)

News

  1. 10.02.2009 The King has died, long live the King.
  2. 10.02.2009 The exam results are online here.
  3. 26.01.2009 The exam will take place in EI 2 Pichelmayer HS.
  4. 21.01.2009 Challenge 8 is online. Please use your login credentials to read the specification. Good luck and have fun.
  5. 20.01.2009 We plan to announce Challenge 8 on 21.01.2009, 15.00.
  6. 14.01.2009 Challenge 7 is online. Please use your login credentials to read the specification. Good luck and have fun.
  7. 09.01.2009 We plan to announce Challenge 7 on 14.01.2009, 15.00.
  8. 07.01.2009 Challenge 6 is online. Please use your login credentials to read the specification. Good luck and have fun.
  9. 04.01.2009 Happy new year! We plan to announce Challenge 6 on 07.01.2009, 15.00.
  10. 24.12.2008 The InetSec 2 Exam will take place on 28.01.2009, 14.00-15.00. The location will be announced on this page and on TUWIS. Registration is possible via TUWIS after the 10th of January.
  11. 17.12.2008 Challenge 5 is online. Please use your login credentials to read the specification. Good luck and have fun.
  12. 14.12.2008 We plan to announce Challenge 5 on 17.12.2008, 15.00.
  13. 09.12.2008 Attention: The lab servers will be down between 10.00 and 13.00 on the 10th of December. We need to maintain.
  14. 03.12.2008 Challenge 4 is online. Please use your login credentials to read the specification. Good luck and have fun.
  15. 29.11.2008 We plan to announce Challenge 4 on 03.12.2008, 15.00.
  16. 17.11.2008 Challenge 3 is online. Please use your login credentials to read the specification. Good luck and have fun.
  17. 12.11.2008 We plan to announce Challenge 3 on 17.11.2008, 15.00.
  18. 29.10.2008 Challenge 2 is online. Please use your login credentials to read the specification. Good luck and have fun.
  19. 24.10.2008 We plan to announce Challenge 2 on 29.10.2008, 15.00.
  20. 15.10.2008 Challenge 1 is online. Please use your login credentials to read the specification. Good luck and have fun.
  21. 13.10.2008 We plan to announce Challenge 1 on 15.10.2008, 15.00.
  22. 13.10.2008 The InetSec 2 registration has started and will continue until the 25th of October. You can register via this link.
  23. 06.10.2008 The Introduction (Vorbesprechung) to the course will be in FH Hoersaal 4, 14.00-14.30 on 08.10.2008.
  24. 30.09.2008 The web page has been updated with the necessary organizational information. There is an introductory meeting (Vorbesprechung) on the 8th of October, 14.00, in FH HS 4. At this meeting, the course and the prerequisites will be described. Further, a brief introduction will be given to the organization of the course this year. If you cannot attend this meeting, then please check this site. All information that you need to register and complete the course will be on this page. The lecture part will be held blocked, but the assigments will be online on these pages as usual.
  25. 08.09.2008 The web page will be updated at the beginning of October. The lecture will be held blocked this year, but InetSec 2 will continue as usual.

Abstract

Advanced Internet Security (i.e., InetSec 2) serves as a continuation for the class Internet Security. The idea is to present problems in more detail and allow students to apply their knowledge in practical exercises. Because the class will feature a number of programming exercises, students are required to have considerable programming experience. The lecture deals with common programming mistakes and ways to detect and avoid them. Examples are used to highlight general error classes, such as stack and heap overflows. As part of the class, students can participate in an inter-university "capture-the-flag" hacking contest in which they can prove their knowledge of security and system management by competing with their peers.

Topics

  • Operating system security and vulnerabilities (UNIX, Windows, stack and heap overflows)
  • Firewalls and traffic filtering
  • Intranet application security (NFS, NIS, SNMP, CVS)
  • Race conditions
  • Reverse engineering and binary analysis
  • Viruses and worms
  • Intrusion Detection

Prerequisites

  • Time! ;-) == You will be programming every week or so!
  • good programming/developing skills (C - x86 assembler advantageous)
  • Internet Security VU
  • Experience with Linux and Windows

Assignments

There are a set of "challenges" that the students are required to solve. These challenges are security-related programming assignments (e.g., buffer overflows, application cracking, virus coding, etc.).

The current challenge is Challenge 8.

Location, Dates and Times

For students at the TU Wien

12.11.2008 14.00-16.00, Block 4, in Theresianumgasse HS 2
11.11.2008 14.00-16.00, Block 3, in Theresianumgasse HS 2
06.11.2008 14.00-16.00, Block 2, in FH HS 4
05.11.2008 14.00-17.00, Block 1, in Seminarraum 138 C
08.10.2008 14.00-14.30, Introduction (Vorbesprechung), in FH Hoersaal 4

(the date for Block 2 will be announced soon).

For students at Institute Eurecom

Mondays, 09.00-12.00, EC05. Lectures start on 06.10.2008 and continue until 24.11.2008.

Slides

We will provide two sets of slides here during the course. The first set is for Institute Eurecom students. The second set will be put online after the blocked lectures in Vienna.

TU Wien slides

12.11.2008, Block 4 (slides)
11.11.2008, Block 3 (slides)
06.11.2008, Block 2 (slides)
05.11.2008, Block 1 (slides)
08.10.2008, Introduction (slides)

Institute Eurecom slides

03.11.2008, Lecture 7 (slides)
03.11.2008, Lecture 6 (slides)
03.11.2008, Lecture 5 (slides)
27.10.2008, Lecture 4 (slides)
20.10.2008, Lecture 3 (slides)
13.10.2008, Lecture 2 (slides)
06.10.2008, Lecture 1 (slides)

Examination

For TU Wien students, There will be an exam at the end of the course, in January.
For Eurecom students, the date will be announced in the lecture.

Registration

The InetSec 2 registration will start on the 13th of October and will continue until the 25th of October. You can register via this link.

Mailing List

We have a mailing list for InetSec 2. Register here

Team Shellphish

Shellphish
Last Modified: Wed Mar 25 20:34:35 CET 2009

International Secure Systems Lab www.iseclab.org