Internet-Security - Weaknesses and Targets (WS2011/2012)

"Internet Security - Weaknesses and Targets" is based on "Internet- & WWW-Technologies" and gives a detailed introduction on problems concerning Internet and Intranet security. After starting with some remarks on risk analysis and computer crimes, security weaknesses and targets are discussed in detail. Beside others the following topics are discussed in detail: human factor and technical failures, attacks on accounts and passwords, attacks on Internet protocol, misuse of design and programming errors, weaknesses in common operating systems, targets in the WWW, and viruses. The lecture course concludes with a discussion about the possibilities to detect attacks and intrusions and also describes ethical issuses.

!!!NEW!!! Online Exercise Registration:

There are no hard-copy list-forms on the whiteboards/blackboards for registering the exercise groups. Registration is possible here (only from inside HPI) using your HPI OpenID.

!!!NEW!!! There is no lecture and exercise in the first week. The lecture will start from the second week (October 26, 2011, Wednesday).

Contents of lecture "Internet- und WWW-Technologien" (esp. protocols) should be present.

Lecture and exercise: Every week a 90 minutes lecture (in English) is held and streamed over the internet. Students have to solve and submit their exercises weekly.

• Meinel/Sack: Grundlagen der Digitalen Kommunikation
• Stuttard/Pinto: The Web Application Hacker's Handbook - Discovering and exploiting security holes
• Koziol/Litchfield/Aitel/Anley/Eren/Mehta/Hassel: The Shellcoder's Handbook - Discovering and exploiting security holes
• Videos of the lectures in the tele-TASK portal

50 % of the maximum exercise points (in 1st and 2nd half of semester) are needed to be able to take part in the examination at the end of the semester. In the middle of the semester there will be a written intermediate exam which counts about 1/3. At the end of the course there is a second written exam (counts about 2/3). Students who want to improve their mark can also register for an oral examination. Outstanding exercise results and participation in discussion can lead to a better mark.

Examinations

• Half-Term: December 14, 2011, 9:00-10:30, HS2/HS3 
• Final: February 21, 2012, 10:00-11:30, HS1/HS2 

Hands-On experience #1

• December 02, 2011 (Room HE-51)
  • Group A: 10:00-11:30
  • Group B: 12:30-14:00
  • Group C: 15:00-16:30

Hands-On experience #2

• February 03, 2012 (Room HE-51)
• Group A: 10:00-11:30
• Group B: 12:30-14:00
• Group C: 15:00-16:30

Lecture dates:

• Wednesday, 9:00-10:30, HS 2
• No lecture on 2012-02-01

Exercise course dates: 

• Group A: Wednesday, 13:30-15:00, A-2.1
• Group B: Wednesday, 15:15-16:45, A-2.1
• Group C: Thursday, 11:00-12:30, A-1.2

Exercise sheets will be published every wednesday in the in the HPI network folder of the lecture. Deadline for the submission of the solutions: wednesday (one week after the publication) 12 o'clock (Foyer, Tray 51).

10 L 1330

VT IST,VT OSIS

4

6 (benotet)

2.11.2011

IT Systems Engineering (Bachelor)

Vorlesung, Übung

Wahlfach

Business Computing, Internet-Technologien, Systemsicherheit, Verteiles Rechnen