Announcements

• See Spring 2005 for an idea about this course.
• I am on a conference Mon, Feb 28, and the first week of May.

Textbooks

Computer Networks and Internets, Fourth Edition by Douglas E Comer, Ralph E. Droms

Suggested reading

• Security Engineering: A Guide to Building Dependable Distributed Systems, Ross Anderson.
• Radia Perlman, Interconnects: Bridges, Routers, Switches and Internetworking Protocols.
• Douglas Comer, Internetworking with TCP/IP, Vol I: Principles, Protocols, and Architecture.
• William R. Cheswick and Steven M. Bellovin, Firewalls and Internet Security: Repelling the Wily Hacker.

Class notes

• Networking Concepts:
  
  • ISO OSI Model: Physical, Link, Network and Transport Layers
  • ISO OSI Model: Session, Presentation and Application Layers
  • SDU's and PDU's, Peer-to-peer protocols
  • LAN's v. WAN's
  • Design criteria for networks
  • Design Characteristics of a LAN
  • Packet v. Connection
  • Reliable communication using positive acknowledgement
  • Address Models
  
  
• Physical Transmission of Data and the Datalink layer
  • RS-232, serial communications
  • Ethernet
    • Cisco Documenation
    • Layer 2 1/2: DIX, 802.3, 802.2 SNAP
  • Wi-Fi
    • Technical Tutorial by Pablo Brenner from Breezecom.
    • My notes.
    • more info
    • even more info
  • Bridges, Switches, Hubs and Repeaters
    • Transparent bridges.
    • Learning bridges.
    • Spanning Tree Protocol
  
  
• IP protocols: the Network and Transport layers
  • IP, the Internet Protocol, RFC 791.
  • ARP, RFC 826.
  • User Datagram Protocol, packet communications.
  • Transmission Control Protocol, stream communications.
  • TCP Cram Sheet
  • notes
  • RFC 1122
  
  
• Essential Network Services
  • L3 Routing protocols
  • Distance Vector: RIP
  • Link State: OSPF
  • DNS
    • RFC 1034: Domain Names - Concepts and Facilities
    • RFC 1035: Domain Names - Implementation and Specification
  • BOOTP and DHCP
    • RFC 2131 Dynamic Host Configuration Protocol
    • DHCP trace
  • FTP, TFTP
    • RFC 1123
  • SMB, CIFS
  
  
• Accessing Network Resources
  • Sockets
    • Beej's Guide to Network Programming
  • RPC
  • SSL
  
  
• Network Security
  • Firewalls, Proxies and Packet Filters
    • Example security architecture
    • Cisco Router, math-gate. Configuration, demo.
    • Cisco PIX Firewall, cs-gate. Configuration, demo.
  • Authentication.

Assignments

• Reading due Monday, 30 January:
  1. Read Cisco's Introduction to Internetworking.
  2. Read about LAN's and WAN's
  3. Read about Ethernet
• Write a chat server/client.
  Do this over this week, due Monday! We will move on to harder UDP based protocols then.
  • Teams of two allowed .. client and server.
  • Use Sockets and UDP. See Beej's tutorial for information and examples.
• Write an TFTP client/server.
  Due: Monday, 13 March, 2006.
  • RFC 1350
  • RFC 1123, p. 34, Sorcerer's Apprentice Bug.
  • Network trace
• Setup a DNS server. Return the conf and database files and a script of a client accessing the server. Documentation

References

• General Networking
  • Cisco: Internetworking Technology Handbook
• Software engineering for security
  • Demystifing Suid, Wagner et. al, Usenix.
• WEP
  • My RC4 example.
  • CRC-32 failure of WEP.
  • SecurityFocus review
  • My RC4 example.
  • CRC-32 failure of WEP.
  • Attacks on RC4 and WEP, Fluhrer, Mantin, Shamir, Cryptobytes Vol 5., No. 2, 2002, pp 26-34.
  • KoreK attacks in chopper.
    Korek explains some of them.
  • Weakness in the Key Scheduling Algorithm of RC4 Scott Fluhrer, Itsik Mantin, Adi Shamir.
  • Using the Fluhrer, Mantin, and Shamir Attack to Break WEP Adam Stubblefield, John Ioannidis, Aviel Rubin.
  • AirSnort source code.
  Exploits
  • New LAND attack
  • Speed Pass broken, Rubin et. al.
  • Word/Excel Reuse RC4 stream.
  • SANS Tutorial: Why your switched network isn't secure.
  • TCP/IP Weakness, Robert Morris
  • Bellovin, TCP/IP Security Issues
• Virus
  • Virus creation
  • Melissa
  • Virus catelog
  • CIAC Melissa bulletin.
• Open Source Security Response Philosophy
  • Full disclosure prinicpals for mozilla.
  • Mozilla security response document.
  • Full dislosure document.
• Secure Operating Systems
  grsecurity, a secure linux extension.
  • Secure Linux from the NSA.
  • PaX, page-executable kernel modifications.
• RFC's
  • RFC 826: ARP.
  • RFC 791: IP.
  • RFC 3700: Internet Official Protocol Standards.
• IPv6
  • ABC of IPv6
  • IPv6 Concepts
  • IPv6 Cheat Sheat
• Port Knocking
• Cookies
  • Wikipedia article
  • Cookiecentral
  • See also relevant RFC's.
• Topics for next term
  • CAS, Yale CAS, UM CAS, and single signon
  • Keychains, methods of key diversity
  • Spam and Phishing counter-measures
  • CDSA
  • PKI and certificates