Schedule

September 2: Introduction

Agenda

• Why should we care about network security?

• Common misconceptions of network security

• Examples of computer security issues and solutions

• Overall structure of the course

• Overview of labs and projects

[Recording] [Slides]

September 9: Capturing and analyzing packets

Agenda

• What happens when I visit "Google.com"?

• How to capture and analyze packets with Wireshark and Pandas

• Overview of protocols: IP, DHCP, ARP, DNS, TCP/UDP, HTTP, TLS

• DHCP and ARP

[Zoom recording] [YouTube livestream of whiteboard] [Slides]

September 16: Attacks on the local network

Agenda:

• Overview of protocols: IP, DHCP, ARP, DNS, TCP/UDP, HTTP, TLS

• ARP and DHCP

• ARP spoofing

Learning goals:

• Describe what packets are sent and received

[YouTube Recording of Board] [Zoom Recording] [Slides]

September 23: Firewalls, NATs, & tunnels

Agenda:

• NAT and hole punching

• VPN tunnels

• IP tables and firewalls

[YouTube stream of the board] [Zoom recording] [Slides]

September 30: Web security

Agenda:

• HTTP

• CSRF and XSS

Lab:

• Lab 1 due. Review of Lab 1.

Recommended readings before class:

• Blogs and articles

  • How HTTP works: [Cloudflare article]

  • CSRF: https://owasp.org/www-community/attacks/csrf

  • XSS: https://owasp.org/www-community/attacks/xss/

• Paper: [IoT Inspector]

• Video lectures [YouTube channel]:

• How HTTP works: Videos 146-151

[YouTube stream]

The Zoom recording is not available because Danny accidentally showed sensitive private info on the screen multiple times. If you need to review something, please contact Danny directly.

October 7: Web security

Agenda:

• What happened to Facebook?

• HTTP, CSRF, CSS continued

Recommended readings:

• https://blog.cloudflare.com/october-2021-facebook-outage/

• https://www.cloudflare.com/learning/security/glossary/what-is-bgp/

• https://www.cloudflare.com/learning/security/glossary/bgp-hijacking/

Optional readings:

• https://blog.cloudflare.com/rpki/

Lab

• Overview of Lab 2

[YouTube stream part 1 ] [YouTube stream part 2] [Zoom recording]

October 14: TLS and Public Key Infrastructure - Part 1

Agenda:

• Review of cryptography

• TLS

• PKI

Recommended readings:

• https://developers.cloudflare.com/fundamentals/internet/protocols/tls

• https://www.cloudflare.com/learning/ssl/transport-layer-security-tls/

• https://www.cloudflare.com/learning/ssl/what-happens-in-a-tls-handshake/

• https://factorable.net/

[YouTube stream] [Zoom recording] [Slides]

October 21: TLS and Public Key Infrastructure - Part 2

Agenda:

• PKI

• LetsEncrypt

• MITM proxy

• Certificate transparency

• Revocation

Recommended readings:

• How LetsEncrypt works: https://letsencrypt.org/how-it-works/

• Introduction to PKI and TLS: https://www.youtube.com/watch?v=fuK-OAyfET4

• PKI: https://blog.cloudflare.com/how-to-build-your-own-public-key-infrastructure/

• https://www.cloudflare.com/learning/ssl/how-does-public-key-encryption-work/

• https://www.cloudflare.com/learning/ssl/what-is-an-ssl-certificate/

Lab:

• Lab 2 due. Review of Lab 2

[YouTube link] [Zoom recording] [Slides]

October 28: PKI

Agenda

• PKI

  • LetsEncrypt

  • Certificate Transparency

  • MITM Proxy

• IoT

  • Smart TV security

  • IoT Inspector

Recommended readings

• PKI

  • https://blog.cloudflare.com/how-to-build-your-own-public-key-infrastructure/

  • https://www.cloudflare.com/learning/ssl/how-does-public-key-encryption-work/

  • https://www.cloudflare.com/learning/ssl/what-is-an-ssl-certificate/

  • https://emilymstark.com/2020/07/20/certificate-transparency-a-birds-eye-view.html

  • https://certbot.eff.org/

  • https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-birge-lee.pdf

• IoT

  • https://freedom-to-tinker.com/2019/09/18/watching-you-watch-the-tracking-ecosystem-of-over-the-top-tv-streaming-devices/

  • https://hdanny.org/static/ubicomp-20.pdf

Lab:

• Overview of Lab 3

Project

• Overview of project proposals

[Zoom recording] [YouTube stream] [Slides]

November 4: IoT security and scanning

Agenda:

• Nmap

• IoT Security

Readings:

• https://hdanny.org/static/ubicomp-20.pdf

• https://hdanny.org/static/ccs-19.pdf

• https://hdanny.org/static/sigcomm-iot-18.pdf

• https://www.usenix.org/conference/usenixsecurity17/technical-sessions/presentation/antonakakis

• Ethics:

  • https://conferences.sigcomm.org/sigcomm/2015/pdf/papers/p653.pdf

Project:

• Review of project proposals

[Zoom recording] [YouTube recording] [Slides]

November 11: Privacy and anonymity

Agenda:

• Cookies

• Browser fingerprinting

• Tor

Readings:

• https://www.esat.kuleuven.be/cosic/publications/article-2334.pdf

• https://www.esat.kuleuven.be/cosic/publications/article-2457.pdf

• https://www.esat.kuleuven.be/cosic/publications/article-3196.pdf

• https://coveryourtracks.eff.org/

• https://themarkup.org/blacklight

• https://skerritt.blog/how-does-tor-really-work/

• https://freedom-to-tinker.com/2018/04/23/announcing-iot-inspector-a-tool-to-study-smart-home-iot-device-behavior/

• https://www.theverge.com/2013/12/18/5224130/fbi-agents-tracked-harvard-bomb-threats-across-tor

Project

• Continuous review of project proposals. All proposals should be finalized.

[Zoom recording] [YouTube stream]

November 18: DDoS, botnets, malware

Agenda:

• Preliminary project progress report: Presentation

• Lab 3 discussed

• Tor, continued

• Ransomware

• Cryptocurrencies

• Mirai

Project

• Preliminary project progress report: Presentation

Lab:

• Lab 3 due. Review of Lab 3

[Zoom recording] [YouTube Stream (no audio)]

November 25: Thanksgiving

No class. Thanksgiving.

December 2: Malware and Cyber Crime

Agenda:

• DDoS

• Ransomware

• Cryptocurrencies

• Mirai

Project

• Interim project progress report: Update the slide deck

Recommended readings:

• https://www.cloudflare.com/learning/ddos/dns-amplification-ddos-attack/

• https://www.cloudflare.com/learning/ddos/dns-flood-ddos-attack/

• https://www.cloudflare.com/learning/ddos/glossary/ip-spoofing/

• https://www.cloudflare.com/learning/ddos/ntp-amplification-ddos-attack/

• https://blog.acolyer.org/2018/03/23/tracking-ransomware-end-to-end/

• https://hdanny.org/static/oakland-18.pdf

• https://bitcoin.org/bitcoin.pdf

• https://zakird.com/papers/mirai.pdf

• https://damonmccoy.com/papers/www2016-booter.pdf

• https://cseweb.ucsd.edu/~savage/papers/Oakland11.pdf

[Zoom recording] [Slides]

December 9: Project presentation

Agenda

• Project presentation. Live presentation of projects during the class.

• Schedule: See spreadsheet.

[Zoom recording (NYU Sign-in Required)]