Introduction to Security - WMMRISEC
A+Augmenter la taille du texteA-Réduire la taille du texteImprimer le documentEnvoyer cette page par mail
Goals
The introduction to security course involves introductory lectures on security architectures, network, system, and web security, attack strategies, introduction to cryptography, and secure protocols. It also involves practical labs (TP), case studies on selected aspects of security to be presented by each student individually and a semester-long group project.
Content - Security models
- Types of attacks, the life cycle of attacks
- Malware, phishing, spam attacks
- Secure system administration
- Basics of network security, security architectures (firewalls: IPtables, Cisco, application-level firewalls, demilitarised zone, NAT, reverse proxies, tools)
- Honeypots
- DDoS (types of protocols exploited, victims, DDoS-as-a-Service, services for attack mitigation)
- Botnets (IoT security, mitigation, Mirai botnet)
- Cryptography basics (algorithms, applications, Tor, cryptocurrencies, ransomware)
- Certificates (certificate deployment, certificate authorities, certificate transparency logs)
- Darkweb (architecture, description of selected markets, available services)
- DNS attacks (hijacking, amplification, cache poisoning, etc.) and countermeasures (e.g. DNSSEC)
- Pentesting tools (Kali OS, Metasploit, Shodan)
- Advanced attacks (BGP hijacking, heartbleed)
- Privacy, e.g, GDPR law and its implications (conflict between consumer privacy and security)
PrerequisitesNone
Tests Evaluation of practical assignments, individual student presentations, group projects, and a final exam.
- Présentations par chaque étudiant sur un sujet choisi : 20%.
- Examen final : 30%.
- TP : 20%
- Projet : 30% (Rapport et présentation)
A+Augmenter la taille du texteA-Réduire la taille du texteImprimer le documentEnvoyer cette page par mail
Date of update March 10, 2020