COMS W4180 — Network Security: Lectures
Sep-05-06 Session 1: Introduction
Sep-07-06 Session 2: Threats and Attacks
Chapter 1 of Kaufman et al.
Sep-12-06 Session 3: Introduction to Cryptography
Chapter 1 of Cheswick et al.
Chapters 4-6 of Kaufman et al.
Sep-14-06 Session 4: Public key; hash functions; MACs
Appendix A of Cheswick et al. or section 13.1 of
that part of the first
Sep-19-06 Session 5: MACs, authentication, certificates
Whitfield Diffie and Martin E. Hellman,
"New Directions in Cryptography",
IEEE Transactions on Information Theory
IT-22:6, November 1976.
Use this link
to find the journal, then navigate to the issue.
"The First Ten Years of Public Key Cryptography",
Proceedings of the IEEE
76:5, May 1988.
Navigate from here.
R. L. Rivest, A. Shamir, L. Adleman,
"A method for obtaining digital signatures and public-key cryptosystems",
Communications of the ACM
21:2, February 1978. (Recommended)
Use this link
from campus, or navigate from
"The Story of Alice and Bob",
after-dinner speech at the Zurich Seminar, April 1984.
(Recommended, and very funny in a geeky sort of way...)
Robert H. Morris and Ken Thompson,
Password security: a case history,
Communications of the ACM 22:11, November 1979
Sep-21-06 Session 6: Key exchange protocols; Kerberos
Sep-26-06 Session 7: SSL
(slides courtesy of Prof. Angelos Keromytis)
Sep-28-06 Session 8: Web Security
Chapter 19 of Kaufman et al.
Oct-03-06 Session 9: Email security
- Chapter 25 of Kaufman et al.
- Chapter 4 of Cheswick et al.
Oct-05-06 Session 10: IPsec
Oct-10-06 Session 11: IPsec key management: IKE
Chapter 17 of Kaufman et al.
Oct-12-06 Session 12: SSH
Chapter 18 of Kaufman et al.
Oct-17-06 Session 13: SIP and VoIP
Oct-19-06 Session 14: Networked Storage
Section 26 of RFC 3261
Oct-24-06 Session 15: Firewalls
RFC 3723 Securing Block Storage Protocols over IP. B. Aboba, J. Tseng, J.
Walker, V. Rangan, F. Travostino. April 2004.
RFC 4086: Randomness Requirements for Security. D. Eastlake, 3rd, J.
Schiller, S. Crocker. June 2005.
Oct-26-06 Session 16: Firewalls
Oct-31-06 Session 17: Midterm
Grade histogram uploaded to Courseworks
Nov-02-06 Session 18: Scanning
The nmap man page (available on the CLIC machines)
Nov-09-06 Session 19: Intrusion Detection Systems
Nov-14-06 Session 20: IDS: Practical issues
Nov-16-06 Session 21: Worms
Stalking the wily hacker,
Communications of the ACM 31:5, May 1988.
An Evening with Berfered,
Chapter 10 of the first edition of
Firewalls and Internet
Security: Repelling the Wily Hacker,
William R. Cheswick and Steven M. Bellovin,
Addison-Wesley, 1994, or Chapter 16 of the second edition.
Shadow Hawk Busted Again,
Phrack 16, File 11 (Nov 1987) (recommended)
Freak Gets Prison Term, Risks Digest 8:29, 22 February 1989 (recommended)
- Chapter 15 of Cheswick et al. (recommended)
Nov-21-06 Session 22: Denial of Service Attacks
Nov-28-06 Session 23: Routing Security
Nov-30-06 Session 24: Wireless Security
Dec-05-06 Session 25: Privacy
Dec-07-06 Session 26: Review