B027605 - SECURE WIRELESS AND MOBILE NETWORKS

English. Italian if the students opt for it.

The course is split in two parts.
In the first part the security basics are explained, also considering the network topology (physical or virtual).
In the second part, advanced network security topics are shown, including attacks examples and defense mechanisms.

Slides.
IETF RFCs.
Academic papers.

All the documents are available in the corse website (https://e-l.unifi.it).
The documents are in English only.

The course goal is to enable the student to evaluate the security of a telecommunication network. Network management principles and techniques, as well as advanced security defence systems will be analysed.

The goals can be summarized as follows:
- Knowledge of the security principles.
- System security requirement evaluation.
- To be able to analyse the cost/benefit ratio of a security system.
- Knowledge of the main cyphering schemes and their applications.
- To be able to design a security system.
- To be able to evaluate the system vulnerabilities.
- Knowledge of attack mitigation techniques.
- Knowledge of firewalls and IDS operations.
- Knowledge and evaluation of the main attacks, in particular the wireless ones.
- Knowledge of the main offensive security techniques and systems.

Telecommunication networks basics

Lectures

Lecture notes and PowerPoint presentations covering the course topics will be made available at the page dedicated to the course on the UniFi moodle website (https://e-l.unifi.it/).

The exams scheduling is available
at the UNIFI exams booking service.

The final exam will be oral. It will verify the following capabilities:
- To be able to analyze a system security.
- To be able to compare cyphering methods and their applications.
- To be able to evaluate and apply firewalling and IDS.
- To be able to evaluate and discover the system vulnerabilities.
- To be able to mitigate a potential or ongoing attack.

* Security - basics
* Security concepts
* Security introduction
* Enterprise Description models
* Risk assessment
* Defense in Depth
* Cryptography concepts
* Kerckhoffs's principle
* Cryptography methods
* Symmetric crypto
* Public key crypto
* Elliptic curves
* Goals:
* Integrity
* Authentication
* Non-repudiation
* Keys
* Key agreement systems
* Key management systems
* Message authentication
* CRC (flawed)
* MAC - HMAC
* 802.11's MIC
* Attacks models
* Attacker description
* Attacks classification
* Defense tools
* Firewalls
* Intrusion Detection Systems
* Ethical hacking
* Authentication and privileges
* Flaws in shared passwords
* 802.1x architecture
* Certificates and distributed signatures (PGP)

* Network Management
* Network planning
* NAT
* IPv6 deployment
* IPv4 / IPv6 coexistence
* Virtual private networks
* IPSec
* OpenVPN
* IP over X

* Security - advanced topics
* Attacks
* Types
* Link-local
* Online
* On-path
* Off-path
* Offline
* Examples
* Jamming / DOS / DDOS
* ARP / ND spoofing
* DNS poisoning
* SQL Injection
* TCP attacks
* SYN flood
* Fragmentation attacks
* Flow interruption
* Security flaws
* By design
* E.g., ARP
* Design flaws
* E.g., TCP flow abort
* Implementation flaws
* E.g., Input validation, buffer overflow, etc.
* Idiocy
* E.g., management interfaces
* Malicious behaviour
* E.g., backdoors
* Security analysis
* Testing
* White box testing
* Black box testing
* Scanning
* Vulnerability scanning
* Network scanning
* Tools
* Kali
* Pwnie
* Wireshark
* Snort / Suricata / Bro
* Iptables / netfilter