Network Security, Autumn 2022

Basic Course Information
Course Code 263-4640-00L
Language English
Lecturers Prof. Dr. Adrian Perrig [AP]
Dr. Markus Legner [ML]
Dr. Stefan Frei [SF]
Prof. Dr. Kenny Paterson [KP]
Teaching Assistants Seyedali Tabaeiaghdaei [ST] — Head TA
Simon Scherrer [SS] — Project TA
Matteo Scarlata [MS] — Exercise TA
Elham Ehsani Moghadam [EE] — Exam TA and project co-TA
Giacomo Giuliari [GG] — exercise co-TA and guest lecture co-TA
Student Assistants Daniele Coppola [DC] — Exercise SA
Joseph Thommes [JT] — Exercise SA
Contact Please do not send emails to our personal email addresses. Instead, use the following points of contact (besides in-person question during lectures and exercise sessions):
Online Teaching In principle all teaching will be in person. However, recordings will be made available, and no attendance (besides at the exam) is required to pass this course.
Lectures See here.
Guest Talks and Exercise Sessions See here.
Exam Written exam. Date to be determined
Project The course includes two graded coding projects. These need to be completed individually and will make up 25 % of the final grade.
More will be provided in the lectures.
Grading You must pass the exam to get credit points.
The exam determines 75 % of the final grade. The remaining 25 % comes from the coding projects.
Course Catalogue Entry 263-4640-00L Network Security
Course Slides/Readers (Git) Course materials will be distributed via GitLab. We will also use GitLab Issues for questions, discussions, and more.
You should automatically be granted access to the relevant GitLab projects no later than (i) four hours after registering for the course on myStudies, or (ii) one hour after logging in to the D-INFK GitLab instance for the first time, whichever is later. If this is not the case, you should contact the course team.
Lecture Recordings Recordings will be available on the ETH video portal the day after the lecture or exercise class. General information related to lecture recording is available here.
Course News
20.07.2022 The website for the Network Security course is online.
Schedule
Subject to change.
week 38 Lecture 20.09.2022 Course introduction [AP]
Crypto refresher [KP]
Exercise 22.09.2022 Networking refresher
week 39 Lecture 27.09.2022 TLS [KP]
Exercise 29.09.2022 Discussion exercise sheet
week 40 Lecture 04.10.2022 TLS (continued) [KP]
Exercise 06.10.2022 Guest: Alberto Sonnio, Mysten Labs, "How to build consensus-less blockchains"
Discussion exercise sheet
week 41 Lecture 11.10.2022 PKI systems [AP]
Exercise 13.10.2022 Guest: Maxim Salomon - Previously at Roche now with Google as Technical Program Manager for Security of Mergers & Acquisitions "The safety vs. security of cyber physical systems"
Introduction to Project 1: ACME Client
Discussion exercise sheet
week 42 Lecture 18.10.2022 VPNs (IPsec, WireGuard) [ML]
Exercise 20.10.2022 Guest: David Mc Laughlin, ETH Zurich, "Spam prevention at ETH Zurich"
Discussion exercise sheet
week 43 Lecture 25.10.2022 Anonymous-communication systems [ML]
Exercise 27.10.2022 Discussion exercise sheet
week 44 Lecture 01.11.2022 Anonymous-communication systems (continued) [ML]
BGP security, BGPsec, best practices [ML]
Exercise 03.11.2022 Introduction to Project 2: Defend the Flag
Discussion exercise sheet
week 45 Lecture 08.11.2022 BGP security (continued) [ML]
Exercise 10.11.2022 Discussion exercise sheet
week 46 Lecture 15.11.2022 Firewalls, IDS, evasion and limitations [SF]
Exercise 17.11.2022 Guest: Nico Schottelius, Ungleich, "IPv6 (in-)security, a practical guide"
Discussion exercise sheet
Project 18.11.2022 Deadline Project 1 (23:59)
week 47 Lecture 22.11.2022 Attack Infrastructures, Botnets, Internet of Things (IoT) [SF]
Exercise 24.11.2022 Guest: Candid Wuest, Acronis, "Malware detection – reality vs. myth"
Discussion exercise sheet
week 48 Lecture 29.11.2022 DNS security and privacy [SF]
Exercise 01.12.2022 Guest: Google, "Talk - Red vs Blue Team at Google"
Discussion exercise sheet
week 49 Lecture 06.12.2022 (D)DoS attacks and defence mechanisms [AP]
Exercise 08.12.2022 Guest: Patrick Schmid, RedGuard, "Top X Ways to get Domain Admin: A field report from attack simulations across different companies"
Discussion exercise sheet
week 50 Lecture 13.12.2022 (D)DoS attacks and defence mechanisms (continued) [AP]
Exercise 15.12.2022 Guest: Lefteris Kokoris Kogias, IST Austria, "DAG-based Consensus"
Discussion exercise sheet
Project 16.12.2022 Deadline Project 2 (23:59)
week 51 Lecture 20.12.2022 Next-generation Internet (SCION) [AP]
Exercise 22.12.2022 Discussion exercise sheet