COM 260 COMPUTER AND NETWORK SECURITY

 

TEXT: William Stallings, Network Security Essentials, Third Edition,

Prentice Hall, Upper Saddle River, New Jersey, 2007.

 Michael Whitman, et. al., Hands-On Information Security Lab Manual,

Second Edition, Thomson-Course Technology, Boston, MA, 2006.

            Morgan Kaufman, San Francisco, CA, 2003.

 

Related WebSites: http://williamstallings.com/

                                    http://www.williamstallings.com/StudentSupport.html

 

Chapter and Topic

Slides

Related links

1.    Introduction

Chapter1

http://www.internic.net

http://www.samspade.org

http://www.arin.net

https://www.arin.net/knowledge/general.html

http://www.whois.net

http://tools.whois.net/ping/

 

 

2.  Symmetric Encryption and Message Confidentiality

Chapter2

 

Cryptography

Stallings Tutorial

 

Solve Cipher

 

http://www.ssh.fi/support/cryptography/index.html

 

http://www.simonsingh.net/The_Black_Chamber/home.html

 

http://csrc.nist.gov/CryptoToolkit/modes/

 

http://www.math.ucsd.edu/~crypto/programs.html

 

http://pajhome.org.uk/crypt/index.html

http://starbase.trincoll.edu/~crypto/

 

Vigenere cipher

http://math.ucsd.edu/~crypto/java/EARLYCIPHERS/Vigenere.html

3.  Public-Key Cryptography and   Message Authentication

Chapter3

 

Examples

 

 

 

 

 

 

 

 

 

 

RSA

 

http://www.williamstallings.com/Crypt-Tut/Crypto%20Tutorial%20-%20JERIC.html

 

http://www.mycrypto.net/encryption/public_key_encryption.html

 

http://www.faqs.org/faqs/cryptography-faq/

 

http://www.acm.org/crossroads/xrds7-1/crypto.html#con-generator

 

http://www.krellinst.org/UCES/archive/modules/charlie/pke/

 

http://pajhome.org.uk/crypt/rsa/rsa.html

4.  Authentication Applications

 

Chapter4

http://web.mit.edu/kerberos/www/

5. Electronic Mail Security

 

Chapter5

http://www.pgpi.org/

http://www.gfi.com/emailsecuritytest/

 

“Phishing”

http://en.wikipedia.org/wiki/Phishing

http://www.antiphishing.org/

http://www.webopedia.com/TERM/p/phishing.html

http://www.ftc.gov/bcp/conline/pubs/alerts/phishingalrt.htm

 

Anti-spam Techniques

http://en.wikipedia.org/wiki/Anti-spam_techniques_(e-mail)

 

6.  IP Security

 

Chapter6

Lab 2

http://en.wikipedia.org/wiki/TCP/IP_stack#Layers_in_the_internet_protocol_suite_stack

 

http://mute-net.sourceforge.net/howPrivacy.shtml

http://en.wikipedia.org/wiki/Transport_Layer_Security

 

7.  Web Security

Chapter7

Lab 7 – Digital Certificates

http://www.w3.org/Security/

http://code.google.com/edu/security/index.html

http://www.learnsecurity.com/ntk

 

 

 

http://www.alw.nih.gov/Security/security-www.html

http://www.spidynamics.com/spilabs/top5/index.html

 

8.  Network Management Security

Chapter8

Lab 4*

http://www.simpleweb.org/

SNMP-Wikipedia

SNMP security

http://www.iss.net/security_center/advice/Reference/Networking/SNMP/default.htm

http://msdn.microsoft.com/en-us/library/aa909970.aspx

http://www.networkworld.com/newsletters/sec/1004sec1.html

http://publib.boulder.ibm.com/infocenter/wtxdoc/v8r2m0/index.jsp?topic=/com.ibm.websphere.dtx.snmpagent.doc/concepts/c_snmp_agent_SNMP_Security.htm

How to Configure SNMP

http://support.microsoft.com/kb/324263

Cisco- Configuring SNMP

http://www.cisco.com/en/US/products/ps5989/products_configuration_guide_chapter09186a00805ed026.html

Security Patches

http://www.infosyssec.com/infosyssec/index.shtml

9.  Intruders

 

Chapter9

Lab 3*

http://www.honeypots.net/

Intrusion Detection - Wikipedia

10. Malicious Software

Chapter10

 

Lab5- Hoaxes

http://www.research.ibm.com/antivirus/

http://www.eeggs.com/

http://en.wikipedia.org/wiki/Easter_egg_(virtual)

http://www.eggheaven2000.com/

http://www.dvdeastereggs.com/

http://smithsonianchips.si.edu/chipfun/graff.htm

http://www.symantec.com/avcenter/

http://computer.howstuffworks.com/virus.htm

 

Timeline of Notable Viruses and Worms

 

Virus Encyclopedia

http://www.viruslist.com/en/viruses/encyclopedia

 

Top 20 viruses for 2005

http://www.viruslist.com/en/analysis?pubid=1770870

 

Malware in 2007 – Online Gaming

http://www.viruslist.com/en/analysis?pubid=204791985

 

Netscape Virus Center

http://channels.netscape.com/tech/viruscenter.jsp?floc=ns-tos-mant-h-01

Malware Code Glossary

http://www.f-secure.com/virus-info/glossary.shtml

 

Botnets

 

Root Kits

http://www.viruslist.com/en/analysis?pubid=168740859

11. Firewalls

 

Chapter11

http://firewall.com/

http://www.interhack.net/pubs/fwfaq/

http://www.zonelabs.com/store/content/home.jsp

General Resources

 

 

http://ocw.mit.edu/OcwWeb/Electrical-Engineering-and-Computer-Science/6-857Fall2003/RelatedResources/index.htm

 

 

COAST

 

CERT

Computer Security Resource Center

 

 

 

Cryptography and Steganography

 

  

http://www.cerias.purdue.edu/about/history/coast/

 

http://www.cert.org/

http://www.cert.org/tech_tips/home_networks.html

http://www.us-cert.gov/cas/tips/

 

http://csrc.nist.gov/

 

http://www.microsoft.com/security/default.mspx

http://security.ittoolbox.com/

 

 

http://www.simonsingh.net/Crypto_Corner.html

http://www.jjtc.com/Steganography/

http://en.wikipedia.org/wiki/Steganography

http://www.garykessler.net/library/steganography.html

http://www.jjtc.com/pub/r2026.pdf  Computer Magazine

http://www.petitcolas.net/fabien/steganography/

http://www.securityfocus.com/infocus/1684

http://www.outguess.org/

http://elonka.com/steganography/  Slide show

http://steganography.tripod.com/stego/software.html

http://www.citi.umich.edu/press.html

 

 http://research.binghamton.edu/faculty/fridrich/fridrich.htm

http://www.wetstonetech.com/f/stego-kessler.pdf  technical

 

http://starbase.trincoll.edu/~crypto/

http://cse.stanford.edu/classes/sophomore-college/projects-97/cryptography/history.html

 

http://www.austinlinks.com/Crypto/

 

http://www.math.ucsd.edu/~crypto/internet.html

 

http://www.uni-mannheim.de/studorg/gahg/PGP/cryptolog1.html#Stego

 

Cryptographic Toolkit

 

 

http://csrc.nist.gov/CryptoToolkit/ 

Maple Worksheets for Crytpography

 

http://euler.slu.edu/courseware/CryptoSubmissionSet/Cryptography.html

 

Glossary and Acronym List

 

http://www.garlic.com/~lynn/secgloss.htm 

Current topics

 

Security of the Internet

 

Cybersecurity

 

Security Incidents

 

Hoaxes

http://www.cert.org/encyc_article/tocencyc.html

 

http://www.insecure.org

 

 

http://blogs.zdnet.com/BTL/?p=2562

 

http://www.cert.org/encyc_article/tocencyc.html#NetSecInc

 

http://www.us-cert.gov/cas/tips/ST04-009.html

http://hoaxbusters.ciac.org/

http://www.truthorfiction.com/

http://www.snopes.com/college/exam/exam.asp

http://www.snopes.com/

 

Historical Questions and Resources

 

Senate Bill

 

Computer Security Act

 

HIPAA

 

Sarbanes-Oxley

http://csc.colstate.edu/summers/e-library/crypto.html

http://www.epic.org/crypto/legislation/s1587.html

 

http://www.net.ohio-state.edu/security/links/csa-1987.html

 

http://www.hipaadvisory.com/

 

http://www.aicpa.org/info/sarbanes_oxley_summary.htm

http://www.sec.gov/divisions/corpfin/faqs/soxact2002.htm

 

Security Organizations

Sans Institute

CERT

 

W3C Security

Cryptogram Assoc.

 

Securityfocus

http://www.sans.org/

http://www.cert.org/

 

http://www.w3.org/Security/

http://www.cryptogram.org/

 

http://www.securityfocus.com/

 

Code of Ethics

 

ACM

http://www.acm.org/serving/se/code.htm