|
課程名稱 |
網路攻防實習
Practicum of Attacking and Defense of Network Security |
|
開課學期 |
108-2 |
|
授課對象 |
電機資訊學院 電機工程學研究所 |
|
授課教師 |
林宗男 |
|
課號 |
EE5188 |
|
課程識別碼 |
921 U2660 |
|
班次 |
|
|
學分 |
3.0 |
|
全/半年 |
半年 |
|
必/選修 |
選修 |
|
上課時間 |
星期二7,8,9(14:20~17:20) |
|
上課地點 |
電二229 |
|
備註 |
總人數上限:45人 |
|
Ceiba 課程網頁 |
http://ceiba.ntu.edu.tw/1082_CyberSecurity |
|
課程簡介影片 |
|
|
核心能力關聯 |
本課程尚未建立核心能力關連 |
|
課程大綱
|
|
為確保您我的權利,請尊重智慧財產權及不得非法影印
|
|
課程概述 |
Practicum is traditionally referenced as a course of supervised study in a professional field. In the context of computing education, it is also used for practices at a lab environment which emulates the real world situation. With the advancement of computing technology, a lab environment could be a physical lab or a virtual lab.
This is a practicum course of computer network security where students will learn to create a virtual computing network environment. Students will then use open source tools to create different attacking scenarios and then implement defense solutions to protect the network from those attacks. A major learning outcome is to design an enterprise network with security consideration to protect from various hacking and intrusion attacks. The course starts with a brief review of security requirements and then emerges students in various security tools to experiment on various attacking and defense scenarios.
PREREQUISITE (knowledge): (1) TCP/IP protocols, (2) Linux operating system, and (c) one programming language course (C++ or Python is preferred) |
|
課程目標 |
1. Specify security requirements in an enterprise environment. Distinguish and classify security attacks in four major categories: eavesdropping, authentication, integrity, and availability.
2. Design the enterprise network for maximal security protection
3. Identify vulnerabilities in network protocols.
4. Practice Open-Source tools to emulate various security attacks.
5. Configure network device (e.g., firewall) to protect and defend security attacks.
6. Design, configure, and build Virtual Private Network (VPN) which can be adopted in a real enterprise environment. Experiment with different encryption algorithms to evaluate the effectiveness of security protection. |
|
課程要求 |
Students will learn how hackers launch network attacks by practicing these attacks in a Virtual Machine (VM) environment. Students will then apply defense countermeasures to prevent or mitigate these attacks.
. |
|
預期每週課後學習時數 |
|
|
Office Hours |
|
|
指定閱讀 |
待補 |
|
參考書目 |
1. William Stallings, Cryptography and Network Security: Principles and Practice, 7th ed. Prentice Hall (2015)
2. William Stallings, Lawrie Brown, Computer Security: Principles and Practice: Fourth edition, |
|
評量方式
(僅供參考) |
|
|
週次 |
日期 |
單元主題 |
|
第1週 |
3/3(二)14:20-17:20 |
(1) Course Introduction
(2) VMs Setup and Network Config |
|
第2週 |
3/10(二)14:20-17:20 |
Traffic Sniffing and Scanning |
|
第3週 |
3/17(二)14:20-17:20 |
Cookies and Sessions
|
|
第6週 |
4/7(二)14:20-17:20 |
CSRF/XSS (本周請至少完成網頁的登入、登出以及cookie功能)
|
|
第7週 |
4/13(一)18:30-21:30 |
Web Penetrate |
|
第8週 |
4/21(二)14:20-17:20 |
Reverse Engineering (I) |
|
第9週 |
4/28(二)14:20-17:20 |
Reverse Engineering (II)
|
|
第11週 |
5/11(一)18:30-21:30 |
Cryptography
|
|
第13週 |
5/26(二)14:20-17:20 |
PWN (III)
|
|
第14週 |
6/2(二)14:20-17:20 |
資安事件處理 (調查局)
|
|
第15週 |
6/9(二)14:20-17:20 |
Embedded firmware extraction in security research (I) (趨勢科技) |
|
第16週 |
6/15(一)18:30-21:30 |
ShellCode 動態分析
|
|
第4-1週 |
3/24(二)14:20-17:20 |
網路封包分析 (調查局) |
|
第4-2週 |
3/23(一)18:30-21:30 |
Web technology (I) 可來可不來 教室在博裡館112 |
|
第5-1週 |
3/31(二)14:20-17:20 |
惡意程式解析 (調查局) |
|
第5-2週 |
3/30(一)18:30-21:30 |
Web technology (II) 可來可不來 教室在博裡館112 |
|
第10-1週 |
5/5(二)14:20-17:20 |
PWN (I) |
|
第10-2週 |
5/4(一)18:30-21:30 |
Reverse Engineering (III) |
|
第12-1週 |
5/19(二)14:20-17:20 |
網路入侵偵測實務 (TWCERT)
|
|
第12-2週 |
5/18(一)18:30-21:30 |
PWN (II)
|
|