Computer and Network Security
CS494/594            Class 11   11/7/06

Topics

• networks 101
• network vulnerabilities and attacks
• lecture slides

Required reading

• Text 19.3, Appendix 16A
• Ranum's Internet attacks
• Bellovin's Security problems in the TCP/IP suite
• look at port graph at SANS for network port probing activity and top 10 port targets

Additional reading

• Comer's story of the 7 layers
• sniffer FAQ or here
• ARP poisoning ettercap sniffer and ettercap primer and article
• Security assessment of TCP 2/09
• ethereal and tcpdump and argus
• VLAN security and VLANs and switches FAQ
• wireless security
• network scanners and port mappers
• nessus vulnerability scanner
• The Internet Worm Program: An Analysis
• takedown Mitnick attack on Shimomura
• Bellovin's Domain Name Service vulnerabilities or here
• distributed denial of service attacks
• CERT teardrop/LAND advisory and smurf advisory and SYN flooding and IP spoofing
• DNS cache poisoning
• router and routing protocol attacks
• network infrastructure attacks arp, dhcp, OSPF and more attacks
• port knocking and single packet authorization
• Microsoft's How a criminal might infiltrate your network
• IETF's secure DNS extensions
• as always, cruise the security page