your exercise ilab 1 2 info event online
play

your exercise iLab 1+2 info event online Tell your friends! - PowerPoint PPT Presentation

Feb 24, 2023 •827 likes •1.81k views

The iLab Experience a blended learning hands-on course concept you set the focus Final Lecture Marc-Oliver Pahl, Jul 25, 2017 your exercise iLab 1+2 info event online Tell your friends!

  1. The iLab Experience a blended learning hands-on course concept you set the focus Final Lecture Marc-Oliver Pahl, Jul 25, 2017 your exercise

  2. iLab 1+2 info event online • Tell your friends! • https://www.net.in.tum.de/teaching/ws1718/ilab_information.html

  3. your exercise 25.4. Kick Off, Mini Labs, IPv6 - part I 1 2-3 mini labs IPv6 2.5. IPv6 - part II, Mini Lab Lectures 2 9.5. MiniLabs, BGP 3 Your Exercise Mad Brainstorming 16.5. BGP 4 Advanced Wireless Playground YE Topic Presentation and Voting, Advanced WL 23.5. 5 Modern Cryptography 30.5. World-Wide-Web Security Holes 6 SEC 8.6. DIY1 - Smart Space HW 7 S2O 1 13.6. DIY2 - Smart Space SW 8 S2O 2 20.6. YE Didactics and Techniques 9 27.6. 10 YE 1st Lecture 4.7. 11 Giving good Feedback Your Exercise (11.7.) 12 summer term 2017 18.7. YE Review Presentation 13 25.7. YE Final Presentation, Wrap-Up 14 15

  4. Introductory Lecture didactic concept | authoring tutorial | topic selection | assignment review teams ~2h * ~30-35h Team Prepares Exercise slides for talk | prelab | lab | slides | tutor support Internal Tests ~2h First Lecture Presentation Student Run presentation | feedback | quality alignment Revision ~20-25h Review Feedback review another team ~2h Received Feedback Pres. presentation | feedback | quality alignment Revising new lab ~20-25h updating learning material Somehow “Stable” Final Presentation ~2h how is it now | what did you change/ learn | your take home?

  5. wikimedia: Biser Todorov I give you some tools and experience

  6. Learn from each other…

  7. Topic Brainstorming Result May 16, 2017

  8. Topic Voting Event May 23, 2017

  9. 2017-07-04 First Lecture - What was good? What could be improved?

  10. 2017-07-04 Giving Feedback - What do you know about Feedback?

  11. 2017-07-04 Giving Feedback - What are your open Challenges?

  12. 2017-07-18 Review Reporting - What are your main Points for PreLab, Lab, and other aspects?

  13. Expected Artefacts Deadline • your exercise X • Week -5: • 2 slide decks for your two • Prepare your 2x3 min talks topic presentations (each talks one topic!) 22.5. • Week -4: • • Plan the structure and content of your lab, prelab, and lecture. Creation of Lecture, PreLab, Lab 19.6. • Week 1: • • Lecture Preparation (most relevant concepts?) • Prelab Preparation (detailing the lecture content + tools + more) X • Slide deck lecture (2 talk!) • Practical Part Lab Preparation (no cooking recipe) 26.6. • Week 2+3: X • Ready PreLab, Lab • Work on your content. 11.7. • Week 4: X • Review report • Review other team • Get reviewed by other team X • Slide on review feedback & • Start improving based on the feedback peer grading planned improvements 18.7. • Week 5: X • Final lecture slides • Improve your exercise based on the feedback Revision X • Final PreLab, Lab, Peer Grade 25.7. • Week 6: • Finish your lab and the review reports. 30.7. Marc-Oliver Pahl 2017

  14. The Peer Review You will grade your reviewed team. http://www.utahcompose.com/sites/utahwrite/files/peer%20review%20kids.jpg

  15. you set the focus Your Final Lecture 15 (+1) Minutes The iLab Experience a blended learning hands-on course concept

  16. You make it interesting… Flickr:nist6dh

  17. Order of Presentations Team Topic 201 Email spoofing 202 War Rooms! 203 Hiding in plain sight

  18. create your own exercise Armin Baur & Moritz Kellermann EMAIL SPOOFING MY BANK NEEDS MY PASSWORD 1

  19. Motivation • Email Spoofing – My Bank needs my Password • Sender email address can be spoofed easily – People trust the sender address – Spam can be send on behalf of others • Messages can be manipulated 2

  20. SMTP • Simple Mail Transfer Protocol ( SMTP ) • First RFC published August 1982 • Original design of SMTP has no facility to authenticate sender 3

  21. SMTP MUA Mail User Agent MSA Mail Submission Agent MTA Mail Transmission Agent MDA Mail Delivery Agent 4

  22. Email Header 5

  23. Security Mechanisms • Sender Policy Framework ( SPF ) • DomainKeys Identifed Mail ( DKIM ) • Domain-based Message Authentication, Reporting and Conformance ( DMARC ) 6

  24. SPF CC BY-SA 2.5: openspf.org • Checks that incoming mail from a domain comes from a host authorized by that domain • Authorizes hosts by IP addresses via DNS – TXT Resource Record – SPF Resource Record (obsolete) source.tld TXT = "v=spf1 ip4:192.0.2.0/24 mx a –all" 7

  25. Spoofing MTA ( Return-Path ) 8

  26. SPF 9

  27. DKIM • Cryptographic signing of outgoing email • Prevents email manipulation • Public key is published via DNS – TXT Resource Record unknown._domainkey. source.tld TXT = "DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeo/3jmZJii2wKBBpCiE 10

  28. DMARC CC BY 3.0 : dmarc.org • Prevents spoofing of email addresses • Requests reports about spoofed email • Publishes the DKIM signing policy of a domain – TXT Resource Record _dmarc. source.tld TXT = "v=DMARC1; p=reject;" 11

  29. Spoofing Sender Email ( From ) 12

  30. DMARC/DKIM 13

  31. Lab • Analysing email headers • Spoofing MTA host address • Spoofing email address • Configure SPF , DKIM and DMARC 14

  32. Teaser Practical Part (DNS) Switch Eve (MTA) Alice Bob (MTA + (MTA + MDA) MDA) 15

  33. Order of Presentations Team Topic 201 Email spoofing 202 War Rooms! 203 Hiding in plain sight

  34. create your own Andreas Janiak and Donika Mirdita exercise WAR ROOMS! 1

  35. What is War Rooms? Is inspired from the game over the wire, and was meant to learn and practice security concepts within a secure environment. The name was derived from the rooms = current pc and the battle against the system to win the victory file. http://overthewire.org 2

  36. Motivation • Be comfortable working with the command line • Know how to debug and explore – Incomplete knowledge of networks – Handle unknown environments • Learn to use new tools • Improve skills with the old tools 3

  37. Lecture Overview 1.IPv4/IPv6 Recap 2.Systemd-Networkd deamon 3.Linux tools 4.OverTheWire Demo 4

  38. IPv4/IPv6 Recap Networks need to be able to interact with a variety of host configurations: • IPv4 and IPv6 compatibility • Dual Stack IPv4/IPv6 support • Gateway and Broadcast addresses • Routing for the Internet 5

  39. Introduction to Systemd Linux service and system manager. • Runs as PID 1; starts the rest of the system • Enables control over daemons • Built-in daemons for logging and system configuration https://wiki.archlinux.org/index.php/systemd 6

  40. Systemd Tools 1.Systemctl - manager for systemd 2.Journalctl - logging system 3.Systemd-networkd - network manager 4.Hostnamectl - system hostname manager 5.Services - Service Unit Configuration https://www.freedesktop.org/software/systemd/man/ 7

  41. Linux tools • ssh, sshpass → secure shell • find → search data • grep → searches content • | → pipelines • nmap → network discovery and security tool 8

  42. Over the wire demo Demo... 9

  44. Teaser Practical Part 6 1 2 4 3 5 10

  45. Order of Presentations Team Topic 201 Email spoofing 202 War Rooms! 203 Hiding in plain sight

  46. https://www.youtube.com/watch?v=4vlu8ld68fc https://www.youtube.com/watch?v=4vIu8ld68fc

  47. reate your own exercise Yoav Schneider Hiding in plain sight 2

  48. Covert Channels  De%nition  How to encode and decode data  Examples  Detection and Prevention 3

  49. Covert Channels „In computer security, a covert channel is a type of computer security attack that creates a capability to transfer information objects between processes that are not supposed to be allowed to communicate by the computer security policy” https://en.wikipedia.org/wiki/Covert_channel 4

  50. Scenario  Leak Data  Control computers in a botnet  Distribute Malware 5

  51. „The Medium is the Message”  Protokol  Data  Timing  Physical  Fan speed  Blinking leds Marshall McLuhan, 1964 6 Source : https://en.wikipedia.org/wiki/File:Marshall_McLuhan.jpg

  52. „The Medium is the Message”  Protokol  Data  Timing  Physical  Fan speed  Blinking leds Source : https://en.wikipedia.org/wiki/File:Marshall_McLuhan.jpg 7

  53. „The Medium is the Message”  Protokol  Data  Timing  Physical  Fan speed  Blinking leds 8

  54. „The Medium is the Message”  Protokol  Data  Timing  Physical  Fan speed  Blinking leds Source (left) : https://en.wikipedia.org/wiki/File:Benjamin_Franklin2_1895_Issue-1c.jpg Source (right): own work using: http://manytools.org/hacker-tools/steganography-encode-text-into-image/go 9

  55. „The Medium is the Message”  Printer Watermarks Source : https://pixabay.com/p-161063/?no_redirect 10

  56. „The Medium is the Message”  Protokol Source : https://en.wikipedia.org/wiki/Transmission_Control_Protocol 11

  57. „The Medium is the Message”  Example: Send “0x12345678” using the source port 0x1234 Source : https://en.wikipedia.org/wiki/Transmission_Control_Protocol 12

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

521493S Computer Graphics General Info & Exercise 1 General Exercise Info Teaching

521493S Computer Graphics General Info & Exercise 1 General Exercise Info Teaching

521493S Computer Graphics General Info & Exercise 1 General Exercise Info Teaching Assistant Jukka Holappa Room TS 322, jukka.holappa@ee.oulu.fi You can try to reach me between 10-16 (Mon-Fri) Responsible for exercises only!

347 views • 34 slides
521493S Computer Graphics General Info & Exercise 1 + Blender Tutorial General Exercise Info

521493S Computer Graphics General Info & Exercise 1 + Blender Tutorial General Exercise Info

521493S Computer Graphics General Info & Exercise 1 + Blender Tutorial General Exercise Info Teaching Assistant Jukka Holappa Room TS 322, jukka.holappa@ee.oulu.fi You can try to reach me between 12-16 (Mon-Fri) Responsible

461 views • 34 slides
The iLab Experience a blended learning hands-on course concept you set the focus Your Exercise

The iLab Experience a blended learning hands-on course concept you set the focus Your Exercise

The iLab Experience a blended learning hands-on course concept you set the focus Your Exercise Topic Madness the topic voting round May 23, 2017 25.4. Kick Off, Mini Labs, IPv6 - part I 1 2-3 mini labs IPv6 2.5. IPv6 - part II,

940 views • 48 slides
ONLINE ONLINE APPLI APPLICANT CANT EVENT EVENT Studying Computer Science at Salford In

ONLINE ONLINE APPLI APPLICANT CANT EVENT EVENT Studying Computer Science at Salford In

ONLINE ONLINE APPLI APPLICANT CANT EVENT EVENT Studying Computer Science at Salford In Investiga estigating Metada ting Metadata ta Dr Rob Hegarty Introduction Dr Rob Hegarty Senior Lecturer Teaching Cyber Security,

635 views • 34 slides
The iLab Experience a blended learning hands-on course concept you set the focus WWW Security /

The iLab Experience a blended learning hands-on course concept you set the focus WWW Security /

The iLab Experience a blended learning hands-on course concept you set the focus WWW Security / Your Exercise Topic Pitch 2018-05-8 10.4. Kick Off, IPv6 1 IPv6 BGP 17.4. 2 Minilab 1 2 mini labs Advanced Wireless Playground BGP 24.4.

646 views • 40 slides
Exercise 4 Exercise 4 Write a discrete event simulation program for a blocking system, i.e. a

Exercise 4 Exercise 4 Write a discrete event simulation program for a blocking system, i.e. a

Exercise 4 Exercise 4 Write a discrete event simulation program for a blocking system, i.e. a system with m service units and no waiting room. The offered traffic A is the product of the mean arrival rate and the mean service time. 1. The

188 views • 3 slides
The iLab Experience a blended learning hands-on course concept you set the focus Your Topics

The iLab Experience a blended learning hands-on course concept you set the focus Your Topics

The iLab Experience a blended learning hands-on course concept you set the focus Your Topics Structure 2019-05-14 Kick Off 04/23 1 IPv6 IPv6 04/30 BGP 2 Minilab 1+2+3 05/07 BGP 3 Your Exercise Topic Storm (IoT) 05/14 Minis

1.24k views • 103 slides
your exercise Order of Presentations Team Topic 212 Distributed file systems 209 OpenSSH:

your exercise Order of Presentations Team Topic 212 Distributed file systems 209 OpenSSH:

The iLab Experience a blended learning hands-on course concept you set the focus Create Your Own Lab July 5, 2016 your exercise Order of Presentations Team Topic 212 Distributed file systems 209 OpenSSH: More than a remote shell 207

1.21k views • 118 slides
SWOT presentation exercise Assessors brief Youll need to brief candidates on this exercise at

SWOT presentation exercise Assessors brief Youll need to brief candidates on this exercise at

SWOT presentation exercise Assessors brief Youll need to brief candidates on this exercise at least a week before the selection event to allow time for them to prepare fully. Candidates are asked to conduct a SWOT analysis of a store of your

222 views • 4 slides
Members Network Event 6th March, 2019 Older People Support Services* Draft Exercise standards

Members Network Event 6th March, 2019 Older People Support Services* Draft Exercise standards

Members Network Event 6th March, 2019 Older People Support Services* Draft Exercise standards Active Ageing AGENDA Exercise and Education Best Practice Falls Pathways Malnutrition and Dehydration Enablement and

531 views • 35 slides
ONLINE SAFETY EVENING CONGERSTONE PRIMARY SCHOOL EVENT: Online safety in school Miss

ONLINE SAFETY EVENING CONGERSTONE PRIMARY SCHOOL EVENT: Online safety in school Miss

ONLINE SAFETY EVENING CONGERSTONE PRIMARY SCHOOL EVENT: Online safety in school Miss Armstrong Technical support Mr King Kayleighs Love Story Leicestershire Police - OPTIONAL E-SAFETY ONLINE SAFETY digital

246 views • 10 slides
Exercise Slides slides are online password will be announced during the sessions

Exercise Slides slides are online password will be announced during the sessions

Exercise Slides slides are online password will be announced during the sessions email in UniWorx question for a potential future exercises: could those who have programmable phones please prepare to have access to eduroam

837 views • 44 slides
CSE 132C Database System Implementation Arun Kumar Exercise 6 Answers 1 Common Info:

CSE 132C Database System Implementation Arun Kumar Exercise 6 Answers 1 Common Info:

CSE 132C Database System Implementation Arun Kumar Exercise 6 Answers 1 Common Info: Netflix Schema Ratings / R RatingID Stars RateDate UID MID 7254 4.5 12/15/19 839 123 UID UName Age JoinDate Users

359 views • 16 slides
EVENTS Becki Cross Event Manager and Strategist 2020 THE YEAR OF ONLINE EVENTS Now, more

EVENTS Becki Cross Event Manager and Strategist 2020 THE YEAR OF ONLINE EVENTS Now, more

A BEGINNERS GUIDE TO CREATING ONLINE EVENTS Becki Cross Event Manager and Strategist 2020 THE YEAR OF ONLINE EVENTS Now, more than ever, there is a need for events to move online. This session will offer practical ideas, hints and tips

1.17k views • 49 slides
Online event - June 26, 2020, 10:00-12:00 European Partnership Proposal for an Industrial Battery

Online event - June 26, 2020, 10:00-12:00 European Partnership Proposal for an Industrial Battery

Dear Stakeholders of ETIP Batteries Europe, Please find below an invitation on behalf of the core founders of Batteries Partnership to the online information event on June 26, 10:00 12:00. Currently the EU Commission is preparing for the next

271 views • 3 slides
Improvement of the ALICE Online Event Display using OO patterns and parallelization techniques

Improvement of the ALICE Online Event Display using OO patterns and parallelization techniques

Improvement of the ALICE Online Event Display using OO patterns and parallelization techniques Mihai Niculescu (Institute of Space Science Romania) for ALICE experiment Amsterdam, CHEP 14-18 October 2013 1 A bit of History (1/2) ALICE Event

148 views • 12 slides
Supercomputers and Supercomputers and Clusters and Clusters and Grid, Grid, Oh My! Oh My!

Supercomputers and Supercomputers and Clusters and Clusters and Grid, Grid, Oh My! Oh My!

Supercomputers and Supercomputers and Clusters and Clusters and Grid, Grid, Oh My! Oh My! Jack Dongarra University of Tennessee and Oak Ridge National Laboratory and SFI Walton Visitor University College Dublin 1 Apologies to Frank

796 views • 41 slides
Reasoning with Expressive Description Logics Logical Foundations for the Semantic Web Ian

Reasoning with Expressive Description Logics Logical Foundations for the Semantic Web Ian

Reasoning with Expressive Description Logics Logical Foundations for the Semantic Web Ian Horrocks horrocks@cs.man.ac.uk University of Manchester Manchester, UK Reasoning with Expressive Description Logics p. 1/40 Talk Outline Reasoning

2.26k views • 186 slides
Some Applications Of Bandwidth Estimation Andrew Odlyzko http.//www.dtc.umn.edu/~odlyzko 1

Some Applications Of Bandwidth Estimation Andrew Odlyzko http.//www.dtc.umn.edu/~odlyzko 1

University of Minnesota Some Applications Of Bandwidth Estimation Andrew Odlyzko http.//www.dtc.umn.edu/~odlyzko 1 University of Minnesota AO 12/04/03 University of Minnesota A depressing litany of duds among major recent networking

384 views • 12 slides
Minimizing resource protection in IP over WDM networks: Multi- layer Shared Backup Router A.

Minimizing resource protection in IP over WDM networks: Multi- layer Shared Backup Router A.

Minimizing resource protection in IP over WDM networks: Multi- layer Shared Backup Router A. Mayoral, V. Lpez, Ori Gerstel, Eleni Palkopoulou, O. Gonzalez de Dios, J.P. Fernndez-Palacios Index Introduction 01 Multi-layer Restoration

452 views • 18 slides
Next Generation Internet research and activities in China Yan MA Information Network Center

Next Generation Internet research and activities in China Yan MA Information Network Center

Next Generation Internet research and activities in China Yan MA Information Network Center Beijing University of Posts and Telecommunications Aug.29, 2007, DCU, Dublin Outline Brief history of Internet in China IPv4 based CERNET

727 views • 39 slides
Software Design See Alan Cooper, The Essentials of User Interface Design who designs the

Software Design See Alan Cooper, The Essentials of User Interface Design who designs the

Software Design See Alan Cooper, The Essentials of User Interface Design who designs the software? Implentation model users model worse better Implementation is view of software developer, users view is mental model, software

612 views • 6 slides
CPSC 581 Human Computer Interaction II Your Hosts Sonny Chan - MS 634 - sonny.chan@ucalgary.ca

CPSC 581 Human Computer Interaction II Your Hosts Sonny Chan - MS 634 - sonny.chan@ucalgary.ca

CPSC 581 Human Computer Interaction II Your Hosts Sonny Chan - MS 634 - sonny.chan@ucalgary.ca David Ledo - MS 680 (iLab) - davidledo89@gmail.com Participation = 15% What s this board for? Sketchbook Who has one? Let s Get

628 views • 29 slides
Recent Developments on Exact Solvers for the (Prize-Collecting) Steiner Tree Problem Ivana

Recent Developments on Exact Solvers for the (Prize-Collecting) Steiner Tree Problem Ivana

Recent Developments on Exact Solvers for the (Prize-Collecting) Steiner Tree Problem Ivana Ljubi c ESSEC Business School of Paris The 22nd edition of the COMEX Belgian Mathematical Optimization Workshop April 21, 2017, La-Roche-en-Ardennes

1.31k views • 98 slides

More recommend