|
| |
Abstract: As a user of the Internet, you are fortunate to be tied into the
world's greatest communication and information exchange - but not
without a price. As a result of this connection, your computer, your
organization's network, and everywhere the network reaches are all
vulnerable to potentially disastrous infiltration by hackers. [W.
Cheswick. Firewalls and Internet Security]
|
Synopsis:
- Seminar, Praktische Informatik, Hauptstudium.
- 2h each week, over one semester (2 SWS).
- Students will present a selection of papers that
will help you understand which threats exist, judge their
significance and learn methods to defend your system against
hackers. In addition you will explore the mathematical underpinnings
of today's most common security tools and protocols. But most of all
you will learn that there is no absolute security - i.e. your will
have to learn ways to detect security breaches and recover from
them.
Credits:
In order to obtain credits for this seminar,
participants are expected to:
- Attend regularly (at least 90%).
- Read each paper before the seminar, to be adequately prepared for
discussion.
- Research an assigned subject; present
major findings (45 min presentation; 30 min
discussion).
- Presentations will be evaluated by two members of
the audience at the end of each class (Bewertungskriterien-Seminarvortrag.pdf).
- Presenters summarize their presentation and relevant
discussion on the Seminar's WIKI page within 2 weeks.
- Presentations may be given in English or German. All documents are in
English (exceptions may be granted).
Prerequisites:
- This seminar is suitable for students of all
technical science disciplines who have previously completed courses PI 1,2,3
or equivalent.
Wiki:
Syllabus:
- nPA (neuer Personalusweis) [Broschüre] [TR]
(Robert Göttsch)
- PACE (Paul Bastian)
- NFC, Ideen, Konzepte & Geschäftsmodelle [->] (Magnus
Müller)
- eCard-API für mobile Endgeräte (Kristian Beilke)
- Signieren mit dem nPA [TR]
- Chipkartenleser für den nPA und ccid [TR]
(Uwe Ritzschke)
- Microsoft Cardspace
[Chapter 2] (Papier)
(Fabian Weber)
- WS-Security, XML-sig, XML-enc (Buch) (Andreas Grüner)
- SAML 2.0 (Martin Schröder)
- DE-Mail (https://www.bsi.bund.de/DE/Themen/EGovernment/DeMail/DeMail_node.html)
(Stephan Verbücheln, Martin Maunz)
- U-Prove [Artikel](Tobias Mühl)
- oAuth [http://www.iam-wiki.org/Home],
Xauth [golem] (Sven Sengpiehl)
- eGK (Gérard Baecker)
- Paring-Mechanismen (Jan Fajerski)
- Konzepte zur Begrenzung der Verfügbarkeit von
Daten im Web
- OpenID (Zheng Wang)
- RFID (Jonas Liepe)
|
Date |
Presenters |
Topic |
Slides |
|
13.04.10 |
|
3. Berliner
Signaturkonferenz (eingeladener Vortrag) |
|
|
20.04.10 |
Dr. Wolf Müller |
bootstrap / Themenvergabe |
|
|
27.04.10 |
|
Vorbereitung |
|
|
04.05.10 |
|
Kurzvortrag (elevator speach) |
|
|
11.05.10 |
|
Vorbereitung preparation |
|
|
18.05.10 |
Jonas Liepe
Magnus Müller |
RFID
NFC |
-
[pdf] |
|
25.05.10 |
Paul Bastian
Robert Göttsch |
PACE
nPA |
[pdf] |
|
01.06.10 |
Kristian Beilke
Uwe Ritzschke |
eCard-API
Chipkartenleser |
[pdf]
[pdf] |
|
08.06.10 |
Gérard Baecker
Jan Fajerski |
eGK
Pairing |
[pdf]
[pdf] |
|
15.06.10 |
Martin Schröder
Andreas Grüner |
SAML
WS-Security |
[pdf]
[pdf] |
|
22.06.10 |
Tobias Mühl
Fabian Weber |
U-Prove
MS Cardspace |
[pdf]
- |
|
29.06.10 |
Stephan Verbücheln
Martin Maunz |
DE-Mail
|
[pdf]
[pdf] |
|
06.07.10 |
Zheng Wang
Jonas Liepe |
OpenID (EN)
RFID |
[pdf] |
|
13.07.10 |
Sven Sengpiehl
Dr. Wolf Müller |
*auth
Projekte um den nPA am Lehrstuhl SAR |
[pdf] |
Links & Material
Further Readings (Books):
|
|
|
