Agenda
Security Workshop
Time Schedule
Session 1 | 09:00 - 10:30 |
Break | 10:30 - 11:00 |
Session 2 | 11:00 - 12:30 |
Lunch | 12:30 - 14:00 |
Session 3 | 14:00 - 15:30 |
Break | 15:30 - 16:00 |
Session 4 | 16:00 - 18:00 |
Instructors
maz | Yoshinobu (Maz) Matzusaki | Internet Initiative Japan | Japan |
daniel | Daniel Griggs | NZRS | New Zealand |
randy | Randy Bush | Internet Initiative Japan | Japan |
alisha | Alisha Gurung | TashiCell | Bhutan |
Available reference materials here
Day 1 | Topic | Inst | Presentations |
---|---|---|---|
Session 0 | Intro | randy | 1-0-1 Intro |
- admin | |||
- agenda | |||
- materials and resources | |||
- facilities and wireless | |||
Session 1 | Assets & Threat Models | 1-1-1 Assets and Threats | |
- what assets are we protecting? | 1-1-2 Threat Models | ||
- from what kinds of attackers? | |||
.. kiddies | |||
.. financial gain | |||
.. nation state (you're dead) | |||
Threat Pragmatics | 1-1-3 Pragmatics | ||
. to network infrastructure (routing, wiretap, ...) | |||
. to service infrastructure (dns, mail, ...) | |||
.to users | |||
Social Engineering | |||
Session 2 | Cryptography | 1-2-1 Crypto Review | |
- symmetric encryption | |||
- asymmetric encryption | |||
- digital signatures | |||
- hash functions | |||
- certificates & trust anchors | |||
Session 3-4 | Cryptography Applications / PGP | ||
- gpg | 1-3-1 PGP | ||
- PGP Lab | 1-3-2 PGP Lab | ||
Day 2 | |||
Session 1 | Cryptography Applications | ||
- ssh | randy | 2-1-1 SSH | |
Session 2 | Cryptography Applications | ||
- VPNs, IPsec | 2-2-1 VPN IPsec | ||
- TLS/SSL | 2-2-2.ssl.pdf | ||
Session 3 | OpenVPN & pfSense | randy | 2-3-1 OpenVPN |
Wireshark | Wireshark | ||
Session 4 | Network Infrastructure | ||
- router and switch protection | randy | 2-4-2 Routers & Switchs | |
- filtering at the border | 2-1-2 Filtering at Border | ||
- configuration & archiving | randy | 2-4-4 Archiving | |
Day 3 | |||
Session 1 | Network Infrastructure | 3-1-1 Routing Protocols | |
- Routing Protocol Protection | randy | 3-1-2 RPKI-Lab | |
Session 2 | Topic description | ||
- Sick Host Detection | 3-2-1 Sick Hosts | ||
- Logging and Monitoring | maz | 3-1-2 Logging-monitoring | |
- anomaly detection | maz | 3-1-5 Anomalies | |
- firewalls | maz | 3-1-6 Firewalls | |
Session 3 | IDS | ||
- IDS pragmatics - snort | 2-3-4.snort | ||
- IDS pragmatics - snort-lab | 2-3-4.snort-lab | ||
Session 4 | DNS | ||
- DNS: auth, slave, cache | 3-4-1 Securing DNS | ||
- DNS Server Protection | 3-4-2 DNSSEC | ||
- Providing DNSsec / DNSsec Validation | 3-4-3 OpenDNSSEC | ||
- DNS Rate Limiting | maz | 3.4.2 DNS Rate Limiting | |
Day 4 | |||
Session 1 | Protecting Hosts from Net | 3-3-1 Hosts | |
- Host hardening | |||
- Default Services | |||
- Keeping up to date - patching | |||
- Get Patches from the Source | |||
- Mobile Hosts | 4-1-5 Mobile Node Security | ||
- Backup! | |||
- Authentication Credentials | |||
- Authentication Services | |||
- Host-based Firewalls | |||
- Scanning for Diseases | |||
Session 2 | Virus, Mail and Browsing | ||
- Anti-virus | maz | 4-1-1 Anti-virus | |
- Safe Mail Practices | maz | 4-2-3 Safer Mail | |
- Safe Browsing Practices | maz | 4-2-3 Safer browsing | |
Session 3 | Inter-Host Protocols | ||
- personal encryption of files | 4-3-1 File encryption | ||
- sftp, ... | 4-3-2 sftp & scp | ||
- Covert Channels, VPNS, TOR, Steganography | 4-3-3 Covert Channels | ||
Day 5 | |||
Session 1 | Plan in Advance | ||
- Host Forensics & Analysis | everyone | 5-1-1 FreeBSD hack | |
- Network Forensics & Analysis | maz | 5-1-2 Network Forensics | |
- Incident Reporting and Pre-approvals | 5-1-3 Incident Reporting | ||
- Post Mortem | maz | ||
- Wipe, Recover, Replace | maz | 5-1-4 Wipe-etc | |
... Archives and Remote Fallback | |||
Session 2 | Inter-Network Cooeperation | maz | |
- NOGs, CSIRT | 5-2-1 | ||
- Security Communities | 5-2-2 Security Communities | ||
People | |||
Session 3 | Dealing with LEO | maz | 5-3-2 Leo |
Planning for the Future | |||
Session 4 | Open | ||
Support docs | Editors, SSH, ... | ||
Last modified 6 years ago
Last modified on Oct 19, 2015, 5:14:18 AM
Attachments (42)
- 1-4-3.pgp.pdf (220.6 KB) - added by 7 years ago.
- 2-2-3.SSL-Lab.pdf (448.8 KB) - added by 7 years ago.
- 2-3-1.rtrs-switches.pdf (319.5 KB) - added by 7 years ago.
- 2-3-2.Filtering-at-border.pdf (1.5 MB) - added by 7 years ago.
- 2-3-3.archiving.pdf (433.6 KB) - added by 7 years ago.
- 2-2-2.ssl.pdf (1.3 MB) - added by 7 years ago.
- 2-2-1.VPN-IPsec.pdf (692.3 KB) - added by 7 years ago.
- 2-2-2.ssl.2.pdf (1.3 MB) - added by 7 years ago.
- 2-3-1.logging-monitoring.pdf (1.7 MB) - added by 7 years ago.
- 3-1-5.anomaly.pptx (304.4 KB) - added by 7 years ago.
- 3-1-6.firewalls.pptx (314.9 KB) - added by 7 years ago.
- 4-1-1.anti-virus.pptx (984.8 KB) - added by 7 years ago.
- 4-1-5.wipe-etc.pptx (575.6 KB) - added by 7 years ago.
- 4-2.inter-network-cooperation.pptx (2.3 MB) - added by 7 years ago.
- 4-4-2.leo.pptx (66.9 KB) - added by 7 years ago.
- 2-1-1.pgp-lab.2.pdf (1.9 MB) - added by 7 years ago.
- 2-1-1.pgp-lab.pdf (1.9 MB) - added by 7 years ago.
-
1-0-1.intro.pdf (115.9 KB) - added by 7 years ago.
1-0-1.intro
-
2-1-1.ssh.pdf (1.1 MB) - added by 7 years ago.
2-1-1.ssh
-
2-3-1.openvpn.pdf (1.2 MB) - added by 7 years ago.
2-3-1.openvpn
-
2-4-2.rtrs-switches.pdf (186.0 KB) - added by 7 years ago.
2-4-2.rtrs-switches
-
2-4-4.archiving.pdf (424.6 KB) - added by 7 years ago.
2-4-4.archiving
-
3-1-1.routing-protocols.pdf (3.2 MB) - added by 7 years ago.
3-1-1.routing-protocols
-
3.4.2.dns-rate-limit.pdf (381.7 KB) - added by 7 years ago.
3-4-2.dns-rate-limit
-
4-2-3.safer-mail.pdf (482.6 KB) - added by 7 years ago.
4-2-3.safer-mail
-
4-2-4.safer-browsing.pdf (2.2 MB) - added by 7 years ago.
4-3-4.safer-browsing
-
3-1-2.RPKI-Lab.pdf (1.4 MB) - added by 7 years ago.
3-1-2.RPKI-Lab
-
4-3-3.scp+sftp.pdf (253.2 KB) - added by 7 years ago.
4-3-3.scp+sftp
- 1-1-1.Assets-Threats.pdf (781.8 KB) - added by 7 years ago.
- 1-1-2.Threat-Models.pdf (2.1 MB) - added by 7 years ago.
- 1-2-1.Crypto-Review.pdf (938.1 KB) - added by 7 years ago.
- 3-2-1.sick-hosts.pdf (1.8 MB) - added by 6 years ago.
- 3-4-1.Securing-DNS.pdf (1.4 MB) - added by 6 years ago.
- 4-3-3.Covert_Channels.pdf (2.0 MB) - added by 6 years ago.
- 2-2-1.VPN_IPsec_TLS.pdf (1.4 MB) - added by 6 years ago.
- 5-1-3.IncidentReporting.pdf (129.1 KB) - added by 6 years ago.
- 1-3-1.PGP.pdf (956.8 KB) - added by 6 years ago.
- 2-3-3.snort.pdf (1.1 MB) - added by 6 years ago.
- 2-3-4.snort-lab.pdf (94.3 KB) - added by 6 years ago.
- 3-1-3.hosts.pdf (2.4 MB) - added by 6 years ago.
- 4.Wireshark.pdf (1.1 MB) - added by 6 years ago.
-
WiresharkExerciseData.zip (3.7 MB) - added by 6 years ago.
pcap files for wireshark lab