TDDD17 Information Security, Second Course
There are two mandatory labs in the course.
The rules are as follows:
- The hard hand-in deadline for labs is March 11 (at 23:59). No lab reports, additions, modifications or corrections will be accepted after this deadline. You should hand in your lab reports well before this deadline so that you have time to correct any minor problems there may be in the reports.
- Both labs have soft deadlines (see below). If you hand in passing solutions to both labs before the respective soft deadlines, you will earn 2 bonus points on the exam. Note that you must have handed in the passing version of the lab before the deadline. If you hand in very close to the deadline, you may not have time to resubmit in case a revision is needed.
- Bonus points are valid for all three exam occasions during 2016.
If you want to do the labs you must register in Webreg. The deadline for lab registration is January 29.
Each lab will take two or three sessions to finish, but some of you may need extra time, so use the time well. Note that there will not be a supervisor available on all lab sessions.
You must work in pairs of two on the labs.
Note: Four lab sessions will be supervised. The rest of the time you will work on your own (in pairs).
Both labs are supervised by Johannes Schmidt.
|Mon||1/2||15-17||SU00/SU01||Lab 1 - Firewall: Supervised by Johannes Schmidt.|
|Mon||8/2||15-17||SU00/SU01||Lab 1 - Firewall: Supervised by Johannes Schmidt.|
|Tue||16/2||8-10||SU00/SU01||Lab 1 - Firewall: Unsupervised.|
|Fri||19/2||10-12||SU00/SU01||Lab 2 - Snort: Supervised by Johannes Schmidt.|
|Tue||23/2||8-10||SU00/SU01||Lab 2 - Snort: Unsupervised.|
|Mon||29/2||15-17||SU00/SU01||Lab 2 - Snort: Supervised by Johannes Schmidt.|
In this lab you will set up a Linux-based system as a firewall, according to a network security policy provided to you. The implementation will be done using a virtual Linux network designed to mimic a fairly typical corporate network scenario.
Practical information: You will be located in the SU-rooms or somewhere else and work remotely on a server named Marsix to which you connect by following the lab instructions. During setup you will be asked to provide a group number. Use your Webreg group number (found in the leftmost column when you register in Webreg). Note that it is very important to use the correct group number to avoid network conflicts with other groups.Quick guide to Linux/mln/XServer: tddd17-mln-guide.pdf. This short manual contains solutions to common problems with the virtual machines, an introduction to Linux commands and some advice to you who want to do your labs from a Windows machine.
Goals of this lab:
- Get hands-on experience implementing a network security policy
- Get hands-on experience testing a firewall
Prerequisites: This lab assumes that you know how to use a Unix-like operating system from the command line, and that you know the TCP/IP protocols.
Lab instructions: tddd17-FW-lab.pdf
Soft deadline: 23/2 at 23:59
In this lab you will set up a network intrusion detection system (NIDS) for a small network. You will be working with the open-source NIDS Snort, and get practical experience on writing rules to detect attacks.
Practical information: Same as the firewall lab.
Goals of this lab:
- Get hands-on experience with writing simple NIDS rules.
Prerequisites: Same as the firewall lab.
Lab instructions: tddd17-SNORT-lab.pdf
Soft deadline: 7/3 at 23:59
Hand in the answers to the questions in the lab instructions to Johannes Schmidt via e-mail and in a signed lab envelope.
Page responsible: Nahid Shahmehri
Last updated: 2016-01-21