0% found this document useful (0 votes)

316 views

Chapter 1 Security Engineering TUM

- This document outlines the syllabus for the course "IN2178 – Security Engineering" taught by Professor Alexander Pretschner in the summer semester of 2017. - The course will cover topics related to security engineering including confidentiality, integrity, availability and other security properties. It will discuss challenges in security including vulnerabilities, threats, and privacy issues. - The course will be organized with lectures on Mondays and exercises on Thursdays, with an exam at the end. It will provide an introduction to the field of security engineering and how it relates to software engineering.

Uploaded by

Yesika Ramirez

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

316 views

Chapter 1 Security Engineering TUM

Uploaded by

Yesika Ramirez

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 57

IN2178 Security Engineering

Prof. Alexander Pretschner

LS XXII Chair for Software Engineering
SoSe 2017
IN2178 Security Engineering
1 Introduction

Prof. Alexander Pretschner

LS XXII Chair for Software Engineering
SoSe 2017
I22: Software Engineering
Headed by Prof. Alexander Pretschner

Research focus: Accountability, Testing, Software Protection, Security.

Teaching:

https://www22.in.tum.de/lehre/

Numerous projects in information securitytalk to us!

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 3

Instructors
Lectures:

Prof. Alexander Pretschner, [email protected]

Sprechstunde Friday 1pm (please make an appointment with Frau
Fichtl)

Exercises:

Alei Salem, [email protected]

Lecture material available on moodle.

News and course information are also posted on moodle.

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 4

Organization
Lectures in Interimhrsaal 1 on Mondays from 12:15 13:45.

Exercises in Interimhrsaal 2 on Thursdays from 16:15 17:45.

Examination: written exam.

Ask questions! Language egal!

You receive exercises on Thursday, solutions discussed the following

week.

We cannot force you to do the exercises. However, they will prepare you
for the exam (and hopefully you will learn a lot by doing them).

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 5

Scheduling Issues
Holidays:

Monday, May 1st, 2017: May 1st

THEREFORE: Extra class in IHS 2 on April 27th@1615.
Thursday, May 25th 2017: Ascension Day
Monday, June 5th, 2017: Whit Monday
Thursday, June 15th, 2017: Corpus Christi

Check the moodle page/email for any change in the schedule.

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 6

Overview of todays lecture
What is security?

What is security engineering?

Overview of the class.

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 7

Goal of todays lecture
Get a deeper understanding of what security engineering is all about.

Understand what makes it so difficult.

See how security relates to other SW engineering activities.

Get an idea of what we will learn.

Come back next week!

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 8

Security Properties: CIA
Confidentiality
Can non-authorized parties see data?

Integrity
Has data been altered (and I should know this)?

Availability
Is data always accessible?

of data, and then of the systems that process data (including humans).
This distinction is nice, but in practice not clear-cut

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 9

More Security Properties
Non-repudiation
Impossibility to inappropriately deny a transaction or having sent a
message.
Auditability
Ability to reconstruct (certain aspects of) earlier states of a system
Accountability
Ability to hold an entity responsible for its actions. This is related to
non-repudiation and auditability
Privacy
No clear definition. Refers to security of personal information. Privacy
means that a person has appropriate control over which information
on him or her is generated, stored, processed, and deleted, and by
whom.
Anonymity
The identity of an entity is hidden; an aspect of privacy

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 10

Does it matter?
Private data
Medical records
Loyalty cards
Mobile telephone data including location
Commercial data
DRM
IP in distributed business processes
Government data
Military data
Intelligence

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 11

Relevance and Challenges
New security-sensitive applications
eVoting, car2car communication, internet banking and payment, DRM,

Security technologies are enablers and drivers
Fight against
Vulnerabilities, vulnerabilities, vulnerabilities, ....
Increasing threats and potential damages
Potential cyber crime, hooliganism, terrorism
National interests and secret services
Privacy issues
Lack of standards; lack of products/solutions
Lack of understanding

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 12

Relevance: Known incidents/vulnerabilities
We have seen all kinds of attacks and serious vulnerabilities in the wild,
increasingly over the years! Think of:

Shellshock: late 2014.

Heartbleed 2014: 60% of the internet under threat!!
NSA 2013: E. Snowden revealed espionage on citizens and governments
Sony 2011: Playstation network, private data of millions of user stolen
Stuxnet 2010: Attack to particular critical infrastructure using Siemens PLCs
Political statements constantly made by Anonymous:
DoS against commercial banking and governmental sites
Zeus malware: world-scale cyber-crime operation
Etc..

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 13

Yet ...
Do we really want security?
Makes systems hard or slow to use (and hence is circumvented)
How much is it, and who pays?
Whats the risk, really?

Is security a subproblem of risk analysis?

Different kinds of systems: your website, the universitys student records,
fresh water supply IT, weapons

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 14

Yet...
Do we really want privacy?
Trade-off with users liberties
Waive privacy for a cheese burger?
Do you use facebook?
I have nothing to hide
Whats the risk, really?

Trade-off between interests of individuals and society

Terrorism
Who pays for privacy?

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 15

What to do?
Technically
Software and Systems Engineering
Cryptography
Physical at macro-level: access to buildings, secured areas (like computer
centers), shielding against electromagnetic radiation, etc.
Physical at micro-level: e.g. tamper-resistant devices, smart-cards
Biometric technology
Processor technology
Language security
Operating system security
Organizationally
Security policies, classification of information, defining responsibilities, etc.
People-related
Selection, motivation, education, etc.
Legally
Liability regulations, insurances, etc.

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 16

Humans in the loop
Social Engineering
Dont hack system; hack people

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 17

Humans in the loop
Social Engineering
Dont hack system; hack people
Impersonating IT staff
Playing on users' sympathy
Using intimidation tactics
Shoulder surfing

On a broad scale (internet banking data), and for single companies:

spear phishing

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 18

...and system vulnerabilities
Password Management Flaws
Weak passwords
Passwords easily accesible
Heavy re-use of passwords
Fundamental Operating System Design Flaws
Default permit policies
Race conditions
Software Bugs
Security holes as consequence of flawed design or implementation
Unchecked User Input
Buffer overflow attacks
SQL injections
Badly set-up and managed IT infrastructures that combine the above

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 19

OWASP Top 10 Vulnerabilities 2013

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 20

OWASP Top 10 Vulnerabilities 2013

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 21

Vulnerabilities over the years

https://web.nvd.nist.gov/view/vuln/statistics
Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 22
Security Engineering
Security Engineering = Software Engineering + Information Security
Software Engineering is the application of systematic, quantifiable
approaches to the development, operation, and maintenance of software;
i.e., the application of engineering to software.
Information Security focuses on methods and technologies to reduce risks
to Information Assets.
More refined (adopted from Anderson, Security Engineering)
Security Engineering is about building systems that remain
dependable in the face of malice, error, or mischance. As a discipline,
it focuses on the tools, processes, and methods needed to design,
implement, test, and evolve systems.
Security Engineering is not a mature discipline yet!

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 23

Security Engineering and Complexity

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 24

How to build a secure system?
Secure Development Lifecycles (SDL)

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 25

Touchpoints McGraw

Source: Gary McGraw, Software Security

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 26

Microsoft SDL

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 27

Agile?
Well have to discuss this!

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 28

Security and safety?
Safety considered in the realm of traditional software engineering
=> Goal is to avoid harm of people and infrastructures.

Is there anything special about security?

Safety: Is about the system doing harm to its environment.

Failures materialize as a consequence of normal and abnormal
operations that are potentially stochastic processes.

Security: Is about the environment doing harm to the system.

Failures materialize as a consequence of a malicious entity whose main
objective is to trigger the failure, or as a consequence of humans making
mistakes.

Is this a fundamental difference?

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 30
Safety and Security Fundamentally Different?
Many think so. I dont. One conjecture (to be proved or disproved) is that a
community of hackers can be modeled as a stochastic process, too. And I
believe that security fundamentally is a subdiscipline of risk analysis. There
is no 100% security.

That is, that there can be insurances for computer security: insurances
are based on probabilities and expected losses (see insurances for
physical safes)

See the plethora of incident lists that classify vulnerabilities and sometimes
their occurrences (www.cert.org, www.osvdb.org, http://nvd.nist.gov )

Well learn about the detection of vulnerabilities (and countermeasures

against respective threats) in this class

We will also introduce/recall aspects from classical safety and discuss their
relation to the security of distributed systems.
Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 31
Safety and Security
Yet, even if there might not be a fundamental difference, there is a lot of
domain knowledge to be gained
writing code for a washing machine also is not fundamentally different
from writing code for an autopilot or a tax report software or a spreadsheet
But experience matters

Will security one day become a quantitative science?

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 32

Overview of the entire class
Security Requirements
Security Requirements
Threat modeling
Security Design
Security Design Principles
Access and Usage Control
(Advanced) Cryptographic schemes/technologies
Privacy enhancing technologies
Security vs. Usability
Secure Implementation and Software Protection
Implementation Issues
Software Protection
Security Testing
Non-interference and information slow
Static and dynamic analysis and testing
Risk Analysis
Evaluation Criteria: The Common Criteria

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 33

Overview of the entire class (caveat!)

Fundamentals of Information Security

Requirements Eng.

Design

Implementation

V&V

Op&Maintenance

Risk Assessment and Management

Evaluation Criteria

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 34

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 35

Security Requirements; Design
Misuse cases and attack trees; comparison with classical
analysis techniques from safety analysis
Software Design
Patterns such as Policy Enforcement Points/Policy Decision
Points; Security Monitors
Systems Design
Patterns such as demilitarized zones; Security Monitors

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 36

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 37

Access and Usage Control
Govern access to and usage of data
Authentication, authorization, audit
Discretionary access control, mandatory access control
Conceptually and technically:
models, architectures, hardware
Multilevel security
Bell LaPadula: no read-up; no write-down
(integrity and confidentiality)
Biba (integrity only) Windows Vista
Multilateral security: Chinese Wall Policies

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 38

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 39

Time permitting
Block chains
Bitcoin

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 40

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 41

Privacy

Are there friends around me?

(Location-based services, FourSquare, Tinder).

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 42

Privacy

D Obvious solution:

Send both
coordinates to
trusted central server
and let decide

What about privacy?

Can we do better?

Are there friends around me?

(Location-based services, FourSquare, Tinder).

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 43

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 44

Implementation-level Security
SQL injections
SELECT fieldlist FROM table WHERE field = '$EMAIL';
Set $EMAIL = anything' OR 'x'='x
which yields
SELECT fieldlist FROM table WHERE field = ' anything' OR 'x'='x ';
Cross-site scripting
Buffer-overflow attacks
Overwrite return addresses

How to implement software protection? (i.e. DRM)

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 45

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 46

Information Flow
A priest is new in town. His first confessor is a murderer. At a
party, the priest meets Bob and tells him that, what a city, his first
confessor was a murderer. Bob later meets Charlie, and Charlie
tells him that he really likes the priest, and that he was the first to
confess with him.
What is information flow?
Explicit flow: data flow
Implicit flow: branching over secrets
Covert channels
Heat, CPU cycles consumed, time,
Will formalize and apply this notion:
the models of Goguen-Meseguer and Rushby

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 47

Information Flow II: Explicit Flow

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 48

Implicit Information Flow

cond1 |isrich

cond1 |taxdisc

monitor also untaken branch!

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 49

Security Testing
Vulnerability scanners
Constructing test cases for web apps
OWASP testing guide
Security reviews for systems and code

http://www.owasp.org/index.php/Category:OWASP_Project

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 50

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 51

Risk Analysis and Assessment
100% security is
Unrealistic (nothing is 100% in life)
Too expensive
How safe is a (physical) safe?
How can we prioritize security goals and countermeasures
so that we get just right security?
And does this really make sense?
Can we re-use knowledge on prior system analyses to
analyze our own system?
Vulnerability catalogs
BSI baseline protection

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 52

What we want you to learn
Get the fundamental concepts of information security.

Know about the fundamental security problems at different stages of the

software engineering lifecycle.

Be able to embed security within your systems from early stages of

design/development.

Understand theres more than

1: code
2: improve and fix
3: goto 1

Know about the most common technologies, tools, catalogs, information

resources to help build secure, dependable systems.

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 53

What we want you to learn
Moreover we encourage you to think critically.

Come to the lecture and participate.

Go to tutorials and discuss.

Feel free to challenge what we say.

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 54

Want to focus more on ... ?
Cryptography (i7) Prof. Esparza Cryptography (WiSe)

Network Security (i8) Prof. Carle Network Security (WiSe)

P2P Systems (i8) Prof. Carle Peer-to-Peer Systems and Security

(SoSe)

Security in mobile systems (i20) Prof. Eckert Sichere Mobile

Systeme (SoSe) auf Deutsch

Different Topics in IT Security (i20) Prof. Eckert IT Sicherheit (WiSe)

auf Deutsch

Hands-on hacking experience Various labs/seminars at the TUM

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 55

Security at i22
We are also passionate about security:

Secure coding, Android security, software integrity

protection, security testing,

Check our website: www22.in.tum.de

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 56

Conclusions
Security is about protecting C-I-A (and NR)
Sometimes nasty, but an indispensable enabler and driver
Software Engineering is about building, maintaining, and managing
huge software systems
Security Engineering combines both
In this class, well look into
Fundamentals of information security
Security flaws and countermeasures during different activities of the
software development process
See you next week!

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 57

Literature

Ross Anderson, Security Engineering, 2nd ed. Wiley, 2008

A recommended source for everybody:

http://www.cl.cam.ac.uk/~rja14/book.html

Prof. Alexander Pretschner (I22) | Security Engineering | SoSe 2017 58

Security+ Cram Sheet
83% (24)
Security+ Cram Sheet
2 pages
OWASP Juice shop Vulnerability review
No ratings yet
OWASP Juice shop Vulnerability review
18 pages
AVIOBOOK Server Setting User Guide
No ratings yet
AVIOBOOK Server Setting User Guide
2 pages
Docs Securityonion Net en 2.3
No ratings yet
Docs Securityonion Net en 2.3
373 pages
Ahmed Elgendy Flutter Developer CV
No ratings yet
Ahmed Elgendy Flutter Developer CV
2 pages
SimpleRisk WAMP Installation Guide W8 - 10
No ratings yet
SimpleRisk WAMP Installation Guide W8 - 10
14 pages
Project Report Antivirus Word Document
No ratings yet
Project Report Antivirus Word Document
6 pages
Invitation To Attend Cyber Security Training in Naivasha Organised by Jkuat
No ratings yet
Invitation To Attend Cyber Security Training in Naivasha Organised by Jkuat
2 pages
1.0.1.2 Class Activity - Top Hacker Shows Us How It Is Done
No ratings yet
1.0.1.2 Class Activity - Top Hacker Shows Us How It Is Done
1 page
CISSP Aide Memoire e v52
No ratings yet
CISSP Aide Memoire e v52
11 pages
Owasp Report
No ratings yet
Owasp Report
10 pages
Bsi Trainingcatalogueindonesia 2022 Rev1
No ratings yet
Bsi Trainingcatalogueindonesia 2022 Rev1
70 pages
Is Question N Answer
100% (9)
Is Question N Answer
83 pages
Mcafee Web Gateway: Method of Procedure
No ratings yet
Mcafee Web Gateway: Method of Procedure
8 pages
What Are The Advantages of Address Translation Techniques Included? (Multiple Choice)
No ratings yet
What Are The Advantages of Address Translation Techniques Included? (Multiple Choice)
46 pages
PaloAlto ACE Mock
No ratings yet
PaloAlto ACE Mock
43 pages
Cyber Security
No ratings yet
Cyber Security
14 pages
Fail 2 Ban
No ratings yet
Fail 2 Ban
29 pages
Windows Server 2012 R2 Evaluation Guide
100% (2)
Windows Server 2012 R2 Evaluation Guide
110 pages
1.1.3.4 Lab - Visualizing The Black Hats
No ratings yet
1.1.3.4 Lab - Visualizing The Black Hats
3 pages
Rbac-Dac Rbac98
No ratings yet
Rbac-Dac Rbac98
26 pages
Towards Post-Quantum Blockchain A Review On Blockchain Cryptography Resistant To Quantum Computing Attacks
No ratings yet
Towards Post-Quantum Blockchain A Review On Blockchain Cryptography Resistant To Quantum Computing Attacks
26 pages
012 Exploiting Echo Server v3 Part 2
No ratings yet
012 Exploiting Echo Server v3 Part 2
5 pages
Fortigate 100f Series
No ratings yet
Fortigate 100f Series
6 pages
Testing Guide
No ratings yet
Testing Guide
573 pages
Docs Securityonion Net en 2.3
No ratings yet
Docs Securityonion Net en 2.3
351 pages
Identity and Access Management Reference Architecture For Cloud Computing
No ratings yet
Identity and Access Management Reference Architecture For Cloud Computing
26 pages
CIS-RAM-Version - 1 0 A PDF
No ratings yet
CIS-RAM-Version - 1 0 A PDF
154 pages
Serever Disaster Recovery
No ratings yet
Serever Disaster Recovery
13 pages
Unit 2 - Java Naming and Directory Interface
No ratings yet
Unit 2 - Java Naming and Directory Interface
19 pages
Executive Certificate Program in Cybersecurity
No ratings yet
Executive Certificate Program in Cybersecurity
25 pages
Rapport Pentesting
No ratings yet
Rapport Pentesting
21 pages
Comparateur 1bit Structurelle
No ratings yet
Comparateur 1bit Structurelle
5 pages
Microsoft: Exam Questions SC-900
No ratings yet
Microsoft: Exam Questions SC-900
9 pages
Csirt Services: Service Categories
No ratings yet
Csirt Services: Service Categories
12 pages
CCNA3 Exam
No ratings yet
CCNA3 Exam
152 pages
11-Module 2 - Different Types of Information Security Devices - Functions, Technical, Configuration Spec-24!02!2024
100% (1)
11-Module 2 - Different Types of Information Security Devices - Functions, Technical, Configuration Spec-24!02!2024
22 pages
Cyber Security Report
No ratings yet
Cyber Security Report
36 pages
Cyber Security PPT Template - Creative
No ratings yet
Cyber Security PPT Template - Creative
10 pages
Netfilter Tutorial
No ratings yet
Netfilter Tutorial
5 pages
Nottingham Trent University Course Specification
No ratings yet
Nottingham Trent University Course Specification
8 pages
Eap Auth Protocols Leap Eap Peap1
No ratings yet
Eap Auth Protocols Leap Eap Peap1
4 pages
Complete Ethicacl Hacking Course
No ratings yet
Complete Ethicacl Hacking Course
2 pages
1.1.6 Lab - Cybersecurity Case Studies
No ratings yet
1.1.6 Lab - Cybersecurity Case Studies
2 pages
Alien Vault Datasheet ICS SIEM
No ratings yet
Alien Vault Datasheet ICS SIEM
2 pages
Hs Security Solutions Booklet Layout Web
No ratings yet
Hs Security Solutions Booklet Layout Web
24 pages
Securing SCADA-based Critical Infrastructures
No ratings yet
Securing SCADA-based Critical Infrastructures
7 pages
1.3.4 Lab Visualizing The Black Hats
No ratings yet
1.3.4 Lab Visualizing The Black Hats
4 pages
The Cybersecurity Pre-Breach Playbook - Building A Defensible Cybersecurity Posture (PDFDrive)
No ratings yet
The Cybersecurity Pre-Breach Playbook - Building A Defensible Cybersecurity Posture (PDFDrive)
138 pages
4 - DPSec A Blockchain-Based Data Plane Authentication Protocol For SDNs - 2020 Ieeexplore
No ratings yet
4 - DPSec A Blockchain-Based Data Plane Authentication Protocol For SDNs - 2020 Ieeexplore
8 pages
JNDI
No ratings yet
JNDI
27 pages
Vanet
No ratings yet
Vanet
26 pages
OSSEC HIDS Agent Installation: 1. Download The Latest Version and Verify Its Checksum
100% (1)
OSSEC HIDS Agent Installation: 1. Download The Latest Version and Verify Its Checksum
6 pages
CNS C 1
100% (1)
CNS C 1
23 pages
Mémoire Master Berenger-BENAM OUEDANE EC2LT
No ratings yet
Mémoire Master Berenger-BENAM OUEDANE EC2LT
160 pages
Security Architecture Third Edition
From Everand
Security Architecture Third Edition
Gerardus Blokdyk
No ratings yet
Critical infrastructure protection Complete Self-Assessment Guide
From Everand
Critical infrastructure protection Complete Self-Assessment Guide
Gerardus Blokdyk
No ratings yet
CS475: Lecture 1 Computer and Network Security: Rachel Greenstadt March 31, 2015
No ratings yet
CS475: Lecture 1 Computer and Network Security: Rachel Greenstadt March 31, 2015
54 pages
1 Introduction PDF
No ratings yet
1 Introduction PDF
59 pages
SoftSec 01 Intro
No ratings yet
SoftSec 01 Intro
45 pages
Introductory Computer Security: CS461/ECE422 Fall 2010 Susan Hinrichs
No ratings yet
Introductory Computer Security: CS461/ECE422 Fall 2010 Susan Hinrichs
27 pages
Lect 01
No ratings yet
Lect 01
16 pages
Security Requirements Engineering Designing Secure Socio Technical Systems Dalpiaz - The ebook is now available, just one click to start reading
100% (3)
Security Requirements Engineering Designing Secure Socio Technical Systems Dalpiaz - The ebook is now available, just one click to start reading
74 pages
Overview of Computer Security
100% (2)
Overview of Computer Security
21 pages
4) AES Algorithm and Block Cipher Modes of Operations
No ratings yet
4) AES Algorithm and Block Cipher Modes of Operations
40 pages
Cyb201 Lecture Note
No ratings yet
Cyb201 Lecture Note
28 pages
M.C.a. (Sem - IV) Paper - III - Network Security
No ratings yet
M.C.a. (Sem - IV) Paper - III - Network Security
197 pages
The Evolution of Cybersecurity-SandBox
No ratings yet
The Evolution of Cybersecurity-SandBox
4 pages
Cyber Crime, Cyber Security in India: Mohammed Amjadh A S
No ratings yet
Cyber Crime, Cyber Security in India: Mohammed Amjadh A S
16 pages
Encryption and Decryption - 1
No ratings yet
Encryption and Decryption - 1
14 pages
Aadhaar Card Nilesh
No ratings yet
Aadhaar Card Nilesh
1 page
Anti-Emulation Through TimeLock Puzzles
No ratings yet
Anti-Emulation Through TimeLock Puzzles
10 pages
Cyber Security for IBM Power Level 2 Quiz Attempt Review
No ratings yet
Cyber Security for IBM Power Level 2 Quiz Attempt Review
9 pages
Ebte 08ss Digital Certificates Vivek Kumar PDF
No ratings yet
Ebte 08ss Digital Certificates Vivek Kumar PDF
17 pages
Webt Casestudy
No ratings yet
Webt Casestudy
5 pages
Mikrotik As Hotspot and RADIUS Server PDF
No ratings yet
Mikrotik As Hotspot and RADIUS Server PDF
3 pages
Fundamental Questions and Answers For Cissp Examination
No ratings yet
Fundamental Questions and Answers For Cissp Examination
14 pages
NIS Microproject
No ratings yet
NIS Microproject
14 pages
Star Cyber Secure User
No ratings yet
Star Cyber Secure User
10 pages
PenTest 04 - 2015
100% (13)
PenTest 04 - 2015
99 pages
Embedded System Term Paper
No ratings yet
Embedded System Term Paper
2 pages
IBM Security Products
No ratings yet
IBM Security Products
2 pages
Test FCCH
No ratings yet
Test FCCH
12 pages
Syllabus For Cybersecurity and Ethical Hacking Course
100% (1)
Syllabus For Cybersecurity and Ethical Hacking Course
8 pages
SAML
No ratings yet
SAML
3 pages
Basic Digital Security Tips & Advices
No ratings yet
Basic Digital Security Tips & Advices
2 pages
Redhat Openshift Security Guide PDF
100% (1)
Redhat Openshift Security Guide PDF
313 pages
Certified List of Candidates: Bataan - Pilar Bataan - Pilar
No ratings yet
Certified List of Candidates: Bataan - Pilar Bataan - Pilar
2 pages
2.what Is LDAP Authentication
No ratings yet
2.what Is LDAP Authentication
2 pages
5 Smime
No ratings yet
5 Smime
10 pages