T353: Network Security: Practical Approaches from the Front Lines.

Instructor(s): Jeffrey Schiller - Massachusetts Institute of Technology

Description:
Overview Today's networks require production-quality security. Gone are the days of "friendly" research networks where everyone can be trusted. Building a secure network requires an understanding of real-world network security issues. Available tools include Kerberos, cryptography, firewalls and other security techniques. This course is designed to teach the basics of network security, the problems that we all face in building secure networks, and practical solutions that do exist for many common problems. We will go into detail about MIT's Kerberos authentication system. The fundamentals learned there are applicable to newer systems such as systems based on X.509 certificates, which are gaining in popularity. We'll go over the Secure Sockets Layer (SSL) which is used to secure Web transactions with both the Netscape and Internet Explorer browsers. E-mail solutions such as PGP will be discussed as well.

Who Should Attend

• Technical and network managers
• Software engineers

• Kerberos: Secure authentication across an open network
• The role of cryptography, DES and RSA public key cryptography
• Firewalls: How to keep the good in and the bad out
• Pretty Good Privacy (PGP) and other file and e-mail based solutions
• X.509: Where the OSI model leads
• Commercial efforts, PKCS and security in groupware
• SSL The Secure Sockets Layer (used by Microsoft and Netscape in their browsers)
• SSH The Secure "Shell"
• Case studies: Major security incidents on the Internet, how they could have been avoided and what you can do to prevent your organization from being the next victim

This page has been accessed times since April 18, 2001.