Details

Lecture contents

In this lecture basic principles of cryptography such as symmetric and asymmetric encryption as well as data security will be discussed. The main topics are for example the process of encryption and decryption of data, digital signatures, general cryptographic protocols and the practical field of operation of these mechanisms. Current approaches like elliptic curves are also dealt with. In addition to the related key management aspects like the comprehensive security infrastructure will be addressed. Tangible examples of use are shown for illustration and for getting familiar with the functionality.

Assessment methods

Final written exam

Teaching methods

Presentation with slides and video projector, additional explanations on the whiteboard

Language

German

Lecture contents

In this lecture basic principles of cryptography such as symmetric and asymmetric encryption as well as data security will be discussed. The main topics are for example the process of encryption and decryption of data, digital signatures, general cryptographic protocols and the practical field of operation of these mechanisms. Current approaches like elliptic curves are also dealt with. In addition to the related key management aspects like the comprehensive security infrastructure will be addressed. Tangible examples of use are shown for illustration and for getting familiar with the functionality.
In the tutorial the students have the possibility to practise the formerly presented approaches, getting more familiar with them. Approaches of possible cryptanalysis will also be discussed.

Assessment methods

continous examination

Teaching methods

Presentation, discussion and solving problems

Language

German

Lecture contents

The course gives a broad view across the possibilites of cryptographic methods in a typical workday, especially those of a SysAdmin. For alll topics, the theoretic background is presented alongside the practical usage implications.

The covered topics are:

* Hard disk encryption
* Passwords
* SSH & Network tunneling
* E-mail security
* Public Key Infrastructure

Assessment methods

Exercices and a final exam

Teaching methods

Theoretical lectures and individual tasks for all subjects

Language

German

Lecture contents

- Overview of Threats
- Firewalls (stateless/stateful)
- Intrusion Detection and Prevention
- IPsec-based VPNs
- Overview over SSL and TLS and other VPN-Technologien (L2TP, PPTP, MPLS)
- Advanced Persistent Thretas
- Expert Talks

Assessment methods

Written final Exam

Teaching methods

Lecture with slides, whiteboard and external expert speeches
Lab Exercises

Language

German

Lecture contents

* Versioncontrol
* Test Driven Development
* Web Application Security
* Security errors
* Tool for software analysis

Assessment methods

* Final exam
* Grading of the presentations

Teaching methods

* Lessons
* Presentations by student groups

Lecture contents

This course covers the differences between the „textbook” and the “real-world” implementations of cryptographic algorithms. Symmetric techniques like DES and especially AES with its most important variations are dealt with in detail, as well as padding techniques and selected parts from the PKCS. These topics are supplemented with a basic introduction to the efficient implementation of long integer arithmetic.

Assessment methods

Written elaboration of selected lecture contents
Presentation
Written examination

Teaching methods

Presentation with slides and video projector

Language

German

Lecture contents

This lecture gives an overview of many different cryptographic protocols, possible usage scenarios and their peculiarities. The students implement selected protocols from a given domain, compare them to each other and present the results.

The main topics are
- Public-Key Schemes
- Key-Agreement/Key-Establishment
- Challenge Response Schemes/Authentication
- Signature Schemes

Assessment methods

Every presentation is a partial examination, there is no written final exam

Teaching methods

Implementations and presentations by the students

Language

German

Lecture contents

Practical Project
Cloud Paradigms (IAAS, PAAS, SAAS)
Security in the Cloud (Searchable/Homomorphic Encryption)
Basics of Identity Management
Single-Sign-On Systems, Shibboleth, Kerberos
OAuth, OpenID Connect, SAML; FIDO, U2F

Assessment methods

written exam

Teaching methods

Lecture
Distance Education
Practical work in small groups

Language

German

Lecture contents

An important part of a comprehensive academic education is to aquire the qualification to treat problem statements from a scientific point of view. Therefore, an introduction to scientific work, writing, and well established methodologies will be taught in this course.

Assessment methods

The evaluation is based on the submitted material (disposition, paper, reviews) as well as on the presentations.

Teaching methods

During this course a scientific conference will be simulated. After a brief introduction to scientific writing, the attendees of this course shall treat a problem statement of a given field of research for which they shall prepare disposition that briefly describes the chosen topic. Based on it, a draft version of the scientific article will be written (draft paper). Afterwards, these draft versions of the papers will be critically reviewed by other colleagues (peer reviewing). Based on their reviews, a revised version of the scientific paper shall be created (camera-ready paper). At the end of this course, the scientific papers will be presented by the authors.

Language

German

Lecture contents

Practical application of the topics covered in the lecture by implementing a specific project.
Code review of an unknown program.

Assessment methods

Grading of the projects, presentation of the results.

Teaching methods

Programming exercises

Language

German

Lecture contents

- Practical application of IT-Security knowledge
- Selected topics supplementing related courses
- Protection of IT-Systems using Firewalls and Intrusion Prevention Systems
- Design and Integration of a SIEM solution

Assessment methods

Continuous examination and documentation

Teaching methods

- Independent implementation of a project
- Support is given at any time on request
- Continuous progress reviews

Language

German

Lecture contents

Summary of the essential aspects of project- and process-management, as well as system safety, and their practical meaning in concrete examples.
Clarification of the differences between safety and security, and of the interfaces between these two areas.
Diskussion and reflection of the insights from practical application of the above concepts.

Assessment methods

Assessment of the submitted implementation and the presentations.

Teaching methods

Implementing and presenting a practical example in small groups.

Language

German

Lecture contents

Summary of the essential aspects of project- and process-management, as well as system safety, and their practical meaning in concrete examples.
Clarification of the differences between safety and security, and of the interfaces between these two areas.
Diskussion and reflection of the insights from practical application of the above concepts.

Assessment methods

Assessment of the submitted implementation and the presentations.

Teaching methods

Implementing and presenting a practical example in small groups.

Language

German

Lecture contents

An important part of a comprehensive academic education is to aquire the qualification to treat problem statements from a scientific point of view. Therefore, an introduction to scientific work, writing, and well established methodologies will be taught in this course.

Assessment methods

The evaluation is based on the submitted material (disposition, paper, reviews) as well as on the presentations.

Teaching methods

During this course a scientific conference will be simulated. After a brief introduction to scientific writing, the attendees of this course shall treat a problem statement of a given field of research for which they shall prepare disposition that briefly describes the chosen topic. Based on it, a draft version of the scientific article will be written (draft paper). Afterwards, these draft versions of the papers will be critically reviewed by other colleagues (peer reviewing). Based on their reviews, a revised version of the scientific paper shall be created (camera-ready paper). At the end of this course, the scientific papers will be presented by the authors.

Language

German

Lecture contents

The course provides a general overview over the broad field of IT-Security, with a focus on practical relevance and current technologies. Topics are, among others, cryptographic foundations, firewall technologies, authentication methods, certificates, and cloud security.

Assessment methods

Final exam
Final Exam

Teaching methods

Classroom lecture and lab exercises

Language

German

Language

German

Lecture contents

The course gives a basic overview of the technical and organizational aspects of IT security, and defines the most important terms and technologies in this context.
The LV in particular covers the following contents:
- Protection goals
- Asymmetric and symmetric primitives (AES, RSA, ECC) and their practical applications
- PKIs
- TLS/HTTPS
- Firewalls Fundamentals (types, possible uses, limitations)
- ID(P)S Fundamentals (types, applications, limitations)
- security awareness

Assessment methods

Continuous assessment

Teaching methods

practical (lab) exercises, lecture

Language

English

Lecture contents

The course gives an overview and a practical introduction to the most important software tools of a system administrator in the context of secure networks. Students will be enabled to use these tools correctly and securely and to configure them accordingly.
- VPNs
- Hard disk encryption
- SSH
- Mail Security (PGP, S/MIME)
- bash scripting
- Establishment of PKIs
- Introduction to penetration testing

Assessment methods

Continuous assessment
Short tests, exercise interviews

Teaching methods

Practical (lab)-exercises, Lecture

Language

English

Lecture contents

The course gives a basic overview of the technical and organizational aspects of IT security, and defines the most important terms and technologies in this context.
The LV in particular covers the following contents:
- Protection goals
- Asymmetric and symmetric primitives (AES, RSA, ECC) and their practical applications
- PKIs
- TLS/HTTPS
- Firewalls Fundamentals (types, possible uses, limitations)
- ID(P)S Fundamentals (types, applications, limitations)
- security awareness

Assessment methods

Continuous assessment

Teaching methods

practical (lab) exercises, lecture

Language

English

Lecture contents

The course gives an overview and a practical introduction to the most important software tools of a system administrator in the context of secure networks. Students will be enabled to use these tools correctly and securely and to configure them accordingly.
- VPNs
- Hard disk encryption
- SSH
- Mail Security (PGP, S/MIME)
- bash scripting
- Establishment of PKIs
- Introduction to penetration testing

Assessment methods

Continuous assessment
Short tests, exercise interviews

Teaching methods

Practical (lab)-exercises, Lecture

Language

English

Language

German

Language

German

Language

German