CNIT 40: DNS SecuritySummer 2023 Sam BowneClass Cancelled July 25
Schedule · Lecture Notes · Projects · Links · Home PageTo attend class online:https://twitch.tv/sambowne |
Catalog DescriptionDNS is crucial for all Internet transactions, but it is subject to numerous security risks, including phishing, hijacking, packet amplification, spoofing, snooping, poisoning, and more. Learn how to configure secure DNS servers, and to detect malicious activity with DNS monitoring. We will also cover DNSSEC principles and deployment. Students will perform hands-on projects deploying secure DNS servers on both Windows and Linux platforms. Textbook"DNS Security" by Anestis Karasaridis, Amazon Digital Services, Inc., ASIN: B007ZW50WE Buy from Amazon QuizzesThe quizzes are multiple-choice, online, and open-book. However, you may not ask other people to help you during the quizzes. You will need to study the textbook chapter before the lecture covering it, and take the quiz before that class. Each quiz is due 30 min. before class. Each quiz has 5 questions, you have ten minutes to take it, and you can make two attempts. If you take the quiz twice, the higher score counts. For class-related questions, please send a message inside Canvas. If you prefer, you can email cnit.40@gmail.com |
Schedule | ||
---|---|---|
Date | Due | Topic |
Tue 6-6 | 1: The importance of DNS security 2: DNS protocol and architecture Demos: D 1, D 2, F 60
| |
Sat 6-10 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 6-13 |
Proj D 1 & D 2 due Quizzes: Ch 1 & Ch 2 |
3: DNS vulnerabilities 4: Monitoring and detecting security breaches Demos: ED 30 & D 4
|
Sat 6-17 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 6-20 | No Tues class | |
Sat 6-24 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 6-27 | Proj ED 30 & D 4 due Quizzes: Ch 3 & 4 |
5: Prevention, protection, and mitigation of DNS service disruption 6: DNSSEC and beyond
|
Sat 7-1 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 7-4 | No Tues class | |
Sat 7-8 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 7-11 | No Tues class | |
Sat 7-15 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 7-18 | No Tues class | |
Sat 7-22 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 7-25 | Proj D 5 & D 6 due Quiz: Ch 5 |
No Class Meeting |
Sat 7-29 | Optional Help Session 10:30 - noon in SCIE 37 | |
Tue 7-25 - Sun 7-30 |
Final Exam available online. You can only take it once. |
Lecture Slides | |
---|---|
1: The Importance of DNS Security (Updated 8-21-17) ·
KEY · PDF
2: DNS Protocol and Architecture · KEY · PDF 3: DNS vulnerabilities · KEY · PDF 4: Monitoring and detecting security breaches · KEY · PDF 5: Prevention, protection, and mitigation of DNS service disruption · KEY · PDF 6: DNSSEC and beyond · KEY · PDF |
Projects | |
---|---|
D 1: Windows 2022 Server Virtual Machine (15 pts) Extra Credit ProjectsF 60: Cloud Server on Azure (15 pts extra)D 7: Windows Server on Mac M1 or M2 (15 pts extra) D 10: DNS Privacy (10 pts extra) D 11: Chrome Remote Desktop (10 pts extra) D 12: SSH Tunnel (10 pts extra) H 241: Tailscale VPN (15 pts extra) |