# APRICOT 2016 Security Workshop 2016.02.15-19 ## Daily Schedule | | | | --------- | ------------- | | Session 1 | 09:00 - 10:30 | | Tea | 10:30 - 11:00 | | Session 2 | 11:00 - 12:30 | | Lunch | 12:30 - 14:00 | | Session 3 | 14:00 - 15:30 | | Tea | 15:30 - 16:00 | | Session 4 | 16:00 - 17:30 | | | | ## Instructors | | | | | | ---------- | ------------------- | ---------------------------------------------------- | ----------- | | **alisha** | Alisha Gurung | [Tashi Cell](http://www.tashicell.com/) | Bhutan | | **maz** | Yoshinobu Matzusaki | [Internet Initiative Japan](http://www.iij.ad.jp) | Japan | | **randy** | Randy Bush | [Internet Initiative Japan](http://www.iij.ad.jp) | Japan | | **daniel** | Daniel Griggs | [New Zealand Registry Services](https://nzrs.net.nz) | New Zealand | | | | | | ## Official Song [Spyin’ NSA - by Keith Alexander, Daniel J. Bernstein, Timo Kasper, Tanja Lange, and Peter Schwabe](http://www.anagram.com/jcrap/Volume_9/spyin.pdf) ## Agenda | | | | | | | :------------ | :-------------------------------------------------- | :-------------- | :----------------------------------------------------------- | ---- | | **Day 1** | **Topic** | **Inst** | **Presentations** | | | | | | | | | Session 0 | Intro | randy | [1-0-1 Intro](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-0-1.intro.pdf) | | | | - admin | | | | | | - agenda | | | | | | - materials and resources | | | | | | - facilities and wireless | | | | | Session 1 | Assets & Threat Models | randy | [1-1-1 Assets, Threats, Pragmatics](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-1-1.AssetsThreats.pdf) | | | | - what assets are we protecting? | | | | | | - from what kinds of attackers? | | | | | | .. kiddies | | | | | | .. financial gain | | | | | | .. nation state (you're dead) | | | | | | Threat Pragmatics | | | | | | . to network infrastructure (routing, wiretap, ...) | | | | | | . to service infrastructure (dns, mail, ...) | | | | | | .to users | | | | | | Social Engineering | | | | | Session 2 | Cryptography | randy | [1-2-1 Crypto Overview](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-2-1.Crypto-Overview.pdf) | | | | - symmetric encryption | | | | | | - asymmetric encryption | | | | | | - digital signatures | | | | | | - hash functions | | | | | | - certificates & trust anchors | | | | | Session 3-4 | Cryptography Applications / PGP | maz | | | | | - gpg | | [1-3-1 PGP](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-3-1.PGP.pdf) | | | | - PGP Lab | alisha & daniel | [1-3-2 PGP Lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/PGP-Lab.pdf) | | | | | | [1-3-1 GPG Mail for Mac OS X](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/) | | | **Day 2** | **Topic** | **Inst** | **Presentations** | | | | | | | | | Session 1 | Cryptography Applications | | | | | | - ssh | randy | [2-1-1 SSH](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-1-1.ssh.pdf) | | | Session 2 | Wireshark | maz | [2-4-1 wireshark](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-4-1.wireshark.pdf) | | | | - wireshark lab | maz | [2-4-1 wireshark lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/Wireshark-lab.zip) | | | Session 3 | Cryptography Applications | maz | | | | | - VPNs, IPsec, TLS | | [2-2-1 VPN IPsec TLS](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-2-1.vpn-tls.pdf) | | | Session 4 | OpenVPN & pfSense | randy | [2-3-1 OpenVPN](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-3-1.openvpn.pdf) | | | **Day 3** | **Topic** | **Inst** | **Presentations** | | | | | | | | | Session 1 | Network Infrastructure | daniel | | | | | - management pane | daniel | [3-1 Management Plane](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-1.Management-Plane.pdf) | | | | - control plane | daniel | [3-2 Control Plane Protection](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-2.Control-Plane-Protection.pdf) | | | | - data plane | daniel | [3-3 Data Plane Protection](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-3.Data-Plane-Protection.pdf) | | | | - Logging and Monitoring | daniel | [3-4 Monitoring](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-4.Monitoring.pdf) | | | **Day 4** | **Topic** | **Inst** | **Presentations** | | | | | | | | | Session 1 | DNS & DNS Security | alisha | | | | | - DNS | | [DNS.pptx](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/DNS.pptx) | | | | - DNS Security | | [DNS_Security.pptx](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/DNS_Security.pptx) | | | | - DNS Rate Limiting | randy | [4-1-3 DNS Rate Limiting](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-1-3.dns-rate-limit.pdf) | | | Session 2 | IDS | maz | | | | | - IDS pragmatics - snort | | [3-4-1.snort](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-4-1.snort-ids.pdf) | | | Session 3 | Protecting Hosts from Net | maz | | | | | - hosts | | [4-2-1 Hosts](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-2-1.hosts.pdf) | | | | - Recovery Plan! | | [4-2-2 wipe, recovery](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-2-2.wipe-etc.pdf) | | | Session 4 | Virus, Mail and Browsing | | | | | | - Anti-virus | maz | [4-3-1 Anti-virus](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-1.anti-virus.pdf) | | | | - Safe Mail Practices | randy | [4-3-2 Safer Mail](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-2.safer-mail.pdf) | | | | - Safe Browsing Practices | randy | [4-3-3 Safer browsing](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-3.safer-browsing.pdf) | | | | - File & Disk Encryption | randy | [4-3-4 File & Disk Encryption](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-4.file-encrypt.pdf) | | | **Day 5** | **Topic** | **Inst** | **Presentations** | | | | | | | | | Session 1 | Inter-Host Protocols | | | | | | - sftp, ... | randy | [4-4-1 sftp & scp](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-4-1.scp%2Bsftp.pdf) | | | | - Covert Channels, TOR, Steganography | randy | [4-4-2 Covert Channels](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-4-2.Covert-Channels.pdf) | | | Session 2 | Inter-Network Cooperation | maz | | | | | - Communities and Cooperation | | [5-2-1 Security Communities](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/5-2-1-cooperation.pdf) | | | Session 3 & 4 | Dessert | randy | | | | | Protecting Routing Protocols | randy | [Protecting Routing Protocols](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/160219.routing-protocols.pdf) | | | | Telco vs Internet & Complexity | randy | [Complexity](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/160219.complexity.pdf) | | | | Critical Infrastructure and SW Eng | randy | [Critical Infrastructure and Software Engineering](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/160219.CI-apricot.pdf) | |