randy/rgnet-wiki
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
rgnet-wiki/pages/Apricot2016Sec.md
Randy Bush f00ae1e1e8 from wiki
2020-07-04 15:26:35 -07:00

104 lines
No EOL
14 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# APRICOT 2016 Security Workshop 2016.02.15-19
## Daily Schedule
| | |
| --------- | ------------- |
| Session 1 | 09:00 - 10:30 |
| Tea | 10:30 - 11:00 |
| Session 2 | 11:00 - 12:30 |
| Lunch | 12:30 - 14:00 |
| Session 3 | 14:00 - 15:30 |
| Tea | 15:30 - 16:00 |
| Session 4 | 16:00 - 17:30 |
| | |
## Instructors
| | | | |
| ---------- | ------------------- | ---------------------------------------------------- | ----------- |
| **alisha** | Alisha Gurung | [Tashi Cell](http://www.tashicell.com/) | Bhutan |
| **maz** | Yoshinobu Matzusaki | [Internet Initiative Japan](http://www.iij.ad.jp) | Japan |
| **randy** | Randy Bush | [Internet Initiative Japan](http://www.iij.ad.jp) | Japan |
| **daniel** | Daniel Griggs | [New Zealand Registry Services](https://nzrs.net.nz) | New Zealand |
| | | | |
## Official Song
[Spyin NSA - by Keith Alexander, Daniel J. Bernstein, Timo Kasper, Tanja Lange, and Peter Schwabe](http://www.anagram.com/jcrap/Volume_9/spyin.pdf)
## Agenda
| | | | | |
| :------------ | :-------------------------------------------------- | :-------------- | :----------------------------------------------------------- | ---- |
| **Day 1** | **Topic** | **Inst** | **Presentations** | |
| | | | | |
| Session 0 | Intro | randy | [1-0-1 Intro](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-0-1.intro.pdf) | |
| | - admin | | | |
| | - agenda | | | |
| | - materials and resources | | | |
| | - facilities and wireless | | | |
| Session 1 | Assets & Threat Models | randy | [1-1-1 Assets, Threats, Pragmatics](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-1-1.AssetsThreats.pdf) | |
| | - what assets are we protecting? | | | |
| | - from what kinds of attackers? | | | |
| | .. kiddies | | | |
| | .. financial gain | | | |
| | .. nation state (you're dead) | | | |
| | Threat Pragmatics | | | |
| | . to network infrastructure (routing, wiretap, ...) | | | |
| | . to service infrastructure (dns, mail, ...) | | | |
| | .to users | | | |
| | Social Engineering | | | |
| Session 2 | Cryptography | randy | [1-2-1 Crypto Overview](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-2-1.Crypto-Overview.pdf) | |
| | - symmetric encryption | | | |
| | - asymmetric encryption | | | |
| | - digital signatures | | | |
| | - hash functions | | | |
| | - certificates & trust anchors | | | |
| Session 3-4 | Cryptography Applications / PGP | maz | | |
| | - gpg | | [1-3-1 PGP](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/1-3-1.PGP.pdf) | |
| | - PGP Lab | alisha & daniel | [1-3-2 PGP Lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/PGP-Lab.pdf) | |
| | | | [1-3-1 GPG Mail for Mac OS X](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/) | |
| **Day 2** | **Topic** | **Inst** | **Presentations** | |
| | | | | |
| Session 1 | Cryptography Applications | | | |
| | - ssh | randy | [2-1-1 SSH](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-1-1.ssh.pdf) | |
| Session 2 | Wireshark | maz | [2-4-1 wireshark](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-4-1.wireshark.pdf) | |
| | - wireshark lab | maz | [2-4-1 wireshark lab](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/Wireshark-lab.zip) | |
| Session 3 | Cryptography Applications | maz | | |
| | - VPNs, IPsec, TLS | | [2-2-1 VPN IPsec TLS](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-2-1.vpn-tls.pdf) | |
| Session 4 | OpenVPN & pfSense | randy | [2-3-1 OpenVPN](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/2-3-1.openvpn.pdf) | |
| **Day 3** | **Topic** | **Inst** | **Presentations** | |
| | | | | |
| Session 1 | Network Infrastructure | daniel | | |
| | - management pane | daniel | [3-1 Management Plane](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-1.Management-Plane.pdf) | |
| | - control plane | daniel | [3-2 Control Plane Protection](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-2.Control-Plane-Protection.pdf) | |
| | - data plane | daniel | [3-3 Data Plane Protection](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-3.Data-Plane-Protection.pdf) | |
| | - Logging and Monitoring | daniel | [3-4 Monitoring](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-4.Monitoring.pdf) | |
| **Day 4** | **Topic** | **Inst** | **Presentations** | |
| | | | | |
| Session 1 | DNS & DNS Security | alisha | | |
| | - DNS | | [DNS.pptx](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/DNS.pptx) | |
| | - DNS Security | | [DNS_Security.pptx](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/DNS_Security.pptx) | |
| | - DNS Rate Limiting | randy | [4-1-3 DNS Rate Limiting](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-1-3.dns-rate-limit.pdf) | |
| Session 2 | IDS | maz | | |
| | - IDS pragmatics - snort | | [3-4-1.snort](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/3-4-1.snort-ids.pdf) | |
| Session 3 | Protecting Hosts from Net | maz | | |
| | - hosts | | [4-2-1 Hosts](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-2-1.hosts.pdf) | |
| | - Recovery Plan! | | [4-2-2 wipe, recovery](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-2-2.wipe-etc.pdf) | |
| Session 4 | Virus, Mail and Browsing | | | |
| | - Anti-virus | maz | [4-3-1 Anti-virus](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-1.anti-virus.pdf) | |
| | - Safe Mail Practices | randy | [4-3-2 Safer Mail](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-2.safer-mail.pdf) | |
| | - Safe Browsing Practices | randy | [4-3-3 Safer browsing](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-3.safer-browsing.pdf) | |
| | - File & Disk Encryption | randy | [4-3-4 File & Disk Encryption](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-3-4.file-encrypt.pdf) | |
| **Day 5** | **Topic** | **Inst** | **Presentations** | |
| | | | | |
| Session 1 | Inter-Host Protocols | | | |
| | - sftp, ... | randy | [4-4-1 sftp & scp](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-4-1.scp%2Bsftp.pdf) | |
| | - Covert Channels, TOR, Steganography | randy | [4-4-2 Covert Channels](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/4-4-2.Covert-Channels.pdf) | |
| Session 2 | Inter-Network Cooperation | maz | | |
| | - Communities and Cooperation | | [5-2-1 Security Communities](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/5-2-1-cooperation.pdf) | |
| Session 3 & 4 | Dessert | randy | | |
| | Protecting Routing Protocols | randy | [Protecting Routing Protocols](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/160219.routing-protocols.pdf) | |
| | Telco vs Internet & Complexity | randy | [Complexity](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/160219.complexity.pdf) | |
| | Critical Infrastructure and SW Eng | randy | [Critical Infrastructure and Software Engineering](https://wiki.rg.net/raw-attachment/wiki/Apricot2016Sec/160219.CI-apricot.pdf) | |
Reference in a new issue View git blame Copy permalink