course: Practical Course TLS Implementation
- teaching methods:
- practical course
- Moodle, computer based presentation
- responsible person:
- Prof. Dr. Jörg Schwenk
- Prof. Dr. Jörg Schwenk (ETIT), M. Sc. Matthias Gierlings (ETIT), M. Sc. Marcel Maehren (ETIT), M. Sc. Robert Merget (ETIT)
- see examination rules
- offered in:
- winter term
dates in winter term
- kick-off meeting: Tuesday the 27.10.2020 from 12:15 in Online
- lab Tuesdays: from 12:00 to 14.00 o'clock in Online
Die Angaben zu den Prüfungsmodalitäten (im WiSe 2020/2021 | SoSe 2021) erfolgen vorbehaltlich der aktuellen Situation. Notwendige Änderungen aufgrund universitärer Vorgaben werden zeitnah bekanntgegeben.
|Form of exam:||lab|
|Registration for exam:||Directly with the lecturer|
The students get to know a modern cryptographic protocol in detail. The students work with concepts of modern software development. An outlook on current research in this area is given.
The TLS protocol is the most important cryptographic protocol on the Internet and is used to protect every important Web page or Web service. In recent years, many attacks on this protocol have become known, such as POODLE, DROWN, Lucky 13 or ROBOT. Therefore, a new TLS version was developed in the last years in co-operation of industry and science: TLS 1.3. The new version should protect against all known attacks and at the same time increase the performance of TLS. TLS 1.3 uses only the latest cryptographic mechanisms, so the protocol design is of great interest to every crypto developer and designer.
As part of the course, students will implement a TLS 1.3 server. This task is divided into several sub tasks and the topic is gradually introduced to the students. The following topics will also be discussed:
- Introduction to TLS, JUnit Tests and Git
- TLS 1.3
- Cryptography with Java
- Clean code
- TLS Attacker
- TLS Fuzzing
- Successful completion of the course Network Security 2
- Java programming skills
Die Veranstaltung wird Vollständig Online/über Zoom durchgeführt. Details werden über Moodle bekannt gegeben.
- Robert Cecil Martin: Clean Code: Refactoring, Patterns, Testen und Techniken für sauberen Code
- RFC 8446: The Transport Layer Security (TLS) Protocol Version 1.3 (https://tools.ietf.org/html/rfc8446)