System Security Research Group
  • Home
  • People
  • Research
  • Jobs
  • Teaching
  • Theses
  • Contact

T
e
a
c
h
i
n
g

T
e
a
c
h
i
n
g


Teaching


Our group regularly offers the following lectures (in English) at the CompSci faculty of TU Dortmund. Most courses follow a gamification approach and feature thrilling jeopardy-style Capture-the-Flag competitions that allow students to deepen their theoretical knowledge with practical exercises. If you are interested in BSc/MSc thesis topics, go here.

Network Security ("Sicherheit im Netz", MSc-level course, 6 ECTS)

  • Security at the Data Link Layer (ARP security, IEEE 802.1X, network segmentation, WiFi security)
  • Security at the Network Layer (IP fragmentation/spoofing, VPNs/IPsec, BGP security)
  • Security at the Transport Layer (PKI, TLS, TCP-AO,)
  • Security at the Application Layer (secure DNS, secure messenging, anonymous communication)
  • Security defenses (IDS/IPS, honeypots, telescopes, tarpits)
  • Course registration via LSF

Software Security ("Softwaresicherheit", MSc-level course, 6 ECTS)

  • Recap on x86 Assembly and Basic Exploitation Techniques
  • Advanced Exploitation Targets and Techniques (user-after-free, heap spraying, JIT ROP, signal-based ROP, race conditions)
  • State-of-the-Art Exploitation Defenses (Control-Flow Integrity, compiler-assisted defenses, shadow stacks, trust domains)
  • Program Analysis (program representations, data flow / taint analysis, instrumentation/rewriting, symbolic execution, program slicing)
  • Automated Vulnerability Discovery and Exploitation (fuzzing, exploit generation techniques)
  • Course registration via LSF

Web Security (MSc, 6 ECTS, by Ben Stock, every summer term as remote lecture at TUDO)

  • Client-side Web Security (e.g., XSS, XSSI, CSRF)
  • User-centered Web Security (e.g., Clickjacking, Phishing)
  • Server-side Web Security (e.g., SQL Injection, Command Injection)
  • Web Infrastructures Security (e.g., HTTPS and attacks against it)
  • More information and registration for "Foundations of Web Security" in CISPA CMS
  • LIMITED CAPACITY!!! Mandatory course registration via CMS is required ahead of time! Read the CMS course description carefully.

Privacy-Enhancing Technologies (MSc, 6 ECTS, by Wouter Lueks, every summer term as remote lecture at TUDO)

  • Privacy-enabling Cryptography (e.g., Secure Multi-Party Computation, Zero-knowledge Proofs, Fully-Homomorphic Encryption)
  • Privacy-Friendly Comunication (e.g., Anonymous Communication, Censorship Resistance, Website Fingerprinting)
  • Privacy-enabling Methods (e.g., Differential Privacy, Attribute-Based Credentials)
  • More information and registration for "Privacy-Enhancing Technologies" in CISPA CMS

Introduction to Cybersecurity ("Sicherheit: Fragen und Loesungsansaetze", BSc-level course, 4 ECTS)

  • Security Goals and Threat Models
  • Introduction to Cryptography
  • Introduction to Network Security
  • Introduction to Systems Security
  • Introduction to Web Security
  • Introduction to Software Security incl. primer on x86 assembly
  • Course registration via LSF

© System Security at CISPA