Presentation is loading. Please wait.

Presentation is loading. Please wait.

Practical Training of Information Security Masahito Gotaishi, R & D Initiative, Chuo Universty.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Practical Training of Information Security Masahito Gotaishi, R & D Initiative, Chuo Universty."— Presentation transcript:

1 Practical Training of Information Security Masahito Gotaishi, R & D Initiative, Chuo Universty

2 2 About Us Graduate School of Chuo University –Faculty of Science & Engineering 8 major subjects including Information and System Engineering 5 minor subjects including e-Society & Information Security in the MS Course Part-time Doctoral Course Launched the Project of Development of the Information Security Training System, sponsored by the MEXT

3 3 Necessity of Training Following curriculum is required as the Technical Training … Threat (ways of unauthorized access) OS Security Network Security Application Security User Authentication Network Technology Encryption PKI mandatory

4 4,,, -but for What ? For the skill of implementing security systems For the skill of Risk Analysis For the skill of Self-Learning

5 5 Description of our Course Practical Windows security Course –15~18 students in each class. 3 classes in 2003 –5 day intensive course, with practice Purpose –To teach the tools & methodology used in the real scene of SysAdmin & security management. –To realize students the actual risk of the vulnerabilities and exploits. –To give basic training for researching & discovering new methodologies of attacks and defense technology It is one of the new security courses, planned in the Development of the Information Security Training System, sponsored by the MEXT

6 6 101151 171 The environment Red Hat Linux 9 VMware Workstation 4.0 Windows 2000 Professional (Attack machine) Windows 2000 Server (Target machine) RedHat IP W2K Pro IP W2K Sv IP

7 7 Among the things which impressed the students Password Cracking –Offline dictionary attacks by Cain to work out the password from the hash ARP cache poisoning –One of the “ Monkey in the Middle ” tricks. Most people are amazed at the ease of eavesdropping,,,,,, and various other ways of intrusion including dcom.exe (MS03-026)

8 8 Follow-up study making use of the graduates' community Graduates' mailing list –Those who finished the course can join the graduates' mailing list to exchange various information related to security Follow-up study group –Other workshops about the particular fields including "Buffer Overflow" are held among those who want to do

9 9 Acknowledgement This work was supported by “ The Special Coordination Funds for Promoting Science and Technology ” of the Ministry of Education, Culture, Sports, Science and Technology (MEXT), Japan.

Download ppt "Practical Training of Information Security Masahito Gotaishi, R & D Initiative, Chuo Universty."

Similar presentations

3/10/07ACM SIGCSE'071 SEED: A Suite of Instructional Laboratories for Computer SEcurity EDucation Wenliang (Kevin) Du Zhouxuan Teng & Ronghua Wang Department.

3/10/07ACM SIGCSE'071 SEED: A Suite of Instructional Laboratories for Computer SEcurity EDucation Wenliang (Kevin) Du Zhouxuan Teng & Ronghua Wang Department.
Honey Pots: Natures Dessert or Cyber Defense Tool? Eric Richardson.

Honey Pots: Natures Dessert or Cyber Defense Tool? Eric Richardson.

Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy

Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy
INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)

INDEX  Ethical Hacking Terminology.  What is Ethical hacking?  Who are Ethical hacker?  How many types of hackers?  White Hats (Ethical hackers)
NATIONAL PROJECT ACTIVITIES, EVALUATION 13.-15.11.2007, Ankara EUROFACE CONSULTING, CZECH REPUBLIC.

NATIONAL PROJECT ACTIVITIES, EVALUATION , Ankara EUROFACE CONSULTING, CZECH REPUBLIC.
CounterMeasures: An Interactive Game for Security Training Advised by: Mark Claypool Kathi Fisler Craig Jordan (IMGD) Matt Knapp (CS) Dan Mitchell (CS)

CounterMeasures: An Interactive Game for Security Training Advised by: Mark Claypool Kathi Fisler Craig Jordan (IMGD) Matt Knapp (CS) Dan Mitchell (CS)
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Information.
Copyright © 1995-2006 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci530 Computer Security Systems Lecture.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE USC CSci530 Computer Security Systems Lecture.
Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.

Information Networking Security and Assurance Lab National Chung Cheng University 1 A Real World Attack: wu-ftp.
Information Networking Security and Assurance Lab National Chung Cheng University 2004/03/031 A Real World Attack: wu-ftp Cao er kai ( 曹爾凱 )

Information Networking Security and Assurance Lab National Chung Cheng University 2004/03/031 A Real World Attack: wu-ftp Cao er kai ( 曹爾凱 )
A Virtual Environment for Investigating Counter Measures for MITM Attacks on Home Area Networks Lionel Morgan 1, Sindhuri Juturu 2, Justin Talavera 3,

A Virtual Environment for Investigating Counter Measures for MITM Attacks on Home Area Networks Lionel Morgan 1, Sindhuri Juturu 2, Justin Talavera 3,
International Week 2012, March 19-23, TUT Library Information Literacy developments at Tallinn University of Technology Library Gerda Koidla Deputy Director,

International Week 2012, March 19-23, TUT Library Information Literacy developments at Tallinn University of Technology Library Gerda Koidla Deputy Director,
Information and Communication Technologies in the field of general education in Armenia 2011 2011 NATIONAL CENTER OF EDUCATIONAL TECHNOLOGIES.

Information and Communication Technologies in the field of general education in Armenia NATIONAL CENTER OF EDUCATIONAL TECHNOLOGIES.
Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.

Directory and File Transfer Services Chapter 7. Learning Objectives Explain benefits offered by centralized enterprise directory services such as LDAP.
VPN AND SECURITY FLAWS Rajesh Perumal Clemson University.

VPN AND SECURITY FLAWS Rajesh Perumal Clemson University.
 Prototype for Course on Web Security ETEC 550.  Huge topic covering both system/network architecture and programming techniques.  Identified lack.

 Prototype for Course on Web Security ETEC 550.  Huge topic covering both system/network architecture and programming techniques.  Identified lack.
Academy : Red Hat Certified Engineer (RHCE) is an advanced level certification for Red Hat Certified System Administrator (RHCSA) and determines.

Academy : Red Hat Certified Engineer (RHCE) is an advanced level certification for Red Hat Certified System Administrator (RHCSA) and determines.
Lesson 20-Wireless Security. Overview Introduction to wireless networks. Understanding current wireless technology. Understanding wireless security issues.

Lesson 20-Wireless Security. Overview Introduction to wireless networks. Understanding current wireless technology. Understanding wireless security issues.
CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION.

CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION.

Similar presentations

Ads by Google