Computing at UW-MadisonDivision of Information Technology
Students Faculty/Staff Services Services A through D Services E through L Services M through R Services S through Z Help Desk Tech Store About DoIT   

Lockdown 2004

Presentations


Information on this page will be updated continuously.
Copies of presentations will be available on this page for download
by August 3, 2004

DAY 1

 

Wireless Attacks and Penetration Testing


The very idea of a wireless network introduces multiple venues for attack and penetration that are either much more difficult or completely impossible to execute with a standard, wired network. Wireless networks only know the boundaries of their own signal: streets, parks, nearby buildings, and cars all offer a virtual "port" into your wireless network. This presentation will detail many common styles of attacks against wireless networks, introduce and explain WEP key-cracking, review standard port scanning techniques and explain how to identify vulnerabilities, then discuss some recent developments in wireless security and mitigating strategies to protect the wireless network.

Powerpoint Presentation

 

Vulnerability Scanning with Retina


Powerpoint Presentation

Microsoft Security Update


Powerpoint Presentation

Spyware - Uninvited and Unwanted


Powerpoint Presentation

Network Intrusion Detection

 

DAY 2

REN-ISAC Activities and the Cyber Security Registry for Higher Education


The Research and Education Networking - Information Sharing and Analysis Center (REN-ISAC) is an integral part of the higher education strategy to improve network security by providing timely warning and response to cyber threat and improving awareness and communication. This presentation describes REN-ISAC activities and introduces the REN-ISAC Cyber Security Registry for higher education.

One approach to risk assessment is OCTAVE, Operationally Critical Threat, Asset and Vulnerability Evaluation. OCTAVE is a comprehensive, repeatable methodology for identifying risks in networked systems through organizational self-assessment.


Powerpoint Presentation

Security at UW-Green Bay


Security at a smaller organization like UW-Green Bay can present a unique set of challenges. Whereas a smaller environment can at times facilitate enhanced security through increased centralization of policies and services, limited staff resources makes supporting security needs an ongoing struggle. This discussion will focus on security issues faced by UW-Green Bay and the design and configuration of the data network, servers, and workstations to help mitigate the risk to campus users and IT resources.


Powerpoint Presentation

Computer-Related Incidents in Colleges & Universities


Powerpoint Presentation

Enterprise Security Architecture

The Networking, Analysis, Collaboration Group (NAC - http://www.netapps.org) has tackled the issues of defining and identifying an Enterprise Security Architecture. During this presentation the findings of the NAC group will be outlined as well as how this is relevant to the Corporate Governance Task Force’s Call to Action

Power Point Presentation

Update on OSX Security

Packet Crafting for Firewall and IDS Audits


Having a firewall and IDS to protect your computing assets is no longer a luxury but more so a necessity. How do you know that these very important tools are working as advertised though? It is not wise to solely rely on the output of automated tools no matter how good they may be. This is where packet crafting comes in. Using the packet crafting tool hping and tcpdump to inspect the results of your crafted packets one will learn how to verify definitively if all is well with their perimeter defences.

Power Point Presentation

Trends in Malware and Virus Protection


Powerpoint Presentation

Cisco Security Update