263-4640-00L  Network Security

SemesterAutumn Semester 2021
LecturersA. Perrig, S. Frei, M. Legner, K. Paterson
Periodicityyearly recurring course
Language of instructionEnglish


263-4640-00 VNetwork Security2 hrs
Tue10-12HG E 1.2 »
A. Perrig, S. Frei, M. Legner, K. Paterson
263-4640-00 UNetwork Security2 hrs
Thu16-18CAB G 61 »
A. Perrig, S. Frei, M. Legner, K. Paterson
263-4640-00 ANetwork Security
Project Work, no fixed presence required.
3 hrsA. Perrig, S. Frei, M. Legner, K. Paterson

Catalogue data

AbstractSome of today's most damaging attacks on computer systems involve exploitation of network infrastructure, either as the target of attack or as a vehicle to attack end systems.
This course provides an in-depth study of network attack techniques and methods to defend against them.
Objective- Students are familiar with fundamental network-security concepts.
- Students can assess current threats that Internet services and networked devices face, and can evaluate appropriate countermeasures.
- Students can identify and assess vulnerabilities in software systems and network protocols.
- Students have an in-depth understanding of a range of important state-of-the-art security technologies.
- Students can implement network-security protocols based on cryptographic libraries.
ContentThe course will cover topics spanning four broad themes with a focus on the first two themes:
(1) network defense mechanisms such as public-key infrastructures, TLS, VPNs, anonymous-communication systems, secure routing protocols, secure DNS systems, and network intrusion-detection systems;
(2) network attacks such as hijacking, spoofing, denial-of-service (DoS), and distributed denial-of-service (DDoS) attacks;
(3) analysis and inference topics such as traffic monitoring and network forensics; and
(4) new technologies related to next-generation networks.

In addition, several guest lectures will provide in-depth insights into specific current real-world network-security topics.
Prerequisites / NoticeThis lecture is intended for students with an interest in securing Internet communication services and network devices. Students are assumed to have knowledge in networking as taught in a communication networks lecture like 252-0064-00L or 227-0120-00L.
Basic knowledge of information security or applied cryptography as taught in 252-0211-00L or 263-4660-00L is beneficial, but an overview of the most important cryptographic primitives will be provided at the beginning of the course.
The course will involve several graded course projects. Students are expected to be familiar with a general-purpose or network programming language such as C/C++, Go, Python, or Rust.
Taught competenciesTaught competencies
Domain A - Subject-specific CompetenciesConcepts and Theoriesassessed
Techniques and Technologiesassessed
Domain B - Method-specific CompetenciesAnalytical Competenciesassessed
Media and Digital Technologiesassessed
Project Managementassessed
Domain C - Social CompetenciesCommunicationnot assessed
Cooperation and Teamworknot assessed
Customer Orientationnot assessed
Leadership and Responsibilitynot assessed
Self-presentation and Social Influence not assessed
Sensitivity to Diversitynot assessed
Negotiationnot assessed
Domain D - Personal CompetenciesAdaptability and Flexibilitynot assessed
Creative Thinkingassessed
Critical Thinkingassessed
Integrity and Work Ethicsnot assessed
Self-awareness and Self-reflection not assessed
Self-direction and Self-management assessed

Performance assessment

Performance assessment information (valid until the course unit is held again)
Performance assessment as a semester course
ECTS credits8 credits
ExaminersA. Perrig, S. Frei, M. Legner, K. Paterson
Typesession examination
Language of examinationEnglish
RepetitionThe performance assessment is offered every session. Repetition possible without re-enrolling for the course unit.
Mode of examinationwritten 120 minutes
Additional information on mode of examination75% of the grade is determined by the written exam, 25% of the grade is determined by several graded projects that need to be completed throughout the semester.
The precise weight of each project will be announced at the beginning of the semester. Not handing in a project will result in a grade of 1 for that project.
Written aidsNo auxiliary material or devices are permitted.
Online examinationThe examination may take place on the computer.
This information can be updated until the beginning of the semester; information on the examination timetable is binding.

Learning materials

Main linkCourse Website
RecordingETH Video Portal
Only public learning materials are listed.


No information on groups available.


There are no additional restrictions for the registration.

Offered in

CAS in Computer ScienceFocus Courses and ElectivesWInformation
Cyber Security MasterCore CoursesWInformation
DAS in Cyber SecurityCore CoursesOInformation
Data Science MasterInterdisciplinary ElectivesWInformation
Electrical Engineering and Information Technology MasterAdvanced Core CoursesWInformation
Electrical Engineering and Information Technology MasterCore SubjectsWInformation
Electrical Engineering and Information Technology MasterSpecialisation CoursesWInformation
Electrical Engineering and Information Technology MasterRecommended SubjectsWInformation
Computer Science MasterCore Focus Courses General StudiesWInformation
Computer Science MasterCore CoursesWInformation
Computer Science MasterMinor in Information SecurityWInformation
Computer Science MasterMinor in NetworkingWInformation
Science, Technology, and Policy MasterData and Computer ScienceWInformation