NYU Internet Security Class
Spring '25 - ECE-GY 9383
General Information
(Update: Jan 22, 2025: Danny is still updating the website. All contents are subject to change. Once the contents are finalized, Danny will remove this message.)
Teaching staff:
Instructor: Prof. Danny Y. Huang (please reach out via EdStem)
Course Assistants:
Gokuleshwaran Narayanan
Adithyah Nair
Vamsi Jonnakuti
Time:
Class: 18:00 - 20:30 every Wednesday
Office hours:
Instructor's office hours: 20:30 - 21:30 every Thursday (in person)
Course Assistants' Zoom office hours (by appointments only):
Location:
In person attendance: Pfizer Auditorium
Live streaming: https://nyu.zoom.us/j/94769131089 - The passcode is here (NYU access only).
Bring your computer and/or phone to class. We will be very interactive!
Tools:
Communication: Slack: https://nyu-security-privacy.slack.com/ -- If you have questions, try not to email me because my response may be delayed. Instead, ping me on Slack for a quicker response.
Labs: GradeScope: https://www.gradescope.com/courses/978267
Exams: GradeScope: https://www.gradescope.com/courses/978267
Class participation: https://forms.gle/A91cX8QG8zgH7yCb9
Buzzer: https://www.multibuzz.app/
Evaluation
Format:
Labs: submit through GradeScope
Exams: submit through GradeScope
Project: presentation and report (PDF)
Distribution of points (100 points max):
Class Participation (10 points) – Taking part in per-class surveys on Mentimeter.
Quiz 1 (15 points) – Covers networking fundamentals on February 12 (in-class).
Quizzes 2, 3, 4 (25 points each, 75 total) – Held throughout the semester, typically one week after a lab.
Quiz 4 can be replaced with a class project, subject to Danny’s approval.
Students must propose their own class projects.
Each group should ideally have fewer than five members, but larger groups are allowed if justified.
The project’s effort should match the outcome.
Projects must be novel and cannot overlap with any of the extra credit research projects.
Extra credits (subject to change)
Asking good questions & answering buzzer questions in class (5 points max)
Participating in research projects (10 points max)
Calculation of grade: Your final score will be a sum of the points above with the cap of 100. The final grade will be calculated based on this method. The final grade is not curved.
Missed deadlines: If you miss a quiz for whatever reasons, you will have a choice of scheduling a 10-minute Zoom call with Danny during the final exam period, where Danny will ask you relevant questions and you'll have to answer in real time (just like a technical interview). For example, if you miss N quizzes (where 1 < N < 3), you will be graded based on the 10-minute Zoom call with a total of 20N points.
Learning Objectives
Upon completion of this course you will have acquired the following knowledge:
A firm grasp on how networks are attacked and techniques used.
An understating of the inherent insecurity of networking and networking protocols.
Understand the fundamentals of secure network design
Foundation of the issues involved in providing secure network communications
Understand the underlying cryptography required for electronic commerce, secure communications, and authentication
Obtain a hands-on understanding of network security through laboratory work
Individual Work and Collaboration Policy
You must complete the quizzes without the help of another human.
You may use automated tools, such as Google and ChatGPT (or any LLM tools).
Collaborating with and/or seeking the help from another human (e.g., over instant messaging or over Chegg) is considered cheating. You will get a zero for that quiz.
Prerequisites
You are expected to have basic networking knowledge, such as the following:
Background in undergraduate or graduate networking.
Ethernet, IP, TCP, UDP, ports
Application protocols, such as HTTP, HTTPS, SSL/TLS, DNS
Although you are not expected to have a detailed understanding of the above (e.g., explaining how the TCP Window works), you should be able to at least describe the concepts at a high level and explain the relationships among the different concepts.
If you are not sure whether you have the prerequisite background knowledge, check out this sample quiz below. If you cannot comfortably answer the questions in the quiz, you are encouraged to take the following online courses for free prior to the start of the semester and learn about the concepts above.
Sample Quiz
Here is a sample quiz that tests your understanding of the basic knowledge required for this class. If you think you can comfortably answer all of the questions below, you are likely equipped with the prerequisite knowledge to excel in the class. Otherwise, feel free to take the online courses listed above and/or speak with the instructor.
Your friend, Alex, complains that she cannot access the Internet on her phone.
Let’s say Alex complains to you over the phone. What questions would you ask Alex to help her troubleshoot?
Let’s say you’re in the same room as Alex. You’re both wearing masks. What would you do to help Alex regain Internet connectivity?
On your desktop browser, you type “www.google.com” hit “enter”.
If you are intercepting all packets leaving and entering your computer, what types of packets do you expect to see?
Why do you see such packets?
Hint: Think about DNS, IP, TCP, and HTTP. Bonus points if you can answer with respect to TLS, CDNs, and/or data centers.
Online Courses
To learn the prerequisite materials, I recommend taking the following courses:
Google’s Networking Class on Coursera
You can audit the class for free.
Recommended contents from the Coursera course:
Watch all videos under “Week 1”, “Week 2”, “Week 3”, and “Week 4.
Optionally, watch all videos under “Week 5” and “Week 6”.
To complement the Coursea class above, check out the following YouTube videos from Princeton’s Networking Class
Videos 26-32: IP
Videos 33-34: Routing, autonomous systems
Videos 85-89: DNS
Videos 146-151: HTTP
Videos 154-159: CDNs
Textbooks
To supplment the online courses, read the following chapters of the Computer Networks Textbook (5th Edition) by Larry Peterson et al.
Chapter 2.6 - Ethernet
Chapter 3 - Inter-networking
Chapter 4 - Internet routing
Chapter 5.1 and 5.2 - UDP and TCP
Chapter 9.1.2 - HTTP
Chapter 9.3.1 - DNS
Inclusion Statement
The NYU Tandon School values an inclusive and equitable environment for all our students. I hope to foster a sense of community in this class and consider it a place where individuals of all backgrounds, beliefs, ethnicities, national origins, gender identities, sexual orientations, religious and political affiliations, and abilities will be treated with respect. It is my intent that all students’ learning needs be addressed both in and out of class, and that the diversity that students bring to this class be viewed as a resource, strength and benefit. If this standard is not being upheld, please feel free to speak with me.
Moses Center Statement of Disability
If you are a student with a disability who is requesting accommodations, please contact New York University’s Moses Center for Students with Disabilities at 212-998-4980 or mosescsd@nyu.edu. You must be registered with CSD to receive accommodations. Information about the Moses Center can be found at https://www.nyu.edu/students/communities-and-groups/student-accessibility.html. The Moses Center is located at 726 Broadway on the 2nd floor.
Title XI
Title IX makes it clear that violence and harassment based on sex and gender are civil rights offenses subject to the same kinds of accountability and the same kinds of support applied to offenses against other protected categories such as race, national origin, etc. If you or someone you know has been harassed or assaulted, you can find the appropriate resources: https://www.nyu.edu/about/policies-guidelines-compliance/equal-opportunity/title9.html