中正大學課程大綱
課程名稱(中文): 電信網路安全 開課單位: 資訊工程研究所(Graduate Institute of Computer Science and Information Engineering)
課程名稱(英文) Security in wireless cellular networks 課程代碼 4105257_01
授課教師: Van-Linh Nguyen (阮文齡) 學分數 3
必/選修 選修 開課年級 大三四,碩士
先修科目或先備能力:
Computer Fundamentals
課程概述:
Nowadays, mobile cellular networks are so popular that almost everyone has a smartphone to use. However, along with the popularity of smartphones and mobile applications, information security threats have increased rapidly. Many forms of attacks against cellular networks, e.g., fraud via fake messages (banks, police), fake calls, fake SIM cards, tracking phone users' location, and eavesdropping on calls, are causing a lot of economic damage, reputation, and privacy violations to users. This course provides a basic understanding of security architectures/protocols in telecommunications networks (4G/5G/5G and beyond) and critical vulnerabilities (SMS fakes, location surveillance, IMSI catcher, jailbreak...). By practicing some basic attacks and finding vulnerabilities, students can test the ability of network operators to protect their security. You will also learn about defensive architecture in telecommunications networks, which is essential for system security administrators in the telecommunications industry. Finally, information on security issues and technologies in the new generation 6G network and low-orbit satellites is also discussed.

You can see several informal demos of security attacks on 4G/5G as follows:
1. IMSI catcher: https://www.youtube.com/watch?v=3M3ciMQ7Uf0 (using USRP N210: https://www.youtube.com/watch?v=dZNm1HyYiyg)
2. Impersonation attacks: https://www.youtube.com/watch?v=VzWsLmVDqZc
3. Attack to the connected cars: https://www.youtube.com/watch?v=4yBKYMKRPbU

Mid-term/final exam: Open book, but no electric device is allowed.

The weekly schedule can be seen here: https://sites.google.com/view/nvlinh/teaching/security-in-wireless-cellular-networks
學習目標:
1. To allow students to acquire the basics of wireless communications and security
2. To allow students to acquire signal-based tracking/surveillance in 4G/5G
3. To allow students to acquire the state-of-the-art IPS/IDS techniques
4. To allow students to develop new anti-tracking/anti-surveillance methods
教科書:
Lecture notes compiled by the teacher

課程大綱 分配時數 核心能力 備註
單元主題 內容綱要 講授 示範 隨堂作業 其他
Course Introduction
Course Introduction
 1 12345678
Cellular network architecture
• Cellular Voice Networks
• Cellular Data Networks
• 4G LTE and 5G network architecture
 6 12345678
Security Overview
• Cryptography
• Security protocols (TLS, quantum, IPSec…)
• 4G LTE/5G core security architecture
 6 12345678
Vulnerabilities in SMS/telephone services
• Jamming, Signalling DoS
• SMS Fake/Bomb/Spoofing
• IMSI catcher
• Location surveillance
 6 3 12345678
Vulnerabilities in cellular data services
• Data rerouting
• Tunnel attacks
• Voice over IP attacks
• Roaming issues
• Mobile apps attacks (Android/iOS)
• Denial-of-service attacks
 6 12345678
Security defenses for cellular networks
• Demilitarized Zone
• IPS for mobile networks
• Anti-tracking/anti-surveillance in cellular networks
• Security system incident response in wireless cellular networks
 6 3 12345678
Advance topics
• Security standards for wireless cellular networks
• Security business/jobs opportunity in the mobile security industry
 6 12345678
Project/Prototype report
Hacking/Defense report/demo
 6 12345678

教育目標
1.具獨立從事學術研究或產品創新研發之人才
2.具團隊合作精神及科技整合能力,並在團隊中扮演領導、規劃、管理之角色
3.具自我挑戰與終身學習能力之人才
4.具有學術倫理、工程倫理、國際觀之人才

核心能力
1.具有資訊工程與科學領域之專業知識(Competence in computer science and computer engineering.)
2.具有創新思考、問題解決、獨立研究之能力(Be creative and be able to solve problems and to perform independent research.)
3.具有撰寫中英文專業論文及簡報之能力(Demonstrate good written, oral, and communication skills, in both Chinese and English.)
4.具策劃及執行專題研究之能力(Be able to plan and execute projects.)
5.具有溝通、協調、整合及進行跨領域團隊合作之能力(Have communication, coordination, integration skills and teamwork in multi-disciplinary settings.)
6.具有終身學習與因應資訊科技快速變遷之能力(Recognize the need for, and have the ability to engage in independent and life-long learning.)
7.認識並遵循學術與工程倫理(Understand and commit to academic and professional ethics.)
8.具國際觀及科技前瞻視野(Have international view and vision of future technology.)

請尊重智慧財產權,不得非法影印教師指定之教科書籍

教學要點概述:
1. 教材編選(可複選):自編簡報(ppt)教科書作者提供
2. 教學方法(可複選):講述板書講述
3. 評量工具(可複選):上課點名 10.00%, 隨堂測驗0%, 隨堂作業20.00%, 程式實作0%, 實習報告0%,
                       專案報告0%, 期中考40.00%, 期末考30.00%, 期末報告0%, 其他0%,
4. 教學資源:課程網站 教材電子檔供下載 實習網站
5. 教學相關配合事項:

課程目標與教育核心能力相關性        
請勾選:12345678
1 具有資訊工程與科學領域之專業知識(Competence in computer science and computer engineering.)
為何有關:
Covers mobile communication architectures, cryptography, security protocols, and attack/defense cases.
達成指標:
Explain 4G/5G security mechanisms and analyze common attack principles.
評量工具(可複選):
Midterm, Final exam, Assignments
2 具有創新思考、問題解決、獨立研究之能力(Be creative and be able to solve problems and to perform independent research.)
為何有關:
Students analyze attack scenarios and propose defense strategies.
達成指標:
Propose reasonable defense solutions for given scenarios.
評量工具(可複選):
Assignments, Open-ended exam questions
3 具有撰寫中英文專業論文及簡報之能力(Demonstrate good written, oral, and communication skills, in both Chinese and English.)
為何有關:
EMI course requires reading and presenting technical content.
達成指標:
Describe attack/defense processes and mechanisms in English.
評量工具(可複選):
Assignments, English exam answers
4 具策劃及執行專題研究之能力(Be able to plan and execute projects.)
為何有關:
Includes demos and small-scale projects.
達成指標:
Plan and complete basic security test or prototype report.
評量工具(可複選):
Project discussion, Assignments, Final exam
5 具有溝通、協調、整合及進行跨領域團隊合作之能力(Have communication, coordination, integration skills and teamwork in multi-disciplinary settings.)
為何有關:
Integrates telecom, cybersecurity, and regulatory knowledge.
達成指標:
Collaborate with peers to discuss and coordinate attack/defense cases.
評量工具(可複選):
Class participation, Assignment discussion
6 具有終身學習與因應資訊科技快速變遷之能力(Recognize the need for, and have the ability to engage in independent and life-long learning.)
為何有關:
Security evolves rapidly (e.g., 6G, LEO satellites).
達成指標:
Identify new technology trends and demonstrate self-learning.
評量工具(可複選):
Open-ended exam questions, Class discussion
7 認識並遵循學術與工程倫理(Understand and commit to academic and professional ethics.)
為何有關:
Security exercises require adherence to ethics.
達成指標:
Identify ethical issues and follow rules.
評量工具(可複選):
Compliance with class rules, Assignment performance
8 具國際觀及科技前瞻視野(Have international view and vision of future technology.)
為何有關:
EMI course, discussions on global scams/surveillance and 6G trends.
達成指標:
Understand international security trends and challenges.
評量工具(可複選):
Class discussion, Final exam