ICANN meetings

ICANN and FIRST
JOINT CYBERSECURITY WORKSHOP: IMPLEMENTING COMPUTER EMERGENCY RESPONSE TEAMS (CERTS) IN AFRICA

MARCH 2010, NAIROBI ICANN

Program

Sylabus

1.   Day 1: 5th March 2010, (9am – 5pm)

CERT Set-up

a)  What/Why is CERT, how to set up
b)  Best practice
c)  Common mistakes
d)  Incident response basics
e)  Case Study: CERT-Hungary
-         Evolution of a CERT
-         Government supervision
-         Financing
-         Co-operation with private sector (banks, ISPs, energy providers)
-         International collaboration
 
2.   Day 2: 6th March 2010, (9am – 5pm)

Network and Security tools

a)    System hardening, management and auditing
b)    Application hardening and best practices
c)    Network hardening design and protection
d)    Network traffic monitoring and analysis
e)    Trusted communities and community toolkits
 
[Hands on exercises – supported by Interpol]
 
3.   Day 3: 7th March 2010,

DNS Security

a)  Hands-on Introduction to the DNS
b)  Organizational Overview of the DNS
c)  Hands-on Threat Demonstration & Discussion of Mitigating Strategies

- Cache Poisoning
- NameServer Redelegation
- Malicious Use

d)  Questions & Answers
 
[Hands on exercises – supported by Interpol]

4.   Day 4: 8th March 2010,

Router/Routing Security

a)  Overview
b)  Bogons
c)  Ingres / Egress filtering
d)  Easy mistakes to avoid
e)  Longer term best practice
 
[Hands on exercises – supported by Interpol]