Knowledge and understanding:
Knowledge of the basic functioning principles of the Internet at the application level and internetwork level.
Knowledge of the basic functioning principles of DNS, email, web.
Knowledge of the basic functioning principles of networks and internetworks.
Knowledge of the basic principles of cryptography applied to computer networks.

Applying knowledge and understanding:
Ability to describe message exchanges occurring in selected scenarios in detail, including the fundamental pieces of information within each message as well as the way they are obtained and used.

Learning skills:
The student shall acquire the ability to describe and point out the logical reasoning followed for solving a problem, separating sharply input data from hypotheses, deductions, necessary components, redundant components and so on.

Making judgements:
Ability to determine autnomously the main architectural components necessary for the working of an Internet application.

Communication skills:
The student shall acquire the ability to describe systems and algorithms by using correct terminology, both technically and logically.

Designed to be self-contained
No need for specific preliminary computer-related knowledge (except for some familiarity with e-mail and web browsing).
Suitable also for courses different from Computer Engineering.

Applications and protocols. Client-server communication. Port numbers. Socket interface. Properties of communication services.

DNS: names, RR, domains. Types A, MX, CNAME. Response records, additional records. Domain tree.
Domnain ownership, owner identity. Constraints on name and ownership.

Outline of DNS implementation. Domain creation.

Introduction to HTML. Elements and attributes. Tags A, IMG, IFRAME, link, CSS in a nutshell. Tag script and Javascript in a nutshell. Web pages and web sites. Relative URL. Static and dynamic web content. Query string.

HTTP requests and responses. Header: Host, Location, Referrer, User-Agent
Proxy: functionality, usage, implementation. Sending data to a web server: FORM, INPUT, POST requests. Web hosting: custom domain vs non-custom domain.
HTTP sessions: usage and requirements. Session table. Cookies. Personalization and authorization.
FORM Authentication. Session hijacking. BASIC authentication.
Incognito browsing. Analytics. Web advertisements in a nutshell.

Email: domains and mailboxes. Architecture. Email sending. Mail configuration and management of multiple mailboxes.
SMTP, POP. Sending address spoofing. Direct interaction with Internet servers. Mailing list.

Network: functionality and Ethernet implementation. Properties and frame format. Switch and Access point. Switch table.

Internetwork: functionality and properties of IP. Packets. Basic functioning of an internetwork. Properties of binary representation for IP addresses.
Network number: requirements and allocation. Notations. Host number and Subnet mask. Static vs dynamic configuration.
Dynamic configuration: simplified DHCP. ARP. Static vs dynamic routing. Routing tables for static routing.
Private IP addresses. NAT functionality. Point to point networks.
ICMP: ping, traceroute. Firewall: requirements, border vs personal. Rule structure.

Network attacker. Security properties (authentication, secrecy, integrity). Private key cryptography and public key cryptography. Message Authentication Code. Key distribution. Methods based on public key cryptography and certificates.

TLS/HTTPS: functionality and simplified implementation. Specific examples of server authentication.
Digital signature: requirements and functionality. Applications. Certificates: issuance and verification. Self-signed certificates. TrustSet e KeySet: implementation.

None. All the topics are covered by slides provided by the teacher.

Lectures based on slides prepared by the teacher on each single topic.

Exercises selected by the teacher, solved by students autonomously for collective discussion.

Archive of common errors maintained along the years and available on the web.

All the teaching material is available at https://bartoli.inginf.units.it ("Didattica" section)

Written examination mainly based on exercises, possibly followed by an oral examination. The exercises are always based on different scenarios and require analysing generated traffic, indicating the configurations needed to meet the requirements provided, discussing security guarantees and corresponding limitations. The written examination may also include descriptive questions on specific topics. Participation in the examination requires the development and bringing online of a simple website independently by the student. In all types of content produced by the student in order to be admitted or to participate in an examination (projects, reports, exercises, tests), the possible use of Large Language Model tools (ChatGPT and similar) must be explicitly stated. This requirement must also be complied with in the case of partial use. Irrespective of the way in which learning is assessed, the lecturer reserves the right to investigate the student's actual contribution in each type of content produced by means of an oral examination.

This course delves into topics closely related to one or more objectives of the 2030 Agenda for the Sustainable Development of United Nations.