Network Security (3 credits)
Text: Network Security Essentials: Applications and Standards, 6th edition by W. Stallings, Pearson, 2011
Course Information: This course covers the fundamental concepts, principles, and mechanisms in network and distributed system security. The topics that will be covered include: network security primitives, distributed authentication, key management, secure communication protocols, firewalls, intrusion detection, traffic monitoring and analysis, email and Web security, etc.
Prerequisite: IT 340 and IT 422
Students should be capable of:
- Understanding the cryptographic primitives adopted in network security solutions.
- Discussing the basic concepts and principles of network security and identifying risks and vulnerabilities.
- Understanding and describing authentication and secure communication protocols such as Kerberos, IPSec, SSL/TLS.
- Describing popular network attacks such as Eavesdropping, IP spoofing, Man-in-the-Middle, DDoS, Botnet, SQL injection, cross site scripting and discussing the countermeasures.
- Deploying and configuring network security protection tools such as firewalls, traffic monitoring and intrusion detection tools, spam filters.
A. An ability to apply knowledge of computing and mathematics appropriate to the program’s student outcomes and to the discipline
E. An understanding of professional, ethical, legal, security and social issues and responsibilities
J. An ability to use and apply current technical concepts and practices in the core information technologies
M. An understanding of best practices and standards and their application
- Review of cryptographic primitives: secret key cryptography: DES, AES; public key cryptography: RSA, Diffie-Hellman; secure hash functions, message authentication
- Risks and vulnerabilities
- Network authentication, key management, PKI, Kerberos
- Protocols: SSL/TLS, SSH, and IPsec
- Eavesdropping, IP spoofing, Man-in-the-Middle attacks
- Distributed deny of service attacks
- Firewall, intrusion detection
- Zombies and botnets
- Web security: HTTP/HTTPS, WWW-authenticate, SQL injection, XSS
- Email security: Email signature, PEM, S/MIME, spam