IT2080 – Network Security

This subject aims to provide students with fundamental knowledge of information security in local, global and wireless networks. To begin, the subject reviews concepts from IT1060 Computer Networking, for example, network architectures and their features; network components and services. Network security principles, protecting network and its resources, different types of attacks, risk analysis, ranking assets, vulnerabilities and threats. Network and server security, terminology; review OSI; review confidentiality, integrity and authentication. Security by design and defence in depth, firewalls and Network Address Translation (NAT). Brief discussion of cryptography. Authentication, authorization and access control; mandatory access control, discretionary access control. Security network transmission; security issues related to each network component, security problems in network protocols, for example TCP and SMTP, packet-level communication network computer systems and security policy, network security tools including cryptography, intrusion detection systems and firewalls; strengths and weaknesses of each of these techniques; network authentication protocols; secure network applications; secure E-mail and Web operations; Secure mobile agents, malicious code and

detection and prevention systems, authentication systems, and wireless security. Denial of service attacks, network worms. Remote access and wireless security, dangers of remote access, threats of wireless networking. Server roles and security; threats to the servers like domain name server, file servers, application servers, and print servers. Ongoing security management; security at different system layers including operating system security and application software security, ensuring latest security patches are installed, auditing and monitoring. Disaster recovery and fault tolerance; planning for the worst, disaster plans, importance of backups, fault-tolerant technologies. Intrusion detection and forensics; honey pots, procedures for preserving evidence for investigations.