|
Standard |
Posted: 09/05/07
CIS 1118 – Implementing Network
Security
This course provides knowledge and the practical experience
necessary to evaluate, implement and manage secure information transferred over
computer networks. Topics include network security, intrusion detection, types
of attacks, methods of attacks, security devices, basics of cryptography and
organizational security elements.
|
Competency
Areas: |
Hours: |
|
|
|
|
|
|
State the
goals of network security |
Class |
4 |
|
Identify
and list methods to reduce risk of various types of network attacks |
D. Lab |
4 |
|
Identify
several areas of communication security |
P.
Lab/O.B.I. |
0 |
|
Identify
several types infrastructure security devices |
Credit |
6 |
|
Define
and describe intrusion detection |
|
|
|
Explain
the use of cryptography in information security |
||
|
Identify
operational and organizational security elements |
||
|
Prerequisite: |
CIS1115 and (CIS 2153 or CIS 276 or CIS 2556) or advisory
approval |
|
Corequisite: |
|
|
Course Guide |
|
Competency |
After completing this section,
the student will: |
Hours |
||
|
Class |
D. Lab
|
P. Lab/ O.B.I. |
||
|
STATE THE GOALS OF NETWORK
SECURITY |
6 |
4
|
0 |
|
|
|
Define
network security |
|
|
|
|
|
Identify,
define and describe the relevance of security goals (integrity,
confidentiality, availability) |
|
|
|
|
|
Understand
and be able to identify both internal and external threats |
|
|
|
|
IDENTIFY AND LIST METHODS TO
REDUCE RISK OF VARIOUS TYPES OF NETWORK ATTACKS |
6 |
12
|
0 |
|
|
|
List the
major types of malicious code and identify appropriate countermeasures |
|
|
|
|
|
Detail
types of social engineering attacks |
|
|
|
|
|
Understand
the concept and significance of auditing, logging and system scanning |
|
|
|
|
IDENTIFY SEVERAL AREAS OF
COMMUNICATION SECURITY |
5 |
4
|
0 |
|
|
|
Recognize
and understand the administration of securing the following technologies:
Remote access, email, web, directory, file transfer and wireless |
|
|
|
|
IDENTIFY SEVERAL TYPES
INFRASTRUCTURE SECURITY DEVICES |
6 |
4
|
0 |
|
|
|
Understand
the purpose of a firewall and different kinds of firewall technology |
|
|
|
|
|
Understand
the role of routers, switches, modems and other network devices |
|
|
|
|
|
Identify
key elements of VPN (Virtual Private Network) and RAS (Row Access Strobe)
technology for secure connectivity |
|
|
|
|
DEFINE AND DESCRIBE INTRUSION
DETECTION |
6 |
5
|
0 |
|
|
|
Explain
intrusion detection |
|
|
|
|
|
Define
the difference between host and network based detection |
|
|
|
|
|
Understand
the difference between passive and active detection |
|
|
|
|
|
Identify
some characteristics of a intrusion detection system |
|
|
|
|
EXPLAIN THE USE OF CRYPTOGRAPHY IN
INFORMATION SECURITY |
6 |
6
|
0 |
|
|
|
Understand
how encryption algorithms are used in modern cryptography |
|
|
|
|
|
Identify
and be able to differentiate different cryptographic standards and protocols |
|
|
|
|
|
Discuss
PKI |
|
|
|
|
IDENTIFY OPERATIONAL AND
ORGANIZATIONAL SECURITY ELEMENTS |
5 |
5
|
0 |
|
|
|
Describe
application of physical security |
|
|
|
|
|
Understand
the security implications of disaster recovery, business continuity, risk
identification and forensics |
|
|
|
|
|
Understand
the security implications of having policy and procedures, privilege
management, education and documentation |
|
|
|
|
Suggested Resources |
Books:
Security+ Guide to Networking
Security Fundamentals, Second Edition, ISBN:
0-619-21566-6, Ciampa, Course Technology
Lab Manual for Security+ Guide to
Networking Security Fundamentals, Second Edition), ISBN: 0-619-21536-4, Cretaro, Course Technology