Standard

Posted: 09/10/07

R State Standard

£ Institutionally Developed

College: n/a

CIS 2291 – Network Security

 

Course Description:

 

Network Security introduces students to network security, firewalls, Microsoft Windows network security, UNIX and TCP/IP network security, security auditing, attacks, and threat analysis. Topics include: elements of security, TCP/IP, operating system security. router security, firewalls, security basics, user and group security, file system security, securing the registry, account security, security auditing fundamentals, and additional security measures.

 

Competency Areas:

Hours:

Elements of security

Class

4

TCP/IP

D. Lab

4

Operating system security

P. Lab/O.B.I.

0

Router security

Credit

6

Firewalls

 

 

Security basics

 

 

User and group security

 

 

File system security

 

 

Securing the registry

 

 

Account security

 

 

Security auditing fundamentals

 

 

Additional security measures

 

 

 

Prerequisite:  CIS 1140 or CIS 2321

 

Corequisite:

 

 

Course Guide

 

Competency

After completing this section, the student will:

Hours

Class

D. Lab

P. Lab/

O.B.I.

ELEMENTS OF SECURITY

4

3

0

 

Hacker Statistics

 

 

 

 

Risk Analysis

 

 

 

 

Security Myths

 

 

 

 

Effective Security System Attributes

 

 

 

 

Security Standards

 

 

 

 

Security Policy

 

 

 

 

Authentication

 

 

 

 

Access Control

 

 

 

 

Encryption

 

 

 

 

Symmetric Key Encryption

 

 

 

 

Symmetric Algorithms

 

 

 

 

Asymmetric Encryption

 

 

 

 

Applied Asymmetric Processes

 

 

 

 

One-way Encryption (Hash Encryption)

 

 

 

 

Auditing

 

 

 

 

Administration

 

 

 

 

Be Paranoid

 

 

 

 

Having a Security Policy

 

 

 

 

Minimizing the Damage

 

 

 

 

Company-wide Enforcement

 

 

 

 

Training

 

 

 

 

Integrating Security Strategies

 

 

 

 

Physical Security

 

 

 

TCP/IP

3

3

0

 

Transmission Control Protocol (TCP)

 

 

 

 

User Datagram Protocol (UDP)

 

 

 

 

Ports

 

 

 

 

TCP/IP Packet Construction

 

 

 

 

Classifying Resources and Needs

 

 

 

 

Defining a Security Policy

 

 

 

 

Equipment Needs

 

 

 

 

Securing Resources and Services

 

 

 

 

Web Servers

 

 

 

 

File Transfer Protocol (FTP) Servers

 

 

 

 

E-mail

 

 

 

 

Testing and Evaluating

 

 

 

 

Returning and Repeating

 

 

 

OPERATING SYSTEM SECURITY

1

0

0

 

Areas of Vulnerability

 

 

 

ROUTER SECURITY

1

2

0

 

Issues

 

 

 

 

Simple Network Management Protocol

 

 

 

 

Telnet

 

 

 

FIREWALLS

5

2

0

 

What Is a Firewall?

 

 

 

 

What Can Firewalls Do?

 

 

 

 

Firewall Functions

 

 

 

 

Packet Filters

 

 

 

 

Proxy Servers

 

 

 

 

Intrusion Detection

 

 

 

 

Enhanced Authentication

 

 

 

 

Logging and Reporting

 

 

 

 

Evasive Actions

 

 

 

 

Firewall Evaluation

 

 

 

 

Specific Tools

 

 

 

 

Filling the Gaps

 

 

 

 

Proactive Detection

 

 

 

 

Distracting the Hacker

 

 

 

 

Punishing the Hacker

 

 

 

 

Planning

 

 

 

 

Documenting

 

 

 

 

Assessing the Situation

 

 

 

 

Stopping the Activity

 

 

 

 

Executing a Response Plan

 

 

 

 

Continuous Improvement

 

 

 

NT SECURITY BASIC

1

0

0

 

NT Security a Myth?

 

 

 

 

Security Levels

 

 

 

 

C2 Certification

 

 

 

 

NT Security Architecture

 

 

 

 

NT Objects

 

 

 

 

Security Components

 

 

 

 

Security Subsystem

 

 

 

USER AND GROUP SECURITY

1

3

0

 

User Accounts

 

 

 

 

Minimum Rights

 

 

 

 

Renaming Accounts

 

 

 

 

Account Policies

 

 

 

 

Passwords

 

 

 

FILE SYSTEM SECURITY

3

9

0

 

Direct File Access Control

 

 

 

 

Copying and Moving Files

 

 

 

 

Remote File Access Control

 

 

 

 

Combined Local and Remote Permissions

 

 

 

 

Establishing Effective Policies

 

 

 

 

Implementing Strong Passwords

 

 

 

 

Securing System Defaults

 

 

 

 

Default Directories

 

 

 

 

Default Accounts

 

 

 

 

Default Shares

 

 

 

 

Securing Bugs

 

 

 

 

Enabling Auditing

 

 

 

SECURING THE REGISTRY

4

3

0

 

Registry Security

 

 

 

 

Registry Structure

 

 

 

 

Auditing the Registry

 

 

 

 

Specific Additional Measures

 

 

 

 

Disabling and Removing Unnecessary Services

 

 

 

 

Securing Network Connectivity

 

 

 

 

Miscellaneous Configuration Changes

 

 

 

 

Solutions Presented in Security Configuration Manager

 

 

 

 

Installing the Security Configuration Manager

 

 

 

 

Configuring Security Settings

 

 

 

 

Checking Current Settings

 

 

 

 

Implementing Security

 

 

 

 

Administrative Options

 

 

 

 

Defining Security

 

 

 

 

Security Attacks

 

 

 

 

Types of Attacks

 

 

 

 

Security Services

 

 

 

 

Security Mechanisms

 

 

 

 

Security Management

 

 

 

 

Security Standards

 

 

 

 

Viruses

 

 

 

 

Previous Attacks on UNIX Systems

 

 

 

 

Security Organizations

 

 

 

ACCOUNT SECURITY

9

9

0

 

Passwords

 

 

 

 

Password File Format

 

 

 

 

Password Aging

 

 

 

 

System Accounts

 

 

 

 

Controlling Account Access

 

 

 

 

Logging Unsuccessful Attempts

 

 

 

 

Search Path

 

 

 

 

Restricting Root Access

 

 

 

 

Restricting Shells

 

 

 

 

Timing Out Idle Users

 

 

 

 

Monitoring Accounts

 

 

 

 

System-wide Events Logging Facility

 

 

 

 

The UNIX File System

 

 

 

 

The chmod Command

 

 

 

 

The umask Command

 

 

 

 

UIDs and GIDs

 

 

 

 

Set Bits: setuid, setgid, and sticky bit

 

 

 

 

The inetd Network Process in UNIX

 

 

 

 

The Telnet Command

 

 

 

 

The rlogin Command

 

 

 

 

Interactive Sessions: Telnet vs. rlogin

 

 

 

 

The ftp Command

 

 

 

 

The tftp Command

 

 

 

 

The send mail Daemon and SMTP

 

 

 

 

Denying Incoming Access

 

 

 

 

Denying Outgoing Access

 

 

 

 

Overview of NIS

 

 

 

 

Setting Up NIS Services

 

 

 

 

NIS Security Concerns

 

 

 

 

NIS+

 

 

 

 

Introduction to NFS

 

 

 

 

NFS Design and Operation

 

 

 

 

NFS Configuration: The Basics

 

 

 

 

NFS Access Control

 

 

 

 

NFS Security: General

 

 

 

 

Computer Oracle and Password System (COPS)

 

 

 

 

TCP Wrapper

 

 

 

 

Message Digest 5 (MD5)

 

 

 

 

Tripwire

 

 

 

 

Security Analysis Tool for Auditing Networks (SATAN)

 

 

 

SECURITY AUDITING FUNDAMENTALS

7

6

0

 

The Need for Security

 

 

 

 

Security Auditing

 

 

 

 

Auditing Process

 

 

 

 

Status Quo Analysis

 

 

 

 

Threat and Risk Analysis

 

 

 

 

Requirements Analysis

 

 

 

 

Implementation Analysis

 

 

 

 

Analysis Results

 

 

 

 

Discovery

 

 

 

 

Penetration

 

 

 

 

Control

 

 

 

 

Front Door and Brute Force Attacks

 

 

 

 

Bugs and Back Doors

 

 

 

 

Social Engineering and Non-Direct Attacks

 

 

 

 

Automated Testing

 

 

 

 

Specific Tools

 

 

 

 

Areas of Vulnerability

 

 

 

 

Recommendations

 

 

 

 

Reports

 

 

 

ADDITIONAL SECURITY MEASURES

1

0

0

 

Sample Security Audit Report

 

 

 

 

General Security Resources

 

 

 

 

UNIX Security Resources

 

 

 

 

NT Security Resources

 

 

 

 

Suggested Resources

 

Books:

 

LabSim for Security+ Guide to Networking Security Fundamentals, ISBN: 0-619-21716-2, Course Technology

Network Security and Firewalls: Academic Student Guide, ISBN: 1581438850, ComputerPrep

Security+ Guide to Networking Security Fundamentals, Second Edition, ISBN: 0-619-21566-6, Ciampa, Course Technology