Instructor: Janis Rose, email: jrose2@uis.edu

Catalog Description: Introduction to Network Security course focuses on overall security processes with particular emphasis on security policy design & management. This course also provides a survey of security technologies, products & solutions. Hands-on skill labs focus on firewall design, the installation, configuration and maintenance of routers and firewall and AAA implementation. Virtual Private Networks implemented with routers and firewalls are also introduced.

Introduction: The Internet continues to grow exponentially. As personal and business-critical applications become more prevalent on the Internet, there are many immediate benefits. However, these network-based applications and services can pose security risks to individuals as well as to the information resources of companies. In many cases, the rush to get connected comes at the expense of adequate network security. Information is an asset that must be protected. Without adequate protection or network security, many individuals, businesses, and governments are at risk of losing that asset. Network security is the process by which digital information assets are protected. The goals of security are to protect confidentiality, maintain integrity, and assure availability. With this in mind, it is imperative that all networks be protected from threats and vulnerabilities in order for a business to achieve its fullest potential. Threats are unauthorized access of a network or network device. Typically, these threats are persistent due to vulnerabilities, which can arise from misconfigured hardware or software, poor network design, inherent technology weaknesses, or end-user carelessness. Security risks cannot be eliminated or prevented completely. However, effective risk management and assessment can significantly minimize the existing security risks. An acceptable level of risk depends on how much risk the business is willing to assume. Generally, the risk is worth assuming if the cost of implementing the risk-reducing safeguards far exceeds the benefits.

Purpose and Rationale for the Course: While the only computer security necessary was once a locked door protecting a huge mainframe, the advent of networking has put a company's data in the hands of every employee. Along with the resulting benefits, the birth of networking has also given rise to the new and important field of security. As network technologies have advanced, so have unscrupulous techniques to invade, damage or steal personal and business computer stored data. Safeguarding one of corporate American's most significant assets, its data, is critical to the safety and economic viability of our country. Protecting corporate and governmental resources from the acts of terrorists and criminals is now a prime national concern, and there is high demand for network security professionals in the job market. This course helps to prepare students for network security positions in the workforce or for further study in specialized security fields. It also provides the knowledge necessary for students seeking to pass the Security+ certification exam.

Educational Objectives: As a result of taking this course, students will develop a working knowledge of:

• Security terminology, the purpose and goals of network security policies and various security threats and vulnerabilities;
• Different types of authentication, including Kerberos, CHAP, digital certificates, tokens, biometrics, mutual authentication and multi-factor authentication;
• Major types of attacks and malicious codes that commonly affect the confidentiality, integrity, and availability of networks;
• The business impact of security breaches with countermeasures and best practices to prevent or mitigate their effect;
• Concepts and practices of remote access, including VPNs, RADIUS authentication, TACACS+, Layer 2 and point-to-point Tunneling Protocols, IPSec and Secure Shell
• Email vulnerabilities and methods to safeguard against them, along with the benefits of PGP and S/MIME;
• Protocols including those commonly exploited by attackers on the Internet such as SSL/TLC, HTTPS, Buffer Overflow, ActiveX and SMTP;
• Centralized services such as LPDA;
• FPNs and RAS technology;
• Best practices to protect network media from corruption, theft and catastrophic loss;
• DMZs, NAT, FLANs and tunneling for securing network topologies;
• Intrusion detection systems for both host-based and network-based systems;
• Security baselines and operating system hardening practices;
• Basics of algorithms and how they are used in modern cryptography, including the differences between asymmetric and symmetric algorithms and the basics of cryptography (PKI certificates);
• Physical security such as where data storage systems are located within an organization, biometrics, and fire safety;
• Disaster recovery planning, its process and procedures;
• Risk identification and documentation.

Outline of Topics to be Covered: This course will cover the following topics:

• Defining security objectives, developing a security plan and responding to incidents
• Basic Router and Switch Security
• Network Vulnerabilities, Threats and Attacks
• Security Configuration Tools
• Router ACLs (including lock & key, reflective, time-based and Turbo)
• Algorithms: DES, AES and RC4
• CBAC (including alerts, audit trails, timeouts and thresholds, half-open connection limits and inspection rules);
• Router AAA Security including TACACS+ and Radius
• Cisco Secure ACS
• Router Intrusion Detection, Monitoring and Management (Cisco IOS Firewall Intrusion Detection)
• Router Site-to-Site VPNs
• Cryptosystem including symmetrical and asymmetrical encryption, Diffie-Hellman, HMAC, and Digital Certificates
• Router Remote Access VPNs
• IPSec and IKE
• Router MC workflow and tasks
• Physical Layer Security
• Operating System Security
• Verifying user and host identify
• Hardening the operating system
• Ensuring network confidentiality
• Trends that affect network security

Textbooks:

• Fundamentals of Network Security Companion Guide (Cisco Networking Academy Program) Cisco Systems, Inc., Cisco Networking Academy Program ISBN: 1587131226 $72.00
• Fundamentals of Network Security Lab Companion and Workbook (Cisco Networking Academy Program) Cisco Systems, Inc., Cisco Networking Academy Program ISBN: 1587131234 $31.46

Assignments: Course requirements include oral presentations, written research assignments, completion of hands-on labs and a comprehensive semester project. There is a mid-term and final exam as well.

Grading and Evaluation Criteria: Quizzes, chapter tests, oral presentations and hands-on labs will be used to assess student skills and knowledge as well as a mid-term and final exam. For students seeking graduate credit, there will be additional Challenge Labs and research papers on assigned topics.