Department of Computer Science and Technology, UTU

Transcription

1 205 Teaching Schedule Cyber Security Objective:To understand fundamentals of cyber security, be familiar with security attacks and security mechanisms, study legal perspectives of cyber security in India, gain knowledge of digital forensics and its usage in cyber security. Course Outcomes: Upon completion of the course, students shall be able to CO: identify what cybercrime is and appreciate the importance of difference types cybercrime. CO2: learn about different types of cybercriminals and the motives behind them. CO3: illustrate various types of cyber attacks, tools used for gathering information about target. CO4: examine a tools and methods used in cybercrime. CO5: identify need for cyber laws, especially in the Indian context. CO6:describe the meaning of digital signature, public-key infrastructure as well as the implications of digital dffdfdfdfsignature in context of the Indian IT Act. CO7:describe the fundamentals of digital forensics. CO8: know about a tools and techniques for the forensics. Unit Sub No. of Topics Reference Teaching Evaluation Unit Lecture(s) Chapter/ Methodologies Parameter Additional Reading. [05] Cyber Security., Basic terminologies : NGSB # Page.2 Cybercrime, Cyber space, no. 2-3, 4 Cybersquatting, Cyber punk, Cyber warfare, Cyber fraud and cyber terrorism. Seminar(Case.3,.4 3 Cyber Criminals, Cyber crime classification NGSB # Page no. 6-9, 2- Study ) 3.5 Categories of cyber crime no. 46, [07] Cyber offenses 2. Planning cyber attacks phases, types and tools no , 54, 58, Social engineering no Cyber stalking : types and method no Quiz 2.4 Botnets no Ms. Trupti Rathod Page

2 Attack vectors no Trends in mobility types, NGSB #3 Page classification of attacks in 3G mobile networks no Credit Card frauds NGSB #3 Page no [06] Cyber crime methods and security mechanisms 3. Stages of a network attack 25NGSB #4 Page no , Denial Of Service attacks : NGSB #4 Page Classification,tools and preventive measures no Distributed DOS attacks : NGSB #4 Page Classification,tools and no preventive measures 3.4 SQL injection : Agenda and NGSB #4 Page prevention no Buffer overflow: types and NGSB #4 Page methods to minimize attacks no Attacks on wireless networks NGSB #4 Page components of wireless no networks, attack techniques and security mechanism 4 [05] Legal Perspectives of Cyber Security 4. Indian ITA 2000 : ITA sections NGSB #6 Page no. 254, Digital signature and ITA: NGSB #6 Page 2 Public key certificate, PKI no , Representation of digital NGSB #6 Page signatures in ITA 2000 no Cryptographic perspective of NGSB #6 Page ITA 2000 no Video and Conceptual reading from textbook Unit Test Ms. Trupti Rathod Page 2

3 205 5 [05] Digital Forensics Fundamentals 5. Digital forensics Science NGSB #7 Page no , Cyber forensics and digital NGSB #7 Page evidence no. 327, Digital forensics life cycle NGSB #7 Page 2 no , Chain of custody concept NGSB #7 Page no [08] Forensics Methods 6. Relevance of OSI 7 layer model NGSB #8 Page to computer forensics : OSI no model overview, hacker agenda 6.2 Special tools and techniques: NGSB #8 Page Forensic toolkits no Data mining techniques used in NGSB #8 Page forensics no Hand held devices and digital NGSB #8 Page 3 forensics no. 43, Tool kits for hand held devices NGSB #8 Page 2 no Text Book : Unit Test 2 Internal Exam. Nina Godbole, Sunit Belapure, Cyber Security Understanding cyber crimes, computer forensics and legal perspectives, Wiley [NGSB] Course Units and Course Outcomes Mapping Unit Unit Course outcome No. CO CO2 CO3 CO4 CO5 CO6 C07 C08 Cyber Security 2 Cyberoffenses 3 Cyber crime methods and prevention 4 Legal Perspectives of Cyber Security 5 Digital Forensics fundamentals 6 Forensics methods Ms. Trupti Rathod Page 3

4 205 Course Outcomes and Programme Outcomes Mapping Course Programme Outcomes Outcomes PO PO2 PO3 PO4 PO5 PO6 CO CO2 CO3 CO4 CO5 C06 C07 C08 Activities/Practicum: The following activities shall be carried out by the students. Self-study of following topics shall be done by the students:. Key loggers and spywares. 2. Virus and Worms. 3. Trojan horse and backdoors. The following activity shall be carried out by the course teacher Discuss real case studies of cyber stalking and harassment. Show demonstration of security settings at operating system and by security software. Modes of Transaction: For Unit 4: (All sub units), Students will bring their textbooks, I will make them underline important points and discuss them accordingly. and discussion will used as mode of transaction for rest of units. Video presentation will used for SQL injection attack and demonstration on Bombing. Concept Map: It is a hierarchical / tree based representation of all topics covered under the course. This gives direct / indirect relationship /associations among topics as well as subtopics. Course : Cyber Security CyberSecurity Introduction of CyberSecurity Forensic methods Cyberoffenses Digital forensics fundamentals Cybercrime methods and security mechanisms Legal perspectives of cybersecurity Ms. Trupti Rathod Page 4

5 205 Unit : Cybersecurity Introduction of CyberSecurity Basics of Cyber Security Computer crime Cybercrime Cyberspace Cybersquatting Cyberpunk Cyberwarfare Cyberterrorism Cybercriminals Groups Not intersted in recognition Hungry for recognition The insiders Classification Of Cybercrime Cybercrime categories Targett based Event based Unit 2: Cyberoffenses cyberattacks Passive Attacks Active Attacks Social Engineering Cyberoffenses Online Stalkers Cyberstalking Offline Stalkers Attack vector Trends in mobility Botnets:The fuel for cybercrime Session mobility Service mobility User mobility Device mobility Ms. Trupti Rathod Page 5

6 205 Unit 3: Cyber crime methods & security mechanisms Cybercrime methods and security machanisms Stages of network attack Attacks On Wireless Networks DOS and DDOS Attacks Buffer overflow Classification of DOS attacks Tools Preventive measures SQL Injection Stack based Buffer Overflow Heap Based Buffer Overflow Ms. Trupti Rathod Page 6

7 205 Unit 4: Legal perspective of cyber security Legal perspective of Cybersecurity Indian ITA 2000 : ITA sections Digital signature and ITA Cryptographic perspective of ITA 2000 Public-Key Certificate Digital Signatures in the ITA 2000 Unit 5: Digital forensics fundamentals Forensics Methods Relevance of OSI model Tools & forensics toolkits Datamining techniques used in forensics Handheld devices and digital forensics Evidence collection Rules of evidence File carving Data recovery Partition recovery Testify Preparation and Iddentification Collection and Recording Reporting Analysis,Attribution and Interpretation Storing and Transporting Examination/Investigation Ms. Trupti Rathod Page 7

8 205 Unit 6: Forensics methods Relevance of OSI model Forensics Methods Datamining techniques used in forensics Tools & forensics toolkits Toolkits for handheld devices Handheld devices and digital forensics File carving Data recovery Evidence collection Rules of evidence Partition recovery Ms. Trupti Rathod Page 8