ITNT-2370: NETWORK SECURITY FUNDAMENTALS

Transcription

1 ITNT-2370: Network Security Fundamentals 1 ITNT-2370: NETWORK SECURITY FUNDAMENTALS Cuyahoga Community College Viewing:ITNT-2370 : Network Security Fundamentals Board of Trustees: Academic Term: Fall 2018 Subject Code ITNT - Info Tech-Networking Software Course Number: 2370 Title: Network Security Fundamentals Catalog Description: A survey examination of network security fundamentals involved in creating and managing secure computer network environments. Both hardware and software topics are considered, including authentication methods, remote access, network security architectures and devices, cryptography, forensics and disaster recovery plans. Serves as preparation basis for CompTIA Security+ exam. Credit Hour(s): 3 Lecture Hour(s): 2 Lab Hour(s): 2 Requisites Prerequisite and Corequisite ITNT-2300 Networking Fundamentals, or EET-1302 Cisco I Basic Networking Technologies and EET-1312 Cisco II Basic Routing and Switching. I. ACADEMIC CREDIT Academic Credit According to the Ohio Department of Higher Education, one (1) semester hour of college credit will be awarded for each lecture hour. Students will be expected to work on out-of-class assignments on a regular basis which, over the length of the course, would normally average two hours of out-of-class study for each hour of formal class activity. For laboratory hours, one (1) credit shall be awarded for a minimum of three laboratory hours in a standard week for which little or no out-of-class study is required since three hours will be in the lab (i.e. Laboratory 03 hours). Whereas, one (1) credit shall be awarded for a minimum of two laboratory hours in a standard week, if supplemented by out-of-class assignments which would normally average one hour of out-of class study preparing for or following up the laboratory experience (i.e. Laboratory 02 hours). Credit is also awarded for other hours such as directed practice, practicum, cooperative work experience, and field experience. The number of hours required to receive credit is listed under Other Hours on the syllabus. The number of credit hours for lecture, lab and other hours are listed at the beginning of the syllabus. Make sure you can prioritize your time accordingly. Proper planning, prioritization and dedication will enhance your success in this course. The standard expectation for an online course is that you will spend 3 hours per week for each credit hour. II. ACCESSIBILITY STATEMENT If you need any special course adaptations or accommodations because of a documented disability, please notify your instructor within a reasonable length of time, preferably the first week of the term with formal notice of that need (i.e. an official letter from the Student Accessibility Services (SAS) office). Accommodations will not be made retroactively. For specific information pertaining to ADA accommodation, please contact your campus SAS office or visit online athttp:// Blackboard accessibility information is available athttp://access.blackboard.com. Eastern (216) Voice Metropolitan (216) Voice

2 2 ITNT-2370: Network Security Fundamentals Western (216) Voice Westshore (216) Voice Brunswick (216) Voice Off-Site (216) Voice III. ATTENDANCE TRACKING Regular class attendance is expected. Tri-C is required by law to verify the enrollment of students who participate in federal Title IV student aid programs and/or who receive educational benefits through other funding sources. Eligibility for federal student financial aid is, in part, based on your enrollment status. Students who do not attend classes for the entire term are required to withdraw from the course(s). Additionally, students who withdraw from a course or stop attending class without officially withdrawing may be required to return all or a portion of the financial aid based on the date of last attendance. Students who do not attend the full session are responsible for withdrawing from the course(s). Tri-C is responsible for identifying students who have not attended a course, before financial aid funds can be applied to students accounts. Therefore, attendance will be recorded in the following ways: For in-person courses, students are required to attend the course by the 15th day of the semester, or equivalent for terms shorter than 5-weeks, to be considered attending. Students who have not met all attendance requirements for an in-person course, as described herein, within the first two weeks of the semester, or equivalent, will be considered not attending and will be reported for non-attendance and dropped from the course. For blended-learning courses, students are required to attend the course by the 15th day of the semester, or equivalent for terms shorter than 5-weeks, or submit an assignment, to be considered attending. Students who have not met all attendance requirements for a blended-learning courses, as described herein, within the first two weeks of the semester, or equivalent, will be considered not attending and will be reported for non-attendance and dropped from the course. For online courses, students are required to login in at least two (2) times per week and submit one (1) assignment per week for the first two (2) weeks of the semester, or equivalent to the 15th day of the term. Students who have not met all attendance requirements for an online course, as described herein, within the first two weeks of the semester, or equivalent, will be considered not attending and will be reported for non-attendance and dropped from the course. At the conclusion of the first two weeks of a semester, or equivalent, instructors report any registered students who have Never Attended a course. Those students will be administratively withdrawn from that course. However, after the time period in the previous paragraphs, if a student stops attending a class, wants or needs to withdraw, for any reason, it is the student's responsibility to take action to withdraw from the course. Students must complete and submit the appropriate Tri-C form by the established withdrawal deadline. Tri-C is required to ensure that students receive financial aid only for courses that they attend and complete. Students reported for not attending at least one of their registered courses will have all financial aid funds held until confirmation of attendance in registered courses has been verified. Students who fail to complete at least one course may be required to repay all or a portion of their federal financial aid funds and may be ineligible to receive future federal financial aid awards. Students who withdraw from classes prior to completing more than 60 percent of their enrolled class time may be subject to the required federal refund policy. If illness or emergency should necessitate a brief absence from class, students should confer with instructors upon their return. Students having problems with class work because of a prolonged absence should confer with the instructor or a counselor. IV. CONCEALED CARRY STATEMENT College policy prohibits the possession of weapons on college property by students, faculty and staff, unless specifically approved in advance as a job-related requirement (i.e., Tri-C campus police officers) or, in accordance with Ohio law, secured in a parked vehicle in a designated parking area only by an individual in possession of a valid conceal carry permit. As a Tri-C student, your behavior on campus must comply with the student code of conduct which is available on page 29 within the Tri-C student handbook, available athttp:// must also comply with the College s Zero Tolerance for Violence on College Property available athttp:// documents/ zero-tolerance-for-violence-policy.pdf Outcomes Course Outcome(s): Assess, design, implement, and maintain basic network security policies and practices to secure a network. Objective(s): 1. Describe computer forensics approaches and select when to use them. 2. Explain various network security terms and concepts. 3. Define the need for network security and how to implement it. 4. Analyze and compare hardware and software used to implement network security. 5. Relate how to set-up and operate a secure network. 6. Diagram and differentiate common network security architectures.

3 ITNT-2370: Network Security Fundamentals 3 7. Explain network security threats and countermeasures for the wired and wireless network environment including hardware, software, protocols and services. 8. Evaluate the need for security policies based on given scenarios. 9. Create and critique disaster recovery plans. Methods of Evaluation: 1. Exams 2. Research Paper / Report 3. Presentation 4. Activities / Labs 5. Quizzes 6. Scenario evaluations Course Content Outline: 1. Introduction to Security a. Challenges of Securing Information i. Today s Security Attacks ii. Difficulties in Defending Against Attacks b. What is Information Security i. Defining Information Security ii. Information Security Terminology c. Attacker Examples i. Cybercriminals, Script Kiddies, Brokers, Insiders, Cyberterrorists, Hacktivists, State-Sponsored, and other attackers d. Attacks and Defenses i. Attack Steps ii. Attack Defenses 2. Malware and Social Engineering Attacks a. Malware Attacks i. Circulation/Infection ii. Concealment iii. Payload Capabilities b. Social Engineering Attacks i. Psychological Approaches ii. Physical Procedures 3. Application and Networking-Based Attacks a. Application Attacks i. Server-side Web Application Attacks ii. Client-side Application Attacks iii. Impartial Overflow Attacks b. Networking-Based Attacks i. Denial of Service (DoS) ii. Interception iii. Poisoning iv. Attacks on Access Rights 4. Host, Application, and Data Security a. Securing the Host i. Devices ii. Operating Systems iii. Using Antimalware b. Securing Static Environments c. Application Security i. Application Development Security ii. Application Hardening and Patch Management d. Securing Data 5. Basic Cryptography a. Cryptography Defined i. Cryptography and Security ii. Cryptography Defined b. Cryptographic Algorithms

4 4 ITNT-2370: Network Security Fundamentals i. Hash Algorithms ii. Symmetric Cryptographic Algorithms iii. Asymmetric Cryptographic Algorithms iv. Other Algorithms c. Using Cryptography i. Software Encryption ii. Hardware Encryption 6. Advanced Cryptography a. Digital Certificates i. Digital Certificates Defined ii. Digital Certificate Management iii. Digital Certificate Types b. Public Key Infrastructure (PKI) i. Public Key Infrastructure Defined ii. Public Key Cryptography Standards iii. Trust Models iv. PKI Management c. Key Management i. Key Storage ii. Key Usage iii. Key Handling Procedures d. Cryptographic Transport Protocols i. Secure Sockets Layer (SSL) ii. Transport Layer Security (TLS) iii. Secure Shell (SSH) iv. Hypertext Transport Protocol Secure (HTTPS) v. IP Security (IPsec) vi. Other appropriate Protocols 7. Network Security Fundamentals a. Security Through Network Devices i. Standard Network Devices ii. Network Security Hardware b. Security Through Network Technologies i. Network Address Translation (NAT) ii. Network Access Control (NAC) iii. Other Appropriate Technologies c. Security Through Network Design Elements i. Demilitarized Zone (DMZ) ii. Subnetting iii. Virtual LANs (VLANs) iv. Remote Access 8. Administering a Secure Network a. Common Network Protocols i. Internet Control Message Protocol (ICMP) ii. Simple Network Management Protocol (SNMP) iii. Domain Name System (DNS) iv. File Transfer Protocols v. Storage Protocols vi. NetBIOS vii. Telnet viii. IPv6 ix. Other Appropriate Protocols b. Network Administration Principles i. Device Security ii. Monitoring and Analyzing Logs iii. Network Design Management iv. Port Security c. Securing Network Applications and Platforms

5 i. IP Telephony ii. Virtualization iii. Cloud Computing 9. Wireless Network Security a. Wireless Attacks i. Bluetooth Attacks ii. Near Field Communication (NFC) Attacks iii. Wireless Local Area Network (WLAN) Attacks b. Vulnerabilities of IEEE Wireless Security i. Wired Equivalent Privacy (WEP) ii. Wi-FiProtected Setup (WPS) iii. MAC Address Filtering iv. Disabling SSID Broadcasts v. Other vulnerabilities as appropriate c. Wireless Security Solutions i. Wi-Fi Protected Access (WPA) ii. Wi-Fi Protected Access 2 (WPA2) iii. Additional Wireless Security Protections 10. Mobile Device Security a. Types of Mobile Devices b. Mobile Device Risks i. Limited Physical Security ii. Connecting to Public Networks iii. Location Tracking iv. Installing Unsecured Applications v. Accessing Untrusted Content vi. Bring Your Own Device (BYOD) Risks c. Securing Mobile Devices i. Device Setup ii. Device and App Management iii. Device Loss or Theft d. Mobile Device App Security e. BYOD Security 11. Access Control Fundamentals a. Access Control Defined i. Access Control Terminology ii. Access Control Models iii. Best Practices for Access Control b. Implementing Access Control i. Access Control Lists (ACLs) ii. Group Policies iii. Account Restrictions c. Authentication Services i. RADIUS ii. Kerberos iii. Terminal Access Control Access Control System (TACACS) iv. Lightweight Directory Access Protocol (LDAP) v. Security Assertion Markup Language (SAML) 12. Authentication and Account Management a. Authentication Credentials i. What You Know ii. What You Have iii. What You Are iv. What You Do v. Where You Are b. Single Sign-On i. Appropriate Examples which may include; Microsoft Account, Open ID, Open Authorization (OAuth) ii. Or Other Examples c. Account Management ITNT-2370: Network Security Fundamentals 5

6 6 ITNT-2370: Network Security Fundamentals 13. Business Continuity a. Business Continuity Defined b. Disaster Recovery i. Disaster Recovery Plan (DRP) ii. Redundancy and Fault Tolerance iii. Data Backups c. Environmental Controls i. Fire Suppression ii. Electromagnetic Interference (EMI) Shielding iii. HVAC d. Incident Response i. Forensics ii. Incident Response Procedures 14. Risk Mitigation a. Controlling Risk i. Privilege Management ii. Change Management iii. Incident Management iv. Risk Calculation b. Reducing Risk Through Policies i. Security Policy Defined ii. Balancing Trust and Control iii. Designing a Security Policy iv. Security Policy Types c. Awareness and Training i. Compliance ii. User Practices iii. Threat Awareness Training Techniques 15. Vulnerability Assessment a. Assessing Vulnerabilities i. Vulnerability Assessment Defined ii. Assessment Techniques iii. Assessment Tools b. Vulnerability Scanning Vs. Penetration Testing i. Vulnerability Scanning ii. Penetration Testing c. Third-Party Integration d. Mitigating and Deterring Attacks i. Security Posture ii. Selecting Appropriate Controls iii. Configuring Controls iv. Hardening v. Reporting Resources Ciampa, Mark.Security+ Guide to Networking Security Fundamentals.5th. ed. Boston, MA: Thomson Learning/Course Technology, Kim, David and Micheal G. Solomon.Fundamentals of Information Security.Sudbury, MA: Jones Bartlett Learning, Whitman, Michael and Herbert J. Mattord, Dave Mackey, Andrew Green.Guide to Network Security.1st. Boston MA: Cengage Learning, EC-Council.Network Defense: Security and Vulnerability Assessment.1st Edition. Boston, MA: Cengage Learning, Perez, Andre.Network Security.1st Edition. Wiley ISTE, 2014.

7 ITNT-2370: Network Security Fundamentals 7 Dulaney, Emmett and Chuck Esttomm.CompTIA Security+ Study Guide, EXAM SYO-401.6th Edition. Wiley / Sybex, Delaney, Emmett.CompTIA Security+ Deluxe Study Guide: EXAM SYO-401.4th Edition. Wiley / Sybex, Resources Other ( ( ( ( Top of page Key: 2572