• Title:Network Security Fundamentals
• Number:IT-251
• Effective Term:Spring 2009
• Course Type:Career
• Credit Hours:4
• Contact Hours:5
• Lecture Hours:3
• Lab Hours:2

Description:

This course is designed to provide students with a fundamental understanding of network security principles and implementation. Topics covered include authentication, the types of attacks and malicious code that may be used against computer networks, the threats and countermeasures for e-mail, Web applications, remote access, and file and print services. A variety of security topologies will be discussed as well as technologies and concepts used for providing secure communication channels, secure internetworking devices, intrusion detection systems, and firewalls. Hands-on exercises will be used to reinforce the concepts. 3 hrs. lecture, 2 hrs. lab/wk.

Prerequisites:

Prerequisite: IT 247

Course Fees:

None

Textbooks:

http://bookstore.jccc.edu

Supplies:

Refer to the instructor's course syllabus for details about any supplies that may be required.

Objectives:

Upon successful completion of this course, the student should be able to:

1. Describe authentication methods.
2. Identify common network attacks and malicious code.
3. Describe remote access network security technologies.
4. Identify e-mail security vulnerabilities and implement protection measures.
5. Identify vulnerabilities of Web Tools such as JavaScript and ActiveX.
6. List common directory and file transfer protection services.
7. Describe security threats against wireless data and instant messaging.
8. Explain common security features of network devices such as firewalls, routers, and switches.
9. Explain common methods used to secure transmission media.
10. Compare and contrast main network security topologies.
11. Identify common intrusion detection mechanisms.
12. List common cryptography algorithms.
13. Develop a basic security policy and a disaster recovery plan.

Content Outline and Competencies:

I. Describe Authentication Methods
   A. List common methods of access control. 
   B. Contrast authentication procedures for UNIX, and Windows operating
systems.
   C. Configure PAP (Password Authentication Protocol) and CHAP (Challenge
Authentication Protocol) authentications.
   D. Configure basic AAA (Authentication-Authorization-Accounting)
authentication using TACACS+ (Terminal Access Controller Access Plus) and
RADIUS (Remote Authentication Dial In User Service) servers.
   E. Describe biometric authentication.

II. Identify Common Network Attacks and Malicious Code
   A. Analyze port Scanning, and password sniffing techniques.
   B. Describe Trojan Horse attacks. 
   C. Identify computer viruses and worms.
   D. Identify denial of service attacks.
   E. Evaluate executable content in web pages and e-mail.

III. Describe Remote Access Network Security Technologies
   A. Describe the operation of VPNs (Virtual Private Networks).
   B. Compare and contrast the roles of RADIUS and TACACS servers in
securing remote access.
   C. Identify telecommuting vulnerabilities. 
   D. Describe IP (Internet Protocol) security protocol.  

IV. Identify E-mail Security Vulnerabilities and Implement Protection
Measures
   A. Identify e-mail vulnerabilities.
   B. Identify common e-mail encryption methods.
   C . Compare and contrast PGP (Pretty Good Privacy) and S/MIME
(Secure/Multipurpose Internet Mail Extensions)protocols. 
   D. Identify email Spam, hoaxes, and chain letters.

V. Identify Vulnerabilities of Web Tools Such as JavaScript and ActiveX
   A. List web tools vulnerabilities including JavaScript, ActiveX,
cookies, and CGI (Common Gateway Interface).  
   B. Describe the operation of SSL (Secure Socket Layer) and HTTPS (Hyper
Text Transport Protocol Secure).
   C. Outline Instant messaging security issues.

VI. List Common Directory and File Transfer Protection Services
   A. Describe LDAP (Lightweight Directory Access Protocol) operation. 
   B. Identify LDAP security benefits.
   C. Implement file shares protection measures.

VII. Describe Security Threats to Wireless Data and Instant Messaging
   A. Describe packet analysis and spoofing techniques.
   B. Identify RF jamming and data flooding.
   C. Describe the use of SSID (Service Set Identifier) in wireless
security.
   D. Analyze the operation of WEP (Wired Equivalent Privacy) protocols.
 
VIII. Explain Common Security Features of Network Devices Such as
Firewalls, Routers, and Switches
   A. Describe the operation of firewalls. 
   B. Describe the operation of routers.
   C. Describe the operation of switches.
   D. Implement a basic security policy on firewalls, routers, and
switches.

IX.  Explain Common Methods Used to Secure Transmission Media
   A. Compare and contrast common transmission media.
   B. Define measures used to secure transmission media.

X. Compare and Contrast Main Network Security Topologies
   A. Explain the concept of perimeter security topologies.
   B. Develop a secure topology design.
   C. Implement network address translation scheme.

XI. Identify Common Intrusion Detection Mechanisms
   A. Compare network-based and host-based IDS.
   B. List common IDS products.
   C. Explain the concept of Honeypots.

XII. List Common Cryptography Algorithms
   A. Encrypt and decrypt a file, and explore the details of a sample
encryption algorithm. 
   B. Contrast public key versus symmetric encryption.
   C. Describe message digests encryption.
   D. Describe public key infrastructure.
  
XIII. Develop a Basic Security Policy and a Disaster Recovery Plan
   A. Analyze internal and external security risks.
   B. Define disaster recovery procedures. 
   C. Develop an action plan.
   D. Write a formal security plan.

Method of Evaluation and Competencies:

Evaluation of student mastery of course competencies will be accomplished using the following methods:

Examinations          50% 
Projects/Assignments  50% 
Total                100%

Grade Criteria:
 A = 90 – 100%
 B = 80 –  89% 
 C = 70 –  79%
 D = 60 –  69%
 F =  0 –  59%

Caveats:

None

Student Responsibilities:

Disabilities:

If you are a student with a disability, and if you will be requesting accommodations, it is your responsibility to contact Access Services. Access Services will recommend any appropriate accommodations to your professor and his/her director. The professor and director will identify for you which accommodations will be arranged.

JCCC provides a range of services to allow persons with disabilities to participate in educational programs and activities. If you desire support services, contact the office of Access Services for Students With Disabilities (913) 469-8500, ext. 3521 or TDD (913) 469-3885. The Access Services office is located in the Success Center on the second floor of the Student Center.