F20AN Advanced Network Security – School of Mathematical and Computer Sciences

Course co-ordinator(s): Dr Hani Ragab Hassen (Dubai), Mehran Sharghi (Edinburgh).

Aims:

Improve students’ analysis skills and allow them to identify network security threats in a systematic way.
Give practical experience of exploiting vulnerabilities in commons computer system architectures.
Impart a good understanding of common techniques to implement countermeasures.

Provide the student with in-depth understanding of penetration testing concepts and methodologies.

Detailed Information

Course Description: Link to Official Course Descriptor.

Pre-requisite course(s): F29DC Data Communications and Networking .

Location: Dubai, Edinburgh.

Semester: 2.

Syllabus:

Internet Security: review of some TCP/IP stack Protocols and their known vulnerabilities.
Wireless Security: Wired Equivalent Privacy (WEP) vulnerabilities, Wireless Protected Access (WPA) and IEEE802.11i
ISO27001: Information Security Management. Security Policy, Organisational Security, Asset Classification and Control, Personal Security, Physical and Environmental Security, Communications and Operations Security, Access Control, System Development and Maintenance, Business Continuity Management, and Compliance.
Penetration testing: penetration testing process: Reconnaissance, Scanning, Gaining access, Maintaining access, and Covering tracks.
Digital Forensics: introduction, EnCase and open source tools.
Privacy and P3P.

Learning Outcomes: Subject Mastery

At the end of this course, the students will be able to:

Test and evaluate the security of an IT infrastructure.

Learning Outcomes: Personal Abilities

Ability to appraise the security of an IT infrastructure.
Showing teamwork skills and being an effective member of a penetration testing team.
Develop a set of ethical best practices for a security career.
Ability to make decisions regarding how to secure a system in absence of a complete picture of its configuration.

SCQF Level: 10.

Credits: 15.