F20AN Advanced Network Security

Dr Mike JustDr Hani Ragab Hassen

Course co-ordinator(s): Dr Mike Just (Edinburgh), Dr Hani Ragab Hassen (Dubai).

Aims:

  • Improve students’ analysis skills and allow them to identify network security threats in a systematic way.
  • Give practical experience of exploiting vulnerabilities in commons computer system architectures.
  • Impart a good understanding of common techniques to implement countermeasures.

Provide the student with in-depth understanding of penetration testing concepts and methodologies.

Detailed Information

Course Description: Link to Official Course Descriptor.

Pre-requisite course(s): F29DC Data Communications and Networking .

Location: Dubai, Edinburgh.

Semester: 2.

Syllabus:

  • Internet Security: review of some TCP/IP stack Protocols and their known vulnerabilities.
  • Wireless Security: Wired Equivalent Privacy (WEP) vulnerabilities, Wireless Protected Access (WPA) and IEEE802.11i
  • ISO27001: Information Security Management. Security Policy, Organisational Security, Asset Classification and Control, Personal Security, Physical and Environmental Security, Communications and Operations Security, Access Control, System Development and Maintenance, Business Continuity Management, and Compliance.
  • Penetration testing: penetration testing process: Reconnaissance, Scanning, Gaining access, Maintaining access, and Covering tracks.
  • Digital Forensics: introduction, EnCase and open source tools.
  • Privacy and P3P.

Learning Outcomes: Subject Mastery

 At the end of this course, the students will be able to:

  • Identify and explain vulnerabilities of network protocols vulnerabilities.
  • Design countermeasures to protect a network from unauthorised network access.
  • Identify threats and measures to protect against threats in wireless networks.

Test and evaluate the security of an IT infrastructure.

Learning Outcomes: Personal Abilities

  • Ability to appraise the security of an IT infrastructure.
  • Showing teamwork skills and being an effective member of a penetration testing team.
  • Develop a set of ethical best practices for a security career.
  • Ability to make decisions regarding how to secure a system in absence of a complete picture of its configuration.

Assessment Methods:

Exam 2 hours 60%

Coursework     40%

SCQF Level: 10.

Credits: 15.