F21AN Advanced Network Security

Dr Mike JustDr Hani Ragab Hassen

Course co-ordinator(s): Dr Mike Just (Edinburgh), Dr Hani Ragab Hassen (Dubai).

Aims:

  • Improve students’ critical analysis skills in computer network security and allow them to identify network security threats in a systematic way.
  • Provide the student with in-depth understanding of penetration testing concepts and methodologies.
  • Give practical experience of exploiting vulnerabilities in common computer system architectures.
  • Impart a deep understanding of common techniques to implement countermeasures.

Detailed Information

Course Description: Link to Official Course Descriptor.

Pre-requisite course(s): F21CN Computer Network Security Good understanding of fundamental computer security topics such as might be obtained by taking F21CN Computer Network Security.

Location: Dubai, Edinburgh.

Semester: 2.

Syllabus:

  • Internet Security: review of some TCP/IP stack Protocols and their known vulnerabilities.
  • Wireless Security: Wired Equivalent Privacy (WEP) vulnerabilities, Wireless Protected Access (WPA) and IEEE802.11i
  • ISO27001: Information Security Management. Security Policy, Organisational Security, Asset Classification and Control, Personal Security, Physical and Environmental Security, Communications and Operations Security, Access Control, System Development and Maintenance, Business Continuity Management, and Compliance.
  • Penetration testing: penetration testing process: Reconnaissance, Scanning, Gaining access, Maintaining access, and Covering tracks.
  • Digital Forensics: introduction, EnCase and open source tools.
  • Privacy and P3P.

Learning Outcomes: Subject Mastery

Understanding, Knowledge and Cognitive Skills Scholarship, Enquiry and Research (Research-Informed Learning)

At the end of this course, the students will be able to:

  • Identify and explain vulnerabilities of network protocols.
  • Design and implement countermeasures to protect a network from unauthorised network access.
  • Identify threats and implement measures to protect against threats in wireless networks.
  • Test and evaluate the security of an IT infrastructure.

Learning Outcomes: Personal Abilities

Industrial, Commercial & Professional Practice Autonomy, Accountability & Working with Others Communication, Numeracy & ICT

  • Ability to critically appraise the security of an IT infrastructure.
  • Showing teamwork skills and being an effective member of a penetration testing team.
  • Develop a set of ethical best practices needed for a security career.
  • Ability to make decisions regarding how to secure a system in absence of a complete picture of its configuration.

Assessment Methods:

Assessment: Examination: (weighting – 60%) Coursework: (weighting – 40%)
Re-assessment: Examination: (weighting – 100%)

SCQF Level: 11.

Credits: 15.