Differences between revisions 23 and 77 (spanning 54 versions)
Revision 23 as of 2010-01-17 17:23:11
Size: 1938
Editor: 24-183-238-75
Comment:
Revision 77 as of 2021-02-28 16:21:59
Size: 4469
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 4: Line 4:
= CPTR 427 Network Security Class Wiki = = CPTR 427 Network Security =
Line 6: Line 6:
This page contains general information about security. For your specific class check the list below: || <<TableOfContents>> || {{http://imgs.xkcd.com/comics/cryptography.png||width=300}} ||
Line 8: Line 8:
   * Cptr427Winter2010 == Course Description ==
Line 10: Line 10:
This course provides an overview to key issues and solutions for network security and privacy issues. It provides an introduction to cryptography and its application to network and operating systems security; security threats; applications of cryptography; secret key and public key cryptographic algorithms; hash functions; authentication; security for electronic mail; intrusion detection; malicious software and firewalls. This course provides the necessary information to prepare for the CompTIA Security+™ exam SY0-501.
Line 11: Line 12:
Before you get too involved with looking at what we plan to do this semester, you need to look at '''what you should already know'''. Take a look at [[NetworkSecurity/Prerequisites]]. == Purpose, Goals & Objectives ==
Line 13: Line 14:
The purpose of this course is to introduce students to the real world of network security. Because this is an important, fast growing and changing field, the course goal covers training students to research security related information and implement the solutions found to protect vital assets. To accomplish these goals the student will research a chosen area and setup or write the necessary software on his/her own system. They will then prepare a lecture on the value, implementation and effectiveness of the chosen topic.
Lecture topics may include:
Line 14: Line 17:
 * What is Security?
 * Cryptography
 * Symmetric and asymmetric key cryptography
 * Hashes & Message Digests
 * Public Key Algorithms & Infrastructure
 * Number Theory Authentication
 * IPSec
 * SSH/SSL
 * Mail/GNU Privacy Guard
 * Hardening Issues
 * Windows
 * Firewalls
 * Web Issues
 * Intrusion Detection and Prevention
 * Wireless
 * Security Tools
Line 15: Line 34:
Below is a list of areas we will look at in NetworkSecurity Upon successful completion of this course, students will be able to:
Line 17: Line 36:
   * [[NetworkSecurity/Lab]]
   * [[NetworkSecurity/Tools]]
   * [[NetworkSecurity/Hacking]]
   * [[NetworkSecurity/Encryption]]
   * In the past we have used [[NetworkSecurity/WebScarab|Web scarab]]
 * Understand the basic security concepts applicable to system administration
 * Develop skill to be able to find useful security information
 * Develop skill to be able to understand the legal and ethical responsibilities as a network security administrator
 * Present anoral lecture and poster presentation on their own project.
 * Develop skill to be able to evaluate the effectiveness of security information
 * Develop skill to be able to understand the basics of security research
Line 23: Line 43:
= Resources =
Line 24: Line 45:
This page contains resources for Network Security CPTR 427. For assignments etc. see the [[https://eclass.e.southern.edu|Eclass website]]. For information on '''what you should already know''', take a look at [[NetworkSecurity/Prerequisites]].
Line 25: Line 47:
== Books Used in this Class == == Topics, Resources and Ideas for the future ==
/* * /NetworkSecurityEssentials4 notes from the book used in 2013. */
 * [[/Lab]]
   * [[/Nebula|Nebuala, a nice beginner hacking tutorial]]
   * [[https://www.offensive-security.com/metasploit-unleashed/|Metasploit course - free]]
 * [[/Tools]]
 * [[http://academic.comptiastore.com/|CompTIA Academic Marketplace]]
 * [[/Programs]]
 * [[/Spam]]
 * /FireWall
 * [[/Topics]]
 * /SageIdeas
 * [[http://facultyfp.salisbury.edu/despickler/personal/CryptTools.asp|Cryptotools]] from AMS/MAA conference 2011 by Dr. Don Spickler.
 * [[http://www.backtrack-linux.org/|Backtrack Penetration Testing]]
 * Two proxy tools that allow editing and observing http(s) are [[NetworkSecurity/WebScarab|Web scarab]] and [[http://www.parosproxy.org/|Paros Proxy]] - there is also some nice proxies specifically for firefox.
 * [[http://www.securitywizardry.com/radar.htm|A nice dashboard]]
 * [[http://osvdb.org/|Open Source Vulnerability Database]]
 * [[http://web.nvd.nist.gov/view/vuln/search?execution=e2s1|National Vulnerability Database]]
 * [[http://exploit-db.com/]] Once upon a time there was a site called Milw0rm.com and it was great! But the maintainer passed away and eventually it was taken over by http://exploit-db.com/.
 * Back in the stone age (relatively speaking of course) Dr. A took a course called [[Csce877]].
Line 27: Line 68:
'''Required Books''' == Materials Used in this Class ==
'''Recommended AdditionalReading'''
Line 29: Line 71:
   * [[http://www.snort.org/assets/125/snort_manual-2_8_5_1.pdf | Snort Manual]] (Free)
   * Hacking Exposed 6th Ed. ISBN: 978-0-07-161374-3
      * Each student will be responsible for presenting a chapter from this book.
      * Each student will be responsible for demonstrating an attack related to the chapter they present.
   * The Code Book: The Science of Secrecy from Ancient Egypt to Quantum Cryptography ISBN: 0385495323
      * Each student must read this New York Times Best Seller.
      * Cryptography will be studied in conjunction with the assigned chapters.
   * Cryptography and Network Security 4th Ed. ISBN: 0-13-187316-4
      * The theory of cryptography (Symmetric, Public-key, Key-management, Hash and MAC) are covered from this book
      * Applications of theory are partially covered from this book (Kerberos, X.509, IPSec)
      * Dr. A will do all the lecturing on these topics.
   * Labs will be given from handouts and rely on internet and suggested resources. Topics will be take from [[NetworkSecurity/Lab]]
 * [[http://www.snort.org/assets/125/snort_manual-2_8_5_1.pdf|Snort Manual]] (Free)
 * [[http://ofps.oreilly.com/titles/9781449320317/ch_Security.html|MVC 4 Security, Authentication and Authorization]]
 * [[http://www.tomsitpro.com/articles/information-security-certifications,2-205.html|Security Certifications]]
Line 42: Line 75:
== DES Hints ==
Line 43: Line 77:
 * http://www.cs.bham.ac.uk/research/projects/lemsys/DES/DESPage.jsp
Line 44: Line 79:

'''Recommended Book(s)'''

   * Snort IDS and IPS Toolkit ISBN-10: 1-59749-099-7
   

----
CategoryHomepage
== Past Year Class Pages ==
 * /Cptr427Winter2010

CPTR 427 Network Security

http://imgs.xkcd.com/comics/cryptography.png

Course Description

This course provides an overview to key issues and solutions for network security and privacy issues. It provides an introduction to cryptography and its application to network and operating systems security; security threats; applications of cryptography; secret key and public key cryptographic algorithms; hash functions; authentication; security for electronic mail; intrusion detection; malicious software and firewalls. This course provides the necessary information to prepare for the CompTIA Security+™ exam SY0-501.

Purpose, Goals & Objectives

The purpose of this course is to introduce students to the real world of network security. Because this is an important, fast growing and changing field, the course goal covers training students to research security related information and implement the solutions found to protect vital assets. To accomplish these goals the student will research a chosen area and setup or write the necessary software on his/her own system. They will then prepare a lecture on the value, implementation and effectiveness of the chosen topic. Lecture topics may include:

  • What is Security?
  • Cryptography
  • Symmetric and asymmetric key cryptography
  • Hashes & Message Digests

  • Public Key Algorithms & Infrastructure

  • Number Theory Authentication
  • IPSec
  • SSH/SSL
  • Mail/GNU Privacy Guard
  • Hardening Issues
  • Windows
  • Firewalls
  • Web Issues
  • Intrusion Detection and Prevention
  • Wireless
  • Security Tools

Upon successful completion of this course, students will be able to:

  • Understand the basic security concepts applicable to system administration
  • Develop skill to be able to find useful security information
  • Develop skill to be able to understand the legal and ethical responsibilities as a network security administrator
  • Present anoral lecture and poster presentation on their own project.
  • Develop skill to be able to evaluate the effectiveness of security information
  • Develop skill to be able to understand the basics of security research

Resources

This page contains resources for Network Security CPTR 427. For assignments etc. see the Eclass website. For information on what you should already know, take a look at NetworkSecurity/Prerequisites.

Topics, Resources and Ideas for the future

Materials Used in this Class

Recommended AdditionalReading

DES Hints

Past Year Class Pages

NetworkSecurity (last edited 2024-01-07 18:12:17 by scot)