3
lecture hours
0
lab hours
3 credits
(3c-0l-3sh)
COSC
356 Network Security 3c‑0l‑3sh
Prerequisite: COSC 316 or
COSC/IFMG 352
Explores
mechanisms for protecting networks against attacks. The course
emphasizes network security applications that are used on the Internet and for
corporate networks. It investigates
various networking security standards and explores methods for enforcing and
enhancing those standards.
Upon successful completion
of this course, the student should be able to:
A. Utilize network security tools.
B. Specify procedures for defending
network systems.
C. Develop network security policies.
D. Recognize threats to network
security.
E. Deter attacks on network systems.
F. Specify procedures for recovery
from attacks on networks.
1. Network
Security Modeling (6
hours)
A look at possible security
violations and the concerns they raise for securing networks. Accessing the security needs of an
establishment; evaluating and choosing various security products and policies. An overview of the common security services
that is currently available.
2. Network
Systems Communication (3
hours)
Overview
computer network systems communication. An examination
of the frames and packets of various protocols that travel the Internet. Analysis of data at the various layers on the
Internet using the Open Systems Interconnection (OSI) Reference Model and
comparing with the (Institute of Electrical and Electronic Engineers (IEEE)
implementation. A
study of different routing mechanisms and routing tables. Comparison and contrast of
connectionless and connection‑oriented communications.
3. Security
Breaches of Interconnected Devices (6
hours)
A study of
the communication properties of network transmissions; digital communications;
electromagnetic interference, etc. A look at the various
hardware devices on the network and their contribution to the security of the
overall network.
4. Authentication
and Encryption Control
(3
hours)
Study of
methods of ensuring that both ends of a communications connection are
identifiable and verifiable. Examination of various
cryptographic methods. Comparing and contrasting public key and private key cryptographic
systems.
5. Access
Control and Detection Systems (6
hours)
A look at systems for
enforcing access control policies: firewalls and proxy servers. Analysis of packet
filtering devices and their respective methods of approach to security
enhancement. An
examination of the strengths and weaknesses of intrusions detection systems.
6. Virtual
Private Networks (6
hours)
An explanation of how
encryption and authentication of a communication channel on a public network
constitute a virtual private network. The process of ensuring the security of a virtual private network. Examination of some
alternatives to virtual private networks.
7. Averting
Intruders and Viruses (6
hours)
Establishing
the meanings and differences between viruses, Trojans, and worms on the
network. A look at various preventive measures used in
combating such intrusive elements.
8. Security
Design Issues (4
hours)
Analysis
of the threats that the network system faces. A look at various principles that go into the design on security
policies. Design
of an authentic security policy.
9.
Two class tests (2 hours)
IV. Evaluation
Methods
20% Homework assignments and Research paper.
40% Examinations. Two in‑class exams
and a final exam all of which count equally toward the 40%. Examinations consist of short‑answer,
analysis, and what‑if questions.
40% Project. Selected projects covering various aspects of network security,
especially those that cannot be covered exhaustively in class discussions.
Grading
Scale: The standard grading scale will
be used.
90%+=A;
80‑89%=B; 70‑79%=C; 60‑69%=D; below 60%=F.