|
Home | Back
|
|
IS-821 Advanced Network Security
|
|
Campus
|
MCS
|
|
Programs
|
PG
|
|
Session
|
Fall Semester 2016
|
|
Course Title
|
Advanced Network Security
|
|
Course Code
|
IS-821
|
|
Credit Hours
|
3+0
|
|
Pre-Requisutes
|
Computer Networks Knowledge
|
|
Course Objectives
|
To understand network security threats and countermeasures.
|
|
Detail Content
|
- The Threat Environment: Attackers and their Attacks Basic Security Terminology, Employee and Ex-Employee threats, Traditional External Attacks, The Criminal Era, Cyber ware and Cyber terror, A Constantly Changing Threat Environment.
- DDoS and Traceback TCP Handshake, IP Spoofing & SYN Flood, Distributed DoS (DDoS) Attacks, Prevention and Detection, Trace back, Input Debugging, Controlled Flooding, ICMP Trace back, Probabilistic Marking, Botnets, Elements of Cryptography Introduction, Cryptographic Systems, VPN, SSL/TLS, WAN Security, Ethernet Security, Wireless Security.
- IP Security IPSec architecture & concepts, IPSec authentication header, IPSec encapsulating security payload, Key Management –Concepts, Manual Exchange, Internet Key Exchange, IPSec Strengths & Weaknesses, Implementation of IPSec
- Access Controls Org and Human Controls, Physical Access and Security, Biometric Authentication, Cryptographic Authentication, Authorization, Central Authentication, Directory Servers, Full Identification Management.
- Firewalls Introduction, Typical Configuration, Static Packet Filtering, State full Packet Filter, NAT, Application Proxy firewall and Content Filtering, Firewall Architecture, Encrypted Tunnels, Firewall Management, Tools for Log reading
- Intrusion Detection & Prevention Systems Elements of Intrusion Detection, Approaches, Misuse Detection, Anomaly Detection, Monitoring Networks and Hosts, Audit Data Preprocessing, Host-based IDSs, Network IDSs, Antivirus Filtering and Unified Threat Management, Intrusion Response for Threats.
|
|
Text/Ref Books
|
- Corporate Computer and Network Security, Second Edition by Raymond R. Panko, Prentice Hall, 2010.
- Network security: PRIVATE communication in a PUBLIC world by Kaufman, Perlman, and Speciner
- William R. Cheswick and Steven M. Bellovin, Firewalls and Internet Security, Addison-Wesley, 1994. ISBN 0-201-63357-4 3.
|
|
Time Schedule
|
Fall Semester 2015
|
|
Faculty/Resource Person
|
Lt Col Dr. Imran Rashid, PhD
University of Manchester, UK
Discipline: Telecomm
Specialization: MIMO Wireless Communication
|
|