Core Module 2: Network Security

Units:

1. System & Perimeter security
• VPN, VLAN
• Access control, Packet filtering
• Firewall, Stateful firewall
• IDS, IPS
• OS Security
• OS Hardening
• Application Hardening
1. web server, Email, DNS etc
2. Database

2. Security Assessment
• Security Assessment frameworks (OWASP, OSSTM, etc)
• Vulnerability Assessment (System and Network)
• Ethical Hacking and penetration testing
• System, Network and Application configurations
• Authorization testing
• Authentication testing
• Configuration assessment

3. LAN & WAN
o TCP/IP
o IP Addressing
o Internetwork Backbones
o Network Design (LAN Design & WAN Design)
o Networking protocols (802.3, 802.11, IP, TCP, UDP, MPLS, OSPF, RIP, BGP, HDLC, PPP)
o Device configuration (router and switch)
 Basic Router Configuration
 Advanced Router Configuration
 Routing Protocols
 DiffServ
 Basic Switch Configuration
 MAC Level Configuration
 VLAN Configuration
o Traffic measurements (Latency, Throughput, Delay, jitter etc)
o Network Management (SNMP, RMON)
o Traffic Engineering (QoS)

4. Cyber Threats and attacks
o Spam
o Fhishing
o DoS/DDoS
o Social Engineering
o Malwares, adware, spyware
o SQL Injections
o File Inclusions
o Cross Site Sricpting
o Web defacement
o War dialing
o War driving
o Virus & Worms
o Frauds
o Buffer-overflows
o War-walking
o Sniffing
o Spoofing

5. Protocols
o IPSEC
o Kerberos
o SSL/TLS]
o Electronic Voting protocol
o Application specific protocols
o PGP, SMIME

Reference Books:
1) Computer Networking: A top down approach, 5/e by James F. Kurose and Keith W. Ross: ISBN: 0-13-607967-9
2) Cryptography and Network Security, Third Edition by William Stallings