41890 Applying Network Security
Warning: The information on this page is indicative. The subject outline for a
particular session, location and mode of offering is the authoritative source
of all information about the subject for that offering. Required texts, recommended texts and references in particular are likely to change. Students will be provided with a subject outline once they enrol in the subject.
Subject handbook information prior to 2022 is available in the Archives.
Credit points: 6 cp
Subject level:
Undergraduate
Result type: Grade and marksRequisite(s): 48730 Cybersecurity AND 31277 Routing and Switching Essentials
Anti-requisite(s): 32310 Network Security Appliances
Description
In the network security subject students learn about the theory underlying computer-security. This subject applies this theory to practice by using material based on the Cisco Network Security course. The emphasis is on network security appliances and networking infrastructure such as firewalls, access control, secure network design and Virtual Private Networks.
Students work collaboratively throughout the session. From week 2 students form groups of three and all lab work is a shared experience. All additional activities, such as researching concepts, exploring networking challenges and building the required networks, are achieved by students working cooperatively.
Groups are also encouraged to share their findings with other groups, and while most assessments are individual, this shared knowledge contributes positively to the whole learning experience.
Subject learning objectives (SLOs)
Upon successful completion of this subject students should be able to:
| 1. | Describe the theoretical aspects of computer security with an in-depth focus on modern network security threats. |
|---|---|
| 2. | Design, configure, test, manage, monitor and support network security infrastructure devices. |
| 3. | Apply network security theory into practice using industry based techniques, processes and standards. |
| 4. | Apply practical skills learnt in the labs to real-world commercial equipment and to prepare themselves for a industry based certification exam. |
Course intended learning outcomes (CILOs)
This subject also contributes specifically to the development of the following Course Intended Learning Outcomes (CILOs):
- Design Oriented: FEIT graduates apply problem solving, design and decision-making methodologies to develop components, systems and processes to meet specified requirements. (C.1)
- Technically Proficient: FEIT graduates apply abstraction, mathematics and discipline fundamentals, software, tools and techniques to evaluate, implement and operate systems. (D.1)
Teaching and learning strategies
This subject is a hands-on, career-oriented practice based subject that emphasises practical experience. It is a blended curriculum with both online and classroom learning.
Students attend an internetworking lab class for 4 hours/week. During this time they discuss topics both in groups and as a whole class, work on prepared exercises and in groups to complete lab exercises. These activities are designed to develop understanding of the topic that week.
The lecture material is available online. Students are required to pre-read each chapter before the lab class to prepare themselves for the in-lab activities. This pre-reading allows students to maximise their access to physical equipment during the class time. Embedded into the online material are activities that facilitate understanding. During the lab class, further activities are completed that are related to that week's content.
There will be a short lecture and discussion of the topics in class, where students (both individually and in groups) can ask questions and receive feedback on their understanding of material they have read beforehand.
Most of the time in the class will be devoted to practical labs.
Content (topics)
This subject aims to develop an in-depth understanding of network security principles as well as the tools and configurations available. The following tools are covered:
- Protocol sniffers/analyzers
- TCP/IP and common desktop utilities
- Cisco IOS Software
- Cisco VPN client
- Packet Tracer (PT)
- Web-based resources
The predominant lab types are procedural, skills integration challenges, troubleshooting, and model building.
At the completion of this course student will understand the basic requirements for securing a network, and to secure data sent over the Internetwork between sites by building a secure VPN tunnel between them.
The following topics may be covered:
- Describe the security threats facing modern network infrastructures
- Secure network device access
- Implement AAA on network devices
- Mitigate threats to networks using ACLs
- Implement secure network management and reporting
- Mitigate common Layer 2 attacks
- Implement the Cisco IOS firewall feature set
- Implement the Cisco IOS IPS feature set
- Implement site-to-site IPSec VPNs
- Administer effective security policies
Assessment
Assessment task 1: Weekly Chapter Online tests
| Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 1, 2 and 3 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
|---|---|
| Type: | Exercises |
| Groupwork: | Individual |
| Weight: | 5% |
Assessment task 2: Quiz
| Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 1 and 2 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
|---|---|
| Type: | Quiz/test |
| Groupwork: | Individual |
| Weight: | 15% |
Assessment task 3: On Line Test
| Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 1, 2 and 3 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
|---|---|
| Type: | Examination |
| Groupwork: | Individual |
| Weight: | 5% |
Assessment task 4: Written Test
| Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 1, 2 and 3 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
|---|---|
| Type: | Quiz/test |
| Groupwork: | Individual |
| Weight: | 40% |
Assessment task 5: Skills tests
| Objective(s): | This assessment task addresses the following subject learning objectives (SLOs): 2, 3 and 4 This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs): C.1 and D.1 |
|---|---|
| Type: | Quiz/test |
| Groupwork: | Group, group assessed |
| Weight: | 35% |
Minimum requirements
In order to pass the subject, a student must achieve an overall mark of 50% or more.
Required texts
CCNA Security Student Lab Manual.
This manual will be available at Canvas.
This manual is copyright to Cisco Systems and must NOT be copied.
References
Exam reference:
CCNA Security Official Exam Certification Guide
by Michael Watkins (Author), Kevin Wallace (Author)
Publisher: Cisco Press; 1 Har/Cdr edition (July 4, 2008)
ISBN-13: 978-1587202209
General Reference:
http://en.wikipedia.org/wiki/Firewall
Basic Reference:
William Stallings: “Network Security Essentials, Applications and Standards” 3rd Edition, Pearson 2007
ISBN: 0-13-238033-1
Theory reference:
Cryptography & Network Security by Behrouz Forouzan
Publisher: McGraw-Hill, Edition: 01E07
ISBN: 987-0-07-287022-0
Other resources
Cisco Academy and Examination Website - https://www.netacad.com
Online support for this subject will be provided through Canvas:https://canvas.uts.edu.au/