University of Technology Sydney

32310 Network Security Appliances

Warning: The information on this page is indicative. The subject outline for a particular session, location and mode of offering is the authoritative source of all information about the subject for that offering. Required texts, recommended texts and references in particular are likely to change. Students will be provided with a subject outline once they enrol in the subject.

Subject handbook information prior to 2024 is available in the Archives.

UTS: Information Technology: Electrical and Data Engineering
Credit points: 6 cp

Subject level:

Postgraduate

Result type: Grade and marks

Requisite(s): 32524 LANS and Routing

Recommended studies: understanding of the principles and objectives of network security and of the fundamentals of network security technologies; CCNA-level networking concepts and skills, in particular CCNA-level routing and switching skills

Description

This is a practice-based subject, using material based on the Cisco Network Security course. Learning is laboratory-based. The emphasis is on network security appliances, in particular:

  • security technologies, products and solutions
  • firewall and secure router design, installation, configuration and maintenance
  • AAA implementation using routers and firewalls
  • VPN implementation using routers and firewalls.

  • Types of encryption, hashes, and digital signatures work together to provide confidentiality, integrity, and authentication.

Subject learning objectives (SLOs)

Upon successful completion of this subject students should be able to:

1. Describe the theoretical aspects of computer security with an in-depth focus on modern network security threats. (B.1)
2. Design, configure, test, manage, monitor and support network security infrastructure devices. (C.1)
3. Apply network security theory into practice using industry based techniques, processes and standards. (D.1)
4. Demonstrate practical skills on real-world commercial networking equipment. (D.1)

Course intended learning outcomes (CILOs)

This subject also contributes specifically to the development of the following Course Intended Learning Outcomes (CILOs):

  • Socially Responsible: FEIT graduates identify, engage, and influence stakeholders, and apply expert judgment establishing and managing constraints, conflicts and uncertainties within a hazards and risk framework to define system requirements and interactivity. (B.1)
  • Design Oriented: FEIT graduates apply problem solving, design thinking and decision-making methodologies in new contexts or to novel problems, to explore, test, analyse and synthesise complex ideas, theories or concepts. (C.1)
  • Technically Proficient: FEIT graduates apply theoretical, conceptual, software and physical tools and advanced discipline knowledge to research, evaluate and predict future performance of systems characterised by complexity. (D.1)

Teaching and learning strategies

This subject is a hands-on, career-oriented e-learning solution that emphasizes practical experience. It is a blended curriculum with both online and classroom learning.

Students attend an internetworking lab class for 4 hours/week. It consists of a one-hour online lecture and three hours of combined tutorial and laboratory sessions in the lab.

The lecture material is available online. Students are required to study this material in their own time before the class.

Students work collaboratively throughout the Session. From week 1 students form groups and all lab work becomes a shared experience. All additional activities, such as researching concepts, exploring networking challenges and building the required networks are achieved by students working cooperatively together.

Groups are also encouraged to share their findings with other groups, and whilst most assessments are individual, this shared knowledge contributes positively to the whole learning experience.

Content (topics)

This subject aims to develop an in-depth understanding of network security principles as well as the tools and configurations available. The following tools are covered:

  • Protocol sniffers/analyzers
  • TCP/IP and common desktop utilities
  • Cisco IOS Software
  • Cisco VPN client
  • Packet Tracer (PT)
  • Web-based resources

The predominant lab types are procedural, skills integration challenges, troubleshooting, and model building.

At the completion of this course student will understand the basic requirements for securing a network, and to secure data sent over the Internetwork between sites by building a secure VPN tunnel between them.

Upon completion of the CCNA Security course, students will be able to perform the following tasks:

  • Describe the security threats facing modern network infrastructures
  • Secure network device access
  • Implement AAA on network devices
  • Mitigate threats to networks using ACLs
  • Implement secure network management and reporting
  • Mitigate common Layer 2 attacks
  • Implement the Cisco IOS firewall feature set
  • Implement the Cisco IOS IPS feature set
  • Implement site-to-site IPSec VPNs
  • Explain the types of encryption, hashes, and digital signatures
  • Explain how a public key infrastructure is used to ensure data confidentiality and provide authentication

Assessment

Assessment task 1: Combined Module Online Tests

Objective(s):

This assessment task addresses the following subject learning objectives (SLOs):

1 and 2

This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs):

B.1 and C.1

Type: Exercises
Groupwork: Individual
Weight: 25%

Assessment task 2: Skills Based Assessment

Objective(s):

This assessment task addresses the following subject learning objectives (SLOs):

2, 3 and 4

This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs):

C.1 and D.1

Type: Laboratory/practical
Groupwork: Individual
Weight: 35%

Assessment task 3: End-of-session Quiz

Objective(s):

This assessment task addresses the following subject learning objectives (SLOs):

1 and 2

This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs):

C.1 and D.1

Type: Quiz/test
Groupwork: Individual
Weight: 40%

Minimum requirements

In order to pass the subject, a student must achieve an overall mark of 50% or more.

Required texts

Online Curriculum, Network Security V1.0, Cisco Academy (Notes: access to the online materials is provided by the subject coordinator during the semester).

Other resources

Cisco Academy and Examination Website - https://www.netacad.com

Online support for this subject will be provided through Canvas: https://canvas.uts.edu.au/