University of Technology Sydney

41890 Applying Network Security

Warning: The information on this page is indicative. The subject outline for a particular session, location and mode of offering is the authoritative source of all information about the subject for that offering. Required texts, recommended texts and references in particular are likely to change. Students will be provided with a subject outline once they enrol in the subject.

Subject handbook information prior to 2024 is available in the Archives.

UTS: Information Technology: Electrical and Data Engineering
Credit points: 6 cp

Subject level:

Undergraduate

Result type: Grade and marks

Requisite(s): 48730 Cybersecurity AND 31277 Routing and Switching Essentials
Anti-requisite(s): 32310 Network Security Appliances

Description

In the network security subject students learn about the theory underlying computer-security. This subject applies this theory to practice by using material based on the Cisco Network Security course. The emphasis is on network security appliances and networking infrastructure such as firewalls, access control, secure network design, Virtual Private Networks, and data encryption.

Subject learning objectives (SLOs)

Upon successful completion of this subject students should be able to:

1. Describe the theoretical aspects of computer security with an in-depth focus on modern network security threats. (D.1)
2. Design, configure, test, manage, monitor and support network security infrastructure devices. (C.1)
3. Apply network security theory into practice using industry based techniques, processes and standards. (D.1)
4. Apply practical skills learnt in the labs to real-world commercial equipment and to prepare themselves for a industry based certification exam. (D.1)

Course intended learning outcomes (CILOs)

This subject also contributes specifically to the development of the following Course Intended Learning Outcomes (CILOs):

  • Design Oriented: FEIT graduates apply problem solving, design and decision-making methodologies to develop components, systems and processes to meet specified requirements. (C.1)
  • Technically Proficient: FEIT graduates apply abstraction, mathematics and discipline fundamentals, software, tools and techniques to evaluate, implement and operate systems. (D.1)

Teaching and learning strategies

This subject is a hands-on, career-oriented practice based subject that emphasises practical experience. It is a blended curriculum with both online and classroom learning.

Students attend an internetworking lab class for 4 hours/week. It consists of a one-hour online lecture and three hours of combined tutorial and laboratory sessions in the lab. During this time they discuss topics both in groups and as a whole class, work on prepared exercises and in groups to complete lab exercises. These activities are designed to develop understanding of the topic that week.

The lecture material is available online. Students are required to pre-read each chapter before the lab class to prepare themselves for the in-lab activities. This pre-reading allows students to maximise their access to physical equipment during the class time. Embedded into the online material are activities that facilitate understanding. During the lab class, further activities are completed that are related to that week's content.

Content (topics)

This subject aims to develop an in-depth understanding of network security principles as well as the tools and configurations available. The following tools are covered:

  • Protocol sniffers/analyzers
  • TCP/IP and common desktop utilities
  • Cisco IOS Software
  • Cisco VPN client
  • Packet Tracer (PT)
  • Web-based resources
The predominant lab types are procedural, skills integration challenges, troubleshooting, and model building. At the completion of this course student will understand the basic requirements for securing a network, and to secure data sent over the Internetwork between sites by building a secure VPN tunnel between them. The following topics may be covered:
  1. Describe the security threats facing modern network infrastructures
  2. Secure network device access
  3. Implement AAA on network devices
  4. Mitigate threats to networks using ACLs
  5. Implement secure network management and reporting
  6. Mitigate common Layer 2 attacks
  7. Implement the Cisco IOS firewall feature set
  8. Implement the Cisco IOS IPS feature set
  9. Explain the types of encryption, hashes and digital signatures
  10. Explain how a public key infrastructure is used to ensure data confidentiality and provide authentication
  11. Implement site-to-site IPSec VPN

Assessment

Assessment task 1: Combined Module Online Tests

Objective(s):

This assessment task addresses the following subject learning objectives (SLOs):

1, 2 and 3

This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs):

C.1 and D.1

Type: Exercises
Groupwork: Individual
Weight: 25%

Assessment task 2: Skills Based Assessment

Objective(s):

This assessment task addresses the following subject learning objectives (SLOs):

2, 3 and 4

This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs):

C.1 and D.1

Type: Laboratory/practical
Groupwork: Individual
Weight: 35%

Assessment task 3: End-of-session Quiz

Objective(s):

This assessment task addresses the following subject learning objectives (SLOs):

1, 2 and 3

This assessment task contributes to the development of the following Course Intended Learning Outcomes (CILOs):

C.1 and D.1

Type: Quiz/test
Groupwork: Individual
Weight: 40%

Minimum requirements

In order to pass the subject, a student must achieve an overall mark of 50% or more.

Required texts

Online Curriculum, Network Security V1.0, Cisco Academy (Notes: access to the online materials is provided by the subject coordinator during the semester).

Other resources

Cisco Academy and Examination Website - https://www.netacad.com

Online support for this subject will be provided through Canvas:https://canvas.uts.edu.au/