TDC 572

Network Security I

 

Instructor:	Ehab S. Al-Shaer
Loop Office:	CTI Building, Office # 711
Loop Phone:	(312) 362 5137
FAX:	(312) 362 6116
Email:	ehab@cs.depaul.edu
Course WWW:	http://www.mnlab.cs.depaul.edu/~ehab/Courses/TDC572/

Required Text Books

• Corporate Computer and Network Security, Raymond R. Panko, Prentice Hall, Edition: March 2003, ISBN: 0130384712
• Inside Network Perimeter Security: The Definitive Guide to Firewalls, Virtual Private Networks (VPNs), Routers, and Intrusion Detection Systems,
  Stephen Northcutt, Lenny Zeltser, Scott Winters, Karen Fredrick, Ronald Ritchey, New Rideres Publishing - ISBN: 0735712328

(Optional) Text Books

·         Network Intrusion Detection, Stephen Northcutt and Judy Novak, New Riders, ISBN:0-7357-1265-4

·         Internet Security and Firewalls, V. V. Preetham, NIIT Ltd, Computer Manuals, ISBN: 1931841977

·         Network Security Principles and Practices, Saadat Malik", Cisco Press ISBN: 1-58705-025-0

·         Published Papers

Prerequisites:

• TDC 463 is strictly required
• It is highly recommended to take CSC 390 (Foundations of Information Assurance), and (TDC561 or TDC562)

Grade Distribution

• 4 Homeworks 50% (10%, 10%, 15%, 15%)
• Midterm Exam (15%) (DL must contact the instrcutor a week before the exam date – closed book
• Final Project or Paper (15%)
• Final Exam 20% -- closed book
  Exam Policy: NO MAKEUP EXAMS. DL Students SHOULD arrange to take the exam in the course classroom. Very exceptional cases can be discussed. In case the exam has to be taken remotely, then the exam MUST be taken in the same date and time (for the final exam location arrangements, contact DL Staff at coled@cs.depaul.edu)

Description

The course covers network infrastructure security issues, including perimeter security defense, firewalls, Virtual Private Networks, Intrusion Detection Systems, wireless security, network security auditing tools and ethical considerations. Advanced network security strategies including Defense-In-Depth, IP traceback, anomaly rules discovery in enterprise networks will be also covered..

 Topics (“Free”! Lecture Handouts)

• Lecture 1 Introduction to network security: Why network security, attacks techniques, vulnerablity sources and classification, social and athical issues (P: 1,2,4)
• Lecture 2 Cryptography: Privacy and authentication techniques/protocols and systems  (P: 7, 8)
• Lecture 3 Basic Firewalls: concept, filtering, statefull vs. stateless, FW proxy and design issues  (N: 1-4, P:5)
• Lecture 4 Advanced Firewall Issues: policy management (anomaly discovery), distributed firewall, firewall performance, defense-in-depth (N:4-5, class ntoes, Papers)
• Lecture 5 IPSec/VPN and NAT:  network design and policy definition and verification (N: 6, 8, 14, P:5, papers)
• Lecture 6 Intrusion Detection Concepts  (N:7, 17, 18, P:5, Optional books, Papers)
• Lecture 7 Intrusion Detection Systems (N:7, 17, 18, P:5, Optional books, Papers)  
• Lecture 8 Wireless Security (Papers – extra handouts)
• Lecture 9 Network Security Design (N:11-14, 21,22)
• Lecture 10 Advanced Topics: IP traceback, distributed firewall policies, load balancing and collaborative firewalls, and others (Papers)
• Final Exam (Closed Book)

Calendar of important dates

Use dlweb.cs.depaul.edu to check your GRADES

• Homework #1
• Homework #2
• Homework #3
• Homework #4
• Project/Paper Proposal (Paper/Project Outline) Deadline is October 28
• Project/Paper Submission Deadline is November 22
• Midterm Exam October 25 in the LOOP during class time for REGULAR and DL students
• Final Exam (CLOSED BOOK) in Nov 22nd in the LOOP during class time for REGULAR and DL students
  
  Resources