30 Independent Study. 60 (e.g. lectures, seminars and supervised group activity)

Transcription

1 1. Programme Title BSc Digital & Technology Solutions 2. Unit Title Data and Security 3. HE Level UG1 FHEQ Level 4 4. Unit Code DTS Credit Value of Unit Unit Type Mandatory 7. Unit Tutor David Crawford, Martyn Gates, Christopher Woollard 8. Indicative Notional Learning Hours Staff Student Contact Study Hours Classes 30 Study 60 (e.g. lectures, seminars and supervised group activity) (e.g. project development, reading, research and work on online forums) Supervised Access to 60 Preparation for Assessment 10 Resources Unsupervised Access to 140 Resources Total Total Unit Introduction This unit builds from concepts introduced in the Network Fundamentals and Software Fundamentals courses. It concentrates on developing the student s exposure to and understanding of the security issues of computer networks and the software systems developed to implement data protection and security. The unit includes both the security issues for information systems connecting to the Internet and also web server applications. Specific technologies investigated will include firewall technology and the onion principle of corporate security via protection layers. Intrusion detection will be included at various levels within the corporate environment. The detection of network attacks will be reviewed, and penetration testing will be included as a practical exercise. 10. Aims of the Unit Relates principles and concepts to underlying theoretical frameworks and approaches. To relate the principles and concepts of data security to make a small scale network secure. To examine examples of Internet based information systems which are at risk and make appropriate analyses and solutions. To become familiar with the initialization and configuration of Cisco routers and switches. To be introduced to penetration testing, an to be familiar with the nature of network attacks.

2 11. Indicative Content Security issues within computer networks: the identification of vulnerabilities in common protocols including TCP/IP to FTP. Security management and risk assessment including the onion layer approach plus remediation advice. Threat and Risk analysis Tools for intelligence gathering and monitoring of traffic. Virtual Private Networks; Intrusion Detection; Firewalls. Cisco Configmaker and firewall initialization. Network Penetration Testing. of the nature of network attacks and their potential consequences and business level security Denial of Service and other specific examples of vulnerability. Digital Signature and Message Digests; Network Administration. 12. Unit Learning Outcomes Learning Outcome Have detailed knowledge of the scope of worldwide network attacks and the cost to businesses. Ability to evaluate the rapid evolution of technologies and techniques required to prevent cyber attacks at all levels, including strategies to limit damage should an attack breach current security measures. Understand Access Control Lists and for example, their use on Cisco equipment. Review the limitations of ACL s at this level especially relating to imbedded attacks. Marking Criteria

3 Collect and synthesises current Malware practices, including Trojan horses, viruses, worms, etc. with relevant examples. Demonstrate a detailed awareness of Denial of Service attacks, and the exploitation of system limitations. Able to identify, analyse and communicate insider threats, poor management practices and the need for auditing. Identify, analyse and devise strategies for external threat management recognising the rapid evolution of hostile technology and strategies. Evaluate the costs and ongoing investment required to maintain effective security measures will be reviewed, along with the implications of an organisation avoiding this investment.

4 Understand supervisory control and data acquisition systems, including authentication and defence measures. 13. Learning and Teaching Methods This unit will be delivered using a combination of: Briefings Lectures Project work Seminars Workshops Group work Online activity Individual s and critiques Group presentations and critiques Self-directed independent study Other (describe below) Work based learning Strong VLEV support (Moodle) 14. Assessment Methods The assessment for this unit is weighted. In element-based assessment, you must achieve at least an E grade in each element, and an aggregate grade of at least D- in the overall unit. Failure (F, or F-), or non-submission in any element defaults to Fail for the unit. Project on security, management and risk. 50% (indicative word count 1500 words) Test, maximum of 15 minutes 30% Group or Individual including Q and A session. 20%

5 (indicative presentation time of 15 minutes) Assessment will be against the specified marking criteria. 15. Reading and Resource List Essential Reading Gibson D. (2011) CompTIA Security+: Get Certified Get Ahead: SY0-401 CreateSpace Publishing Program Stallings W. & Brown L. (2011) Computer Security Principles and Practice. Prentice Hall. Murdoch D. (2014), Blue team Handbook: Incident Response Edition. A Condensed Field Guide for the Cyber Security Incident Responder: Version 2.0. CreateSpace Publishing Program Schneier B. (2015) Data and Goliath: The Hidden Battles to Collect your Data and Control Your World, W.W.Norton and Company Segall, A. (2015) Trusted Platform Modules: Why, when and how to use them, IET URLs Top ten ways to secure data. Addressing cloud computing security issues. Further Reading and Resources Further reading and resources will be identified in your Unit Handbook / Project Brief.