Higher National Unit specification: general information



Similar documents
Higher National Unit specification: general information

Bring Your Own Device (BYOD): Introduction (SCQF level 7)

1 Higher National Unit credit at SCQF level 8: (8 SCQF credit points at SCQF level 8)

Higher National Unit specification: general information

Unit title: Network Design: Directory Services and Network Infrastructure

Unit title: Network Infrastructure 2: Planning and Maintenance

Higher National Unit Specification. General information for centres. Unit code: DV6C 35

Managing Information Systems to Develop a Small Business (SCQF level 8)

Higher National Unit specification: general information

Higher National Unit Specification. General information for centres. Database Design Fundamentals. Unit code: DV6E 34

Higher National Unit Specification. General information for centres. Unit title: Network Server Operating System. Unit code: DF9N 34

Higher National Unit specification: general information

Higher National Unit specification: general information. Relational Database Management Systems

Higher National Unit Specification. General information for centres. Occupational Therapy Support: Audit. Unit code: F3NE 34

Higher National Unit specification. General information. Unit title: Big Data (SCQF level 7) Unit code: H8W8 34. Unit purpose.

Design for Print: Automated Digital Workflows for Pre-Press

Higher National Unit specification: general information

National Unit Specification: general information. UNIT Computing: Computer Networking Fundamentals (SCQF level 5) CODE F1KH 11 SUMMARY OUTCOMES

Applying Marketing Principles in Travel and Tourism (SCQF level 7)

Higher National Unit specification: general information

Unit title: Computing: Applications Development (SCQF level 5)

A candidate is encouraged to use the internet in any research, etc. However, the evidence produced must be the candidate s own written words.

Higher National Unit Specification. General information for centres. Unit title: Software Development: Applications Development. Unit code: D76N 34

Types of Software Specification and Their Use

Higher National Unit specification. General information for centres. Unit title: Economic Issues: An Introduction. Unit code: F7J8 34

Higher National Unit Specification. General information for centres. Unit title: Enhancing Network Security and Configuring Remote Access Methods

Higher National Unit specification: general information. Developing Mobile Web Based Applications: An Introduction

Higher National Unit specification. General information. Unit title: Data Science (SCQF level 8) Unit code: H8W9 35. Unit purpose.

Financial Accounting Statements: An Introduction

2 HN Credits at SCQF level 8: (16 SCQF credit points at SCQF level 8)

The purpose of this Unit is to develop an awareness of the knowledge and skills used by ethical and malicious hackers.

Higher National Unit Specification. General information for centres. Unit code: F19T 35

1 Investigate a real-world engineering project 2 Develop a design proposal and plan to solve a challenging engineering problem

Web Development: Dynamically Generated Content

Unit title: Cyber Security Fundamentals (SCQF level 4)

This Unit is a mandatory Unit within the National Progression Award in Cyber Security at SCQF 6.

Higher National Unit specification. General information for centres. Unit title: Developing the Individual within a Team. Unit code: F870 34

Higher National Unit specification. General information. Software Development: Analysis and Design (SCQF level 7) Unit code: HA4C 34.

Computing: Website Design and Development (SCQF level 5)

-SQA-SCOTTISH QUALIFICATIONS AUTHORITY HIGHER NATIONAL UNIT SPECIFICATION GENERAL INFORMATION MARKETING FURTHER EDUCATION AUGUST 2000

Unit title: Marketing: Brand Management (SCQF level 8)

English: Analysis and Evaluation of Literary Texts. level 7 (16 SCQF credit points)

UNIT Painting and Decorating: Colour Schemes (SCQF level 6)

Unit title: Curriculum and Assessment in an Early Years and Childcare Setting

This Unit is suitable for candidates wishing to acquire a basic understanding of the theory and practice of music remixing.

Electronic Fire and Security Systems Installation: Commissioning (SCQF level 6)

UNIT Art and Design: Animation Project (SCQF level 6)

Higher National Unit specification. General information for centres. IT in Business: Advanced Spreadsheets. Unit code: F849 35

UNIT Shorthand: An Introduction (SCQF level 5)

Higher National Unit specification. General information for centres. Web Development: Website Optimisation. Unit code: F6C5 35

UNIT Art and Design: Web Project (SCQF level 6)

Unit title: Computing: Applications Development (SCQF level 6)

This Unit is a mandatory Unit of the Business Management (Intermediate 2) Course and is also available as a free standing Unit.

Management of Marketing and Operations (National 5) level 5 (6 SCQF credit points)

Higher National Unit Specification. General information for centres. Unit code: DJ9P 35

Higher National Unit specification: general information. Occupational Therapy: Core Concepts and Processes

-SQA-SCOTTISH QUALIFICATIONS AUTHORITY NATIONAL CERTIFICATE MODULE: UNIT SPECIFICATION GENERAL INFORMATION. -Module Number Session

Higher National Unit specification: general information. Childhood Practice: Leadership and Management (Workplace Practice)

Higher National Unit specification: general information

This Unit is aimed at candidates who have no previous experience of computer programming.

Higher National Unit Specification. General information for centres. Applied Industrial Plant Maintenance. Unit code: DT9W 35

Unit title: Software Development: Project (SCQF level 7)

Higher Business Management Course Specification (C710 76)

Higher National Unit Specification. General information for centres. Transmission of Measurement Signals. Unit code: DX4T 35

CREDIT VALUE 1 credit at Intermediate 2 (6 SCQF credit points at SCQF level 5*)

Digital Photography: Workflow and Creative Manipulation

Preparing Financial Accounting Information (Higher) Unit. level 6 (6 SCQF credit points)

UNIT Art and Design: Web Content (SCQF level 5)

Higher National Unit specification. General information for centres. Unit title: Legal and Ethical Issues. Unit code: F50D 35

Unit title: Computer Games: Programming (SCQF level 6)

Higher National Unit specification. General information for centres. Unit code: F1GW 35

Higher National Unit Specification. General information for centres. Multi User Operating Systems. Unit code: DH3A 34

Graded Unit Title: HND Human Resource Management: Graded Unit 2

Animal and Plant Cell Culture: An Introduction (SCQF level 7)

Graded Unit Title: Beauty Therapy: Graded Unit 2

Religion, Belief and Values: Values in Action (SCQF level 4) Unit

Advanced Higher Business Management Course Specification (C710 77)

UNIT Energy: Domestic Solar Hot Water Systems (Intermediate 2)

Art and Design: 3D: Basic Construction Skills (SCQF level 5)

Higher National Unit specification: general information

National Unit specification. General information. Unit title: Web Apps: Presentations (SCQF level 6) Unit code: HA6J 46. Unit purpose.

Unit title: Criminology: Nature and Extent of Crime (SCQF level 6)

HND Computing: Technical Support (International) GG5M 16

Higher National Unit specification. General information for centres. Unit title: Using Financial Accounting Software. Unit code: F7JP 34

National 4 Automotive Skills: Skills for Work Course Specification

EA-ISP-012-Network Management Policy

Assessment Strategy for. Audit Practice, Tax Practice, Management Consulting Practice and Business Accounting Practice.

National 5 Health Sector: Skills for Work Course Specification

Unit title: Web Apps: Word Processing (SCQF level 4)

Higher National Unit specification. General information. Unit code: H49N 35. Unit purpose. Outcomes. Credit points and level.

Construction Crafts: Plumbing of Sanitary Appliances (Intermediate 2)

UNIT Management Accounting: An Introduction (SCQF level 6)

Arrangements for: Professional Development Award in Assessment and Supply of Individual Patients Medicines. at SCQF level 7. Group Award Code: GE7D 47

Higher National Unit specification: general information. Graded Unit 2

Media: An Introduction to Film and the Film Industry (SCQF level 5)

Networked Systems Security

Arrangements for: NC Pharmacy Services. at SCQF level 6. Group Award Code: GA6P 46. Validation date: May 2010

Higher National Unit Specification. General information for centres. Conduct and Ethics for Sports Coaches

Higher National Integrative Assessment Specification

Internet Security Good Practice Guide. August 2009

Transcription:

Higher National Unit specification: general information Unit code: H17M 34 Superclass: CC Publication date: March 2012 Source: Scottish Qualifications Authority Version: 01 Unit purpose The purpose of this Unit is to introduce candidates to the threats faced by contemporary networks and the methods (and products) employed to mitigate these threats. The candidate will discuss the classes, features, methods and products employed under the heading. 1 Describe the features of. 2 Install, configure and test an Intrusion Prevention System. Recommended prior knowledge and skills Access to this Unit will be at the discretion of the Centre. The candidates would benefit from knowledge of fundamentals of computer servers, as well as the basic concepts of computer networking, security, the internet and associated services. Candidates should ideally possess at least the following HN Units: H17S 34 Network Concepts H17V 34 Security Concepts Credit points and level 1 Higher National Unit credit at SCQF level 7: (8 SCQF credit points at SCQF level 7) *SCQF credit points are used to allocate credit to qualifications in the Scottish Credit and Qualifications Framework (SCQF). Each qualification in the Framework is allocated a number of SCQF credit points at an SCQF level. There are 12 SCQF levels, ranging from Access 1 to Doctorates. H17M 34, (SCQF level 7) 1

General information (cont) Core Skills Opportunities to develop aspects of Core Skills are highlighted in the Support Notes of this Unit specification. There is no automatic certification of Core Skills or Core Skill components in this Unit. Context for delivery If this Unit is delivered as part of a Group Award, it is recommended that it should be taught and assessed within the subject area of the Group Award to which it contributes. H17M 34, (SCQF level 7) 2

Higher National Unit specification: statement of standards Unit code: H17M 34 The sections of the Unit stating the Outcomes, Knowledge and/or Skills, and Evidence Requirements are mandatory. Where evidence for Outcomes is assessed on a sample basis, the whole of the content listed in the Knowledge and/or Skills section must be taught and available for assessment. Candidates should not know in advance the items on which they will be assessed and different items should be sampled on each assessment occasion. Outcome 1 Describe the features of. Knowledge and/or Skills Describe. Describe types of Intrusion Prevention. Differentiate between various detection methods. Evidence Requirements Candidates will need to provide evidence to demonstrate their Knowledge and/or Skills by showing that they can: Define. Differentiate between types of Intrusion Prevention: Network (NIPS) Wireless (WIPS) Host (HIPS) Defining one of the following detection methods: Signature based Anomaly Detection Stateful Protocol Analysis Outcome 1 can be assessed by using a case study where the candidate is given the role of presenting his/her research of the three selected IPS types to a group of company executives where the importance and role of an IPS system within server technologies is stated. The candidate must detail/define the need and concepts behind IPS systems. The candidate will also consider the three types of Intrusion Prevention and then select two of the detection methods and use these findings as the basis of a report. H17M 34, (SCQF level 7) 3

Higher National Unit specification: statement of standards (cont) Outcome 2 Install, configure and test an Intrusion Prevention System. Knowledge and/or Skills Install an Intrusion Prevention System. Configure the IPS for common attacks. Test the Intrusion Prevention System. Evidence Requirements Candidates will need to provide evidence to demonstrate their Knowledge and/or Skills by showing that they can: Install an Intrusion Prevention System. Configure the IPS for common attacks Test the Intrusion Prevention System for common attacks Outcome 2 is by its nature a practical activity. The candidate will be expected to install, configure and test IDS they have installed. Configuration will be based on the usual attack areas, ie signature based, anomaly based or stateful protocol analysis. The main emphasis for testing should be to remedy issues identified with the initial configuration carried out by the candidate. Identified issues could be missing out root, or e-mail header such as free pictures or an attachment called freepictures.exe. As this Outcome is practical a completed observation checklist, based on the specification provided or produced. Thus printouts of the initial configuration, testing logs and any changes to the original configuration will provide sufficient evidence to meet the Outcome. H17M 34, (SCQF level 7) 4

Higher National Unit specification: support notes This part of the Unit specification is offered as guidance. The support notes are not mandatory. While the exact time allocated to this Unit is at the discretion of the centre, the notional design length is 40 hours. Guidance on the content and context for this Unit The content of this Unit is aimed at providing the candidate with a broad knowledge base in the essentials of Intrusion Detection/Prevention Systems along with conceptual understanding of the elements in an intrusion detection/prevention system. There is also a practical emphasis with the candidate gaining hands on experience of the installation, configuration and testing of an Intrusion Prevention System (IPS). There are two Outcomes in this Unit each of which is designed to introduce the candidate to different aspects of intrusion prevention systems. The first Outcome introduces the candidate to the theoretical elements of IPS, where they will need to understand technologies such as traffic analysis, application protocol validation, and signature matching, along with focusing on what attack does, its behaviour, detect intrusions on the analysis of the traffic. The second Outcome introduces the candidate to the practical elements of IPS systems their installation, configuration and testing. The candidate will install, configure and test the IPS. Any changes to the configuration as a result of testing should be documented and noted for evidence purposes. Although the Unit is expressed in generic terms, it should be related to a real world context that will be familiar to candidates. The resources available within the delivering institution we dictate the type of IPS and testing software available for installation. However the student needs to be aware of a number of different IPS and testing software for other platform types. Guidance on the delivery of this Unit During the delivery of this Unit it is important that every opportunity is taken to introduce real-world examples, so there are opportunities for whole-class and group discussion and practical demonstrations wherever possible. As this Unit has a theoretical component in Outcome 1 it will require the candidate to complete a significant amount of analysis and research before selecting the appropriate solution based on identified needs. Concepts and terminology should be presented in context throughout the Unit. Video presentations should be used where appropriate for providing an alternative explanation of a difficult topic, or as a focus for class discussion or group work. Wherever possible theoretical learning should be re-enforced using practical demonstrations, for example to demonstrate the use of particular applications and tools H17M 34, (SCQF level 7) 5

Higher National Unit specification: support notes (cont) Given the theoretical nature of Outcome 1 of this Unit, it is intended that a proportionate amount of time will be made available as a central part of the course for revision, tutorials and formative assessment exercises. Candidates should be strongly encouraged to undertake further reading, opportunities for individual or group research should be provided. Outcome 2 is practical and will require the candidate to install, configure and test the selected IDS system. For practical purposes candidates should be exposed to up-to-date IDS systems and testing tools. While the exact time allocated to this Unit is at the discretion of the centre, the notional design length is 40 hours. A suggested allocation of time is: Analysis and research Report or Presentation Installation and configuration of IDS Testing Finalising/ remediation 10 hours 5 hours 15 hours 5 hours 5 hours Guidance on the assessment of this Unit Outcome 1 Describe the features of The candidate needs to be able to define the concepts and issues raised by the selection of an appropriate Intrusion Detection/Prevention Systems. Emphasis should be placed on the types of protection/detection systems that can be utilised within an organisation. So the candidate needs to be aware of: Network Intrusion (NIPS) Wireless Intrusion (WIPS) Host Intrusion (HIPS) Protocol Analysis Rate based (RBIPS) The types of detection methods should be explored and the candidate will define two of the detection methods. Outcome 1 can be assessed by using a case study where the candidate is give the role of presenting his/her finding to a group of company executives where they explore and explain the importance and role of an IDS system. This could be carried out by completion of a report of approximately 800 words. H17M 34, (SCQF level 7) 6

Higher National Unit specification: support notes (cont) Outcome 2 Install, configure and test an Intrusion Prevention System Candidates will need to provide evidence to demonstrate their Knowledge and/or Skills by showing that they can: Install an Intrusion Prevention System (IPS). Configure the IPS for common attack vectors Test the Intrusion Prevention System and reconfigure identified issues. Outcome 2 is by its nature a practical activity. The candidate will be expected to install, configure and test IPS they have installed. In terms of the specification, this can be produced or specified as part of Outcome 1 or can be provided by the tutor The type of IPS employed, will of course be based on the underlying hardware facilities available at the delivering institution. There is a wide choice of Windows and Unix/Linux based systems available which will meet the required features for configuration. The candidate needs to understand the common methods of attack that may be utilised. In terms of testing the candidate should use a testing tool to check the effectiveness of their configuration against penetration, integrity and availability attacks. Again there are various tools available both for windows and Unix/Linux based systems to allow the testing to be carried out. So tools like FTester, Tomahawk or IDs Wake up could be utilised by the candidate. This is not an exhaustive list so other testing tools are also acceptable. As this Outcome is practical a completed observation checklist, based on the specification provided or produced is required. Thus printouts of the initial configuration, testing logs and any changes to the original configuration will provide sufficient evidence to meet the Outcome. Online and Distance Learning It is perfectly feasible to develop a range of blended learning material to deliver this Unit by online and distance learning means. Support for distance learners could be provided by both synchronous and asynchronous communication technologies For the practical elements this may be carried out by utilising a virtual server, which the candidate may use for the installation, configuration and testing aspects of Outcome 2. Care would need to be taken to ensure the authenticity of the assessments undertaken by online or distance learners for Outcome 1 and 2. H17M 34, (SCQF level 7) 7

Higher National Unit specification: support notes (cont) Opportunities for developing Core Skills There is no automatic certification of Core Skills or Core Skill components in this Unit. Disabled candidates and/or those with additional support needs The additional support needs of individual candidates should be taken into account when planning learning experiences, selecting assessment instruments, or considering whether any reasonable adjustments may be required. Further advice can be found on our website www.sqa.org.uk/assessmentarrangements H17M 34, (SCQF level 7) 8

History of changes to Unit Version Description of change Date Scottish Qualifications Authority 2012 This publication may be reproduced in whole or in part for educational purposes provided that no profit is derived from reproduction and that, if reproduced in part, the source is acknowledged. Additional copies of this Unit specification can be purchased from the Scottish Qualifications Authority. Please contact the Business Development and Customer Support team, telephone 0303 333 0330. H17M 34, (SCQF level 7) 9

General information for candidates The content of this Unit is aimed at providing you with a broad knowledge to the threats faced by contemporary networks and the methods (and products) employed to mitigate these threats. So you will discuss the issues, features, attack methods and products employed under the generic heading Intrusion Detection/Prevention Systems. During the Unit you will Describe the features of Intrusion Detection/Protection Systems Install, configure and test an Intrusion Detection/Protection System The content of this Unit is aimed at providing you with a broad knowledge base in the essentials of IDS installation, configuration and testing along with conceptual understanding of the elements associated with Intrusion Prevention or Detection. During the Unit you will learn about the various type of intrusion prevention systems that are available for the different types of computing platform, how they are utilised and their benefits. Practical elements will involve you in installing, configuring and testing an IDP system. On completion of the Unit you will be able to: 1 Describe the features of. 2 Install, configure and test an Intrusion Prevention System. Outcome 1 of the Unit covers the theoretical information required for you to consider the specification of an IPS for a fictitious company. You will, for example, evaluate the different IPS elements, detection methods and common attacks carried out on web based servers. Outcome 2 will introduce you to the skills required for installing, configuring, and testing the IPS software. You will also learn how to configure the IPS based on the needs of perceived security issues. You will also be required to test the IPS system that you have installed. To meet the assessment requirements of this Unit you will write a short report for Outcome 1 consisting of 800 words. Outcome 2 will be assessed by production of configuration printouts and test logs along with a completed observation checklist. H17M 34, (SCQF level 7) 10

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information