INSTITUTO POLITÉCNICO NACIONAL



Similar documents
INSTITUTO POLITÉCNICO NACIONAL

INSTITUTO POLITÉCNICO NACIONAL

How To Teach Embedded Systems

INSTITUTO POLITÉCNICO NACIONAL

Course Title: Penetration Testing: Security Analysis

NS - Network Security

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. Chapter 4 Finding Network Vulnerabilities

NETWORK SECURITY (W/LAB) Course Syllabus

Network Security Administrator

Bellevue University Cybersecurity Programs & Courses

SICSB - Information Systems and Communications for Health Services

PROFESSIONAL SECURITY SYSTEMS

EC Council Certified Ethical Hacker V8

CIS 156. Firewalls and Intrusion Detection

Second-generation (GenII) honeypots

CSET 4750 Computer Networks and Data Communications (4 semester credit hours) CSET Required IT Required

CYBERTRON NETWORK SOLUTIONS

TIME SCHEDULE. 1 Introduction to Computer Security & Cryptography 13

Curriculum Vitae Lic. José Rafael Pino Rusconi Chio +52 (998)

Certified Ethical Hacker Exam Version Comparison. Version Comparison

EC-Council Certified Security Analyst / License Penetration Tester (ECSA/LPT) v4.0 Bootcamp

CIS 4204 Ethical Hacking Fall, 2014

Network Security: A Practical Approach. Jan L. Harrington

Networking: EC Council Network Security Administrator NSA

NEW YORK INSTITUTE OF TECHNOLOGY School of Engineering and Technology Department of Computer Science Old Westbury Campus

IDS / IPS. James E. Thiel S.W.A.T.

When a student leaves this intensive 5 day class they will have hands on understanding and experience in Ethical Hacking.

CS 356 Lecture 17 and 18 Intrusion Detection. Spring 2013

CS Ethical Hacking Spring 2016

[CEH]: Ethical Hacking and Countermeasures

Discuss the ethical, moral and professional issues relating to computer security, ethical hacking and incident response.

CRYPTUS DIPLOMA IN IT SECURITY

Microsoft Technologies

EC-Council Certified Security Analyst (ECSA)

UVic Department of Electrical and Computer Engineering

EC-Council. Certified Ethical Hacker. Program Brochure

WHITE PAPER. The Need for Wireless Intrusion Prevention in Retail Networks

Curriculum Reform in Computing in Spain

Govt. of Karnataka, Department of Technical Education Diploma in Computer Science & Engineering. Sixth Semester

National Cyber League Certified Ethical Hacker (CEH) TM Syllabus

Detailed Description about course module wise:

8. Intrusion detection and penetration tests

CH ENSA EC-Council Network Security Administrator Detailed Course Outline

Department of Computer Science and Technology, UTU 2014

A Senior Design Project on Network Security

Open Source Security Tools for Information Technology Professionals

Hackers are here. Where are you?

IDS and Penetration Testing Lab ISA 674

Linux Network Security

Footprinting and Reconnaissance Tools

EC-Council Network Security Administrator (ENSA) Duration: 5 Days Method: Instructor-Led

Certified Ethical Hacker (CEH)

Information, Network & Cyber Security

: SENIOR DESIGN PROJECT: DDOS ATTACK, DETECTION AND DEFENSE SIMULATION

Prerequisites: Fundamentals of Networking, Knowledge of Operating Systems

RARITAN VALLEY COMMUNITY COLLEGE COURSE OUTLINE. CISY-274 Privacy, Ethics & Computer Forensics

Professional Penetration Testing Techniques and Vulnerability Assessment ...

National Cyber League Certified Ethical Hacker (CEH) TM Syllabus

EC-Council C E. Hacking Technology. v8 Certified Ethical Hacker

Network Segmentation

Analyze. Secure. Defend. Do you hold ECSA credential?

Security Event Management. February 7, 2007 (Revision 5)

Information Security Attack Tree Modeling for Enhancing Student Learning

Security Advisory. Some IPS systems can be easily fingerprinted using simple techniques.

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1

Unit 3 Research Project. Eddie S. Jackson. Kaplan University. IT540: Management of Information Security. Kenneth L. Flick, Ph.D.


IDS and Penetration Testing Lab ISA656 (Attacker)

Course Content Summary ITN 261 Network Attacks, Computer Crime and Hacking (4 Credits)

WHITE PAPER PROCESS CONTROL NETWORK SECURITY: INTRUSION PREVENTION IN A CONTROL SYSTEMS ENVIRONMENT

Penetration Testing. University of Sunderland CSEM02 Harry R Erwin, PhD

A Decision Maker s Guide to Securing an IT Infrastructure

How To Pass A Credit Course At Florida State College At Jacksonville

Contents. vii. Preface. P ART I THE HONEYNET 1 Chapter 1 The Beginning 3. Chapter 2 Honeypots 17. xix

2. From a control perspective, the PRIMARY objective of classifying information assets is to:

Configuring Personal Firewalls and Understanding IDS. Securing Networks Chapter 3 Part 2 of 4 CA M S Mehta, FCA

Customized Data Exchange Gateway (DEG) for Automated File Exchange across Networks

Cyber Security in Taiwan's Government Institutions: From APT To. Investigation Policies

City University of Hong Kong. Information on a Course offered by Department of Electronic Engineering with effect from Semester A in 2012/2013

Intrusion Detection. Tianen Liu. May 22, paper will look at different kinds of intrusion detection systems, different ways of

Security + Certification (ITSY 1076) Syllabus

Secure Software Programming and Vulnerability Analysis

defending against advanced persistent threats: strategies for a new era of attacks agility made possible

Network Monitoring and Forensics

InfoSec Academy Pen Testing & Hacking Track

MS Information Security (MSIS)

Principles of Information Assurance Syllabus

Transcription:

SYNTHESIZED SCHOOL PROGRAM ACADEMIC UNIT: ACADEMIC PROGRAM: LEARNING UNIT: Escuela Superior de Cómputo Ingeniería en Sistemas Computacionales. Advanced Computing Systems Programming LEVEL: III AIM OF THE LEARNING UNIT: The student develops computer networks security systems based on available infrastructure, connectivity devices, tools and security policies. CONTENTS: I. Network Security. II. Managing Network Security. III. Monitoring and Security Architectures. IV. Intrusion Attacks. V. Denial of Service. VI. Data Theft Attack. TEACHING PRINCIPLES: A project-oriented learning strategy will be apllied. The teacher will lead the course with the heuristic method, for which several techniques will be implemented as: case studies, documentary research, conducting worksheets, guided discussion, teamwork, presentation of issues and development practices. EVALUATION AND PASSING REQUIREMENTS: The program will evaluate the students in a continuous formative and summative way, which will lead into the completion of project portfolio. Some other assessing methods will be used, such as revisions, practical s, class participation, exercises, learning evidences and a final project. Other means to pass this Unit of Learning: Evaluation of acknowledges previously acquired, with base in the issues defined by the academy. Official recognition by either another IPN Academic Unit of the IPN or by a national or international external academic institution besides IPN. REFERENCES: Cole, E. Krutz, R. Conley, J. (2009), Network Security Bible 2nd Edition, USA: John Wiley & Sons. ISBN: 978-0-470-50249-5. Gómez, A. (2007), Enciclopedia de la Seguridad Informática, España: Alfa Omega. ISBN 9701512661 Long J. (2005), Google Hacking for Penetration Testers, USA: Syngress, ISBN: 1-931836-36-1 Mirkovic, J. Dietrich, S. Dittrich, D. Reiher, P. (2005), Internet Denial of Service: Attack and Defense Mechanisms, USA: Prentice Hall. ISBN-13: 9780131475731 Stallings, W. (2004), Fundamentos de Seguridad en Redes, España: Pearson, ISBN 8420540021

ACADEMIC UNIT: Escuela Superior de Cómputo. ACADEMIC PROGRAM: Ingeniería en Sistemas Computacionales LATERAL OUTPUT: Analista Programador de Sistemas de Información. FORMATION AREA: Professional. MODALITY: Presence. LEARNING UNIT: Advanced Computing Systems Programming. TYPE OF LEARNING UNIT: Theorical - Practical, Optative. VALIDITY: August, 2011. LEVEL: III. CREDITS: 7.5 Tepic, 4.38 SATCA ACADEMIC AIM This learning unit contributes to the profile of graduated of Ingeniería en Sistemas Computacionales, developing the skills of abstraction, analysis and design of computer network security. Design and Implementation of management systems for network security and monitoring using the architectures, protocols and standards exist. It also develops strategic thinking, creative thinking, collaborative and participatory and assertive communication. Required of learning units Algoritmia y Programación Estructurada, Sistemas Operativos, así como de Redes de Computadoras, Aplicaciones para Comunicaciones en Red y Administración de Servicios de Red. AIM OF THE LEARNING UNIT: The student develops computer networks security systems based on available infrastructure, connectivity devices, tools and security policies. CREDITS THEORETICAL CREDITS / WEEK: 3.0 PRACTICAL CREDITS / WEEK: THEORETICAL / SEMESTER: 54 PRACTICAL / SEMESTER: 27 AUTONOMOUS LEARNING : 54 CREDITS / SEMESTER: 81 LEARNING UNIT DESIGNED BY: Academia de Sistemas Distribuidos. REVISED BY: Dr. Flavio Arturo Sánchez Garfias. Subdirección Académica APPROVED BY: Ing. Apolinar Francisco Cruz Lázaro. Presidente del CTCE AUTHORIZED BY: Comisión de Programas Académicos del Consejo General Consultivo del IPN Ing. Rodrigo de Jesús Serrano Domínguez Secretario Técnico de la Comisión de Programas Académicos

5% 5% 30% 5% 2.5% 2.5% 50% INSTITUTO POLITÉCNICO NACIONAL LEARNING UNIT: Advanced Computing Systems Programming PAGE: 3 OUT OF 12 THEMATIC UNIT: I TITLE: Network Security UNIT OF COMPETENCE The student develops a proposal security of a computer network, based on requirements and resources available. CONTENTS Teacher ledinstruction Autonomous Learning REFERENCES KEY 1.1 1.2 1.3 1.4 1.6 1.7 1.8 What is network security? Risk types Attack types Type of attackers Study cases relating to security Ethic and commitment in security Security services and mechanisms Network security models T P T P 2B, 5B Subtotal: 2.5 6.5 2.0 TEACHING PRINCIPLES This unit will be addressed using learning strategy and project-oriented heuristics, enabling the consolidation of the following learning techniques: documentary inquiry, guided discussion, case studies, problem solving, exhibition of complementary topics and practical work. Diagnostic Evaluation Proyect Portfolio: Evaluation of individual research Research Worksheets Report of practicals Project Proposal Self-assessment rubrics Co-evaluation rubrics Evidence of learning LEARNING EVALUATION

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 4 OUT OF 12 THEMATIC UNIT: II TITLE: Managing Network Security UNIT OF COMPETENCE The student applies security policies and strategies to the project, based on its requirements and mechanisms for responding to security incidents. CONTENTS Teacher ledinstruction Autonomous Learning REFERENCES KEY 2.1 2.2 2.3 2.4 2.5 2.6 Security strategies Security policies Security monitoring Deployment mechanisms Maintaining security Security incident response T P T P 2B, 6B Subtotal: 3.5 7.0 2.0 TEACHING PRINCIPLES This unit will be addressed using learning strategy and project-oriented heuristics, enabling the consolidation of the following learning techniques: documentary inquiry, guided discussion, case studies, problem solving, exhibition of complementary topics and practical work. LEARNING EVALUATION Project Portfolio: Worksheets 5% Report of practicals 25% Project report (diagram and equipment configuration) 15% Self-assessment rubrics 2.5% Co-evaluation rubrics 2.5% Evidence of learning 50%

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 5 OUT OF 12 THEMATIC UNIT: III TITLE: Monitoring and Security Architectures UNIT OF COMPETENCE The student designs network architecture based on settings such as firewalls, intrusion detection systems, virtual private networks and monitoring tools. CONTENTS Teacher ledinstruction Autonomous Learning REFERENCES KEY 3.1 3.2 3.3 3.4 3.5 3.6 3.7 Monitoring for network security Monitoring for detection and its limitations Applications for network monitoring Operations for the security process in monitoring Security architecture using firewalls Security architecture using IDS Security architecture using VPNs T P T P 7B, 8B Subtotal: 2.5 2.5 5.5 3.5 TEACHING PRINCIPLES This unit will be addressed using learning strategy and project-oriented heuristics, enabling the consolidation of the following learning techniques: documentary inquiry, guided discussion, case studies, problem solving, exhibition of complementary topics and practical work. Project Portfolio: Worksheets 5% Report of practicals 20% Project report (diagram and equipment configuration) 20% Self-assessment rubrics 2.5% Co-evaluation rubrics 2.5% Evidence of learning 50% LEARNING EVALUATION

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 6 OUT OF 12 THEMATIC UNIT: IV TITLE: Intrusion Attacks UNIT OF COMPETENCE The student designs a set of rules for an intrusion detection system unsecured network, based on case studies. CONTENTS Teacher ledinstruction Autonomous Learning REFERENCES KEY 4.1 4.2 4.3 4.4 4.5 4.6 4.7 Anatomy of intrusion attacks Obtaining information about network to attack. Determination of operating system Determination of services Discovering DNS Mechanisms to detect an intrusion attack Mechanisms to prevent intrusion attacks T P T P 1B, 3C 3.0 6.5 3.0 Subtotal: TEACHING PRINCIPLES This unit will be addressed using learning strategy and project-oriented heuristics, enabling the consolidation of the following learning techniques: documentary inquiry, guided discussion, case studies, problem solving, exhibition of complementary topics and practical work. Project Portfolio: Worksheets 5% Report of practicals 15% Heading the project implementation and progress 25% Self-assessment rubrics 2.5% Co-evaluation rubrics 2.5% Evidence of learning 50% LEARNING EVALUATION

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 7 OUT OF 12 THEMATIC UNIT: V TITLE: Denial of Service UNIT OF COMPETENCE The student sets up security systems that allow detecting and containing a denial of service attacks based on case studies presented, to incorporate into the project. CONTENTS Teacher ledinstruction Autonomous Learning REFERENCES KEY 5.1 5.2 5.3 5.4 5.5 5.6 5.7 Motivation and types of DoS attacks Anatomy of DoS attacks DoS attacks generic Mechanism for detecting a DoS attack Responding to a DoS attack Estimating a DoS attack Protection to a DoS attack T P T P 4C, 10C Subtotal: 3.5 7.0 2.0 TEACHING PRINCIPLES This unit will be addressed using learning strategy and project-oriented heuristics, enabling the consolidation of the following learning techniques: documentary inquiry, guided discussion, case studies, problem solving, exhibition of complementary topics and practical work. Project Portfolio: Worksheets 5% Report of practicals 15% Heading the project implementation and progress 25% Self-assessment rubrics 2.5% Co-evaluation rubrics 2.5% Evidence of learning 50% LEARNING EVALUATION

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 8 OUT OF 12 THEMATIC UNIT: VI TITLE: Data Theft Attack UNIT OF COMPETENCE The student sets up systems to prevent and detect data theft attacks, based on vulnerability assessment tools and detection of anomalies 6.1 6.2 6.3 6.4 6.5 6.6 CONTENTS Types of data theft attacks Anatomy of data theft attacks Power Session Data Packet Analysis Attack detection mechanisms of information theft Mechanisms to prevent data theft attack Teacher ledinstruction Autonomous Learning T P T P REFERENCES KEY 13B, 12C Subtotals: 3.0 2.0 5.0 4.0 TEACHING PRINCIPLES This unit will be addressed using learning strategy and project-oriented heuristics, enabling the consolidation of the following learning techniques: documentary inquiry, guided discussion, case studies, problem solving, exposure of your project team and practical work. Project Portfolio: Presenting the team final 15% Report of practicals 15% Report and project delivery 35% Self-assessment rubrics 2.5% Co-evaluation rubrics 2.5% Evidence of learning 30% LEARNING EVALUATION

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 9 OUT OF 12 RECORD OF PRACTICALS 1 NAME OF THE PRACTICAL Detection of computers configured in promiscuous mode. THEMATIC UNITS I DURATION ACCOMPLISHMENT LOCATION Salas de còmputo de la escuela 2 DNS poisoning I 3 Configure firewalls. II 4 Setting up a communication device to respond to security alerts II 5 Configuring an IDS III 3.0 6 Setting up a monitoring area III 3.0 7 Scanning a network and determining the computer's operating system. IV 3.0 8 Setting up a honeypot IV 3.0 9 Attack login V 3.0 10 Obtaining information from a user-ftp VI 11 Forensic analysis of a committed team VI 3.0 12 Setting up a VPN server VI TOTAL OF 27.0 EVALUATION AND PASSING REQUIREMENTS: Practices contributing 30% to the calification in in Unit I. Practices contributing 25% to the calification in in Unit II. Practices contributing 20% to the calification in in Unit III. Practices contributing 15% to the calification in in Unit IV, V and VI. Practices are considered mandatory to pass this learning unit.

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 10 OUT OF 12 PERIOD UNIT EVALUATION TERMS 1 2 3 I y II III y IV V VI Continuous evaluation 50% and written learning evidence 50% Continuous evaluation 50% and written learning evidence 50% Continuous evaluation 50% and written learning evidence 50% Continuous evaluation 70% and written learning evidence 30% The learning unit I and II are 30% worth of the final score The learning unit III and IV are 30% worth of the final score The learning unit V is 20% worth of the final score The learning unit VI is 20% worth of the final score Other means to pass this Learning Unit: Evaluation of acknowledges previously acquired, with base in the issues defined by the academy. Official recognition by either another IPN Academic Unit of the IPN or by a national or international external academic institution besides IPN. If accredited by Special Assessment or a certificate of proficiency, this will be based on guidelines established by the academy on a previous meeting for this purpose.

LEARNING UNIT: Advanced Computing Systems Programming PAGE: 11 OUT OF 12 KEY B C REFERENCES 1 Cole, E. (2002), Hackers Beware, USA: Sams Publishing, ISBN: 0735710090 2 Cole, E. Krutz, R. Conley, J. (2009), Network Security Bible 2nd Edition, USA: John Wiley & Sons. ISBN: 978-0-470-50249-5. 3 4 Conway, R. Cordingley, J. (2004), Code Hacking: A Developer's Guide to Network Security, Volumen 1, USA: Charles River Media, ISBN: 1584503149 Chirillo, J. (2001), Hack Attacks Revealed: A Complete Reference with Custom Security Hacking Toolkit, USA: Wiley, ISBN: 047141624 5 6 7 8 EC-Council. (2009), Ethical Hacking and Countermeasures: Linux, Macintosh and Mobile Systems, USA: Cengage Learning, ISBN: 1435483642 Gómez, A. (2007), Enciclopedia de la Seguridad Informática, España: Alfa Omega. ISBN 9701512661 Gregg, M. (2008), Build Your Own Security Lab: A Field Guide for Network Testing, USA: John Wiley and Sons, ISBN: 0470179864 Gregg, M. (2006), Hack the Stack: Using Snort and Ethereal to Master the 8 Layers of an Insecure Network, USA: Syngress, ISBN: 1597491098 9 10 Long J. (2005), Google Hacking for Penetration Testers, USA: Syngress, ISBN: 1-931836-36-1 Mirkovic, J. Dietrich, S. Dittrich, D. Reiher, P. (2005), Internet Denial of Service: Attack and Defense Mechanisms, USA: Prentice Hall. ISBN-13: 9780131475731 11 Stallings, W. (2004), Fundamentos de Seguridad en Redes, España: Pearson, ISBN 8420540021 12 Russell, R. Mirza A., D. (2002), Hack Proofing your Network, USA: Syngress, ISBN: 1928994709 13 Russell, R. (2003), Stealing the Network: How to Own the Box, USA: Syngress, ISBN: 1931836876

TEACHER EDUCATIONAL PROFILE PER LEARNING UNIT 1. GENERAL INFORMATION ACADEMIC UNIT: Escuela Superior de Cómputo. ACADEMIC PROGRAM: Ingeniería en Sistemas Computacionales. LEVEL III FORMATION AREA: Institutional Basic Scientific Professional Terminal and Integration ACADEMY: Sistemas Distribuidos. LEARNING UNIT: Advanced Computing Systems Programming. SPECIALTY AND ACADEMIC REQUIRED LEVEL: Masters Degree or network security specialist. 2. AIM OF THE LEARNING UNIT: The student develops computer networks security systems based on available infrastructure, connectivity devices, tools and security policies. 3. PROFFESSOR EDUCATIONAL PROFILE: KNOWLEDGE Architecture TCP / IP Analysis of protocols and programming Computer Network Security Monitoring of Computer Networks PROFESSIONAL EPERIENCE Experience in computer network security Experience using applications for security and network monitoring Experience in safety equipment configuration: firewalls, IDS and VPNs. Experience managing a programming language ABILITIES Ability to communicate well orally and in writing. Ability to review software code and find errors. Easy management of groups. Management of teaching methods focused on learning APTITUDES Architecture TCP / IP Analysis of protocols and programming Computer Network Security Monitoring of Computer Networks DESIGNED BY REVISED BY AUTHORIZED BY Ing. Gilberto Sánchez Quintanilla COORDINATING PROFESOR Axel Moreno Cervantes Ing. Eduardo Gutiérrez Aldana COLLABORATING PROFESSORS Dr. Flavio Arturo Sánchez Garfias Subdirector Académico Ing. Apolinar Francisco Cruz Lázaro Director Date: 2011

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information