Introduction To Network Security |
|
Detailed Course Description: |
|
Module 1: SECURE
ORGANIZATION DESIGN
Real threats that impact security
-
Hackers
inside and out
-
Eavesdropping
-
Spoofing
-
Sniffing
-
Trojan
horses
-
Viruses
-
Wiretaps
A security policy: the basis of your protection
|
|
Module 2: A
CRYPTOGRAPHY PRIMER
Securing data with symmetric encryption
-
Choosing
your algorithm: DES, AES, RC4 and others
-
Assessing
key length and key distribution
Solving key distribution issues with asymmetric
encryption
Ensuring integrity with hashes
|
|
Module 3: VERIFYING USER AND HOST
IDENTITY
Assessing traditional static password schemes
-
Creating a
good quality password policy to prevent password guessing
and cracking
-
Protecting
against social engineering attacks
-
Encrypting
passwords vs. replay attacks
Evaluating strong authentication methods
-
Challenge-response to prevent man-in-the-middle attacks
-
Preventing
password replay using one-time and tokenized passwords
-
Employing
biometrics as part of two-factor authentication
Authenticating hosts
-
Shortcomings
of IP addresses
-
Address-spoofing issues and countermeasures
-
Solutions
for wireless networks
|
|
Module 4:
PREVENTING SYSTEM INTRUSIONS
Discovering system vulnerabilities
-
Searching
for operating system holes
-
Discovering
file permission issues
-
Limiting
access via physical security
Encrypting files for confidentiality
Hardening the operating system
-
Locking down
user accounts
-
Securing
administrator's permissions
-
Protecting
against viruses
|
|
Module 5: GUARDING AGAINST NETWORK
INTRUSIONS
Scanning for vulnerabilities
Reducing denial-of-service (DoS) attacks
Deploying firewalls to control network traffic
-
Analyzing
shortcomings of stateless packet filters
-
Contrasting
stateful packet filters with application proxies
-
Preventing
intrusions with filters
Building network firewalls
|
|
Module 6:
ENSURING NETWORK CONFIDENTIALITY
Threats from the LAN
-
Sniffing the
network
-
Mitigating
threats from connected hosts
-
Partitioning
the network to prevent data leakage
-
Identifying
wireless LAN vulnerabilities
Confidentiality on external connections
-
Ensuring
confidentiality with encryption
-
Securing
data-link layer with PPTP and L2TP
-
Middleware
information assurance with SSL and TLS
-
Deploying
SSH (the Secure Shell)
Protecting data with VPN’s and IPsec
|
|
Module 7:
MANAGING YOUR ORGANIZATION'S SECURITY
Forms, checklists,
templates, will be distributed in class
Course content is subject to change, update, and
additional topics
|
|
Course
Information:
Various sample deliverables are offered utilizing
public domain templates, checklists, and forms. Templates will
change continuously adapting to changes in the disaster planning
and recovery industry.
NCS Data Systems consultants working in the disaster planning
and recovery and security field will be dynamically implementing
new scenarios that are over and above the base scenarios used in
student workbooks.
Please note that this is not a class that will
explain the very intricacies of each and every technique and
template available.
NCS Data Systems consultants
constantly revise information used in this class.
Forms, checklists,
templates, will be distributed in class
Course content is subject to change, update, and
additional topics
|
|
To enroll in the class or for further
information and class schedules please contact us via
training@ncsdata.net
|
