Related Course/s:

A unit of study in the Master of Information Technology, Master of Information Technology (Professional Computing) and Master of Technology (Information Technology).

Aims & Objectives:

• Evaluate security of networks and servers.
• Develop management plans for system security.
• Perform security audits.
• Understand concepts of social engineering.
• Use a variety of security related tools.
• Understand concepts of network monitoring.
• Analyse and interpret logs.
  

Teaching Methods:

Lectures (24 hrs), Tutorial (Labs) (12 hrs)

Assessment:

Test, Assignments, Examination.

Generic Skills Outcomes:

The graduate attributes which relate to this unit of study help to produce graduates who:

• Are capable in their chosen professional areas.
• Are aware of environments.

Content:

• Overview: setting the context, review of concepts.
• Security and networks: types of work connectivity.
• Networks: a closer look. Important observation and analysis tools and how to use them.
• How do servers work? Methods of communication.
• Management issues: security models, case studies, risk assessment and management.
• Firewalls and intrusion detection: theory and practice, design and implementation.
• Packet filtering and intrusion detection tools: design, testing, implementation and validation.
• Web services and directory services.
• Security and the programmer.
• System security: tools and techniques from both sides of the fence.
• Practical system security: toolkits and methodologies.
• Course review: review of material, exploration of tools.

Reading Materials:

Scambray, J, Hacking Exposed, 5th edn, Berkley, McGraw-Hill, 2005.
Mitnick, K, The Art of Deception, Wiley, 2002.
Schneir, B, Secrets and Lies, Wiley, 2000.
Zaleuski, M, Silence on the Wire, No Storch Press, 2005.