COIT20262 - Advanced Network Security
Term 1 - 2017


All details in this unit profile for COIT20262 have been officially approved by CQUniversity and represent a learning partnership between the University and you (our student). The information will not be changed unless absolutely necessary and any change will be clearly indicated by an approved correction included in the profile.

Overview

This unit provides student with a complete understanding of how to protect the integrity, confidentiality, and availability of information and network services in business organisations. Students will study advanced topics in security technology including access control and authentication, firewalls, wireless network security, intrusion detection systems and cryptographic techniques and their applications. The unit provides the knowledge requirements to sit the CompTIA Security and industry standard certification examination should students choose to once they have gained the required industry experience. Note: If students have undertaken COIS23001 Network Security then this unit cannot be taken.

Details

Career Level Postgraduate
Credit Points 6
Student Contribution Band 2
Fraction of Full-Time Student Load 0.125

Pre-requisites or Co-requisites

Prerequisite: COIT20261 Network Routing and Switching

Attendance Requirements

All on-campus students are expected to attend scheduled classes – in some units, these classes are identified as a mandatory (pass/fail) component and attendance is compulsory. International students, on a student visa, must maintain a full time study load and meet both attendance and academic progress requirements in each study period (satisfactory attendance for International students is defined as maintaining at least an 80% attendance record).

Offerings

Term 1 - 2017
  • Brisbane
  • Distance
  • Melbourne
  • Rockhampton
  • Sydney

Website

This unit has a website, within the Moodle system, which is available two weeks before the start of term. It is important that you visit your Moodle site throughout the term. Go to Moodle

Recommended Student Time Commitment

Each 6-credit Postgraduate unit at CQUniversity requires an overall time commitment of an average of 12.5 hours of study per week, making a total of 150 hours for the unit.

Class Timetable

Assessment Overview

Assessment Task Weighting
1. Practical and Written Assessment 40%
2. Group Discussion 10%
3. Practical and Written Assessment 50%

This is a graded unit: your overall grade will be calculated from the marks or grades for each assessment task, based on the relative weightings shown in the table above. You must obtain an overall mark for the unit of at least 50%, or an overall grade of ‘pass’ in order to pass the unit. If any ‘pass/fail’ tasks are shown in the table above they must also be completed successfully (‘pass’ grade). You must also meet any minimum mark requirements specified for a particular assessment task, as detailed in the ‘assessment task’ section (note that in some instances, the minimum mark for a task may be greater than 50%). Consult the University’s Grades and Results Procedures for more details of interim results and final grades.

All University policies are available on the IMPortal.

You may wish to view these policies:

  • Grades and Results Procedure
  • Assessment Policy and Procedure (Higher Education Coursework)
  • Review of Grade Procedure
  • Academic Misconduct Procedure
  • Monitoring Academic Progress (MAP) Policy and Procedure – Domestic Students
  • Monitoring Academic Progress (MAP) Policy and Procedure – International Students
  • Refund and Excess Payments (Credit Balances) Policy and Procedure
  • Student Feedback – Compliments and Complaints Policy and Procedure
  • Acceptable Use of Information and Communications Technology Facilities and Devices Policy and Procedure

This list is not an exhaustive list of all University policies. The full list of University policies are available on the IMPortal.

Feedback, Recommendations and Responses

Every unit is reviewed for enhancement each year. At the most recent review, the following staff and student feedback items were identified and recommendations were made.

Feedback Source Recommendation
more practical classes student feedback need a dedicated lab on each campus as previously recommended
On successful completion of this unit, you will be able to:
  1. Plan organisational adoption of security controls such as proxies, firewalls and intrusion detection systems.
  2. Design secure wired and wireless network infrastructure with encryption and enterprise level authentication.
  3. Synthesise the knowledge gained in the unit to address organisational security using policies and procedures, hardware and software.
  4. Formulate security countermeasures to reduce potential security risks.
  5. Analyse emerging security threats and controls.

Australian Computer Society (ACS) recognises the Skills Framework for the Information Age (SFIA). SFIA is in use in over 100 countries and provides a widely used and consistent definition of ICT skills. SFIA is increasingly being used when developing job descriptions and role profiles.
ACS members can use the tool MySFIA to build a skills profile at https://www.acs.org.au/professionalrecognition/mysfia-b2c.html
This unit contributes to the following workplace skills as defined by SFIA. The SFIA code is included:
  • Information Security (SCTY)
  • Security Administration (SCAD)
  • Information Assurance (INAS)
  • Technical Specialism (TECH)
  • Consultancy (CNSL)
  • IT Governance (GOVN)

Alignment of Assessment Tasks to Learning Outcomes

Assessment Tasks Learning Outcomes
1 2 3 4 5
1 - Practical and Written Assessment
2 - Group Discussion
3 - Practical and Written Assessment

Alignment of Graduate Attributes to Learning Outcomes

  • Professional Level
  • Advanced Level
Graduate Attributes Learning Outcomes
1 2 3 4 5
1. Knowledge
2. Communication      
3. Cognitive, technical and creative skills
4. Research
5. Self-management
6. Ethical and Professional Responsibility
7. Leadership          

Alignment of Assessment Tasks to Graduate Attributes

  • Professional Level
  • Advanced Level
Assessment Tasks Graduate Attributes
1 2 3 4 5 6 7
1 - Practical and Written Assessment      
2 - Group Discussion  
3 - Practical and Written Assessment      

Prescribed Textbooks

Security + Guide to Network Security Fundamentals
Author/s: Mark Ciampa Year: 2014
Edition: 5th Publisher: Cengage Learning
City: Boston
Country: USA
Guide to Firewall & VPNs
Author/s: Michael E. Whitman, Herbert J. Mattord, Andrew Green Year: 2012
Edition: 3rd (Note: Chapters 4, 5, 6, 7, and 10 only) Publisher: Cengage Learning
City: Boston
Country: USA
Guide to Network Defense and Countermeasures
Author/s: Randy Weaver, Dawn Weaver and Dean Farwood Year: 2013
Edition: 3rd (Note: Chapters 3 and 8 only) Publisher: Cengage Learning
City: Boston
Country: USA
View textbooks at the CQUniversity Bookshop
Note:

A special e-book containing relevant chapters from each of the three textbooks for this course is available from the publisher at:

https://www.cengagebrain.com.au/shop/en/AU/storefront/australia?cmd=CLHeaderSearch&fieldValue=CP1069

Purchase this e-book instead of the three individual textbooks.

IT Resources

You will need access to the following IT resources:
  • CQUniversity Student Email
  • Internet
  • Unit Website (Moodle)
  • Wireshark
  • VirtualBox
  • GPG
  • Snort
All submissions for this unit must use the Harvard (author-date) referencing style (details can be obtained here). For further information, see the Assessment Tasks below.
Unit CoordinatorSteven Gordon (s.d.gordon@cqu.edu.au)
Note: Check the Term-Specific section for any additional contact information provided by the teaching team
Week Begin Date Module/Topic Chapter Events and Submissions
Week 1 06-03-2017

Introduction to Network Security

Ciampa: Chapter 1

Week 2 13-03-2017

Attacks: Malware, Social Engineering, Application and Network-based Attacks

Ciampa: Chapters 2 & 3

Week 3 20-03-2017

Vulnerability Assessment; and Host, Application, and Data Security

Ciampa: Chapters 15 & 4

Week 4 27-03-2017

Cryptography

Ciampa: Chapter 5

Peerwise Learning Activity Q1 due 9am Monday

Week 5 03-04-2017

Introduction to Firewalls and Packet Filtering

Whitman: Chapters 4 & 5
Vacation Week 10-04-2017
Week 6 17-04-2017

Firewall Configuration and Proxy Servers

Whitman: Chapters 6 & 7

Peerwise Learning Activity Q2 due 9am Monday

Assignment 1 Due Friday (21 Apr 17) 05:00 PM AEST
Week 7 24-04-2017

Authentication

Ciampa: Chapter 12

Week 8 01-05-2017

Access Control

Ciampa: Chapter 11

Peerwise Learning Activity Q3 due 9am Monday

Week 9 08-05-2017

Internet Security

Ciampa: Chapter 12; Weaver: Chapter 12

Week 10 15-05-2017

Virtual Private Networks

Weaver: Chapter 11; Whitman: Chapter 10

Peerwise Learning Activity Q4 due 9am Monday

Week 11 22-05-2017

Wireless Network Security

Ciampa: Chapter 9

Week 12 29-05-2017

Intrusion Detection and Prevention Systems

Weaver: Chapter 8

Peerwise Learning Activity Q5 due 9am Monday

Assignment 2 Due Friday (02 Jun 17) 05:00 PM AEST
Review/Exam Week 05-06-2017
Exam Week 12-06-2017

1 Practical and Written Assessment

Assessment Title Assignment 1
Task Description

This assignment requires you to apply knowledge from the lectures to solve practical problems, as well as to explore new topics not covered in detail in lectures. You will: use software to observe communications across a network, and applying the knowledge to identify security issues and/or design security mechanisms; design and configure firewalls as a means of network access control; study and apply cryptographic tools; research and report on state-of-the-art security malware, vulnerabilities and attacks, and possible countermeasures. There will be multiple questions on different topics, and you will be expected to submit a report containing answers. The report may be a mix of short answers, diagrams, tables, and short essays with references. Questions, and expected structure/format of the report, can be found on Moodle.

Assessment Due Date Week 6 Friday (21-Apr-2017) 05:00 PM AEST
Return Date to Students Week 8 Friday (05-May-2017)
Weighting 40%
Assessment Criteria
The assignment consists of multiple questions, each marked separately. In general, to obtain full marks the answer must be correct, and when an explanation is required, the answer must demonstrate understanding of the problem, solution and tradeoffs. Mark allocation for each question, the expected format of the answer, and details of the marking criteria can be found in the assignment on Moodle.
Referencing Style Harvard (author-date)
Submission Online

Learning Outcomes Assessed
This section can be expanded to view the assessed learning outcomes

1. Plan organisational adoption of security controls such as proxies, firewalls and intrusion detection systems.

2. Design secure wired and wireless network infrastructure with encryption and enterprise level authentication.

3. Synthesise the knowledge gained in the unit to address organisational security using policies and procedures, hardware and software.

4. Formulate security countermeasures to reduce potential security risks.

5. Analyse emerging security threats and controls.

Graduate Attributes
This section can be expanded to view the assessed graduate attributes

1. Knowledge

3. Cognitive, technical and creative skills

4. Research

6. Ethical and Professional Responsibility



2 Group Discussion

Assessment Title PeerWise Learning Activity (PLA)
Task Description

This term you will be using a peer-directed learning activity called Peerwise. The goal is that you equally engage and participate in both spontaneous and formally structured student-student learning interactions. There will be five tasks during the term. In each task you must create a multiple choice question on the allocated topic, and must answer questions created by other students. Please refer to the Moodle site for a complete description of the task, including the number of questions to be answered.

Assessment Due Date 9am Monday morning in weeks 4, 6, 8, 10 and 12
Return Date to Students On certification day
Weighting 10%
Assessment Criteria

For each of the five tasks, the creation of your own multiple choice question is worth 50% and the answering of other students multiple choice questions is worth 50%. For creating the question you will be assessed on the appropriateness and clarity of the question, the set of possible answers and the explanation of the correct answer. For answering other students questions you will be assessed on the number of questions answered and your feedback given on those answered questions. Peer assessment as well as instructor assessment will be used.

All submissions after the deadline will receive 0 marks. Late submissions will not be accepted. Submissions partly or fully copied from other sources (e.g. websites, textbook) are not allowed and will receive 0 marks for the entire task.

Referencing Style Harvard (author-date)
Submission Online

Learning Outcomes Assessed
This section can be expanded to view the assessed learning outcomes

1. Plan organisational adoption of security controls such as proxies, firewalls and intrusion detection systems.

2. Design secure wired and wireless network infrastructure with encryption and enterprise level authentication.

3. Synthesise the knowledge gained in the unit to address organisational security using policies and procedures, hardware and software.

4. Formulate security countermeasures to reduce potential security risks.

5. Analyse emerging security threats and controls.

Graduate Attributes
This section can be expanded to view the assessed graduate attributes

1. Knowledge

2. Communication

3. Cognitive, technical and creative skills

4. Research

5. Self-management

6. Ethical and Professional Responsibility



3 Practical and Written Assessment

Assessment Title Assignment 2
Task Description

This assignment requires you to apply knowledge from the lectures to solve practical problems, focussing especially on current network security technologies. You will: use software to identify security attacks in network communications; use software to apply encryption techniques to provide confidentiality and authentication; identify problems and design solutions for securing communications in a private/public network. There will be multiple questions on different topics, and you will be expected to submit a report containing answers. The report may be a mix of short answers, diagrams, tables, and short essays with references. Questions, and expected structure/format of the report, can be found on Moodle.

Assessment Due Date Week 12 Friday (02-Jun-2017) 05:00 PM AEST
Return Date to Students On certification day
Weighting 50%
Assessment Criteria

The assignment consists of multiple questions, each marked separately. In general, to obtain full marks the answer must be correct, and when an explanation is required, the answer must demonstrate understanding of the problem, solution and tradeoffs. Mark allocation for each question, the expected format of the answer, and details of the marking criteria can be found in the assignment on Moodle.

Referencing Style Harvard (author-date)
Submission Online

Learning Outcomes Assessed
This section can be expanded to view the assessed learning outcomes

1. Plan organisational adoption of security controls such as proxies, firewalls and intrusion detection systems.

2. Design secure wired and wireless network infrastructure with encryption and enterprise level authentication.

3. Synthesise the knowledge gained in the unit to address organisational security using policies and procedures, hardware and software.

4. Formulate security countermeasures to reduce potential security risks.

5. Analyse emerging security threats and controls.

Graduate Attributes
This section can be expanded to view the assessed graduate attributes

1. Knowledge

3. Cognitive, technical and creative skills

4. Research

6. Ethical and Professional Responsibility




© 2017 CQUniversity
Page generated by apps-prod-02.cqu.edu.au at Tue May 30 15:33:59 AEST 2017