MSc/Masters » Module Details

IY5511 Network Security

First term, core module for Technical Pathway only.

Module leader

J. Crampton.

Aims

This module is concerned with the protection of data transferred over commercial information networks, including computer and telecommunications networks. After an initial brief study of current networking concepts, a variety of generic security technologies relevant to networks are studied, including user identification techniques, authentication protocols and key distribution mechanisms. This leads naturally to consideration of security solutions for a variety of types of practical networks, including LANs, WANs, proprietary computer networks, mobile networks and electronic mail.

Objectives

At the end of the module students should have gained an understanding of the fundamentals of the provision of security in information networks, as well as an appreciation of some of the problems that arise in devising practical solutions to network security requirements.

Syllabus

Introduction to networking: The OSI model and an introduction to computer networks. Example networks and protocols.

Introductory network security concepts: The concepts of security threats, security services and security mechanisms (as in ISO 7498-2). Overview of security for LANs, MANs and WANs.

Network management security: SNMP security.

Authentication and key distribution: The Kerberos protocol.

Secure protocols: IPsec and Virtual Private Networking, SSL/TLS, SSH.

Network defences: Firewalls, intrusion detection and prevention systems, honeypot systems

Routing security: An overview of routing and security issues in routing protocols

Electronic mail security: Basic e-mail security, Pretty Good Privacy (PGP) and S/MIME.

Wireless security: IEEE 802.11 wireless LAN security.

Mobile communications security: Security in GSM and 3G systems.

Method of examination

Written examination.

Main references

  • W. Stallings, Network security essentials (3rd ed.),Prentice-Hall (2006).
  • R. Oppliger, Internet and Intranet Security (2nd ed.), Artech House (2007).
  • C. Kaufman, R. Perlman and M. Speciner, Network Security: Private Communication in a Public World (2nd ed.), Prentice-Hall (2002).
  • D.E. Comer, Internetworking with TCP/IP, Vol.1: Principles, protocols and architectures (5th ed.), Prentice-Hall (2005).
  • W.R. Stevens, TCP/IP Illustrated, Vol.1: The Protocols, Addison-Wesley (1994).
  • W.R. Cheswick and S.M. Bellovin, Firewalls and Internet security, Addison-Wesley (1994).