Brief Introduction
Learn advanced topics in network security, including Security Monitoring, Perimeter Security, IPv6 and IPv6 Security.
Description
This is the 6th course in the intermediate, undergraduate-level offering that makes up the larger Cybersecurity Fundamentals MicroBachelors Program. We recommend taking them in order, unless you have a background in these areas already and feel comfortable skipping ahead.
- Information Security - Introduction to Information Security
- Information Security - Authentication and Access Control
- Information Security - Advanced Topics
- Network Security - Introduction to Network Security
- Network Security - Protocols
- Network Security - Advanced Topics
- Penetration Testing - Discovering Vulnerabilities
- Penetration Testing - Exploitation
- Penetration Testing - Post Exploitation
These topics build upon the learnings that are taught in the introductory-level Computer Science Fundamentals MicroBachelors program, offered by the same instructor.
This is a self-paced course that provides a continuation of network security topics. Among the topics covered are Security Monitoring, Perimeter Security, IPv6, and IPv6 Security. The material is essential in later classes that will develop ethical hacking skills. Students are introduced to the concept of network security monitoring to detect intrusions instead of merely protecting against them.
Next, we discuss securing the perimeter of networks through the use of firewalls.
We follow up by introducing the student to IPv6: what it is, why it was developed, how it compares to the IPv4 protocol, and techniques to implement IPv6 devices alongside IPv4 devices. This lesson will prepare you for upcoming material focused on IPv6 security issues.
We conclude the course by leveraging the early work in IPv6, and we spend the time discussing IPv6 security. You'll learn about security threats that exist in IPv4 and IPv6 and issues exclusive to IPv6 and countermeasures to these threats.
Knowledge
- Explain what information is collected and analyzed through network security monitoring, and why monitoring is important
- Define network security monitoring
- Summarize the policies used in network security monitoring
- Define an Intrusion Detection System/Intrusion Prevention System, and provide a real-world analogy for an IDS
- Define the base rate fallacy and summarize an example
- Summarize the options for deploying an IDS
- Describe common strategies attackers use to evade an IDS
- List potential indicators of a security attack
- Define honeypots and honeynets and list their benefits to organizations
- Summarize the goals of a firewall
- List and define four types of firewalls
- Summarize an example of a filtering rule
- Explain the primary function of NAT
- Summarize the advantages and disadvantages of proxy gateways
- Explain the process for setting up firewalls using IPTables and Netfilter in Linux
- List the steps in an incoming packet's journey through a Linux firewall
- Summarize the challenges that led to the development of IPv6 and explain how IPv6 addresses those challenges
- List the differences in IPv4 and IPv6 services and headers
- Differentiate between IPv4 and IPv6 address formats
- List and define IPv6 address types
- List the differences between IPv4 and IPv6 address provisioning
- List the differences between DHCPv4 and DHCPv6
- Summarize dual-stack techniques for IPv4 and IPv6 devices
- Identify security threats common to IPv4 and IPv6, as well as threats exclusive to IPv6
- Describe how reconnaissance methods will change under IPv6
- List tools that can be use to compromise IPv6 networks
- Describe the security considerations needed in dual-stack host environments