ObjectivesTo gain a good understanding of security issues and their related challenges on TCP/IP networks and be able to apply appropriate solutions. .
Targeted audienceNetwork specialists (other than DBAs) as well as those in IT management, project management or general management positions.
PrerequisiteKnowledge of TCP/IP (Course RE102).
- Review of TCP/IP
- Weaknesses of TCP/IP, main attacks, Telnet, FTP, TFTP, DNS and routing protocols: SFTP bypass solutions, SSH
- IP Address translation (NAT, PAT) and private addressing
- Firewalls and IPS/IDS: architecture and management
- Virtual private network functions with IPSec and SSL/TLS
- Authentication in IP networks: basic, strong authentication, and with ICP/PKI
- Security and IP telephony
- E-mail security (SMTP, POP3, IMAP4) and spam
- Privacy and e-mail signatures: S/MIME and OpenPGP
- Web security: SSL, TLS, S-FTP, SSH, certificates, sessions, authentication, cookies
- The example of kernel security: Apparmor versus SELinux
- Cloud computing and TCP/IP security
Note: Intrusion prevention and detection is covered in greater depth in Course RE110.