• No results found

X Network, Operating System, and Database Security. Fall 2014, Registration Number W. UCLA EXTENSION: Computer Science.

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "X Network, Operating System, and Database Security. Fall 2014, Registration Number W. UCLA EXTENSION: Computer Science."

Copied!
6
0
0

Loading.... (view fulltext now)

Download now ( 6 Page )

Full text

(1)

X 420.5 Network, Operating System, and Database Security

Fall 2014, Registration Number 249343W

UCLA EXTENSION: Computer Science

Course Syllabus

____________________________________________________________

12 Sessions: Mondays, 6 - 9 pm, September 29 - December 15, 4 Units

Location: UCLA Extension Lindbrook Center, 10920 Lindbrook Drive, Los Angeles, CA 90024, Room 214

Instructor: Wayne A. Wheeler

E-mail: [email protected]

____________________________________________________________

Description

This course concentrates on specific security issues related to network, database, and operating systems. Infrastructure security architecture secures the core components that applications and where data reside. The security of infrastructure systems, such as operating systems, networks, and databases, is critical to maintaining a trusted state of operations in the technology environment. The course demonstrates fundamental security practices to build trusted systems, address control requirements, test the security of the systems, and how to remediate and recover from adverse security events.

Expectations of Students

• General knowledge of information systems architectures

• Ability to follow instructions for loading and running basic programs (e.g., demo/experiment assignments)

• Online access to download course content, participate in discussions, and take quizzes

• Helpful (but not required) — prior knowledge of networking, operating systems, and databases

(2)

Objectives

This course provides a foundational overview of securing information technology infrastructure, including specific security issues related to network, database, and operating systems.

By the end of the course, students should be able to:

• Identify motivations and tactics for the major categories of cyber threat actors • Recognize common types of cyber attacks and exploits

• Demonstrate understanding of risk management as it applies to information security management

• Apply lessons learned from an APT case study

• Demonstrate a basic understanding of modern network protocols • Identify the components of an enterprise network architecture • Apply Defense-in-Depth security to a network architecture

• Demonstrate understanding of best practices application of security appliances (e.g., firewalls, DMZs, IDS/IPS, authentication servers)

• Demonstrate understanding of the utility and application of network monitoring tools

• Demonstrate understanding of the tools and best practices to secure Microsoft Windows based infrastructure

• Demonstrate understanding of the tools and best practices to secure LINUX/UNIX systems

• Demonstrate basic understanding of web enabled database services, and the cyber threats unique to those services

• Identify key steps to securing databases based on MYSQL, MS SQL, and Oracle • Describe approaches for security testing, remediation, and recovery

• Develop a cyber security plan for an enterprise, based on the best-practices methodology described in the class

Required Materials & the CANVAS Online Portal

This is a “web enhanced” course (i.e., in-class instruction will be combined with online instruction). All materials required for the course, including readings, videos, discussions, quizzes, and assignments, will be distributed via the CANVAS portal. See the instructor on the first day of class if you were unable to access the CANVAS portal.

Questions to the instructor during the course should be posted via the CANVAS mail tool, and NOT external email.

(3)

Weekly lecture material and assignments will be posted on the CANVAS portal the day after each class. Students are expected to review the CANVAS assignments, and complete them prior to the due date posted (usually 11:59 p.m., the night before class). Document assignments for the class (e.g., Security Plan Outline, Security Plan) will be submitted via CANVAS site uploads and NOT via email.

Optional Materials

Some classroom lab and demonstration experiments will be performed using the

Beaglebone credit card sized Lunux computer. Students interested in further

experimentation at home could purchase a Beaglebone for their own use. The

Beaglebone is entirely optional, and is not required for any assessment testing nor any

course material.

The Beaglebone is around $55 (base price), and can purchased from the URL below or through other outlets. You should get the latest revision C with a pre-installed Debian Linux distribution.

http://www.adafruit.com/products/1876?gclid=CKvz47qx88ACFYqBfgod95QATQ

Beaglebone accessory recommendations will be available after the first class. Contact

(4)

Course Schedule Week Lecture Date Title Assignments 1 9/29 INTRODUCTION TO SECURING INFRASTRUCTURE

- Characterizing cyber threats - Security metrics

- Risk management

Videos 1, 2 Readings 1, 2 Discussion 1

2 10/6 NETWORKING & PIPES

- Network protocols & topologies - Network interfaces

- Wireless networks & remote access

Video 1, 2 Readings 1, 2 Quiz 1

3 10/13 SECURING THE NETWORK

- Defense in depth - Perimeter defense - Security appliances Videos 1, 2 Readings 1, 2 Discussion 2

4 10/20 MONITORING THE NETWORK

- Monitoring & network defense - Instrumenting the network - Data collection & analysis

Video 1, 2 Readings 1, 2 Quiz 2

5 10/27 SECURING THE WINDOWS ENTERPRISE

- Threats to Windows systems - Securing Windows services - Securing Windows applications

Videos 1, 2 Readings 1, 2 Discussion 3

6 11/3 SECURING LINUX/UNIX

- Threats to Linux

- Securing Linux services - Layered security strategies

Video 1, 2 Readings 1, 2 Midterm Exam

7 11/10 INTRODUCTION TO SECURING THE DATABASE

- Web enabled database architecture - Database services threats

- Database security best practices

Videos 1, 2 Readings 1, 2 Discussion 4

8 11/17 DATABASE SECURITY- MYSQL, MS SQL, ORACLE

- SQL Database Architectures - Understanding SQL injections - Steps to securing MYSQL, MS SQL.

ORACLE

Video 1, 2 Readings 1, 2 Quiz 3

Submit proposed

Infrastructure for Project

9 11/24 SECURITY TESTING, REMEDIATION, AND

RECOVERY

- Penetration testing the network - Planning for a intrusion event - Recovery after the attack

Videos 1, 2 Readings 1, 2 Discussion 5

10 12/1 SECURING THE CLOUD & EMERGING TRENDS

- Cloud architectures & security - Emerging trends in cyber security

Video 1, 2 Readings 1, 2 Quiz 4

Submit Security Plan Outline

11 12/8 PROJECT- SECURING YOUR INFRASTRUCTURE-

PART 1

- Frameworks for security planning - Steps to develop the security plan

Readings 1, 2

12 12/15 PROJECT- SECURING YOUR INFRASTRUCTURE –

PART 2

- Security plan drafts review

Submit Security Plan Final Exam

(5)

Grading Distribution

Assessed Activity Percent Applied

Discussions (5) 15

Quizzes (4) 20

Midterm Exam 15

Final Exam 20

Security Plan Outline 10

Security Plan 10

In Class Participation 10

Total 100%

Contact professor via CANVAS for extracredit opportunities.

Quiz & Test Policies

- Online quizzes may be attempted up to 2 times without penalty.

Due Dates and Late Work

- Submissions of online assignments (e.g., discussions, quizzes) will NOT be

accepted after the due date/time posted on the CANVAS site (for emergency situations contact the professor via CANVAS mail)

- Document submissions (e.g., Security Plan Outline, Security Plan) will be

accepted up to 2 days after the required submission date; but the score for the assignment will be reduced by one grade level (e.g., a B+ would be reduced to a C+). Document submissions will NOT be accepted later than 2 days after the assigned due date.

Grading Scheme A+ 100% to 97% A < 97% to 94% A- < 94% to 90% B+ < 90% to 87% B < 87% to 84% B- < 84% to 80% C+ < 80% to 77% C < 77% to 74% C- < 74% to 70% D+ < 70% to 67% D < 67% to 64% D- < 64% to 61% F < 61% to 0%

(6)

Academic Honesty Policy

Academic integrity covers behavior in cheating, plagiarism, and fabrication of

information. These behaviors are not tolerated. Students are encouraged to familiarize themselves with the UCLA Extension Student Conduct Code and the official

statements regarding cheating and plagiarism at:

https://www.uclaextension.edu/Pages/str/StudentConduct.aspx.

Services for Students with Disabilities

In accordance with Section 504 of the Rehabilitation Act of 1973 and the Americans with Disabilities Act of 1990, UCLA Extension provides appropriate accommodations and support services to qualified applicants and students with disabilities. These include, but are not limited to, auxiliary aids/services, such as note takers, audiotaping of courses, sign language interpreters, and assistive-listening devices for hearing-impaired individuals, extended time for and proctoring of exams, and registration assistance. Accommodations and types of support services vary and are specifically designed to meet the disability-related needs of each student based on current, verifiable medical documentation.

Arrangements for auxiliary aids/services are available only through UCLA Extension’s Services for Students with Disabilities at (310) 825-7851 or by email at

[email protected]. Please request such arrangements with at least five

working days’ advance notice. All assistance is handled in confidence.

Accommodations must be pre-approved. Requests for retroactive accommodation will not be accepted.

References

Download now ( PDF - 6 Page - 389.68 KB )

Related documents

Jesus Before Pilate. Lesson 3.09

Christ before Pilate at the trial of Jesus revealed one of his last claims. Jesus and his word are ultimate truth. The Pontius Pilate and Jesus exchange set the two positions

Labour market success of Hungarian higher education graduates in 2011

Graduates from medical studies, informatics, law and administration answered in an above average ratio that their job is a matching job in terms of degree subject while

The Anglican Church in Newfoundland: an exceptional case?

Chapter 5 will provide a comprehensive statistical analysis of Anglican Church life and compare the Anglican Church in Newfoundland with the Anglican Church in the rest of Canada,

List of Active Peddler Permits

[r]

Inhibitory non-invasive brain stimulation to homologous language regions as an adjunct to speech and language therapy in post-stroke aphasia: a meta-analysis.

The goal of this mini review is to identify and summarize RCTs and randomized controlled cross-over trials assessing the clinical efficacy of NIBS techniques in their inhibitory

Water and Stone: Contemporary Chinese Art and the Spirit Resonance of the World

Second, in the course of working through these questions, the artists have resorted to an art that is an operation on matter, a matter inseparable from energy, and it is the

A higher-order active contour model of a ‘gas of circles’ and its application to tree crown extraction.

In section 4.5 , we illustrate the importance of prior information via tree crown separation experiments on synthetic images, and compare the results to those obtained using a

MITE Tracker: An accurate approach to identify miniature inverted-repeat transposable elements in large genomes

Using MITEs families as input, we conducted a BLAST search to find MITE elements on a genome wide scale with a sim- ilarity constraint of at least a 95% coverage of the input