Home

SEC520 Course Outline

Course Code: SEC520
Course Name: Internet Security
Offered Date: Winter - 2019 | Other versions
Print Outline
Course Description:
This subject explores issues surrounding web site construction, operation, and maintenance from a security point of view. Students will learn how to identify attack types from both internal and external sources. Students will learn how to build secure servers. Major topics will include document encryption, server protection, and defense strategies. Example web servers for both Windows and UNIX/LINUX will be investigated.
Credit Status: 1 Credit for CNS/CTY Diploma Students
Prerequisite: INT420
Mode of Instruction: 4 hours lab time per week.
Learning Outcomes:

- Identify the role of security in the provision of an Internet service
- Identify authentication, authorization, and access control elements of a security configuration
- Understand Windows and Unix/Linux security foundations
- Identify common types of server vulnerabilities
- Test a server for vulnerabilities
- Harden a server against threats
- Configure an intrusion detection system
- Configure a firewall
- Configure server activity logging and interpret logs
- Configure secure access to a server for content and server administration
- Configure and use encryption technologies including ssh and kerberos
- Configure a web site to control access to content using passwords, client certificates and advanced login protocols

Topic Outline:

  • The Role of Security in the Provision of an Internet Service
  • Categories of Security Risks and Responses
  • Controlling Access to Content
    •         Passwords
    •         Client-side certificates
    •         Advanced login protocols
  • Security Foundations
    •         Authentication, Authorization, and Access Control
      •             Kerberos
      •             PAM
      •             Passwords
      •             PKI
      •             Self-generated keys
    •         Windows Security Foundations
    •         Linux Security Foundations
    •         Intrusion detection systems
    •         Firewalls
  • Hardening a Web Server
    •         Understanding common types of vulnerabilities
    •         Testing a server for vulnerabilities
    •         Hardening a server against common threats
  • Operational Security
    •         Administrative access
      •             Server administration
      •             Site/content administration
    •         Logging and log interpretation
    •         Auditing
    •         Change management
Prescribed Text(s):

  • Computer Security Basics, 2nd Edition by Lehtinen, Gangemi Sr.; ISBN 0-596-00669-1 published by O'Reilly Media
Reference Material:
Resources assigned by the professor
Supply:
None
Promotion Policy:
To obtain a credit in this subject, a student must:
  •     Achieve a grade of 50% or better on the final exam
  •     Achieve a weighted average of 50% or better for the tests and final exam
  •     Achieve a grade of 50% or better on the overall course
  •     Complete ALL assignments and labs

Grading Policy
A+ 90%  to  100%
A 80%  to  89%
B+ 75%  to  79%
B 70%  to  74%
C+ 65%  to  69%
C 60%  to  64%
D+ 55%  to  59%
D 50%  to  54%
F 0%    to  49% (Not a Pass)
OR
EXC Excellent
SAT Satisfactory
UNSAT Unsatisfactory

For further information, see a copy of the Academic Policy, available online (http://www.senecacollege.ca/academic-policy) or at Seneca's Registrar's Offices.


Evaluation:

Assignments (minimum of 2) 20%
Log Book and Tasks 15%
Tests (minimum of 2) 30%
Final Exam 35%
Approved By:
Mary-Lynn Manton
Cheating and Plagiarism:
Seneca upholds a learning community that values academic integrity, honesty, fairness, trust, respect, responsibility and courage. These values enhance Seneca's commitment to deliver high-quality education and teaching excellence, while supporting a positive learning environment. Ensure that you are aware of Seneca's Academic Integrity Policy which can be found at: http://www.senecacollege.ca/about/policies/academic-integrity-policy.html Review section 2 of the policy for details regarding approaches to supporting integrity. Section 2.3 and Appendix B of the policy describe various sanctions that can be applied, if there is suspected academic misconduct (e.g., contract cheating, cheating, falsification, impersonation or plagiarism).

Please visit the Academic Integrity website http://open2.senecac.on.ca/sites/academic-integrity/for-students to understand and learn more about how to prepare and submit work so that it supports academic integrity, and to avoid academic misconduct.
Discrimination and Harassment:
All students and employees have the right to study and work in an environment that is free from discrimination and/or harassment. Language or activities that defeat this objective violate the College Policy on Discrimination/Harassment and shall not be tolerated. Information and assistance are available from the Student Conduct Office at student.conduct@senecacollege.ca.
Accomodation for Students with Disabilities
The College will provide reasonable accommodation to students with disabilities in order to promote academic success. If you require accommodation, contact the Counselling and Accessibility Services Office at ext. 22900 to initiate the process for documenting, assessing and implementing your individual accommodation needs.

Program Information