Security

Base Knowledge

Basic knowledge about the operation of operating systems in general and the TCP/IP protocol stack in particular. Ability to develop TCP and UDP applications. This knowledge is covered in the Operating Systems (OS) and Introduction to Communication Networks (IRC)  courses.

Teaching Methodologies

Exposition of computer security theory, its concepts and principles within the scope of theoretical classes, using audiovisual approaches.
Consolidation of acquired knowledge with practical application in the context of network topologies that allows the resolution of practical security problems, stimulating curiosity and motivation for the topics under discussion.

Learning Results

Goals
Fundamental security aspects will be analysed in this course unit, targeting the information systems and communications, in terms of models, risk assessments, politics and existing technologies. It’s the aim of this course, additionally, that students acquire practical skills in defining, planning and implementing security politics. This course unit uses most of the curricular program of the source Cisco Certified Network Associate Security (CCNA Security) that is actually in the scope of the Cisco Academy of the DEIS/ISEC.

Skills
Knowledge and understanding skill of:
A.1. Identify several security vulnerabilities
A.2. Describe main encryption Technologies and mechanisms
A.3. Describe main protocols for secure communications
A.4. Describe main authentication systems
A.5. Describe main strategies behind access control devices / intrusion detection / intrusion prevention devices (firewall, IDS, IPS, etc.)

Understanding and applying knowledge:
B.1. Identify security vulnerabilities
B.2. Security planning
B.4. Configure correctly secure communications mechanisms, authentication and access control

Handling security decisions
C.1. Justify proposed solutions at the projects

Communication skills
D.1. Technical reports within the projects
D.2. Present and justify projects in a clear mode

Skills development
E.1. Develop, autonomously, hands-on workshops about modern security technologies that complement the ones covered under the course.

Program

Program Contents
1. Security vulnerabilities in communication and information systems
2. Technologies and mechanisms of encryption
3. Secure communication protocols
4. Technologies and mechanisms of authentication
5. Access control devices and intrusion detection/prevention devices / (firewall, IDS, IPS)

Curricular Unit Teachers

Internship(s)

NAO

Bibliography

Luís Santos (2024), diapositivos e demais recursos. A disponibilizar na plataforma Nónio (ISEC)

Cisco systems (2024), Cisco Introduction to Networks Course. Disponível em https://www.netacad.com/

Cisco systems (2024), Cisco Network Security Course. Disponível em https://www.netacad.com/

Fernando Boavida, & Mário Bernardes (2019). Introdução à criptografia. Lisboa, FCA. 1A-16-10 (ISEC), 1A-16-11 (ISEC)

Yusuf Bhaiji (2008). Network security technologies and solutions. Cisco Press. 1A-6-183 (ISEC)

Roberta Bragg, & Mark Rhodes-Ousley, & Keith Strassberg. Network security: the complete reference. McGrw-Hill/Osborne 1A-6-180 (ISEC)

André Zúquete (2008). Segurança em Redes Informáticas (2ª edição). FCA. 1A-6-138 (ISEC)

Alfred J. Menezes, & Paul C. van Oorschot, & Scott A. Vanstone (1997). Handbook of Applied Cryptography. CRC-Press, 1997. Também disponível on-line: http://www.cacr.math.uwaterloo.ca/hac/

Denise Helfrich, & Lou Ronnau, & Jason Frazier, & Paul Forbes (2007). Cisco network admission control (VolI/II). Cisco Press. 1A-6-172 (ISEC)

Bob Vachon, & Rick Graziani (2008). Accessing the WAN : CCNA exploration companion guide. Cisco Press 1A-6-181 (ISEC), 1A-6-181CD (ISEC)

John Rullan (2008). Accessing the WAN: CCNA exploration labs and study guide. Cisco Press. 1A-6-174 (ISEC), 1A-6-174CD (ISEC);

Amâncio Santos, & José Marinho, & José Rosado, & Luís Santos (2008). CCNA 4: Acesso às redes WAN. 1A-6-193 (ISEC)