Acerca de este curso: This course introduces real-time cyber security techniques and methods in the context of the TCP/IP protocol suites. Explanation of some basic TCP/IP security hacks is used to introduce the need for network security solutions such as stateless and stateful firewalls. Learners will be introduced to the techniques used to design and configure firewall solutions such as packet filters and proxies to protect enterprise assets. Perimeter solutions such as firewalls and intrusion prevention systems are shown to have significant drawbacks in common enterprise environments. The result of such weakness is shown to often exist as advanced persistent threats (APTs) from nation-state actors. Such attacks, as well as DDOS and third-party attacks, are shown to have potential solutions for modern enterprise.
Creada por: New York University Tandon School of Engineering
Enseñado por: Dr. Edward G. Amoroso, Research Professor, NYU and CEO, TAG Cyber LLC
Computer Science
| Información básica | Curso 3 de 4 en Introduction to Cyber Security Specialization |
| Nivel | Intermediate |
| Idioma | English |
| Cómo aprobar | Aprueba todas las tareas calificadas para completar el curso. |
| Calificaciones del usuario |
Programa
SEMANA 1
Basic Network Security
This module introduces the basics of TCP/IP for security, including firewall design and use.
13 videos, 5 readings
- Vídeo: Introduction: What You Will Learn from This Course on Cyber Security
- Vídeo: Assignments and Reading
- Vídeo: Security Through Obscurity
- Vídeo: TCP/IP Evolution and Security
- Vídeo: TCP/IP Overview
- Vídeo: IP Spoofing
- Vídeo: TCP Sequence Number Attack
- Vídeo: Packet Flooding
- Vídeo: Packet Sniffing
- Vídeo: SYN Packets for Access Control
- Vídeo: Definition of a Firewall
- Vídeo: Firewall: Stateful versus Stateless
- Vídeo: Interview: John Viega
- 阅读: Required: “Network Firewalls,” Steve Bellovin and Bill Cheswick
- 阅读: Required: “Introduction to TCP/IP Network Attacks,” Guang Yang
- 阅读: Video: “Hacking DNS,” Eli the Computer Guy
- 阅读: Suggested: Introduction to Cyber Security, Edward Amoroso and Matthew Amoroso, (Ch. 17 - 18)
- 阅读: Suggested: TCP/IP Illustrated Volume 1 (2nd Edition), Kevin Fall and W. Richard Stevens, (Ch. 17 – 18)
Calificado: Module 1 Quiz
SEMANA 2
More Advanced Network Security Technologies
This module introduces packet filters, firewall rule sets, proxies, and additional network security methods.
12 videos, 4 readings
- Vídeo: Assignments and Reading
- Vídeo: Packet Filtering
- Vídeo: Sample Packet Filtering and Reference Architecture
- Vídeo: Default Firewall Block
- Vídeo: Firewall Rules to Allow Outbound Web Browsing
- Vídeo: Firewall Rules to Allow Telnet and Other TCP Services
- Vídeo: Establishing Corporate Policy Rules
- Vídeo: FTP Protocol
- Vídeo: Firewall Rules for FTP
- Vídeo: Application Proxy Filtering
- Vídeo: Forward and Reverse Proxies
- Vídeo: Interview: Roger Piqueras Jover
- 阅读: Required: “Anomaly-based Network Intrusion Detection: Techniques, Systems, and Challenges.”
- 阅读: Required: “Intrusion Detection via Static Analysis,” Wagner and Dean
- 阅读: Video: “How Does Intrusion Prevention Systems Work,” 2013 - SourceFire
- 阅读: Suggested: Introduction to Cyber Security, Edward Amoroso and Matthew Amoroso, (Chapters 19 - 20)
Calificado: Module 2 Quiz
SEMANA 3
Network Security Architectures
This module introduces the foundations firewall architectures, intrusion detection, and SOC design.
11 videos, 4 readings
- Vídeo: Assignments and Readings
- Vídeo: Firewall Architectures (Part 1)
- Vídeo: Firewall Architectures (Part 2)
- Vídeo: Management by Exception
- Vídeo: System Auditing
- Vídeo: Basics of Intrusion Detection
- Vídeo: Signature Versus Behavioral Detection
- Vídeo: IDS Versus IPS
- Vídeo: Design of SIEM
- Vídeo: Design of a SOC
- Vídeo: Interview: Dino Dai Zovi
- 阅读: Required: “An Evening with Berferd,” Bill Cheswick
- 阅读: Required: “IDES Model,” Dorothy Denning
- 阅读: Video: “DEFCAMP 2015 – Building a Security Operations Center,”
- 阅读: Suggested: Introduction to Cyber Security, Edward Amoroso and Matthew Amoroso, (Ch. 21 - 22)
Calificado: Module 3 Quiz
SEMANA 4
Enterprise Network Security
This module introduces the limitations of perimeters, and the challenges in the enterprise of dealing with threats such as DDOS and APT.
12 videos, 5 readings
- Vídeo: Assignments and Reading
- Vídeo: Practical Limitations of Perimeter
- Vídeo: APT Schema Through Perimeter Holes
- Vídeo: Third Party Security
- Vídeo: Target APT Attack
- Vídeo: Large Government Agency Attack
- Vídeo: Layer 3 DDOS Protection
- Vídeo: Layer 7 Application Level DDOS Risk
- Vídeo: Large Financial Website DDOS Attacks
- Vídeo: Network Security Industry Overview
- Vídeo: Interview: Ray Cheng - Pt. 1
- Vídeo: Interview: Ray Cheng - Pt. 2
- 阅读: Required: “From the Enterprise Perimeter to Mobility Enabled Cloud,” Ed Amoroso, IEEE
- 阅读: Required: “A Study of Advanced Persistent Threats,” Chen, Desmet, and Huygens
- 阅读: Video: “IEEEtv – 5G Summit,” Ed Amoroso, Princeton, 2015
- 阅读: Suggested: Introduction to Cyber Security, Edward Amoroso and Matthew Amoroso, (Ch. 23 - 24)
- 阅读: Quiz Directions
Calificado: Module 4 Quiz
Calificado: Select the Best Migration Choice:
Preguntas Frecuentes
Cómo funciona
课程作业
每门课程都像是一本互动的教科书,具有预先录制的视频、测验和项目。
来自同学的帮助
与其他成千上万的学生相联系,对想法进行辩论,讨论课程材料,并寻求帮助来掌握概念。
证书
获得正式认证的作业,并与朋友、同事和雇主分享您的成功。
Creadores
New York University Tandon School of Engineering
Tandon offers comprehensive courses in engineering, applied science and technology. Each course is rooted in a tradition of invention and entrepreneurship.
Tarifa
| Comprar curso | |
|---|---|
| Accede a los materiales del curso | Disponible |
| Accede a los materiales con calificación | Disponible |
| Recibe una calificación final | Disponible |
| Obtén un Certificado de curso para compartir | Disponible |
Calificaciones y revisiones
Very fun course to do!
Coursera brinda acceso universal a la mejor educación del mundo, al asociarse con las mejores universidades y organizaciones, para ofrecer cursos en línea.
© 2018 Coursera Inc. Todos los derechos reservados.
A
Dr. Amoroso did a wonderful job as always explaining the practical limitations of existing parameters and exposing the porous border of pretty much all enterprise networks. His talk at the IEEE 5G conference at Princeton along with his paper added a lot of value to the concepts around virtualized software driven perimeters. The case studies he discussed in the videos highlight vulnerabilities that large enterprises have to defend. Details around APT such as the organization, planning and patience displayed by perpetrators is mind-boggling. The paper by Dr. Dorothy Denning gave a very thorough and theoretical treatment to aspects around intrusion detection and prevention. Overall a very enjoyable journey so far.