Network Security COURSE TUTORIAL

     
Course Name:   Network Security Training
     
Deployment Options:   Onsite - Instructor-Led Training
     
Course Duration:   4-5 days depending on audience background and options

Introduction:
 
The growth of the Internet and the wide-spread use of computer networks have brought great benefits to businesses. At the same time they have opened up business systems to remote hacking from employees through to anonymous crackers at the other side of the world.

The related growth in network applications has increased the complexity and consequently the vulnerability of networked systems. Whilst techniques to secure network systems exist they are many and complex. This course gives the attendee a good understanding of network security risks and the appropriate techniques that can be used to reduce and control those risks. The course is generic to all networked operating systems.
 
Audience:
 
This course is ideal technical staff and managers involved in network management. It is helpful if attendees have a basic understanding of networking principles but background information is supplied throughout the course.
 
Prerequisites:
 
Basic understanding of networking principles but background information is supplied throughout the course.
 
Customize it:
 
This 4-5-day Network Security course will be customized to your needs and specifications. Eno.com will assist you in identifying those needs and specifications. A word to the wise, there are many vendors of wireless training. They will typically have a broad and general course, one size fits all, already developed and just put your organization’s name on the title slide. This minimizes their effort and time investment. At Eno.com, every course is made to your exact and exacting specifications. We help you ensure what you are getting is what you really need even if at the beginning you weren’t too sure of what that was. We fit the class to your needs. We never fit you into our “standard”, one size fits all, class.
 
Objectives:
 

You will learn how to

  • Determine the risk to your network
  • Develop and implement a security policy
  • Audit your network's security
  • Use modern network security techniques, such as X.509, IPSec, SSL, TLS etc
  • Use ethical hacking to identify security weaknesses.
  • Harden your network services and applications
  • Keep up to date with security issues
 
Course Outline
 

Networking Recap

  • Review of networking basics
  • OSI 7 Layer Model
  • TCP/IP - Internet Model
  • Network terminology
  • Common network protocols

What is Security?

  • Confidentiality
  • Integrity
  • Authentication
  • Non-repudiation
  • Availability
  • Access-Control
  • Business Issues

Risks and Vulnerabilities

  • Information disclosure
  • Information leakage
  • Integrity violation
  • Masquerading
  • Denial of service
  • Illegitimate use
  • Trojan Horses
  • Back Doors
  • Password Cracking
  • Buffer Overflows
  • Scanning and Sniffing
  • Spoofing
  • TCP/IP protocol attacks
  • Session Hijacking
  • Denial of Service
  • Social weaknesses
  • Physical weaknesses

Security Policies

  • Risk analysis
  • Security Policies
  • Who are you protecting?
  • What are you protecting?
  • Cost-benefit
  • Recovery
  • Ownership
  • Standards

Cryptography

  • Symmetric key cryptography
  • Public key cryptography
  • Hash functions and MAC

Digital Certificates and X.509

  • Digital certificates
  • X.509 certificates
  • Certificate authorities
  • PGP certificates

Physical Network Security

  • Cabling
  • IEEE802 networks
  • Wireless
  • Tempest

Datalink Security

  • ARP Poisoning
  • MAC addresses
  • VLANs
  • IEEE802.10 SILS

IP & Routing Security

  • IP Fragmentation
  • Spoofing & SYN Flooding
  • ICMP redirects
  • Source routing
  • Dynamic routing

Firewalls and NAT

  • Operation of TCP and UDP
  • Ports and Sockets
  • Firewall rules
  • Typical firewall settings
  • Stateful firewalls
  • Proxy Servers
  • Application layer firewalls
  • NAT

IPSec & VPNs

  • Cryptographic techniques
  • AH & ESP Headers
  • Transport and tunnel modes
  • Security associations
  • ISAKMP & IKE
  • Oakley
  • VPN Solutions

TLS and SSL

  • Secure Sockets Layer
  • Transport Layer Security

Name Service Security

  • The Domain Name System - DNS
  • TSIG & DNSSEC
  • WINS
  • LDAP

Securing Network Operating Systems

  • UNIX
  • Linux
  • Windows
  • Others

Network Application Security

  • Basic services
  • Berkley "r" commands
  • E-mail (SMTP)
  • POP/IMAP servers
  • Web-Servers
  • Other issues...

Keeping up to date

  • CERT

Network Management Security

  • SNMP & Security

Ethical Hacking

  • Auditing and testing
  • Password crackers
  • Scanners - nessus, nmap...
  • Sniffers - ethereal, supersniff...
  • War dialers - beep, ptools...
  • Wireless - Airsnort, Netstumbler...
  • Miscellaneous - brutus, nmap...

Please call or e-mail to schedule a no-obligation conference call to help us understand your audience background and training objectives.

 
 

For organizational purchases, please send us a message at salesinfo@eno.com or complete and submit this form .

 
Other Expertise:
 
 

Copyright E and A Information Services. All Rights Reserved.
Home About ENO.Com Clients Site Map-MPLS Training Press Room Contact Us at 1-888-742-3214 CustomerService Search Consulting - Network Security Training classes Onsite Training - Network Security courses Course Catalog - Network Security training Tutorial Outlines Partners Resources Products and Services Solution by Industry Request Information Shopping Center Customer Service About Eno.Com Careers at ENO.com Legal Notices Privacy Policy