Syllabus

CS 340 Cyber Security

Time:  MW 2-3:15 pm

Instructors: Pat Logan and Allen Clarkson

Contact:  746-1051 (Pat) or by email loganp@marshall.edu

Location: GH 206A

Course Description:

This course is designed to provide the technical and analytical skills to implement computer security in a typical medium to small-sized enterprise. The course focuses on introducing students to the elements of computer security: technology, people, and policies.  Students should have a basic understanding of how networks and operating systems function.  At the completion of the course, students will be able to take the CompTIA Security+ certification exam. Pre-requisite: CS 320, or permission of the instructor.

 

Textbook:  Principles of Computer Security, Conklin, White, Cothren, Williams, and Davis And Computer Security Lab Manual, Nestler, Conklin, White and Hirsch. 

Course Objectives:  Upon the completion of the course students will be able to:

·        Describe common attack methodology

·        Define and use basic commands and tools for network probing

·        Define basic security terminology

·        Describe the security needs common to all organizations

·        Identify poor security practices

·        Describe the role of cryptography in security

·        Define authentication

·        Describe potential holes in a network architecture that impacts security

·        Define the points of weakness in an infrastructure that intruders target

·        Describe weaknesses in remote access

·        List best-practices in wireless network implementation

·        Describe how Intrusion detection systems work

·        Describe common attacks used for unauthorized intrusions

·        Define current malware risks

·        Define best practices in disaster recovery

·        Define the steps in incident response

·        Identify common computer forensics tools

·        Identify Internet sites for security information

Course Format:

The methods of instruction will use lecture, on-line discussion, and computer lab exercises.  The class will use Vista as the course delivery tool and also for some online work.  Students are required to have an MU account in order to access the materials.  Lectures and labs will alternate each week beginning with Week 3 of the course. Students must complete their lab exercise during the week assigned.  The computer lab will not have the available software or configuration necessary to complete assignments outside of the class times.  Some exercises may be done on the student’s own computer. 

Disability Statement

Any student with a documented disability needing academic adjustments is requested to notify the instructor as early in the semester as possible, and must do so before the mid-term exam. Verification from MU disabled Student Support Services is required. All discussions will remain confidential.

Assignments:

Reading-- Reading will be from the textbook, lab book, select material (available for download from Vista), and web sites (URLS).

Slides--The PowerPoint slides are to be used for review and to cover additional material not found in the reading.  The slide sets will be available in Vista.

Lab/Computer Assignments—There will be independent lab assignments that involve an exercise and a write-up. These will be worth 25 points each.  Some lab exercises will be done in the class lab while others you will do outside of class.  Somel lab assignments are team assignments with a single write up.  Lab write-ups are to be delivered to the Vista dropbox by midnight on the due date.

Discussion--The on-line discussion component allows us to extend our in-class discussion.  The instructor will provide students with an introduction to using Vista during the first week of class.  The course requirement is to post a response to each thread (discussion topic) at least 3 times per week.  Discussions run from Monday to Sunday each week except when there are breaks.  On-line discussions will be graded according to the following rubric:  Each discussion is graded on number of posts and quality of the posts.  No participation earns a zero and full participation earns 8 pts with partial contributions earning between 1 and 8 pts depending on the number of posts.  The quality of your contributions will be graded on whether your discussions includes analysis of the question, extends the topic's discussion, includes references to the textbook reading for reinforcement of your viewpoint and includes outside sources.  A series of quality posts that exceed the minimum number (3) for each discussion can earn up to 12 pts with fewer posts and lesser contributions earning between 1 and 12 pts.  No posts will earn a zero.   Simple responses are not discouraged but they do not count for the quality component of the grade.  The rubric below will be used to assign quality points.

High

Your contributions to each Topic indicate your mastery of the materials assigned. Your responses might integrate multiple views and/or show value as a seed for reflection for other participants' responses to the thread.  You provide evidence that you are reading the assigned materials and other student postings and are responding accordingly, bringing out interesting interpretations.  You know the facts and are able to analyze them and handle conceptual ideas.

Medium

Your responses build on the ideas of another participant (or more) and dig deeper into assignment questions or issues. When you make intelligent posts during the week, including some good critique of the course material, then you have demonstrated you have an understanding of the material, are reading posts of your colleagues, and are contributing to the class.  Your posts demonstrate confidence with the materials, but may be just a bit off target in one area or another.

Low

You have meaningful interaction with other participants' postings. Posts that state “I agree” or “I disagree” include an explanation of what is disagreed or agreed upon and why, or introduce an argument that adds to the discussion.  However, you may have rambling, lengthy posts that show no sign of having been re-read and refined before posting, and your writing suffers lack of clarity and comprehension. 

Unsatisfactory

You will receive little credit in the week's discussion by just showing up and making trivial comments, without adding any new thought to the discussion.  At the low end of the spectrum, no participation gets a "0." If you are not in the discussion, you do not earn any points.

The content of the online discussion will be used for quizzes so reading posts throughout the week will prepare you to do well on the quiz.

On-line-- Access Vista at www.vista.marshall.edu. Your computer must be able to display the Vista content and there is an exercise on the Vista web site that can be used to check for the proper settings to enable the student to use Vista.  Disabling popups will interfere with the content!  Assignments can be turned in via the class drop-box in Vista.  The course gradebook (to track your progress) will be available in Vista.  Students should check online for announcements daily.  Lecture slides can also be downloaded from Vista.  All materials will be available in Vista.  All assignments have a midnight due date and late submissions will be penalized at the discretion of the instructors. For problems with Vista, please call the MU help desk for assistance.  Discussions are graded weekly and you will receive feedback on your contributions.  Each discussion is worth 20 pts.

Quizzes—there will be a quiz every 2 weeks (1 per unit) available in Vista that will cover content from the reading, lecture, and online discussion.  Each quiz will be worth 15 pts.  Quizzes are available for only 1 week and expire. 

Grading

Please note that the grading scale is not traditional.  Excellent work must be superior in quality and content and the student must be an active classroom, on-line and team participant to earn an “A” grade.  An incomplete will not be given unless a documented emergency exists at the end of the semester that prevents the completion of the class.  An Incomplete will be given only when all assignments have been turned in and the assignments received a passing grade up to the point of the request for the incomplete.  The work not completed must have an agreed-upon due date for completion.  By the end of the course, if all work has been submitted (on-time and a passing grade) and the student takes and passes the CompTIA  Security+ exam, the student will receive an “A” grade in the course.

Grade

Per Cent Earned

A

90 - 100

B

82 – 89

C

75 - 81

D

65 – 74

E

< 64

 

Activities

Points

 Discussion

300

Assignments

200

Quizzes

200

Total

700

The standard for written and oral presentations will reflect acceptable business practices.  Sloppy or incomplete work will be penalized.

Course Policies  

Teams

Students can form into teams of 2 students each for lab assignments.  Each team is responsible for learning the material and performing the required lab work.   The work should be divided between the students and reflect a joint effort. If a team member stops contributing, it is obligatory to inform the instructor.  Lab exercises are to be completed by a team and receive a “team” grade.

 

Plagiarism Policy

All work submitted under your name is assumed to be done by you.  If it is discovered that the work submitted by you or your team was written by another or if material is copied without proper attribution, the instructors will record an E grade for the course.  Cutting and pasting from web sites is considered plagiarism unless attribution is given.  Entire pages of content cannot be attributed to someone else and you still receive credit for doing original work.  Be aware that cutting and pasting is detectable forensically.

Schedule of Events

The schedule is organized by weeks but the Vista Course Content is organized by units equal to approximately 2 week intervals.

Unit

Date/Week

Reading

Topics

Meeting

Lab

1

1

1/8 - 1/10

Chapter 1 & 4

Chapter 24

Lab hand-outs
  • Introduction to the course
  • Using Vista
  • Ethics in security
  • Lab rules
  • Incidents
  • Threats
  • Attack methods
  • Legal restrictions

 

Course introduction

Quiz

Ethical code

 

 

 

Footprinting

Download Samspade

Learning to use the tool

Reviewing HTML code for info

Google hacking for info

 

2

1/15 (No Class) – 1/17

Chapter 2

&

Chapter 3
  • Security controls
  • Security models
  • Security policies
  • Physical security
  • Social engineering

 

Lecture

 

Lab 1 due

2

3

1/22 – 1/24

 

Chapter 1 lab manual

Lab hand-outs

  • Ipconfig
  • Ping
  • Arp
  • Local hosts
  • Arp
  • Nslookup
  • Netstat
  • tracert

 

Lab 2

4

1/29 – 1/31

Chapter 7-9
  • standards
  • Protocols
  • Physical security
  • networks

Quiz

 

3

5

2/5 – 2/7

Chapter 2 & 3 lab manual
  • tcp/udp
  • ftp
  • telnet
  •  

 

Lab 3

6

2/12 – 2/14

Chapter 10-12
  • Infrastructure
  • Remote access
  • Wireless
  • IM

Quiz

 

4

7

2/19 – 2/21

Chapter 4-6 lab manual
  • Nmap
  • Smbdie
  • Netbus
  • keylogger

 

Lab 4

8

2/26 – 2/28

Chapter 5 & 6

Lab hand outs
  • pw crachers
  • steg

Quiz

Lab 5 home

5

9

3/5 – 3/7

Chapter 13-16
  • intrusion detection
  • security baseline
  • attacks with malware
  • email

 

 

10

3/12- 3/14

Chapter 7-8 lab manual
  • hardening
  • securing network

Quiz

Lab 6

6

11

Spring break

3/18 - 3/25

 

 

 

 

12

3/26 – 3/28

Chapter 17-18
  • web
  • software

Quiz

 

7

13

4/2 – 4/4

Chapter 9 & 10 lab manual
  • detecting attacks
  • forensics

 

Lab 7

14

4/9 – 4/11

 Chapter 19 - 22

Dr, bcp, op

Rm

Cm

Corporate forensics

 

Quiz

 

8

15 

4/16 – 4/18

Lab handouts

Forensic tool kits

 

Lab 8

16

4/22 – 27

Dead week

Review online

Quiz