CSE 343  Network Security  (3)

Instructor:  Mooi Choo Chuah

Current Catalog Description
CSE 343 is a undergraduate course that covers in detail some topics in network security. It starts with an overview of TCP/IP stacks, their strengths and weaknesses, followed by topics like intrusion detection, worm modeling and detection, VPNs, IPSEC, PKIs, etc. Last but not least, wireless security issues will also be discussed.  Credit will not be given for both CSE 343 and CSE 443.  Prerequisite: CSE 342 or CSE 303 or CSE 265.

Textbook

W. Stallings, "Cryptography and Network Security", 4th Ed., Prentice-Hall

References

1. S. Thomas, "SSL and TLS Essentials", Wiley

2. J. Mirkovic, Dietrich, P. Reiter, "Internet Denial of Service", Prentice-Hall

3. Edney, Arbaugh, "Real 802.11 Security", Addison Wesley

Prerequisite by Topic

1. Programming in C/C++

2. Understanding of how operating system works

3. Understanding of Computer Network Architecture

4. Understanding of how TCP/IP works

Course Outcomes

Students will have:

1. Ability to analyze traffic traces to determine if malicious packets are present
2. Ability to write network programming software to sniff different IP packets
3. Ability to write firewall rules that admit or deny different types of IP packets based on given system requirement
4. Ability to use SNORT to detect any malicious packets in an IP trace.
5. Ability to design a secure system using different hashing and encryption schemes
6. Ability to analyze potential weaknesses in 802.11 security solutions

Relationship between Course Outcomes and Program Outcomes

CSE 343 substantially supports the following program outcomes:

B. An ability to analyze a problem and identify and define the computing requirments appropriate to it solution

C. An abililty to design, implement, and evaluate a computer-based systems

I. An ability to use current techniques, skills and tools necessary for computing practices

Prerequisites by Topic
1. Programming in C/C++
2. Understanding of how operating system works
3. Understanding of Computer Network Architecture 4. Understanding of how TCP/IP works

Major Topics Covered in the Course
1. Overview of TCP?IP, Socket Programming
2. Network Vulnerabilities, Footprinting
3. Denial of Service Attackd, Intrusion Detection System
4. Real ISP techniques in dealing with DDOS
5. Worm Modeling
6. Worm Detection
7. Configuring Firewalls, Bastion Host
8. Basic Cryptography
9. IPSEC
10. Routing & BGP Security
11. TLS/SSL
12. WLAN Security

Assessment Plan for the Course

The students are given six medium/long homework assignments; each assignment consists of two parts: in Part 1, the students answer questions related to a topic covered in class, in Part 2, students do programming exercises related to that topic, a midterm, a final exam. Each homework assignment typically covers a single topic. The midterm has four questions, and the final examination has six questions. Each of these questions typically covers a single topic. I track the performance of the students on their scores for homework assignments, midterm, and final examination.

How Data in the Course are Used to Assess Program Outcomes: (unless adequately covered already in the assessment discussion under Criterion 4)

Each semester I include the above data from the assessment plan for the course in my self-assessment of the course. This report is reviewed, in turn, by the Curriculum Committee.