Module Title:Network Security
Credits: 10
NFQ Level:8
Module Delivered In 1 programme(s)
Teaching & Learning Strategies: A mix of traditional lectures, laboratory work and take-home projects will enable the learner to fully understand and practice the various networking concepts presented.
Module Aim: To provide the learners with the knowledge and skills to design, configure, maintain and troubleshoot a secure network.
Learning Outcomes
On successful completion of this module the learner should be able to:
LO1 Critique the primary security threats to network and information security.
LO2 Validate secure access with Authentication, Authorisation and Accounting (AAA).
LO3 Design, configure and evaluate firewalls to mitigate network attacks.
LO4 Design, implement and evaluate Intrusion Detection and Prevention Systems (IDPS) to mitigate network attacks.
LO5 Evaluate wired and wireless LAN vulnerabilities and justify protective measures.
Pre-requisite learning
Module Recommendations

This is prior learning (or a practical skill) that is recommended before enrolment in this module.

6832 ZNTW H1201 Networking
7067 ZNTW H2201 Networking II
7079 ZNTW H3201 Networking III
Incompatible Modules
These are modules which have learning outcomes that are too similar to the learning outcomes of this module.
No incompatible modules listed
Co-requisite Modules
No Co-requisite modules listed
This is prior learning (or a practical skill) that is mandatory before enrolment in this module is allowed.
No requirements listed

Module Content & Assessment

Indicative Content
Security Treats (20%):
Attack methodologies; Viruses, worms and Trojan horses; Principles and features of a secure network; Securing network devices
Authentication, Authorisation and Accounting (AAA) (20%):
Local and server based authentication, server based authorisation and accounting (e.g. RADIUS and TACACS+)
Firewalls (15%):
Review ACLs, Configure firewalls, Implement and evaluate zone-based policy firewalls, Context-based Access Control (CBAC), DMZ
Log File and Traffic Analysis (10%):
Read, translate and analyse logs generated for event; Traffic monitoring and analysis
IDPS (15%):
Types of IDPSs (e.g. Network IDPSs, Anomaly-based IDPS, Signature-based IDPS), IPS Evasion Techniques (e.g. Evader: Encryption and Tunnelling, Timing Attacks, Resource Exhaustion, Traffic Fragmentation, Protocol-level Misinterpretation), Anti-evasion countermeasures
Wired and Wireless LAN Security (20%):
Endpoint vulnerabilities and protective measures, Layer 2 vulnerabilities and security measures, Switch security features (e.g. Port Stealing, Switch flooding, storm control), rogue Access Points and devices, man-in-the-middle attacks
Assessment Breakdown%
Continuous Assessment20.00%
End of Module Formal Examination50.00%
Continuous Assessment
Assessment Type Assessment Description Outcome addressed % of total Assessment Date
Examination n/a 1,2,3 10.00 Week 19
Examination n/a 4,5 10.00 Week 28
No Project
Assessment Type Assessment Description Outcome addressed % of total Assessment Date
Practical/Skills Evaluation Weekly practical/laboratory work is designed to allow students to demonstrate the achievement of all the learning outcomes. 1,2,3,4,5 15.00 n/a
Practical/Skills Evaluation Practical Examination 1,2,3,4,5 15.00 Week 29
End of Module Formal Examination
Assessment Type Assessment Description Outcome addressed % of total Assessment Date
Formal Exam n/a 1,2,3,4,5 50.00 End-of-Semester

ITCarlow reserves the right to alter the nature and timings of assessment


Module Workload

Workload: Full Time
Workload Type Frequency Average Weekly Learner Workload
Lecture Every Week 2.00
Laboratory Every Week 2.00
Estimated Learner Hours Every Week 2.66
Total Hours 6.66

Module Delivered In

Programme Code Programme Semester Delivery
CW_KCCYB_B Bachelor of Science (Honours) in Cyber Crime & IT Security 4 Mandatory