Teaching starts Spring

Language of instruction Norwegian and English. Lectures are in Norwegian. Textbooks are in English, and international students are offered special tuition in English.

Recommended previous knowledge Good understanding of computer network configuration, installation and operation, with competence in data communication principles, equivalent to courses: DAT204 Data Communication and DAT210 Network Management 1.

Learning outcomes After completing the course students should: - Have knowledge of security vulnerabilities and challenges within computer network security. - Have an understanding of consequences for network and security issues when implementing new systems and solutions. - Be able to evaluate vulnerabilities and preventive measures. - Be able to analyze and identify security requirements for network and solutions. - Accomplish configuration and implementation of network system components. - Be able to contribute in organizing security analyzes, formulation of requirement specifications and planning for implementation.

Course contents The course provides a survey of security vulnerabilities in a computer network, and discusses actual preventive measures with respect to planning and implementation. It is intended for advanced network operation and network security administration. The course describes deeply technical principles and technologies used in computer network security and solutions including threats mitigation. It includes evaluation of vulnerabilities and preventive measures in order to reduce the risk of attacks in IT-networks, and cover the following topics: Threats and vulnerabilities in networks, anti-hacking tools, antivirus - antispam - antispy, topology security, network segmentation and the use of VLAN, perimeter security like firewalls with intrusion detection and prevention, virtual private networking (VPN), introduction to cryptography and use of secret keys for message encryption, use of digital ID and Public Key Infrastructure, authentication, encryption and authorization, security in wireless network (WLAN). During practical exercises in a special network lab, the students will gain experience from configuration and implementation of security solutions including configuring of routers and firewalls, setup of VPN-tunnels, PKI-services with digital ID, IDS/IDP-solutions and the use of anti-hacker tools.

Teaching methods A combination of lectures and laboratory exercises with practical lab-work in small groups supervised by network experts. Project work mainly individually supervised.

Examination requirement Compulsory exercises must be approved.

Assessment methods and criteria Project work including project report and oral presentation of the project are with joint grades for the group. Oral presentations are adjusting and can be individually evaluated. Graded assessment.

Level of course Bachelor's level

Year of study 2nd year

Name of lecturer/contact person Morgan Konnestad

Recommended or required reading Available on request.

Mode of delivery Face-to-face