The document contains instructions for several assignments for a network security course. The first assignment asks students to summarize how they would hack into a nefarious business's network as an ethical hacker to find evidence in their database, while remaining anonymous. The second assignment involves designing a secure network diagram for a company with offices in Chicago and a remote site, incorporating defense in depth principles. The third assignment asks students to improve an existing network diagram by adding devices like servers, firewalls, and IDS systems.
1. CIS 534 Week 3 Case Study The Ethical Hacker
For more classes visit
www.snaptutorial.com
Case Study: The Ethical Hacker
Due Week 3 and worth 70 points
Imagine for a moment that you are a hacker; an ethical one. You are
called upon by law enforcement based on your expertise to hack into a
network of a business known to be launching crimes against humanity as
its primary mission for operation and capital gain. Assume you are not to
be concerned with any politics of the job and your actions are legal and
ethically justified. This nefarious business takes its own security
seriously and therefore has implemented several forms of network
security such as firewalls, Web proxies for its Web gateways, and VPNs
for remote users. You also know that this business exists much like any
normal corporation, renting several floors of office space to
accommodate between 100-200 employees. Also imagine that the
business’s entire network topology is located in that same location. Your
goal is to infiltrate the security enough to find evidence included in the
local MSQL database. You need to remain anonymous and operate
within the reasonable parameters of the law.
Write a four to five (4-5) page paper in which you:
2. Explain your method of attack and operation within reasonable
parameters of the law.
Discuss specific malware, social engineer, or any other type of attacks
you would deploy to achieve your desired goals.
Assess the hurdles you expect and how you plan to overcome them.
Determine how you would remain anonymous without blowing your
cover.
Use at least three (3) quality resources in this assignment.Note:
Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with
one-inch margins on all sides; citations and references must follow APA
or school-specific format. Check with your professor for any additional
instructions.
Include a cover page containing the title of the assignment, the student’s
name, the professor’s name, the course title, and the date. The cover
page and the reference page are not included in the required assignment
page length.
The specific course learning outcomes associated with this assignment
are:
Explain the essentials of Transmission Control Protocol / Internet
Protocol (TCP / IP) behavior and applications used in IP networking.
Explain the concepts of network security and associated ethical issues in
addressing exploits.
3. Use technology and information resources to research issues in network
security design.
Write clearly and concisely about Advanced Network Security Design
topics using proper writing mechanics and technical style conventions.
**********************************************************
CIS 534 Week 4 Assignment 1 Defense in Depth
For more classes visit
www.snaptutorial.com
Assignment 1: Defense in Depth
Due Week 4 and worth 70 points
Oftentimes, the process of implementing security opens one’s eyes to
other forms of security they hadn’t thought of previously. Well, in this
assignment you should experience just that. This assignment focuses on
a model of implementing security in layers which in many cases requires
a network that is designed accordingly. In this assignment, you are to
design a network to incorporate the following:
Corporate Site (Chicago)
4. All servers exist here (Web server, file server, print server, mail server,
ftp server)
Connection to the Internet (50mbps)
300 employees who only need access to local corporate resources and
the Internet
1 Remote Site (8 miles away)
20 employees who need access to all resources at corporate plus the
Internet
Connection to the Internet (3mbps)
Write a four to five (4-5) page paper in which you:
Using Microsoft Visio or its open source alternative, design a network
diagram, particularly with defense in depth in mind which depicts:
All network devices used (routers, switches, hubs, firewalls, VPNs,
proxies, and / or others)
The interconnections between network devices
The end user (client) devices (desktops, laptops)
The Internet cloud, generically, to represent your network’s interface to
the Internet
Note: The graphically depicted solution is not included in the required
page length.
Describe the flow of data through your network, and explain how your
network design provides multiple layers of security.
Use at least three (3) quality resources in this assignment.Note:
Wikipedia and similar Websites do not qualify as quality resources.
5. Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with
one-inch margins on all sides; citations and references must follow APA
or school-specific format. Check with your professor for any additional
instructions.
Include a cover page containing the title of the assignment, the student’s
name, the professor’s name, the course title, and the date. The cover
page and the reference page are not included in the required assignment
page length.
Include charts or diagrams created in Visio or an equivalent such as Dia.
The completed diagrams / charts must be imported into the Word
document before the paper is submitted.
The specific course learning outcomes associated with this assignment
are:
Explain the essentials of Transmission Control Protocol / Internet
Protocol (TCP / IP) behavior and applications used in IP networking.
Identify network security tools and discuss techniques for network
protection.
Use technology and information resources to research issues in network
security design.
Write clearly and concisely about Advanced Network Security Design
topics using proper writing mechanics and technical style conventions.
**********************************************************
6. CIS 534 Week 8 Assignment 2 Mister Network
Engineer
For more classes visit
www.snaptutorial.com
Assignment 2: Mister Network Engineer
Due Week 8 and worth 70 points
Using the network diagram below, your task is to incorporate the
devices on the lower right into the diagram to create a secure corporate
network. The devices you need to incorporate into the network diagram
include: Web server, ftp server, vulnerability scanner, anti-virus server
(client-based / server-based), Web proxy, intrusion detection system
(IDS), and authentication server.
Note: All client-based / server-based devices work where a client is
installed on a workstation, which has bidirectional communication with
a corresponding server.
Write a four to five (4-5) page paper in which you:
Determine which devices you will use for both the current network
diagram infrastructure consisting of firewalls, routers, and workstations
as well as the device you need to incorporate. Include the following for
each:
7. Make or vendor’s name (e.g., Microsoft, Redhat, Cisco, Juniper,
Netgear, 3Com, etc.)
Model (e.g., Windows 7, ASA 5500, Cisco 3500, Squid, etc.)
IP address assigned to all devices
Establish the configuration for each device in which you:
Research each of the devices you chose and provide a basic
configuration you would use in your network.
Use IP addresses to describe your configuration.
Explain the impact that each of your configurations has on the security
of the entire network.
Highlight at least five (5) security features for each device, including
devices in network diagram.
VPN sessions (from laptop) are only allowed to access the desktops in
the IT department by IT department employees.
All VPN connections from the Internet cloud into the corporate network
terminate at the VPN server.
Users from Engineering and Finance and Accounting CANNOT
communicate.
Vulnerability scans occur daily in which all desktops are scanned at least
once per day.
Using Microsoft Visio or its open source alternative to create a final
network diagram that incorporates all devices into the existing network
and ensures the following:
8. Use at least three (3) quality resources in this assignment.Note:
Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with
one-inch margins on all sides; citations and references must follow APA
or school-specific format. Check with your professor for any additional
instructions.
Include a cover page containing the title of the assignment, the student’s
name, the professor’s name, the course title, and the date. The cover
page and the reference page are not included in the required assignment
page length.
Include charts or diagrams created in Visio or an equivalent such as Dia.
The completed diagrams / charts must be imported into the Word
document before the paper is submitted.
The specific course learning outcomes associated with this assignment
are:
Design a secure network to address a business problem.
Use technology and information resources to research issues in network
security design.
Write clearly and concisely about Advanced Network Security Design
topics using proper writing mechanics and technical style conventions.
**********************************************************
9. CIS 534 Week 10 Term Paper Project:Designing
a Secure Network
For more classes visit
www.snaptutorial.com
Term Paper Project: Designing a Secure Network
Due Week 10 and worth 190 points
This term paper involves putting together the various concepts learned
throughout this course. You are tasked with designing the most secure
network possible, keeping in mind your goal of supporting three (3) IT
services: email, file transfer (centralized), and VPN. Your first step is to
design a single network capable of supporting there three (3) different
services. Once you have fully designed your network, you will need to
provide three (3) workflow diagrams explaining how your designed
network handles the three (3) different transactions. The first is an
internal user sending an email using his / her corporate email address to
a user on the Yahoo domain with an arbitrary address of
user534@yahoo.com. The second workflow diagram should show a user
initiating an FTP session from inside your network to the arbitrary site
of ftp.netneering.com. The third workflow is an externally located
employee initiating a VPN session to corporate in order to access files
on the Windows desktop computer, DT-Corp534-HellenS, at work.
10. Write a ten to fifteen (10-15) page paper in which you complete the
following three (3) Parts. Note: Please use the following page
breakdown to complete your assignment:
Overall network diagram: One (1) page
Datapath diagrams: Three (3) pages (one for each diagram)
Write-up: six to ten (6-10) pages
Part 1
Using Microsoft Visio or its open source alternative, create a diagram
showing the overall network you’ve designed from the user or endpoint
device to the Internet cloud, and everything in between, in which you:
Authentication server (i.e. Microsoft Active Directory)
Routers
Switches (and / or hubs)
Local users
Remote users
Workstations
Files share (i.e. CIFS)
Mail server
Web servers (both internal and external)
Firewalls
11. Internet cloud
Web proxy
Email proxy
FTP server (for internal-to-external transport)
Explain each network device’s function and your specific configuration
of each networking device.
Design and label the bandwidth availability or capacity for each wired
connection.
Follow the access, core, distribution layer model.
Include at a minimum:
Part 2
Using Microsoft Visio or its open source alternative, create a Datapath
Diagram for the following scenario:
Local user sends email to a Yahoo recipient. Local (corporate) user
having email address jonny.hill@Corp534.com sends an email to
user534@yahoo.com.
Document and label the diagram showing protocols and path of the data
flow as data traverses through your network from source to destination.
Include path lines with arrows showing directions and layer 1, 2, 3, 4, 5,
6, and 7 (OSI) protocols that are used for each flow.
Show user authentication when necessary.
12. Using Microsoft Visio or its open source alternative, create a Datapath
Diagram for the following scenario:
Local user, Jonny Hill, transfers file using ftp through the Internet to
another company’s site (ftp.netneering.com). He has to access the secure
shell using his active directory credentials to authenticate to the ftp
server (linux running Redhat) on the DMZ. He needs to transfer files
from his desktop across the Internet toftp.netneering.com.
Document and label the diagram showing protocols and path of the data
flow as data traverses through your network from source to destination.
Include path lines with arrows showing directions and layer 1, 2, 3, 4, 5,
6, and 7 (OSI) protocols that are used for each flow.
Show user authentication when necessary.
Using Microsoft Visio or its open source alternative, create a Datapath
Diagram for the following scenario:
Remote user, Hellen Stover, connects via VPN from home through the
Internet to her corporate desktop, DT-Corp534-HellenS. Hellen uses a
browser to initiate her VPN connection. By browsing
tohttps://VPNaccess.corp534.com, she arrives at a login page where she
needs to authenticate using her Active Directory credentials before the
VPN tunnel is built.
Document and label the diagram showing protocols and path of the data
flow as data traverses through your network from source to destination.
Include path lines with arrows showing directions and layer 1, 2, 3, 4, 5,
6, and 7 (OSI) protocols that are used for each flow.
13. Show user authentication when necessary.
Explain how your overall design protects the organization from both
inside and outside attacks. Give examples.
Explain how your layered design compensates for possible device
failures or breaches in network security.
Determine whether any possible bottlenecks exist in your design.
Explain how to make the file transfer process more secure.
Part 3
Use at least three (3) quality resources in this assignment.Note:
Wikipedia and similar Websites do not qualify as quality resources.
Your assignment must follow these formatting requirements:
Be typed, double spaced, using Times New Roman font (size 12), with
one-inch margins on all sides; citations and references must follow APA
or school-specific format. Check with your professor for any additional
instructions.
Include a cover page containing the title of the assignment, the student’s
name, the professor’s name, the course title, and the date. The cover
page and the reference page are not included in the required assignment
page length.
Include charts or diagrams created in Visio or an equivalent such as Dia.
The completed diagrams / charts must be imported into the Word
document before the paper is submitted.
14. The specific course learning outcomes associated with this assignment
are:
Explain the essentials of Transmission Control Protocol / Internet
Protocol (TCP / IP) behavior and applications used in IP networking.
Identify network security tools and discuss techniques for network
protection
Describe the foundational concepts of VPNs.
Design a secure network to address a business problem.
Use technology and information resources to research issues in network
security design.
Write clearly and concisely about Advanced Network Security Design
topics using proper writing mechanics and technical style conventions.
**********************************************************