Skip to the content | Change text size
PDF unit guide

FIT3031 Information and network security - Semester 1, 2015

This unit will provide students with an understanding of: OSI security architecture; common information risks and requirements; operation of encryption techniques; digital signatures; public key infrastructure; authentication and non-repudiation; intrusion detection and response; firewall defence; privacy and ethics issues; security configurations to PC-based applications; and design of information systems with security compliance and security standards and protocols.

Mode of Delivery

  • Caulfield (Day)
  • Caulfield (Online)
  • Malaysia (Day)
  • South Africa (Day)

Workload Requirements

Minimum total expected workload equals 12 hours per week comprising:

(a.) Contact hours for on-campus students:

  • 2 hours of lectures
  • One 2-hour laboratory

(b.) Study schedule for off-campus students:

  • Off-campus students generally do not attend lecture and tutorial sessions, however should plan to spend equivalent time working through the relevant resources and participating in discussion groups each week.

(c.) Additional requirements (all students):

  • A minimum of 8 hours independent study per week for completing lab and project work, private study and revision.

See also Unit timetable information

Unit Relationships

Prohibitions

CPE3001, CPE2007, CSE2500, GCO2831, FIT2058, FIT3018, FIT4028, GCO4831

Prerequisites

One of ECE2041, FIT1005, FIT1031, FIT1019, FIT2008, CSE2318, CSE3318 or GCO1815

Chief Examiner

Campus Lecturer

Caulfield

Dr. Abdul Malik Khan

Consultation hours: To be advised

South Africa

Dr Oladayo Bello

Consultation hours: To be advised

Malaysia

Simon Egerton

Consultation hours: To be advised

Tutors

Caulfield

Dr. Abdul Malik Khan

Consultation hours: To be advised

Your feedback to Us

Monash is committed to excellence in education and regularly seeks feedback from students, employers and staff. One of the key formal ways students have to provide feedback is through the Student Evaluation of Teaching and Units (SETU) survey. The University’s student evaluation policy requires that every unit is evaluated each year. Students are strongly encouraged to complete the surveys. The feedback is anonymous and provides the Faculty with evidence of aspects that students are satisfied and areas for improvement.

For more information on Monash’s educational strategy, see:

www.monash.edu.au/about/monash-directions/ and on student evaluations, see: www.policy.monash.edu/policy-bank/academic/education/quality/student-evaluation-policy.html

Previous Student Evaluations of this Unit

The students in previous SETU evaluations requested that clear instructions be given for the hands on exercises so we included step-by-step instructions for the hands on exercises. We have used Knoppix O.S under Virtual Machine which is a live ISO version which contains all the open source cryptography tools that are built-in for this version.

Positive feedback includes the students liking the laboratory hands on exercises, so we will continuously refine all the exercises with improvements and clear instructions. Also from the point of view of assessments the students liked the weekly online quizzes which helped them to prepare and do well in the mid-semester test. Students requested for the quizzes to be open for final exam preparation as well so we will continue this in this offering.

The main highlights last year were the addition of:

  • Weekly quizzes
  • Real life problems in tutorials
  • Hands on lab exercises designed to run from students' laptop/desktop

If you wish to view how previous students rated this unit, please go to
https://emuapps.monash.edu.au/unitevaluations/index.jsp

Academic Overview

Learning Outcomes

At the completion of this unit, students should be able to:
  • describe OSI security architecture and apply common security standards and protocols for network security applications e.g. electronic mail, IP, web and network management;
  • critically assess threats, vulnerabilities and risks to an organisations information assets and propose control technologies and techniques which can be applied to reduce the security risk;
  • apply cryptographic techniques to develop methods to disguise information to ensure its integrity, confidentiality and authenticity;
  • describe the ethical, legal and criminal issues relating to the security of information and network systems;
  • implement cryptographic algorithms and security protocols to provide security over networks and the Internet;
  • design system security against intruders and malicious software;
  • apply security configurations to computer and network based applications.

Unit Schedule

Week Activities Assessment
0   No formal assessment or activities are undertaken during week 0
1 Lecture LN01 on: OSI Security Architecture  
2 Complete LN01; Start Lecture LN02 on: Symmetric Encryption  
3 Complete LN02; Lecture Start LN03 on: Asymmetric Encryption  
4 Lecture LN04 on: Authentication Application  
5 Lecture LN05 on: Web Security  
6 Lecture LN06 on: Wireless Security Assignment 1 due Friday 17th April 2015, 4:00 PM
7 Lecture LN07 on: Electronic Mail Security  
8 Lecture LN08 on: IP Security  
9 Lecture LN09 on: Intrusion Detection and Response  
10 Lecture LN10 on: Malicious Software Attack The Class Test will be held during the first hour of the lecture during Week 10. It will cover material from LN01 to LN08 (inclusive of LN08 IP Security).
11 Lecture LN11 on: Firewall  
12 Lecture LN12 on: Network Management  
  SWOT VAC No formal assessment is undertaken in SWOT VAC
  Examination period LINK to Assessment Policy: http://policy.monash.edu.au/policy-bank/
academic/education/assessment/
assessment-in-coursework-policy.html

*Unit Schedule details will be maintained and communicated to you via your learning system.

Teaching Approach

Lecture and tutorials or problem classes
The teaching and learning approach provides facilitated learning, practical exploration and peer learning, equipping you with the ability to apply skills upon completion.

Assessment Summary

Examination (3 hours): 60%; In-semester assessment: 40%

Assessment Task Value Due Date
Assignment 1 20% Friday 17th April 2015, 4:00 PM
Class Test 20% Week 10 during the first hour of Lecture
Examination 1 60% To be advised

Assessment Requirements

Assessment Policy

Assessment Tasks

Participation

  • Assessment task 1
    Title:
    Assignment 1
    Description:
    This assignment is designed to test students' understanding of symmetric and asymmetric cryptographic concepts and how they can be applied in real world applications. In addition the concepts and network security applications in relation to web, wireless and electronic mail security will be tested. This will be based on the topics covered in Weeks 1 to 6 (until topic on Wireless Security).
    Weighting:
    20%
    Criteria for assessment:
    1. How well underlying principles and theories are demonstrated in the student's answer
    2. The appropriateness of the formatted report style
    3. The quality of the student's argument

    Further details will be provided in the assignment specification.

    Due date:
    Friday 17th April 2015, 4:00 PM
  • Assessment task 2
    Title:
    Class Test
    Description:
    This class test is designed to test students' understanding of security protocols and standard practices, including IP security. This will be based on the topics covered in Weeks 1 to 8 (inclusive of LN08 - IP Security).

    The Class Test will be held during the first hour of the lecture in Week 10. It will cover material from LN01 to LN08 (inclusive of LN08 - IP Security).
    Weighting:
    20%
    Criteria for assessment:
    1. How well underlying principles and theories are demonstrated in the student's answer
    2. The quality of the student's argument

    Further details will be provided in the unit introduction lecture for Assessment task 2 which will be a class test.

    Due date:
    Week 10 during the first hour of Lecture

Examinations

  • Examination 1
    Weighting:
    60%
    Length:
    3 hours
    Type (open/closed book):
    Closed book
    Electronic devices allowed in the exam:
    None

Learning resources

Monash Library Unit Reading List (if applicable to the unit)
http://readinglists.lib.monash.edu/index.html

Feedback to you

Types of feedback you can expect to receive in this unit are:

  • Informal feedback on progress in labs/tutes
  • Graded assignments with comments
  • Quiz results
  • Other: Solutions to tutes and labs will be discussed in class. Assignment feedback will be provided via comments. Test results and feedback will be provided for the class test assessment.

Extensions and penalties

Returning assignments

Assignment submission

It is a University requirement (http://www.policy.monash.edu/policy-bank/academic/education/conduct/student-academic-integrity-managing-plagiarism-collusion-procedures.html) for students to submit an assignment coversheet for each assessment item. Faculty Assignment coversheets can be found at http://www.infotech.monash.edu.au/resources/student/forms/. Please check with your Lecturer on the submission method for your assignment coversheet (e.g. attach a file to the online assignment submission, hand-in a hard copy, or use an electronic submission). Please note that it is your responsibility to retain copies of your assessments.

Online submission

If Electronic Submission has been approved for your unit, please submit your work via the learning system for this unit, which you can access via links in the my.monash portal.

Required Resources

Please check with your lecturer before purchasing any Required Resources. Limited copies of prescribed texts are available for you to borrow in the library, and prescribed software is available in student labs.

Software:

The software used in this unit is available in the public domain. The software is PGP encryption software which is available at:

http://www.pgpi.org/products/pgp/versions/freeware/win32

and

http://www.gpg4win.org/download.html

Prescribed text(s)

Limited copies of prescribed texts are available for you to borrow in the library.

W. Stallings. (2013). Network Security Essentials: Applications and Standards. (5th Edition) Pearson International.

Recommended text(s)

O. Poole. (2003). Network Security - A Practical Guide. () Butterworth Heinemann.

J. H. Allen. (2001). The CERT Guide to System and Network Security Practices. () Addison-Wesley.

M. Kaeo. (2004). Designing Network Security - A Practical Guide to Creating a Secure Network Infrastructure. () CISCO Press.

R. Oppliger. (2003). Security Technologies for the World Wide Web. () Artech House.

Other Information

Policies

Monash has educational policies, procedures and guidelines, which are designed to ensure that staff and students are aware of the University’s academic standards, and to provide advice on how they might uphold them. You can find Monash’s Education Policies at: www.policy.monash.edu.au/policy-bank/academic/education/index.html

Faculty resources and policies

Important student resources including Faculty policies are located at http://intranet.monash.edu.au/infotech/resources/students/

Graduate Attributes Policy

Student Charter

Student services

Monash University Library

Disability Liaison Unit

Students who have a disability or medical condition are welcome to contact the Disability Liaison Unit to discuss academic support services. Disability Liaison Officers (DLOs) visit all Victorian campuses on a regular basis.