Network and Communications Security

Ce cours n'est pas disponible en Français (France)

Nous sommes actuellement en train de le traduire dans plus de langues.

Network and Communications Security

Ce cours fait partie de ISC2 Systems Security Certified Practitioner (SSCP)

Instructeur : ISC2 Education & Training

5 modules

Obtenez un aperçu d'un sujet et apprenez les principes fondamentaux.

niveau Débutant

Expérience recommandée

9 heures pour terminer

3 semaines à 3 heures par semaine

Planning flexible

Apprenez à votre propre rythme

5 modules

Obtenez un aperçu d'un sujet et apprenez les principes fondamentaux.

niveau Débutant

Expérience recommandée

9 heures pour terminer

3 semaines à 3 heures par semaine

Planning flexible

Apprenez à votre propre rythme

Compétences que vous acquerrez

Catégorie : Network Security
Catégorie : Communications Security (COMSEC)

Détails à connaître

Obtenez un certificat professionnel

Ajouter à votre profil LinkedIn

Récemment mis à jour !

septembre 2024

Évaluations

11 devoirs

Enseigné en Anglais

Découvrez comment les employés des entreprises prestigieuses maîtrisent des compétences recherchées

En savoir plus sur Coursera pour les affaires

Élaborez votre expertise du sujet

Ce cours fait partie de la ISC2 Systems Security Certified Practitioner (SSCP)

Lorsque vous vous inscrivez à ce cours, vous êtes également inscrit(e) à cette Spécialisation.

Apprenez de nouveaux concepts auprès d'experts du secteur
Acquérez une compréhension de base d'un sujet ou d'un outil
Développez des compétences professionnelles avec des projets pratiques
Obtenez un certificat professionnel partageable

Obtenez un certificat professionnel

Ajoutez cette qualification à votre profil LinkedIn ou à votre CV

Partagez-le sur les réseaux sociaux et dans votre évaluation de performance

Il y a 5 modules dans ce cours

Course 5: Network and Communications Security

Welcome to course five: network and communication security. As we know, the explosive growth in networks, connectivity, and communications has paved the way for unprecedented transformation of business, personal, and government services into electronic, web enabled forms. This growth in e-business and e-commerce greatly expanded the threat surface. Fraudsters, criminals, unscrupulous business competitors, nation states, and non-nation state actors can take harmful actions against others worldwide. For decades, the world has operated on what is basically a network monoculture. One set of protocols and standards are used to power most of the internet, the worldwide, web e-commerce, and e-business. These standards include the open systems interconnection seven layer model from international organization for standardization and transmission. And the control protocol over internet protocol model from internet engineering taskforce. Almost every laptop, many smart devices, and other such end points use these standards to communicate with servers, and applications, and businesses, and governments. Therefore these models, or protocol stacks become our map of the threat surface. Security professionals need to have a solid understanding of modern networks and internet work concepts, techniques, technologies, and security issues. Their work is like police patrols, because they need to be familiar with the neighborhood's environment. Security professionals need to know the best ways to keep the neighborhood secure and to defend against attacks. The need for such a policing mentality is particularly urgent if the company has limited or no remote visibility into its operational technology systems. For this course, in module one, we start with a brief orientation to the network neighborhood, through the open systems interconnection seven layer, and transmission control protocol over internet protocol models. Then, we dive into all eight layers of this combined protocol stack. Introducing the key technologies at each layer and their regular use. In module two, we look at the various protocols that run on top of this architecture. In module three, we focus on attack and defensive strategies and tactics and build on the industry leading approach to put threat surface analysis into both the attackers and defenders operational context. In the last module, we bring these ideas together into a network security management and monitoring perspective. Now, let's discuss these four modules in detail. Course 5 Learning Objectives After completing this course, the participant will be able to:  L5.1 - Recognize layers of the OSI model, their functions and attacks present at each layer. L5.2 - Identify commonly used ports and protocols. L5.3 - Select appropriate countermeasures for various network attacks. L5.4 - Summarize best practices for establishing a secure networked environment. Course Agenda Module 1: Apply the Fundamental Concepts of Networking (Domain 6 - Network and Communications Security) Module 2: Securing Ports and Protocols (Domain 6 - Network and Communications Security) Module 3: Network Attacks and Countermeasures (Domain 6 - Network and Communications Security) Module 4: Manage Network Security (Domain 6 - Network and Communications Security) Who Should Take This Course: Beginners Experience Required: No prior experience required

The first rule of defense is to understand what you are defending, and since almost every information system now in use is built around some form of networking, that’s as good a place to build your defensive perspective as any other. Let’s take a closer look at the two models that have established both the theory and practice of computer networking for the last 70 years: the OSI 7-Layer and the TCP/IP. Both models are built around the notion of a protocol stack, a set of ideas and rules of operation that layer upon layer build up the required functionality. These two different but complementary models demonstrate the different perspectives and purposes of their creators:  ISO’s Open Systems Interconnection (OSI) 7-Layer model provides a unified framework that relates an application’s creation and use of data downward through layers of protocols to the underlying physical telecommunications systems that move the bits between the two systems.   By contrast, IETF’s Transmission Control Protocol over Internet Protocol (TCP/IP) concentrates on the interfaces between the physical bit stream and the control and routing of information in packets, while leaving to a universe of applications (outside of or above TCP/IP) to handle the details of making interconnections useful and secure to applications. Note that OSI published four Open Systems Interconnection models, only one of which defines the 7-Layer model. That’s why it’s important to refer to this model with the “7 Layer” part of the name included, so that you clearly identify which of the OSI models is being referred to.  Let’s start our deep dive with a side-by-side comparison of these two models to reveal some of the security concerns that security professionals need to deal with.  Both models drive and dictate features and operations that designers, programmers and builders incorporate into their systems. Each system is built differently; some may be built with very distinct layers in their hardware, firmware or software that clearly show “Layer 5” or a given sublayer at work. Other systems and products do not. Some systems clearly show simple, low-level functions in nice, neat boxes or objects, which are used by other higher level ones. Other systems do not.  Remember the role of a model in building, using, defending and attacking information systems. The designers in this case were trying to design and build a system that does a job, not one that demonstrates a theory. Designers and builders of systems (like the ones your organization depends on) must sometimes balance function, compliance needs and performance against getting the system built on time, which can introduce just the kind of vulnerabilities that attackers are looking for. As a defender, the more you know about the models, the better you’ll be able to spot those shortcuts first — before the attacker does. 

Inclus

13 lectures2 devoirs27 plugins

13 lecturesTotal 60 minutes

Welcome5 minutes
Circuit and Packet Switched Networks2 minutes
Topologies - Token Ring4 minutes
Topologies - Bus4 minutes
Topologies - Star or Tree3 minutes
Topologies - Mesh10 minutes
Wireless (LAN/WAN)8 minutes
Distance Vector Protocols5 minutes
Hypertext Transfer Protocol (HTTP and HTTPS)3 minutes
Dynamic Host Configuration Protocol (DHCP/DHCPV6)3 minutes
Domain Name System (DNS)6 minutes
Simple Network Management Protocol (SNMP)4 minutes
Lightweight Directory Access Protocol (LDAP)3 minutes

2 devoirsTotal 18 minutes

Activity 1: The OSI Model14 minutes
Knowledge Check: Apply the Fundamental Concepts of Networking4 minutes

27 pluginsTotal 106 minutes

Welcome Video3 minutes
OSI and TCP/IP Models8 minutes
The Layers of the OSI Model and Their Functions5 minutes
Bound and Unbound3 minutes
Unbound (Wireless or Mobile) Media6 minutes
Layer 1 and the Protocol Stack4 minutes
OSI Layer 2: The Data-link Layer7 minutes
Load Management4 minutes
Devices4 minutes
Layer 2 Threats and Countermeasures2 minutes
OSI Layer 3: The Network Layer2 minutes
Forms of Transmission3 minutes
Logical Addressing9 minutes
Routers3 minutes
Noteworthy Routed Protocols2 minutes
Layer 3 Threats and Countermeasures2 minutes
OSI Layer 4: The Transport Layer5 minutes
Technology and Implementation6 minutes
Layer 4 Threats and Countermeasures2 minutes
OSI Layer 5: The Session Layer1 minute
Technology and Implementation4 minutes
Layer 5 Threats and Countermeasures2 minutes
OSI Layer 6: The Presentation Layer4 minutes
Technology and Implementation6 minutes
Layer 6 Threats and Countermeasures2 minutes
OSI Layer 7: The Application Layer4 minutes
Layer 7 Threats and Countermeasures3 minutes

Let’s build on the 7-layer foundation that module 1 provided us by taking a deeper look at how some of the larger-scale processes work on the internet. Higher-level protocols provide the services that organizations tend to think about when they design workflows and business processes to be email-enabled, cloud-hosted or distributed across a dynamic computing environment.  Messaging, email, file transfer and of course the World Wide Web itself all depend upon these protocols being reliable.  Let’s take a closer look at some of these protocols, the ports they use and a few of the architectural and security considerations for their use and protection. 

Inclus

3 lectures2 devoirs8 plugins

3 lecturesTotal 13 minutes

Types of Network Architectures4 minutes
Service Architectures3 minutes
Commonly Used Ports and Protocols6 minutes

2 devoirsTotal 38 minutes

Knowledge Check: SNMP Incident Detection and Response8 minutes
Knowledge Check: Securing Ports and Protocols30 minutes

8 pluginsTotal 36 minutes

Address Resolution Protocol (ARP)3 minutes
Obtaining an IP Address on a Network8 minutes
Domain Name Service (DNS) Security Considerations5 minutes
Commonly Used Ports and Protocols: A Security Perspective3 minutes
Simple Network Management Protocol (SNMP)3 minutes
Tunneling4 minutes
Proxy Services4 minutes
TOR Network6 minutes

Modules 1 and 2 showed us how the simple tool of abstraction, done layer by layer, helps designers and architects start with simple foundational ideas and build powerful, elaborate and incredibly functional systems as a result. We also saw how abstraction provides you (the defensive analyst) with a powerful tool to look at the threats facing the entire organization from almost any level within the protocol stacks, the overall IT architecture and the OT architectures as well.   That process isn’t done yet. Module 3 will start with a walkthrough of MITRE’s ATT&CK framework. As you’ll see, it’s a way of thinking about attacks and about the defenses you want to put in place to stop them or slow them down. It’s also a knowledge base, and a gateway to the growing world-wide community of users, contributors, researchers and security professionals that collaborate through and around its resources. In MITRE’s words, it is “open and available to any person or organization for use at no charge.” Clearly, attackers know of ATT&CK, and the majority of them, no doubt, make excellent use of it!  But remember what Kerckhoffs and Shannon said about encryption systems and the need to protect one’s keys at all costs — this holds true for everything else in cyber defense. Your enemies will know far, far more about how to attack systems like yours than you currently know about how to defend against them. So, it’s probably time to borrow a page from the attackers’ playbook and start digging deeper into resources like ATT&CK.  That will be the start of module 3’s journey. We’ll take a closer look at mitigations to many of those common exploit situations as they pertain to networks. 

Inclus

6 lectures3 devoirs8 plugins

6 lecturesTotal 28 minutes

The Cyber Kill Chain4 minutes
Common Attacks Against VLANS at the Data-Link Layer5 minutes
Fragmentation1 minute
Attacks in the Transport Layer6 minutes
Application Layer Attack Examples6 minutes
Other Network and Service Attacks6 minutes

3 devoirsTotal 22 minutes

Activity 2: Attacks on Layers 2-410 minutes
Activity 3: Attacks on Layers 5-78 minutes
Knowledge Check: Network Attacks and Countermeasures4 minutes

8 pluginsTotal 26 minutes

MITRE ATT&CK Model9 minutes
Network Attacks5 minutes
IP Attacks2 minutes
Transport Layer1 minute
Session Layer Attacks3 minutes
Presentation Layer Attacks2 minutes
Application Layer Attacks1 minute
Economic, Administrative, and Organizational Culture Attacks3 minutes

Network security comprises the set of devices, protocols and procedures used to protect the network infrastructure itself, the services and data that ride on top of the network, their users and the organization as a whole from various forms of security compromise.  As you might expect, physical and administrative security measures play just as much a role as do the technical or logical controls. Building on the previous three modules, it’s time to take a closer look at some of the common devices, protocols and services used to secure networks, services and data.  These include firewalls, proxies, virtual LANs (VLANs) and strategies for segmenting a network into security domains. To be most effective, these security features should be part of the overall network from its earliest design phases; when added into existing networks, it’s worth letting an up-to-date security assessment of the network identify the most urgent problems to solve. Virtualization technologies allow for networks and their security to be modeled and directed by software, offering the security and network engineering team not only improved visibility of network security issues, but also more powerful ways to manage the security configuration of each device or system on the network. Using software defined security thus becomes a powerful way to take advantage of a software-defined network, as we’ll see later in this section. 

Inclus

5 lectures3 devoirs8 plugins

5 lecturesTotal 14 minutes

Intrusion Detection/Prevention3 minutes
Traffic Shaping Devices2 minutes
Agile Control of the Building Blocks of Security4 minutes
The SDS Revolution: Many Concepts Around a Core Set of Functions 3 minutes
SDS and Assessment: Two Questions2 minutes

3 devoirsTotal 14 minutes

Knowledge Check: Firewall Design Types and Placements8 minutes
Applied Scenario 1: Switches, VLANs, and Routers4 minutes
Knowledge Check: Network Security2 minutes

8 pluginsTotal 47 minutes

Firewalls7 minutes
Types of Firewalls3 minutes
Firewall Design8 minutes
Proxies3 minutes
Segmentation8 minutes
Network Security Device Placement3 minutes
Security Device Management12 minutes
Applied Scenario 1: Switches, VLANs, and Routers3 minutes

Before the days of networks, it was much, much easier to keep information systems safe and secure. As soon as we started interconnecting them, you might say, the threat surface went global. That’s what this chapter has taken a deep and broad look at.   We started with the architectural concepts on which the internet is built and how these concepts across the seven layers of ISO’s Open Systems Interconnection model work together to provide systems builders with standards and practices to meet. This model is also useful when identifying threat surfaces, performing threat modeling and analysis and in implementing a defensive strategy. The IETF’s network model, known as TCP/IP, complements the OSI 7-Layer model; together both are powerful intellectual forces in the systems and security marketplaces. Their layers of abstraction and their use of encapsulating functions into protocols has meant that for over 40 years the internet has continued to provide services as it has scaled out to support billions of end users around the world.  Security in a networking environment must recognize that attacks can start at any level, from the physical layer of cables and wireless connections to the applications layer and beyond. More importantly, a growing number of very damaging attacks are being conducted by advanced persistent threat (APT) actors, who demonstrate a degree of technical skill and operational sophistication rivaling that of many nations’ security and intelligence services. Even the smallest of organizations, such as a SOHO startup, can find itself swept up in an APT’s campaign of attack. These attacks often use fraud as a major ingredient, which they achieve by injecting falsified data such as invoices, transactions or even database updates directly into target systems, and, in most cases, all by way of remote access over the internet. The MITRE ATT&CK framework, as we saw, provides a continually updated set of current threat intelligence, attack modeling and mitigation strategies to help deal with network attack across enterprise, mobile and industrial control or operational technology systems.  From software-defined networks and collaboration platforms to traditional remote access capabilities, dealing with COVID-19 has demonstrated how much our modern world depends upon reliable, safe and resilient internetworking to get business and governance securely conducted. It has demonstrated the reliance of many business continuity plans on cloud-hosted, internet-powered virtualization of organizations, processes, resources and management functions. These demands for security and safety online will only continue to grow; this chapter has provided insights that can help security professionals make sure that their organization can meet those demands. 

Inclus

1 lecture1 devoir1 évaluation par les pairs

Instructeur

ISC2 Education & Training

ISC2

30 Cours90 780 apprenants

Offert par

ISC2

Recommandé si vous êtes intéressé(e) par Security

ISC2
Systems and Application Security
Cours
Google Cloud
Monitoring and Managing Bigtable Health and Performance
Projet
Google Cloud
Creating and Populating a Bigtable Instance
Projet
ISC2
Incident Response and Recovery
Cours

Pour quelles raisons les étudiants sur Coursera nous choisissent-ils pour leur carrière ?

Felipe M.

Étudiant(e) depuis 2018

’Pouvoir suivre des cours à mon rythme à été une expérience extraordinaire. Je peux apprendre chaque fois que mon emploi du temps me le permet et en fonction de mon humeur.’

Jennifer J.

Étudiant(e) depuis 2020

’J'ai directement appliqué les concepts et les compétences que j'ai appris de mes cours à un nouveau projet passionnant au travail.’

Larry W.

Étudiant(e) depuis 2021

’Lorsque j'ai besoin de cours sur des sujets que mon université ne propose pas, Coursera est l'un des meilleurs endroits où se rendre.’

Chaitanya A.

’Apprendre, ce n'est pas seulement s'améliorer dans son travail : c'est bien plus que cela. Coursera me permet d'apprendre sans limites.’

Ouvrez de nouvelles portes avec Coursera Plus

Accès illimité à plus de 7 000 cours de renommée internationale, à des projets pratiques et à des programmes de certificats reconnus sur le marché du travail, tous inclus dans votre abonnement

Faites progresser votre carrière avec un diplôme en ligne

Obtenez un diplôme auprès d’universités de renommée mondiale - 100 % en ligne

Découvrir les diplômes

Rejoignez plus de 3 400 entreprises mondiales qui ont choisi Coursera pour les affaires

Améliorez les compétences de vos employés pour exceller dans l’économie numérique

Foire Aux Questions

Access to lectures and assignments depends on your type of enrollment. If you take a course in audit mode, you will be able to see most course materials for free. To access graded assignments and to earn a Certificate, you will need to purchase the Certificate experience, during or after your audit. If you don't see the audit option:

The course may not offer an audit option. You can try a Free Trial instead, or apply for Financial Aid.
The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

When you enroll in the course, you get access to all of the courses in the Certificate, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile. If you only want to read and view the course content, you can audit the course for free.

If you subscribed, you get a 7-day free trial during which you can cancel at no penalty. After that, we don’t give refunds, but you can cancel your subscription at any time. See our full refund policy.