Perimeter network security system, Computer Network Security

Title: Perimeter Network Security System

Outline Requirements

The University is based in Glasgow, and provides higher education services to its students and staff. It is located on a single campus called Campus A. Students and staff use the network services from hosts on various different user networks, as shown in

Figure 1

1670_Perimeter Network Security System.png

.

Due to an increasing number of security violations, a possible redesign of the network infrastructure  is to  be  investigated.  You have been hired  as  a  consultant  to propose security enhancements, and produce a report. The aim of the exercise is to present a possible solution to the problem at hand by creating a prototype of the new network security infrastructure. This new design should tackle the following components:

 

  • Provide best practice network egress and ingress filtering at the network perimeter.
  • Create a perimeter firewall, with an appropriate topology to provide the organisations services, including public web, and mail servers. The firewall should have a closed security stance, and provide public services in a secure way.
  • Provide secure access to all devices, from the security management subnet.

 

Additionally,   research  should   be   carried   out   into   increasingly   common   Advanced Persistent Threats (APT), and ways to defend against these using network defenses. This part of the coursework will be research only and be confined to a part of the Research Section.

 

You will be required to analyze the new system requirements and design, implement and justify a prototype for each component of the proposed system. Your proposed system can be implemented on Cisco hardware deployed in the network lab, or on the virtual networking software (such as GNS3). The system should clearly demonstrate your mastery of the course material. Each component of the system should be developed separately, and it is not necessary to implement an entire working system.

Marking schedule

Your coursework will be marked as follow

Introduction

Demonstrate an understanding of the problem specification, the challenges and research, design and implementation.

Research and Design

This should show an outline of the proposed system, and the main design features.

  • Provide short literature review for each of the proposed key components(demonstrating research from a variety of sources, critical evaluation and personal reflection).
  • Provide design of network security system components, and justify your decisions.

Prototype Implementation

This should define an outline prototype implementation of the system.

  • Implement the key components of the proposed network system design (describe and show examples of your implementation including diagrams, as there will not bepractical demonstration).

Testing and Evaluation

This should show testing, and outline the results of any evaluations that you have made.

  • Describe and demonstrate the testing methods used, and show the outcome of the testing.
  • Include evaluation of the systems and technologies used, using references to the literature and personal reflection.

 

Conclusions

This should reflect the methods you have used in the report, and to assess their benefitsand limitations, and any observations that you have gained.

  • Draw conclusions about the network security systems created, including conclusions about your design as well as the implementation.
  • Any recommended future improvements, based on your findings.

References/Presentation

Full academic referencing of books, web sites, and papers, using thorough APA/Harvard referencing format.

  • All references must be defined in an APA/Harvard format, and should be listed at the end of the report.
  • Reference all materials used, and cite every reference in the body of the report.

·    Total report size should be 15-20 pages that does not include cover page, and appendix - if any.

·    The report should be in 11 point text with normal margins.

  • the similarity must be below 7%. Numbers above 7% indicate a possible problem
  • submition is through turnitin

 

Posted Date: 3/21/2013 2:09:30 AM | Location : United States







Related Discussions:- Perimeter network security system, Assignment Help, Ask Question on Perimeter network security system, Get Answer, Expert's Help, Perimeter network security system Discussions

Write discussion on Perimeter network security system
Your posts are moderated
Related Questions
QUESTION a) Below is a capture of an Ethernet II frame which contains an IPv4 packet and a segment. Give the source MAC address in hexadecimal; the source IP address, the uppe

Question requires you to develop firewall rules based on a fictitious organisation. Scenario: You work for a security-conscious company, xC-Cure, who develop encryption te

What is the concept of topology?

IP DATAGRAM SIZE:  Datagrams may have different sizes i.e. Header area is generally fixed (20 octets) but can have various options. Data area may contain between 1 octet and 6

how to link html with a data base

CYCLIC REDUNDANCY CHECK (CRC) To activate a network system to check move error without increasing the amount of information in every packet another most successful method is m

Problem (a) Differentiate between private key and public key encryption. (b) What issue with private key encryption is resolved with public key encryption? (c) Describe

What is one-time pad for encryption?  Describe how it offers both Confusion and Diffusion. Using the letter encoding discussed in class (along with one-time

Maximum Transmission Unit  (MTU) Each hardware method specification adds the definition of the maximum size of the frame data area, which is known the Maximum Transmission Uni

Question: (a) Data on four variables are stored in a file called file1.dat. The first line of the file is the variable names f, x, y and z. Give the R commands to (i) read t