Demonstrate an advanced network security solution

Assignment Help Other Subject

Reference no: EM134014129 , Length: Word Count:700

Network and Information Security

Assessment Details

Introduction

This group assessment, consisting of two parts, Project Report and Project Demonstration.

This group project requires teams of 3-4 students to design, implement, and demonstrate an advanced network security solution. You will focus on enhancing your pfSense firewall with a robust Intrusion Detection and Prevention System (IDPS) using Snort. Concepts related to Data Communication And Networking and Computer System Architecture are highly relevant for configuring and securing virtual network environments.

The group leader will submit the Project Report to the LMS. The rest of the group members should submit the "Individual participation form".
The group will prepare a face-to-face presentation to demonstrate the system's defenses. The group leader will also submit the Project PowerPoint presentation to the LMS. The rest of the group members should submit the "Individual participation form".

Project Report

1. Advanced IDPS Configuration (Building on Labs 5-7)
Extend your existing pfSense setup from previous labs with advanced Snort configurations.
Develop custom Snort rules tailored to detect specific threats relevant to your virtual network environment, including emerging threats such as IoT-based attacks or DDoS attacks prevalent in 2025.
Implement and configure Snort templates to enhance detection capabilities.
Document your network topology, including all virtual machines and network configurations.
Create detailed documentation of your custom Snort rules, explaining their purpose and functionality.
Provide screenshots of your experiments.

Knowledge of Software Engineering practices can support the documentation, testing, and implementation processes required for this project.

2. IDPS Testing and Validation
Develop comprehensive test cases to validate the effectiveness of your Snort rules.
Simulate various attack scenarios, including complex multi-stage attacks or lateral movement within the virtual network, to trigger your Snort rules and demonstrate the IDPS's detection and prevention capabilities.
Capture and analyze Snort logs and alerts to evaluate the performance of your IDPS.
Document the test cases, attack simulations, and analysis of Snort logs and alerts.
Provide screenshots of your experiments.

3. Project Report and Documentation

Compile a comprehensive report that includes:

Network topology and configurations.
Detailed documentation of custom Snort rules and templates.
Test cases, attack simulations, and analysis of Snort logs and alerts.
Analysis of the effectiveness of the implemented security measures.
Discussion of challenges encountered and solutions implemented.
Screenshots of your experiments.

Ensure the report is well-organized, clearly written, and professionally formatted. Applying concepts from Computer Science studies can assist in presenting technical findings effectively.

Project Demonstration (Group)
Face-to-Face Presentation and Demonstration
Prepare a face-to-face presentation to demonstrate the working defenses of your system.
Showcase the functionality of your custom Snort rules and the IDPS's ability to detect and prevent emerging and complex attack scenarios.
Be prepared to answer questions from the instructor and classmates.
Each member of the group must actively participate in the presentation and demonstration.

The report should have a consistent, professional, and well-organized appearance. Also:

The total word count of the report must be between 2,000 and 2,500 words.

*Note: You just need to do this only

Testing, Attack Simulation & Log Analysis

Responsibilities:

* Perform attack simulations
* Test whether Snort detects attacks properly
* Run different scenarios:
* Port scans
* DDoS simulation
* Lateral movement
* Suspicious traffic
* Capture Snort alerts and logs
* Analyze effectiveness of the IDPS

Deliverables:

* Test cases
* Attack simulation evidence
* Log analysis screenshots
* Results and findings

Reference no: EM134014129

Questions Cloud

What are other examples that support the assertion : Professor Gallagher cites the ratification of the Thirteenth Amendment as evidence of the improving status. What are other examples that support this assertion?

Types of management theories and two leadership theories : Choose two types of management theories and two leadership theories as discussed in this week's module. iscussion with research from at least three (3) academic

Describe in detail the art medium of egg tempera : The painting medium (material) that was used in the ancient world including Greece and Rome. Describe in detail the art medium of egg tempera.

Worksheet executes your code from vba worksheets. : Place two buttons in this worksheet that executes your code from the VBA worksheets. Please make sure that the buttons link to the CODE you maked,

Demonstrate an advanced network security solution : Network and Information Security - Develop comprehensive test cases to validate the effectiveness of your Snort rules. Simulate various attack scenarios

Improve organizational performance and enhance competiveness : Pick two supply chain strategies armed to improve organizational performance and enhance competiveness.

Discuss how short-term and long-term effects of stress : Discuss how the short-term and long-term effects of stress, anxiety, tension, and depression might affect one of the following groups: latchkey children

About their views on increased food prices : you are planning to interview shoppers in a shopping mall about their views on increased food prices and what the federal government should be doing about them.

Design a learning plan with a focus play-based teaching : Design a learning plan with a focus play-based teaching and learning experience in numeracy and mathematics education in one of the areas: Spatial relationships

User Account

All Pages