Certaines connaissances prérequises.
Spécialisation Fundamentals of Computer Network Security
Launch your career in cyber security. Master security principles and tools for securing your networks, systems, and data.
Offert par
Spécialisation Fundamentals of Computer Network SecurityUniversity of Colorado SystemÀ propos de ce Spécialisation
10,912 consultations récentes
This specialization in intended for IT professionals, computer programmers, managers, IT security professionals who like to move up ladder, who are seeking to develop network system security skills. Through four courses, we will cover the Design and Analyze Secure Networked Systems, Develop Secure Programs with Basic Cryptography and Crypto API, Hacking and Patching Web Applications, Perform Penetration Testing, and Secure Networked Systems with Firewall and IDS, which will prepare you to perform tasks as Cyber Security Engineer, IT Security Analyst, and Cyber Security Analyst.
The learning outcomes of this specialization include:
you should be able to create public/private keys, certificate requests, install/sign/verify them for web server and client authentication, secure emails, and code signing.
you should be able to write secure web apps with Crypto API to implement the confidentiality, integrity, and availability basic security services.
you should be able to hack web applications with vulnerabilities and patch them.
you should be able to apply penetration testing tool to exploit vulnerable systems.
you should be able to crack passwords given the hashes in password file using AWS P2 GPU.
you should be able to configure firewall and IDS for secure network systems
you should be able to specify effective security policies and implement efficient enforcement procedures by applying security design principles for securing network systems.
Projet d'apprentissage appliqué
With the learner's cloned instance from my AWS image, our Project 1a-d integrate the security principles and knowledge covered in first MOOC and apply them in real world tasks using state of art tools, such as gpg for signing and verifying documents/open source software packages, misc/CA scripts for performing CA certificate signing tasks, generate server/client certificates, and setup on apache web server for secure web access with mutual authentication. Project2a-b cover the use of OpenSSL for encrypting/decrypting data, and Diffi-Hellman key exchange. The related lectures cover the development of secure programs using Crypto API. Projects 3a-b cover hacking and patching with command injections and SQL injections. Project 3c cover cracking Linux passwords with hashcat using AWS P2 GPU instance. Project 4a-b cover the construction of DMZ firewall system with iptables to provide DNAT, masquerade services, filtering packets to secure serves in two AWS virtual private clouds.
Certificat partageable
Obtenez un Certificat lorsque vous terminez
Cours en ligne à 100 %
Commencez dès maintenant et apprenez aux horaires qui vous conviennent.
Planning flexible
Définissez et respectez des dates limites flexibles.
Niveau intermédiaire
Approx. 4 mois pour terminer
4 heures/semaine recommandées
Anglais
Sous-titres : Anglais, Français, Portugais (brésilien), Russe, Espagnol
Certificat partageable
Obtenez un Certificat lorsque vous terminez
Cours en ligne à 100 %
Commencez dès maintenant et apprenez aux horaires qui vous conviennent.
Planning flexible
Définissez et respectez des dates limites flexibles.
Niveau intermédiaire
Certaines connaissances prérequises.
Approx. 4 mois pour terminer
4 heures/semaine recommandées
Anglais
Sous-titres : Anglais, Français, Portugais (brésilien), Russe, Espagnol
Cette Spécialisation compte 4 cours
Design and Analyze Secure Networked Systems
149 évaluations
In this MOOC, we will learn the basic cyber security concepts, how to identify vulnerabilities/threat in a network system. We will apply CIA basic security services in the triage of recent cyberattack incidents, such as OPM data breach. We will learn the risk management framework for analyzing the risks in a network system, and apply the basic security design principles to protect the data and secure computer systems. We will examine the trustworthiness of programs and data installed in our systems and show the proper way to verify their integrity and authenticity. We will apply principle of least privileges for controlling the shared access given to different groups of users and system processes. On Amazon Cloud instances, we will use GnuPG software to generate public/private key pair for signing/verifying documents and open source software, and for encrypting documents. We will learn how to publish software, the related signature and release key on web server and publish public key to PGP key server for others to retrieve. We will learn Public Key Infrastructure (PKI) and Linux utility to serve as a CA for an organization, learn how to sign certificate request for clients or servers in secure email and web applications.
Basic Cryptography and Programming with Crypto API
43 évaluations
In this MOOC, we will learn the basic concepts and principles of crytography, apply basic cryptoanalysis to decrypt messages encrypted with mono-alphabetic substitution cipher, and discuss the strongest encryption technique of the one-time-pad and related quantum key distribution systems. We will also learn the efficient symmetric key cryptography algorithms for encrypting data, discuss the DES and AES standards, study the criteria for selecting AES standard, present the block cipher operating modes and discuss how they can prevent and detect the block swapping attacks, and examine how to defend against replay attacks. We will learn the Diffie-Hellman Symmetric Key Exchange Protocol to generate a symmetric key for two parties to communicate over insecure channel. We will learn the modular arithmetic and the Euler Totient Theorem to appreciate the RSA Asymmetric Crypto Algorithm, and use OpenSSL utility to realize the basic operations of RSA Crypto Algorithm. Armed with these knowledge, we learn how to use PHP Crypto API to write secure programs for encrypting and decrypting documents and for signing and verify documents. We then apply these techniques to enhance the registration process of a web site which ensures the account created is actually requested by the owner of the email account.
Hacking and Patching
174 évaluations
In this MOOC, you will learn how to hack web apps with command injection vulnerabilities in a web site of your AWS Linux instance. You will learn how to search valuable information on a typical Linux systems with LAMP services, and deposit and hide Trojans for future exploitation. You will learn how to patch these web apps with input validation using regular expression. You will learn a security design pattern to avoid introducing injection vulnerabilities by input validation and replacing generic system calls with specific function calls. You will learn how to hack web apps with SQL injection vulnerabilities and retrieve user profile information and passwords. You will learn how to patch them with input validation and SQL parameter binding. You will learn the hacking methodology, Nessus tool for scanning vulnerabilities, Kali Linux for penetration testing, and Metasploit Framework for gaining access to vulnerable Windows Systems, deploying keylogger, and perform Remote VNC server injection. You will learn security in memory systems and virtual memory layout, and understand buffer overflow attacks and their defenses. You will learn how to clone a Kali instance with AWS P2 GPU support and perform hashcat password cracking using dictionary attacks and known pattern mask attacks.
Secure Networked System with Firewall and IDS
34 évaluations
In this MOOC, we will focus on learning how network systems are secured using firewalls and IDS. This will include understanding the basic components of network security, constructing a dual-firewall DMZ, and defining security policies to implement and enforce these rules. Building upon these lessons we will go in-depth on the popular Linux firewall. Finally we will learn about Network IDS and Host IDS, including a deep dive into Snort.
Offert par
University of Colorado System
The University of Colorado is a recognized leader in higher education on the national and global stage. We collaborate to meet the diverse needs of our students and communities. We promote innovation, encourage discovery and support the extension of knowledge in ways unique to the state of Colorado and beyond.
Foire Aux Questions
Puis-je obtenir des crédits universitaires si je réussis la Spécialisation ?
If you subscribed, you get a 7-day free trial during which you can cancel at no penalty. After that, we don’t give refunds, but you can cancel your subscription at any time. See our full refund policy.
Can I just enroll in a single course?
Si vous vous abonnez, vous bénéficiez d'une période d'essai gratuite de 7 jours, durant laquelle vous pouvez annuler votre abonnement sans pénalité. Ensuite, nous n'accordons plus de remboursements, mais vous pouvez annuler votre abonnement à tout instant. Consultez notre politique de remboursement complète.
Puis-je m'inscrire à un seul cours ?
Oui ! Pour commencer, cliquez sur la carte du cours qui vous intéresse et inscrivez-vous. Vous pouvez vous inscrire et terminer le cours pour obtenir un Certificat partageable, ou vous pouvez accéder au cours en auditeur libre afin d'en visualiser gratuitement le contenu. Si vous vous abonnez à un cours faisant partie d'une Spécialisation, vous êtes automatiquement abonné(e) à la Spécialisation complète. Visitez votre tableau de bord d'étudiant(e) pour suivre vos progrès.
Can I take the course for free?
Oui, Coursera offre une Aide Financière aux étudiants qui n'ont pas les moyens d'acquitter les frais. Demandez-la en cliquant sur le lien Aide Financière sous le bouton S'inscrire situé à gauche. Vous devrez remplir un formulaire de demande et vous serez averti(e) si elle est acceptée. Vous devrez répéter cette procédure pour chaque cours de la Spécialisation, y compris pour le Projet Final. En savoir plus.
Puis-je suivre le cours gratuitement ?
Si vous vous inscrivez au cours, vous pouvez accéder à tous les cours de la Spécialisation et obtenir un Certificat lorsque vous terminez le travail. Si vous souhaitez seulement lire et examiner le contenu du cours, vous pouvez accéder gratuitement au cours en auditeur libre. Si vous n'avez pas les moyens d'acquitter les frais, vous pouvez faire une demande d'Aide Financière.
Ce cours est-il vraiment accessible en ligne à 100 % ? Dois-je assister à certaines activités en personne ?
Ce cours est entièrement en ligne : vous n'avez donc pas besoin de vous présenter physiquement dans une salle de classe. Vous pouvez accéder à vos vidéos de cours, lectures et devoirs en tout temps et en tout lieu, par l'intermédiaire du Web ou de votre appareil mobile.
Quelle est la durée nécessaire pour terminer la Spécialisation ?
Know one high level programming language, basic Unix system commands, and discrete mathematics in particular the number theory.
Do I need to take the courses in a specific order?
Yes. MOOC1 covers security design principles and concepts. Learning it first will help understand basic security terms which are used in other MOOCs and how the principles and basic security services are applied in various situations. MOOC2 helps the learners understanding the basic cryptography and related crypto API to create secure web app. These knowledge help learners assess the hacking and patching skill/tools needed in MOOC3. MOOC4 should be done last since it integrates all cyber security knowledge to implement security policies and their enforcement procedures for hardening a networked systems.
Will I earn university credit for completing the Specialization?
At this time, this Specialization is not credit bearing. At a future time, this content may contribute in part towards university credit. Please note that additional costs and requirements may be entailed once credit is offered.
Puis-je obtenir des crédits universitaires si je réussis la Spécialisation ?
You should be able to create public/private keys, certificate requests, install/sign/verify them for web server and client authentication, secure emails, and code signing.
You should be able to write secure web apps with Crypto API to implement the confidentiality, integrity, and availability basic security services.
You should be able to hack web applications with Command Injection and SQL Injection vulnerabilities and patch them.
You should be able to apply penetration testing tool to exploit vulnerable systems.
You should be able to use hashcat softare and AWS P3 GPU to crack passwords using dictionary attacks and mask patterns.
You should be able to configure firewall and IDS for secure network systems using AWS VPCs.
You should be able to specify effective security policies and implement efficient enforcement procedures by applying security design principles for securing network systems.
D'autres questions ? Visitez le Centre d'Aide pour les Etudiants.
