In this MOOC, we will learn the basic cyber security concepts, how to identify vulnerabilities/threat in a network system. We will apply CIA basic security services in the triage of recent cyberattack incidents, such as OPM data breach. We will learn the risk management framework for analyzing the risks in a network system, and apply the basic security design principles to protect the data and secure computer systems. We will examine the trustworthiness of programs and data installed in our systems and show the proper way to verify their integrity and authenticity. We will apply principle of least privileges for controlling the shared access given to different groups of users and system processes. On Amazon Cloud instances, we will use GnuPG software to generate public/private key pair for signing/verifying documents and open source software, and for encrypting documents. We will learn how to publish software, the related signature and release key on web server and publish public key to PGP key server for others to retrieve. We will learn Public Key Infrastructure (PKI) and Linux utility to serve as a CA for an organization, learn how to sign certificate request for clients or servers in secure email and web applications.
Этот курс входит в специализацию ''Специализация Fundamentals of Computer Network Security'
Design and Analyze Secure Networked Systems
от партнера
Программа курса: что вы изучите
Неделя
1Cybersecurity Concepts and Security Principles
In this module, we will introduce the basic cyber security concepts, enable you to identity root causes of vulnerabilities in a network system and distinguish them from the threats from both inside and outside. We will analyze the enabling factors of recent cyber attack incidences and discuss the basic security services for their defense and triage. We will introduce the risk management framework for analyzing the risks in a network system, and apply the basic security design principles to protect the data and secure the computer systems. Trust is critical and in the center of any secure systems. We will examine the source and authenticity of the programs and data installed in systems we used daily and show the proper way to check their integrity, and verify their authenticity.
6 видео ((всего 48 мин.)), 5 материалов для самостоятельного изучения, 3 тестов
6 видео
Course Overview3мин
Lesson 1. Vulnerabilities and Threats11мин
Method, Opportunity, and Motive5мин
Confidentiality, Integrity, and Availability13мин
Risk, Risk Assessment and Method of Defense7мин
Security Principles: Defense in Depth, Defense with Diversity, Cyber Resilience6мин
5 материала для самостоятельного изучения
Cybersecurity Concepts10мин
M.O.M.10мин
C.I.A.10мин
NIST RMF10мин
Defense in Depth10мин
1 практическое упражнение
Exam 1.1. Assess Cybersecurity Concepts and Security Principles Learned42мин
Неделя
2Protect Data Access and Verify Source of Trust
In this module we apply principle of least privileges for controlling the proper access given to users and system process. We will demonstrate such an access control by using an example of project document access control using the Unix file access mechanism. We use OPM data breach example to show the impact and the need for principle of adequate data protection. Trust is critical and in the center of any secure systems. We will examine the source and authenticity of the programs and data installed in systems we used daily and show the proper way to check their integrity, and verify their authenticity.
3 видео ((всего 25 мин.)), 3 материалов для самостоятельного изучения, 2 тестов
3 видео
Principle of Adequate Data Protection5мин
In Software We Trust. Really?9мин
3 материала для самостоятельного изучения
Apply Principle of Least Privileges for Access Control20мин
Inside the Cyberattack that Shocked the US Government", by Brendan Koerner on OPM breach20мин
also good to add some additional reading beyond the slides20мин
1 практическое упражнение
Exam 1.2. Assess How to Protect Data Access and Verify Source of Trust22мин
Неделя
3Using GPG to Sign/Verify Software
In this module, we introduce GPG software tool for generating public key private key pair for signing/verifying the documents and to encrypt documents, and publish our public key on our web server and PGP key server for others to retrieve. We will use GnuPG software tool to verify the common opensource software packages such as apache and putty. We will also learn how to sign software and the proper way to list the software package, their pgp signature, and our signing public key on a web site.
3 видео ((всего 30 мин.)), 3 материалов для самостоятельного изучения, 2 тестов
3 материала для самостоятельного изучения
The GNU Privacy Handbook30мин
Making and verifying signatures20мин
How to send/receive encrypted email with GnuPG20мин
1 практическое упражнение
Exam 1.3. Assess the skill of using gpg to sign and verify software.20мин
Неделя
4Be a CA, Setup Secure Server and Client Certificate
In this module, we will learn the Public Key Infrastructure (PKI), how CA operates, and the certificates signing and verification process. We will utilize the utility command in a Linux system to serve as a CA for an organization, learn how to sign certificate request for clients or servers both secure email or secure web access purpose. We will earn how to generate server certificate requests as a webmaster, send them to CA for signing and install the signed certificates in Apache web server for secure web access. We will also set up apache web server for requiring clients to present their client certificates for mutual authentication. We will also guide you to set client certificate on browser for mutual authentication and on a mail client for signing and encrypting emails.
6 видео ((всего 71 мин.)), 5 материалов для самостоятельного изучения, 2 тестов
6 видео
What are in a Certificate?8мин
Being Your Own CA21мин
Server Certificate and Installation13мин
Setup Client Certificate7мин
Client Server Mutual Authentication8мин
5 материала для самостоятельного изучения
Verisign15мин
Secure Web Access15мин
Server Certificates15мин
Client Certificates20мин
Example of Mutual Authentication15мин
1 практическое упражнение
Exam 1.4. Assess PKI Concepts and Certificates Creation/Signing with PKI20мин
3.9
Рецензии: 12Лучшие рецензии
автор: LB•Mar 8th 2018
The course is excellent in terms of syllabus and objectives. IN my view, it would be even better if there were more explanations about the practical exercises
автор: SB•Sep 21st 2018
This is well organised course its a great assets to my profile.
Преподаватель
Edward Chow
ProfessorComputer Science
О Система университетов штата Колорадо
The University of Colorado is a recognized leader in higher education on the national and global stage. We collaborate to meet the diverse needs of our students and communities. We promote innovation, encourage discovery and support the extension of knowledge in ways unique to the state of Colorado and beyond.
О специализации ''Fundamentals of Computer Network Security'
This specialization in intended for IT professionals, computer programmers, managers, IT security professionals who like to move up ladder, who are seeking to develop network system security skills. Through four courses, we will cover the Design and Analyze Secure Networked Systems, Develop Secure Programs with Basic Cryptography and Crypto API, Hacking and Patching Web Applications, Perform Penetration Testing, and Secure Networked Systems with Firewall and IDS, which will prepare you to perform tasks as Cyber Security Engineer, IT Security Analyst, and Cyber Security Analyst.
The learning outcomes of this specialization include:
you should be able to create public/private keys, certificate requests, install/sign/verify them for web server and client authentication, secure emails, and code signing.
you should be able to write secure web apps with Crypto API to implement the confidentiality, integrity, and availability basic security services.
you should be able to hack web applications with vulnerabilities and patch them.
you should be able to apply penetration testing tool to exploit vulnerable systems.
you should be able to crack passwords given the hashes in password file using AWS P2 GPU.
you should be able to configure firewall and IDS for secure network systems
you should be able to specify effective security policies and implement efficient enforcement procedures by applying security design principles for securing network systems.
Часто задаваемые вопросы
Когда я получу доступ к лекциям и заданиям?
Зарегистрировавшись на сертификацию, вы получите доступ ко всем видео, тестам и заданиям по программированию (если они предусмотрены). Задания по взаимной оценке сокурсниками можно сдавать и проверять только после начала сессии. Если вы проходите курс без оплаты, некоторые задания могут быть недоступны.
Что я получу, оформив подписку на специализацию?
Записавшись на курс, вы получите доступ ко всем курсам в специализации, а также возможность получить сертификат о его прохождении. После успешного прохождения курса на странице ваших достижений появится электронный сертификат. Оттуда его можно распечатать или прикрепить к профилю LinkedIn. Просто ознакомиться с содержанием курса можно бесплатно.
Какие правила возврата средств?
Можно ли получить финансовую помощь?
Остались вопросы? Посетите Центр поддержки учащихся.
Coursera делает лучшее в мире образование доступным каждому, предлагая онлайн-курсы от ведущих университетов и организаций.
© Coursera Inc., 2019 Все права защищены.
