Perimeter network security system, Computer Network Security

Assignment Help:

Title: Perimeter Network Security System

Outline Requirements

The University is based in Glasgow, and provides higher education services to its students and staff. It is located on a single campus called Campus A. Students and staff use the network services from hosts on various different user networks, as shown in

Figure 1

1670_Perimeter Network Security System.png

.

Due to an increasing number of security violations, a possible redesign of the network infrastructure  is to  be  investigated.  You have been hired  as  a  consultant  to propose security enhancements, and produce a report. The aim of the exercise is to present a possible solution to the problem at hand by creating a prototype of the new network security infrastructure. This new design should tackle the following components:

 

  • Provide best practice network egress and ingress filtering at the network perimeter.
  • Create a perimeter firewall, with an appropriate topology to provide the organisations services, including public web, and mail servers. The firewall should have a closed security stance, and provide public services in a secure way.
  • Provide secure access to all devices, from the security management subnet.

 

Additionally,   research  should   be   carried   out   into   increasingly   common   Advanced Persistent Threats (APT), and ways to defend against these using network defenses. This part of the coursework will be research only and be confined to a part of the Research Section.

 

You will be required to analyze the new system requirements and design, implement and justify a prototype for each component of the proposed system. Your proposed system can be implemented on Cisco hardware deployed in the network lab, or on the virtual networking software (such as GNS3). The system should clearly demonstrate your mastery of the course material. Each component of the system should be developed separately, and it is not necessary to implement an entire working system.

Marking schedule

Your coursework will be marked as follow

Introduction

Demonstrate an understanding of the problem specification, the challenges and research, design and implementation.

Research and Design

This should show an outline of the proposed system, and the main design features.

  • Provide short literature review for each of the proposed key components(demonstrating research from a variety of sources, critical evaluation and personal reflection).
  • Provide design of network security system components, and justify your decisions.

Prototype Implementation

This should define an outline prototype implementation of the system.

  • Implement the key components of the proposed network system design (describe and show examples of your implementation including diagrams, as there will not bepractical demonstration).

Testing and Evaluation

This should show testing, and outline the results of any evaluations that you have made.

  • Describe and demonstrate the testing methods used, and show the outcome of the testing.
  • Include evaluation of the systems and technologies used, using references to the literature and personal reflection.

 

Conclusions

This should reflect the methods you have used in the report, and to assess their benefitsand limitations, and any observations that you have gained.

  • Draw conclusions about the network security systems created, including conclusions about your design as well as the implementation.
  • Any recommended future improvements, based on your findings.

References/Presentation

Full academic referencing of books, web sites, and papers, using thorough APA/Harvard referencing format.

  • All references must be defined in an APA/Harvard format, and should be listed at the end of the report.
  • Reference all materials used, and cite every reference in the body of the report.

·    Total report size should be 15-20 pages that does not include cover page, and appendix - if any.

·    The report should be in 11 point text with normal margins.

  • the similarity must be below 7%. Numbers above 7% indicate a possible problem
  • submition is through turnitin

 


Related Discussions:- Perimeter network security system

Point-to-point topology, POINT-TO-POINT: In Point-to-Point topology th...

POINT-TO-POINT: In Point-to-Point topology there are two kind of topologies. 1) STAR topology 2) TREE topology In star topology each and every computer is connect

Cyclic redundancy check (crc), CYCLIC REDUNDANCY CHECK (CRC) To activa...

CYCLIC REDUNDANCY CHECK (CRC) To activate a network system to check move error without increasing the amount of information in every packet another most successful method is m

Explain the dimension of service quality, Problem 1: Discuss how TWO of...

Problem 1: Discuss how TWO of the following gurus have contributed to the Quality Movement, highlighting the major points of their philosophies: (a) Edward Deming (b) Jose

Securities Issues in a company, 'Near Field Communication' (NFC) technologi...

'Near Field Communication' (NFC) technologies are expected to become commonplace in the near future. Some relevant features are these: A suitable device (such as a mobile pho

Categories of controls-information security, Categories of Controls Cont...

Categories of Controls Controlling risk through mitigation, avoidance or transference is accomplished by implementing controls. There are 4 effective approaches to select the co

Corresponding access control matrix, Consider a computer system with three ...

Consider a computer system with three users: Alice, Bob and Cindy. Alice owns the file alicerc, and Bob and Cindy can read it. Cindy can read and write the file bobrc, which Bob ow

Softbank theft of consumer data -information security, Example : Softbank –...

Example : Softbank – theft of consumer data for extortion Softbank of Japan offers broadband Internet services across Japan through 2 subsidiaries – Yahoo! BB and Softbank BB. I

Deploying host-based idss, Deploying Host-Based IDSs -Proper implementat...

Deploying Host-Based IDSs -Proper implementation of HIDSs can be painstaking and time-consuming task .The process of deployment begins with implementing most critical systems fi

Explain how inter-vlan communication, QUESTION a) A switch basically ...

QUESTION a) A switch basically operates by forwarding frames from one part of the network to another, based on MAC address. Describe the three types of switching namely store

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd