wiki:SecurityTwoDay

Sample Agenda: Two Days of Security

Target audience

Network and systems administrators and engineers from ISP/REN/Universities or corporations, who are responsible for network and systems security.

Pre-requisites

  • Some command line experience.
  • Basic knowledge of TCP/IP networking
  • For most workshops participants are asked to bring a laptop

Sample Time Schedule

Session 1 08:30 - 10:30
Break 10:30 - 11:00
Session 2 11:00 - 13:00
Lunch 13:00 - 14:00
Session 3 14:00 - 15:30
Break 15:30 - 16:00
Session 4 16:00 - 18:00

Core Topics

Items marked with "*" will include hands-on.

* What is Security - Proper Administration:
	- Software Updates
* Host vs. Network Security
	- Host hardening*
	- Windows clients
		+ Automatic updates
		+ Size of updates
* ACLs and Filters/Firewalls
	- ACL Ingress/Egress filters*
	- Host Firewalls
		+ Core concepts
		+ What not to do*
	- Testing with NMAP*
* What's Flowing and what's happening:
	- In the core: NetFlow (NfSen)*
	- Hosts: Nessus/OpenVAS, NMAP, others*
	- Infections: SNORT*
	- Network Monitoring and Management
* Cryptography
	- Ciphers, keys
	- Public/Private Keys*
	- Certificates (CAs, SSL)*
	- PGP*
* Centralized Logging
	- rsyslog* and Windows
* Centralized Authentication (Overview)
* Data Integrity
	- IDS
	- incrond*
* Backups
	- rsync*
	- Bacula and Amanda
	- RAID

Security Labs

The NSRC will provide a fully virtualized network and systems environment for attendees that can be used, configured and updated during the workshop and that allows for practical, hands-on experience.

Last modified 5 years ago Last modified on Sep 28, 2012, 12:53:45 PM