School of Computer Science

Module 06-20009 (2010)

Network Security

Level 4/M

Marco Cova Semester 2 10 credits
Co-ordinator: Marco Cova
Reviewer: Tom Chothia

The Module Description is a strict subset of this Syllabus Page.


The aims of this module are to:

  • introduce the basic terminology, concepts, and mechanisms of network security
  • explain network threats, vulnerabilities, and attacks
  • present security algorithms and protocols as countermeasures

Learning Outcomes

On successful completion of this module, the student should be able to:

  • explain network vulnerabilities and attacks
  • explain and evaluate security mechanisms designed to address such attacks
  • design networking security solutions appropriate for a given application and situation


Teaching methods



  • Sessional: 1.5 hr examination (80%), continuous assessment (20%).
  • Supplementary: By examination only.

Detailed Syllabus

  1. Network Protocols
    • Ethernet, ARP, IP, ICMP, UDP, TCP, DNS
    • Threats, vulnerabilities, and attacks
    • Countermeasures
  2. Web Application Security
    • HTTPS
    • Vulnerabilities: XSS, SQL injection, CSRF
    • Analysis, attacks, and defenses
  3. Browser Security
    • Same-origin policy, DNS pinning, cookies
  4. Malicious Web
    • Drive-by-download attacks
    • Scams: Phishing, Spam, Fake AV
    • Botnets
    • Underground economy
  5. Intrusion Detection Systems
    • Types of IDSs: misuse vs. anomaly detection
    • Evasion
    • Evaluation
  6. Firewalls
    • Packet filter
    • Application-level filter

Programmes containing this module