Network Security (5op)
Toteutuksen tunnus: TT00DM88-3001
Toteutuksen perustiedot
- Ilmoittautumisaika
- 01.12.2025 - 16.01.2026
- Ilmoittautuminen toteutukselle ei ole vielä alkanut.
- Ajoitus
- 12.01.2026 - 30.04.2026
- Toteutus ei ole vielä alkanut.
- Opintopistemäärä
- 5 op
- Yksikkö
- ICT ja tuotantotalous
- Toimipiste
- Kupittaan kampus
- Opetuskielet
- englanti
- Paikat
- 30 - 70
- Koulutus
- Degree Programme in Information and Communications Technology
- Tietojenkäsittelyn koulutus
- Tieto- ja viestintätekniikan koulutus
- Opettajat
- Mikko Kiuru
- Ryhmät
-
DNCS24AData Networks and Cybersecurity
-
Vaihto2526dncsData Networks and Cybersecurity
-
DNCS24BData Networks and Cybersecurity
- Opintojakso
- TT00DM88
Toteutukselle Network Security TT00DM88-3001 ei valitettavasti löytynyt varauksia. Varauksia ei ole mahdollisesti vielä julkaistu tai toteutus on itsenäisesti suoritettava.
Arviointiasteikko
H-5
Sisällön jaksotus
The course consists of contact lectures and contact laboratory sessions. There will be 8 lectures, which will cover theory and technologies behind Network Security. In 5 laboratory sessions, students will practice performing security controls in simulated enterprise networks through laboratory assignments.
The course will begin on week 3/2026 and end by week 18/2026.
This course introduces the fundamentals of network security, covering:
- Network Components & Types: Key devices (switches, routers, firewalls, servers) and network architectures (enterprise, industrial, cloud, military).
- Segmentation: Physical and logical segmentation (VLANs, subnets) for security and traffic control.
- Protocols & Ports: Essential networking protocols (TCP/IP, ARP, UDP) and common services/ports, with a focus on secure configurations.
- Firewalls & NAT: Types of firewalls (packet-filtering, stateful, NGFW), rule management, NAT, and high availability.
- Intrusion Detection: Principles and deployment of Network Intrusion Detection Systems (NIDS), including signature and anomaly-based detection.
- VPN & MACsec: Secure remote access and site-to-site connectivity using VPNs (IPSec, SSL) and Layer 2 encryption (MACsec).
- Hardening & Monitoring: Best practices for device hardening, secure management, centralized logging, and network monitoring.
The course combines theory with practical labs on segmentation, firewall configuration, VPN setup, intrusion detection, and security monitoring.
Tavoitteet
After completing the course the student:
- is able identify and secure network segments in enterprise networks
- Is able to recognize the most common network traffic and implement controls on it
- Is able to securely monitor and manage a network
Sisältö
Students will learn about network segmentation, common networking and network management protocols and network security devices, such as firewalls and IDSs.
The course consists of lectures and lab exercises. The lectures cover different aspects of network security and in the lab exercises students will implement network security controls and monitoring solutions in practice.
Oppimateriaalit
Learning material consists of material produced by the Lecturer and it is distributed via ItsLearning platform. Extra material is obtainable from TUAS resources (ebooks).
Opetusmenetelmät
Learning is achieved through contact lectures, written home assignments and laboratory assignments.
Tenttien ajankohdat ja uusintamahdollisuudet
The course does not have an exam. Assignment return dates are published in ItsLearning and extensions must be agreed with the lecturer.
Pedagogiset toimintatavat ja kestävä kehitys
The laboratory assignments make use of virtualized solutions which require no additional hardware to be purchased and maintained.
Toteutuksen valinnaiset suoritustavat
Course can be completed by attending the contact sessions and achieving required points through completing given assignments or AHOT/Credit transfer process from equivalent knowledge & skills gained elsewhere.
Opiskelijan ajankäyttö ja kuormitus
There will be roughly 3 written home assignments and 7 laboratory assignments, each valued on average at 10 points.
Contact sessions and independent studying adds up to 135 hours (5 CU) of work.
Arviointimenetelmät ja arvioinnin perusteet
Course grading will be based on home assignments and laboratory assignments.
On-site course attendance is required minimum 50% to pass the course. Exceptions are to be agreed with the Lecturer individually.
The use of artificial intelligence varies depending on the learning task. Instructions regarding its use are provided in the course on a task-specific basis.
Maximum points score (excl. bonus labs) for the course is 100p, and grading is as follows:
49 and less = Failed
50-59 pts = 1
60-69 pts = 2
70-79 pts = 3
80-89 pts = 4
90 and more = 5
Hylätty (0)
49 and less points in total from written and laboratory assignments.
Arviointikriteerit, tyydyttävä (1-2)
50-59 pts = 1
60-69 pts = 2
Arviointikriteerit, hyvä (3-4)
70-79 pts = 3
80-89 pts = 4
Arviointikriteerit, kiitettävä (5)
90 and more = 5
Esitietovaatimukset
Tietoverkkojen ja tietoturvan perusteet / Internet Networks and Security
Introduction to Networks
or similar knowledge and skills.
Lisätiedot
Communications with the teacher via email: mikko.p.kiuru@turkuamk.fi
The laboratory assignments will be completed inside Cisco Modeling Labs Virtual Machine, running on students' personal computers. Requirements for laptops running the Virtual Machine:
Processor: Intel or AMD based with nested virtualization support (VT-x)
RAM: min. 8 GB
Disk space: min. 20 GB free
Virtualization software: VMware Workstation (pref.), VMware Fusion (Intel Macs), VirtualBox