Network Security: practical hands on approach"


This course presents the main applications of secure communication mechanisms in the area of computer networks and distributed systems. The course covers network security approaches based on firewalls, cryptographic security protocol suites designed for the data exchange and network control components of Internet, wireless security protocols, and security solutions for mobile network architectures.

Teaching and Learning Methods : Lectures and Lab sessions

Course Policies : Attendance to Lab sessions is mandatory.


- Handbook of Applied Cryptography - Alfred Menezes, Paul van Oorschot, Scott Vanstone -

Available on-line for personal use

- Cryptography and Network Security - William Stallings

- The best damn firewall book period -  Cherie  Amon, Thomas W. Shinder, Anne Carasik-Henmi

- IPSec, the new security standard for the Internet, Intranets and VPN - Doraswamy, Naganand, Harkins, Dan


Basic knowledge about main security services and mechanisms.


Access control models, role-based access control, attribute certificates, simple public key infrastructure, XACML. Network Access Control, firewalls, packet filtering, application gateways, circuit gateways, NAT, firewall configurations.  Cryptographic security for Internet: IPsec, TLS/SSL, VPN/SSL, cryptographic security in DNS, routing, and BGP. Mobile Security, EAP, Radius, Diameter, WiFi security, security features in GSM and 3G networks.

Learning outcomes:

-      be able to identify the security components required by complex distributed computing scenarios

-      be able to design security architectures using standard solutions

-      be able to run and manage network and application security systems

Nb hours:21.00, including 2 Lab sessions (6 hours)

Grading Policy:Labs  (20%), Exam (80%)