Information Security Implementation & Processing

In Computer Networks the students learn how to create full connectivity in a network environment (any device can see any other device). This however is dangerous because in the real world we want to limit (totally or just throttle down) different data flows based on chosen design criteria. This is the purpose of Information Security: to provide the students a coherent language used in computer and network security and to be able to isolate different zones of infrastructures while imposing inspection at the borders between these zones. This course is designed according to modern principles applied in network engineering, already introduced in Computer Networks: the principle of segregation (that data flows from different organisation partitions should be kept separated) and defence-in-depth (try to secure every component of the network to the highest possible way which also allow the business needs). As it can be seen, Computer Networks already prepares the path to enforce security. The purpose of Information Security is to explain in detail how the above mentioned principles are implemented / translated into the hardware. Thus, each topic will be composed by a theoretical part and a lab part. This allows the student to become aware of an issue, be able to isolate and eliminate it while being careful not to introduce other weaknesses or issues.