NTC-03.02 “Computer network security”

Br0.00

The training system represents the complex system which allows to study the principles of information security, study basic threats protection means of information systems, study the mechanisms and ways of data protection, construct typical configurations of information systems.

 
Categories: ,
The system of the stand is divided into 4 network segments:
  • enterprise network:
  • WAN emulation network;
  • network of a remote enterprise workstation;
  • network of the attacking PC.

Structurally, the training system consists of:

  1. The server and network equipment unit, which includes:
    • hardware multiservice router – 2 pcs;
    • L2 managed switch – 1 pc;
    • 802.11 n/ac wireless access points – 3 pcs;
    • virtualization server – 1 pc;
    • telecommunication rack – 1 pc;
    • 19″ form factor socket block integrated in the rack – 3 pcs;

    The virtualization server includes a Microsoft Hyper-V / VMWare ESXi / KVM hypervisor hosting the following virtual servers:

    • Active Directory domain controller based on Windows Server 2019 operating system, enterprise network;
    • enterprise services server (Databases, Mail, CRM) – enterprise network;
    • data backup server – enterprise network.
    • server of WAN emulation – WAN network.
  2. A workplace of the enterprise user (from 2 to 5 pcs.) with licensed software, which is a model of the typical corporate user computer.
  3. The remote workstation the enterprise user (1 pc.) with licensed software, which is model of the typical remote workplace with the access to the enterprise resources. This workstation can act as a remote service to the enterprise as well.
  4. Workstation of the attacking PC (1 pc.) with licensed software, which is a model of a typical workplace of an attacker trying to access or compromise the information system of the enterprise.

    Computers are connected via dedicated wireless access points, so the module does not require any additional preparation of the classroom, and its configuration can be easily changed if necessary.

The training system is supplied with:

  • software for operation with stand represented by error-proned program samples and utilities for searching and using the vulnerabilities;
  • a set of teaching materials and technical documentation intended for the teaching staff.

Experiments provided

  1. The concept of information security.
  2. Types of threats in information systems.
  3. Principles of ensuring information security.
  4. Means of protection of information systems.
  5. Hardware and software means of data protection.
  6. Audit of information security.
  7. Attacks on information systems.
  8. Attack on a network of the enterprise with reception of full privileges.
    – An attack on a user’s PC to gain privileges over enterprise services.
  9. An untargeted attack on a network with lateral movement.
    – An arbitrary user attack through external services to spread malware (encryptors, spyware).
  10. Targeted attack through a compromised service.
    – An attack on an external service in order to compromise its content and spread malware on enterprise computers and servers.
  11. A network with an external resource.
    – An attack through an external user with remote access to enterprise resources.
  12. Vulnerable service.
    – Attack on the enterprise server through a vulnerable remote resource.

Technical specifications

Power supply ~50Hz 220 V (single-phase 220 V 50 Hz)
Power consumption, Watt, max 700
Overall dimensions of server rack, max:
  Width, mm 600
  Height, mm 1650
  Depth, mm 1000
Weight of server rack, kg, max 180

Scope of delivery

  • laboratory stand – 1 pc.;
  • supplementary materials in electronic format – 1 pc.;
  • passport – 1 pc.

This site uses cookies to improve your browsing experience. By browsing the website, you agree with our use of cookies.

Accept