Explore
For Enterprise
Join for Free
Log In

艺术与人文
商务
计算机科学
数据科学
信息技术
健康
数学和逻辑
个人发展
物理科学与工程
社会科学
语言学习
学位
证书

浏览 Coursera 的全部课程

浏览
搜索
企业版
登录
免费加入

Tracking Usage and Access

Loading...

IT Security: Defense against the digital dark arts

4.8（2,805 个评分） | 30K 名学生已注册

课程 1（共 5 门，Google IT 支持专业认证课程专项课程）

This course covers a wide variety of IT security concepts, tools, and best practices. It introduces threats and attacks and the many ways they can show up. We’ll give you some background of encryption algorithms and how they’re used to safeguard data. Then, we’ll dive into the three As of information security: authentication, authorization, and accounting. We’ll also cover network security solutions, ranging from firewalls to Wifi encryption options. Finally, we’ll go through a case study, where we examine the security model of Chrome OS. The course is rounded out by putting all these elements together into a multi-layered, in-depth security architecture, followed by recommendations on how to integrate a culture of security into your organization or team. At the end of this course, you’ll understand: ● how various encryption algorithms and techniques work as well as their benefits and limitations. ● various authentication systems and types. ● the difference between authentication and authorization. ● how to evaluate potential risks and recommend ways to reduce risk. ● best practices for securing a network. ● how to help others to grasp security concepts and protect themselves.

查看授课大纲

您将学习的技能

Cybersecurity, Wireless Security, Cryptography, Network Security

审阅

4.8（2,805 个评分）

5 stars
2,298 ratings
4 stars
408 ratings
3 stars
62 ratings
2 stars
19 ratings
1 star
18 ratings

TE

Oct 05, 2018

Thank you to all the instructors. I learned concrete and useful IT skills from the courses and especially from the projects. After completing this course, I feel I want to learn more and more.

DS

Jan 30, 2019

Course 1 and 5 are probably my favorite of the courses because i feel i learned a lot in these two the most, all are great i just really wanted to learn more about security which was course 5

从本节课中

AAA Security (Not Roadside Assistance)

In the third week of this course, we'll learn about the "three A's" in cybersecurity. No matter what type of tech role you're in, it's important to understand how authentication, authorization, and accounting work within an organization. By the end of this module, you'll be able to choose the most appropriate method of authentication, authorization, and level of access granted for users in an organization.

Tracking Usage and Access3:01

Rob Important Skills in Security1:37

教学方

Google

脚本

Last but not least,

the final A of the Triple A's of security is Accounting.

This means, keeping records of what resources and services

your users access or what they did when they were using your systems.

A critical component of this is auditing,

which involves reviewing these records to ensure that nothing is out of the ordinary.

If we're watching and recording usage of our systems,

but never actually checking the usage data,

that's not super useful.

So what exactly do counting systems keep track of?

Well, that depends on the purpose and intent of the system.

For example, a TACACS+ server would be

more concerned with keeping track of user authentication,

what systems they authenticated to,

and what commands they ran during their session.

This is because TACACS+ plus is

a device access AAA system that manages

who has access to your network devices and what they do on them.

CISCO's AAA system supports accounting of individual commands executed,

connection to and from network devices,

commands executed in privileged mode,

and network services and system details like configuration reloads or reboots.

RADIUS will track details like session duration,

client location and bandwidth,

or other resources used during the session.

This is because radius is a network access AAA system.

So it tracks details about network access and usage.

RADIUS accounting kicks off with the Network Access Server sending

an accounting request packet to

the accounting server that contains an event record to be logged.

This starts the accounting session on the server.

The server replies with an accounting response indicating that the message was received.

The NASS will continue sending periodic accounting messages with

statistics of the session until an accounting stop packet is received.

RADIUS accounting can be used for billing purposes by ISPs because

it records the length of a session and the amount of data sent and received by the user.

This data can also be used to enforce data or time quotas,

limiting the duration of sessions or

restricting the amount of data that can be sent or received.

But, this accounting information isn't detailed and won't

contain specifics of what exactly the user did during the session.

Information like websites visited or what protocols were used aren't recorded.

Other logging utilities that will cover later meet that use case.

Wow. Okay. We covered a lot in this module.

Great work. Take the time to go over anything that may have been a little dense.

When you're ready, we've got a project for you that will test you on authentication,

authorization, and accounting system concepts.

Once that's done, you can head to the next video,

where we'll dive into network security, monitoring, and logging.

探索我们的目录

免费加入并获得个性化推荐、更新和优惠。

Coursera 致力于普及全世界最好的教育，它与全球一流大学和机构合作提供在线课程。

© 2019 Coursera Inc. 保留所有权利。

通过 App Store 下载

通过 Google Play 获取

Coursera
关于
管理团队
工作机会
目录
证书
MasterTrack™ 证书
学位
企业版
政府版

社区
Learners
Partners
Developers
Beta Testers
Translators

连接
博客
Facebook
领英
Twitter
Instagram
YouTube
技术博客

更多
条款
隐私
帮助
内容访问
媒体
联系我们
目录
附属公司