Erinevus lehekülje "Cyber Defense Monitoring Solutions" redaktsioonide vahel
| 50. rida: | 50. rida: | ||
| * lecture materials of module 3 ("Regular expression language") by '''September 24 2020'''. | * lecture materials of module 3 ("Regular expression language") by '''September 24 2020'''. | ||
| * lecture materials of module 5 ("Syslog-ng framework") by '''October 22 2020'''. | * lecture materials of module 5 ("Syslog-ng framework") by '''October 22 2020'''. | ||
| + | * lecture materials of module 6 ("Introduction to event correlation and Simple Event Correlator") by '''November 5 2020'''. | ||
| + | * lecture materials of module 7 ("Simple Event Correlator - advanced topics") by '''November 19 2020'''. | ||
| + | * lecture materials of module 8 ("Introduction to intrusion detection/prevention and Snort IDS/IPS") by '''December 3 2020'''. | ||
| == Information about the exam == | == Information about the exam == | ||
Redaktsioon: 30. oktoober 2020, kell 14:26
Basic information
- Course Code -- ITX8071
- Credit Points -- 6.0 EAP
- Course Language -- English
- Course Schedule -- the course will be lectured from 17:45 to 21:00 on every Friday of fall semester 2020. All lectures and lab sessions will be held in room ICT-401 (Akadeemia tee 15A building). Starting from September 11 2020, lectures and labs will take place in MS Teams environment under the team "Cyber Defense Monitoring Solutions (ITX8071)".
- Course Materials -- use the registration code w7Xz53c for accessing all course slides and pre-recorded lecture videos in Moodle.
Evaluation
During the semester, two homework assignments are given to each student. Both assignments can yield up to 12.5 points, thus the maximum score from homework is 25 points. During the exam, three tasks are given to each student, with each task yielding up to 25 points and the whole exam up to 75 points. The final grade for a student is derived from his/her personal score:
- score > 90 -- grade 5 (excellent)
- 80 < score ≤ 90 -- grade 4 (very good)
- 70 < score ≤ 80 -- grade 3 (good)
- 60 < score ≤ 70 -- grade 2 (satisfactory)
- 50 < score ≤ 60 -- grade 1 (pass)
- score ≤ 50 -- a student has failed to pass
Virtual machine image
For course lab sessions, there is a virtual machine image which has been created with VirtualBox. When importing the image into VirtualBox, don't forget to select the option "Reinitialize the MAC address of all network cards". Also, if you are using the image on a classroom computer, import your virtual machine into the D:\itx8071 directory. In order to run your virtual machine as a node of the classroom network, change the network adapter mode from NAT to Bridged Adapter.
For changing the console keyboard layout of the virtual machine, use the /usr/bin/localectl tool. For example, localectl set-keymap et sets Estonian keyboard layout for console and localectl set-keymap us sets US keyboard layout for console, while localectl list-keymaps lists all available layouts and localectl status shows the current settings.
Lab sessions
Solutions for past lab sessions are available here.
Homework assignments
- Task1 -- a group work for max 3 students which must be submitted by October 29 2020 23:59 local time.
- Task2 -- a group work for max 3 students which must be submitted by December 17 2020 23:59 local time.
Solutions to homework assignments should be sent to the e-mail address of the lecturer (given in the title page of each slide module). Together with the solution, full names and student codes of the authors must be listed. You should consider your solution submitted only after its reception has been confirmed by the lecturer.
All submitted solutions should be carefully tested final versions. Please submit the solution only once, and do not send in partial and/or untested work. It is not allowed to submit a partial solution, and use comments from the lecturer for later resubmission of improved version(s). Also, if you wish to submit multiple solutions, you must clearly indicate which one should be used for evaluation. If no such indication is provided, the first solution will be used for evaluating your work, and other solutions are not considered.
Please note that each student can be a (co)author of only one solution (i.e., participation in more than one student group is not allowed). Also note that the list of authors can not be changed after the deadline.
The correct solution with your score will be announced after the deadline.
Solutions submitted after the deadline will not be accepted. Also, it is not possible to redo the homework assignment after the deadline.
Independent work during the semester
For attending the course, the following course materials have to be independently studied in Moodle by given deadlines:
- lecture materials of module 2 ("Introduction to packet filtering with the Linux netfilter firewall") by September 17 2020.
- lecture materials of module 3 ("Regular expression language") by September 24 2020.
- lecture materials of module 5 ("Syslog-ng framework") by October 22 2020.
- lecture materials of module 6 ("Introduction to event correlation and Simple Event Correlator") by November 5 2020.
- lecture materials of module 7 ("Simple Event Correlator - advanced topics") by November 19 2020.
- lecture materials of module 8 ("Introduction to intrusion detection/prevention and Snort IDS/IPS") by December 3 2020.
Information about the exam
The exam is an open-book exam, but the use of Internet, electronic devices, and digital materials is not permitted. In order to attend the exam, each student must present an ID with a photo and have at least one pen in good working order. During the exam, each student has to accomplish 3 tasks within 3 hours on paper. All paper materials such as printed course slides, paper-based notes, and hardcopy books can be freely used during the exam.
Time slots for taking the exam will be announced during the semester.
For taking the exam, official registration in OIS is required for one of the examination time slots.
Note that each student can take the exam only once, and in order to get the second try for improving the result, official application for re-examination is required (see below).
While producing his/her final examination work, the student must consider the following:
- Since there is no defense of the written examination work, the examination work must present full and unambiguous task solutions
- Each task must have only one clearly presented solution; if multiple solutions are given, only the first one will be evaluated
- All handwriting in the examination work must be legible
- No spare pens are provided to students during the exam
The following rules apply during the exam, and failure to follow them will invalidate the examination work of the student:
- The use of Internet, digital materials, and electronic devices (computers, mobile phones, cameras, etc.) is not permitted for any purposes
- All electronic devices will have to be switched to silent mode and left on a designated desk for the duration of the exam
- Any communication between students or with persons not taking the exam is strictly prohibited
- While the use of printed materials is permitted, it is not allowed to share such materials between students
- Students can't leave the examination room during the first 60 minutes and the last 30 minutes of the exam
- Each student can leave the examination room once during the exam for max 10 minutes (only one person can leave the room at a time)
- When leaving the examination room, the student has to surrender the task sheet to the lecturer (it is prohibited to take any exam-related materials outside the room)
- When submitting the examination work, the student must also hand over the task sheet
- It is strictly prohibited to take photos or make any other copies of the task sheet
Re-examination information
Each student is granted one re-examination attempt which requires official application. The student can apply for re-examination after failing a regular exam, or for improving a low grade from a regular exam. Re-examination invalidates any previous grade or intermediate result which was obtained during the semester. During re-examination, 2 assignments have to be accomplished within 1 hour. The final grade is solely based on assignment solutions, and no work from previous exam or semester can be combined with the re-exam.
The re-examination is an open-book exam, but the use of Internet, electronic devices, and digital materials is not permitted, and all rules of the regular exam apply (see above).
Time slot for taking the re-exam will be announced during the semester.
Plagiarism policy
Please note that plagiarized home works and exam works will be rejected without a review, and the university will be notified of the offense. All cases of student plagiarism and other violations of academic practices will be handled according to regulations of the IT faculty.