•    Employment
  •    Academia
  •    Research
    • NICE Framework
    • CAE Program

Basic Networking

The intent of the Basic Networking Knowledge Unit is to provide students with basic understanding of how networks are built and operate, and to give students some experience with basic network analysis tools. Students are exposed to the concept of potential vulnerabilities in a network.

Topics

  1. Networking models (OSI and IP).
  2. Network media (wired, optical, and wireless)
  3. Network Architectures and topologies (PAN, LAN/WAN, DMZ, Enclaves, VLAN, NAT, subnetting, supernetting)
  4. Common Network Devices and their role in the network. (Routers, Switches, Hosts, VPNs, Firewalls)
  5. Network Protocols introduction (IP, TCP, UDP, ICMP)
  6. Network Services and protocols introduction (DNS, NTP, VLAN, etc.).
  7. Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.).
  8. Use of basic network administration tools.
  9. Overview of Network Security Issues
  10. Networking models (OSI and IP)
  11. Track and identify the packets involved in a simple TCP connection (or a trace of such a connection).
  12. Network Protocols introduction (IP , TCP , UDP , ICMP)
  13. Network Services and protocols introduction (DNS, NTP , VLAN, etc.).
  14. Network Applications and protocols introduction (SMTP , HTTP , VoIP , SSH, etc.).
  15. Describe the fundamental concepts, technologies, components and issues related to communications and data networks.
  16. Design a basic network architecture given a specific need and set of hosts/clients.
  17. Use a network monitoring tools to observe the flow of packets (e.g., WireShark).
  18. Perform network mapping (enumeration and identification of network components) (e.g., Nmap).
  19. Network Architectures and topologies (PAN, LAN/WAN, DMZ, Enclaves, VLAN, NAT, subnetting, supernetting
  20. Describe the fundamental concepts, technologies, components and issues related to communications and data networks
  21. Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.)

Outcomes

  1. Describe the fundamental concepts, technologies, components and issues related to communications and data networks.
  2. Design a basic network architecture given a specific need and set of hosts/clients.
  3. Track and identify the packets involved in a simple TCP connection (or a trace of such a connection).
  4. Use a network monitoring tools to observe the flow of packets (e.g., WireShark).
  5. Perform network mapping (enumeration and identification of network components) (e.g., Nmap).
  6. Describe common network vulnerabilities.
  7. Describe the fundamental concepts, technologies, components and issues related to communications and data networks
  8. Use a network monitoring tools to observe the flow of packets (e.g., WireShark).
  9. Design a basic network architecture given a specific need and set of hosts/clients.
  10. Perform network mapping (enumeration and identification of network components) (e.g., Nmap)
  11. Network Architectures and topologies (PAN, LAN/WAN, DMZ, Enclaves, VLAN, NAT, subnetting, supernetting)
  12. Common Network Devices and their role in the network. (Routers, Switches, Hosts, VPNs, Firewalls)
  13. Network Protocols introduction (IP, TCP, UDP, ICMP)
  14. Network Services and protocols introduction (DNS, NTP, VLAN, etc.).
  15. Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.)
  16. Use of basic network administration tools.
  17. Networking models (OSI and IP).
  18. Network media (wired, optical, and wireless)
  19. Network Applications and protocols introduction (SMTP, HTTP, VoIP, SSH, etc.).
  20. Overview of Network Security Issues
  21. Design a basic network architecture given a specific need and set of hosts/clients
  22. Perform network mapping (enumeration and identification of network components) (e.g., Nmap).
  23. Describe common network vulnerabilities

KSA-T

Below are the Knowledge, Skills, Abilities and Tasks (KSA-T) identified as being required to perform this work role.
Learn More about the KAS-T's.

  • Knowledge
  • Skills
  • Abilities
  • Tasks
ID DESCRIPTION
K0001 Knowledge of computer networking concepts and protocols, and network security methodologies.
K0221 Knowledge of OSI model and underlying network protocols (e.g., TCP/IP).
K0565 Knowledge of the common networking and routing protocols (e.g. TCP/IP), services (e.g., web, mail, DNS), and how they interact to provide network communications.
K0011 Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware.
K0200 Knowledge of service management concepts for networks and related standards (e.g., Information Technology Infrastructure Library, current version [ITIL]).
K0061 Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
K0486 Knowledge of network construction and topology.
K0555 Knowledge of TCP/IP networking protocols.
K0255 Knowledge of network architecture concepts including topology, protocols, and components.
K0274 Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.
K0108 Knowledge of concepts, terminology, and operations of a wide range of communications media (computer and telephone networks, satellite, fiber, wireless).
K0296 Knowledge of capabilities, applications, and potential vulnerabilities of network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware.
K0600 Knowledge of the structure, architecture, and design of modern wireless communications systems.
K0489 Knowledge of network topology.
K0034 Knowledge of network services and protocols interactions that provide network communications.
K0303 Knowledge of the use of sub-netting tools.
K0137 Knowledge of the range of existing networks (e.g., PBX, LANs, WANs, WIFI, SCADA).
K0113 Knowledge of different types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN).
K0050 Knowledge of local area and wide area networking principles and concepts including bandwidth management.
K0599 Knowledge of the structure, architecture, and design of modern digital and telephony networks.
K0071 Knowledge of remote access technology concepts.
K0326 Knowledge of demilitarized zones.
K0202 Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for PCI and PII compliance, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).
K0104 Knowledge of Virtual Private Network (VPN) security.
K0346 Knowledge of principles and methods for integrating system components.
K0516 Knowledge of physical and logical network devices and infrastructure to include hubs, switches, routers, firewalls, etc.
K0332 Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
K0471 Knowledge of Internet network addressing (IP addresses, classless inter-domain routing, TCP/UDP port numbering).
K0485 Knowledge of network administration.
K0043 Knowledge of industry-standard and organizationally accepted analysis principles and methods.
K00013 Knowledge of cyber defense and vulnerability assessment tools and their capabilities. 
K0111 Knowledge of network tools (e.g., ping, traceroute, nslookup)
K0088 Knowledge of systems administration concepts.
K0062 Knowledge of packet-level analysis.
K0029 Knowledge of organization's Local and Wide Area Network connections.
K0179 Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
ID DESCRIPTION
S0236 Skill in identifying the devices that work at each level of protocol models.
S0154 Skill in installing system and component upgrades. (i.e., servers, appliances, network devices).
S0059 Skill in using Virtual Private Network (VPN) devices and encryption.
S0221 Skill in extracting information from packet captures.
ID DESCRIPTION
A0052 Ability to operate network equipment including hubs, routers, switches, bridges, servers, transmission media, and related hardware.
A0172 Ability to set up a physical or logical sub-networks that separates an internal local area network (LAN) from other untrusted networks.
A0055 Ability to operate common network tools (e.g., ping, traceroute, nslookup).
A0058 Ability to execute OS command line (e.g., ipconfig, netstat, dir, nbtstat).
A0059 Ability to operate the organization's LAN/WAN pathways.
A0159 Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).
A0063 Ability to operate different electronic communication systems and methods (e.g., e-mail, VOIP, IM, web forums, Direct Video Broadcasts).
ID DESCRIPTION