Mar 29, 2024  
2020-2021 Course Catalog 
    
2020-2021 Course Catalog [ARCHIVED CATALOG]

Add to Portfolio (opens a new window)

CRJ 305 - Introduction to Cyber Terrorism

Credits: 3
Lecture Hours: 3
Lab Hours: 0
Practicum Hours: 0
Work Experience: 0
Course Type: Open
This course explores methods cyber terrorists use to plan, communicate, fund and ultimately wage cyber attacks.  Students will consider motivators of prospective actors as well as identify the associated risks to critical infrastructure and key resources through scenarios and case studies.  Lastly, an overview of policy and procedural/technical measures will allow participants to consider possible means to protect and defend vulnerable public and private resources.
Competencies
  1. Categorize Cyber Attacks scenarios.
    1. Define Cyber Terrorism.
    2. Differentiate Exploitation, Disruption, Destruction
    3. Classify historical and fictional examples
  2. Evaluate motivators of Cyber Terror entities.
    1. Analyze motivations of Nation-State / Foreign Interests
    2. Classify motivations of Domestic challengers
    3. Examine motivations of economic competitors
    4. Differentiate motivations of rogue elements
    5. Interpret motivations Hacktivists
  3. Outline vulnerabilities of cyber-related critical infrastructure and key resources.
    1. Name Physical/Infrastructure elements
    2. Describe Internet of Things (IoT)
    3. Generalize Virtual/Logical constructs
    4. Summarize ?Big data? concepts
  4. Dissect Techniques of attacks.
    1. Distinguish Human (social) Engineering
    2. Summarize Malicious Software (malware)
    3. Identify Insider Attacks
  5. Analyze methods of Information Gathering by Cyber Terror entities.
    1. Discuss Sympathetic/Freedom-of-Information Sites including but not limited to: Wikileaks, Cryptome, and Leaked policies/procedures/legal guides/handbooks/”recipes”
    2. Review Open-Source Information including but not limited to: Published procedures, Floor-plans of public buildings, Maps of critical infrastructure, Public cameras, Crowd-sourced media/information, Social Network Divulgence
    3. Explain the cyber-relevance of Formal Education including but not limited to: Online courses, and Digital-versions of Texts
  6. Examine Methods of Communication by Cyber Terror entities.
    1. Describe how Websites are utilized including but not limited to: Rumors and Misinformation, Recruitment, and Remote attack deployment
    2. Explain cyber-related covert communication including but not limited to: Codes, Encryption, Steganography, One-time Use Channels
  7. Relate Methods of Financial Gain by Cyber Terror entities.
    1. List Direct/Indirect Contribution methods including but not limited to: ?Charity? sites, Protection Money/Ransom ? Physical Harm, Reputation, Data
    2. Discuss methods of theft and fraud including but not limited to: ID Theft/Credit Fraud, Banking Interception/Impersonation, Money Laundering through barter or virtual currency
    3. Extend the implications of Market Influence/Disturbance
  8. Examine Technical “Tools” used by Cyber Terror entities.
    1. Describe characteristics of Open-Source Tools including: Free, Less-regulated, Modifiable
    2. Explain concepts and uses of Concealment Software including: Encryption, Data Hiding/Steganography, Anonymizers (TOR)
    3. Discuss Malware concepts including Automated Scripts and Documented Author Tools
    4. Summarize Simulation, Virtual Reality & Virtualization products that could prepare attackers for control and programming of real-world assets
    5. Discuss impact of Prototypes / Distributed Fabrication methods including 3D Printing and Materials/Parts access
  9. Discuss prevention/deterrence/mitigation efforts of cyber terror activities.
    1. Outline efforts related to SCADA / Control Systems, Business / Governmental Computer Systems, Personal and computers/phones
    2. Describe other technical and non-technical countermeasures



Add to Portfolio (opens a new window)