Computer Security (also known as cybersecurity or IT security) is information security as applied to computing devices such as computers and smartphones, as well as computer networks such as private and public networks, including the whole Internet.

The field covers all the processes and mechanisms by which digital equipment, information and services are protected from unintended or unauthorized access, change or destruction, and is of growing importance in line with the increasing reliance on computer systems of most societies worldwide.

A college server consists of valuable information. Thus its data protection becomes an important task. A website with vulnerabilities is of risk. If hacked, then the display of any obscene content can shatter the reputation of college which in turn harms most importantly the administration, faculty and students. Therefore, we propose to set up a team of students headed by teachers and managed by the college administration to handle all the issues related to the cyber security of college.

To establish a team of students and teachers with knowledge of IT Security. The aim behind this is to make the college network and online data secure. This team will help in protecting the college websites and servers from being hacked and misused by applying necessary defensive measures.

Gathering interested students and teachers.

Purchasing software and hardware required to find and eliminate the threats.

Finding out the possible vulnerabilities/threats in the network.

Removal of the threats.

Beta – testing.

Training new and existing members.

Gathering students already having knowledge of this field and the teachers who can guide them.

Taking permission from the administration to allow restriction free internet in order to check the vulnerabilities by using different attacks.

Purchasing required software (example: licenced anti-virus, firewall , Intrusion Detection Systems (IDSs) etc.) and hardware(example: high performance systems, hardware based firewalls etc.)

Removing/safeguarding the vulnerabilities applying defences like Access Control Systems, Intrusion prevention system, Application security etc.

After completing the task, doing Beta – testing i.e. running attacks on the modified system to check where the vulnerabilities are still present.

Rectifying the errors wherever possible.

Since the same students are not going to stay forever in the college, therefore providing facilities for training of new individuals.

The following risks can be encountered during the project:

Convincing the students should be good enough to keep their interest in the project, informing them about the advantages and profit they are going to receive being the part of the project.

Making sure the internet provided by the college is not misused.

Teaching ethics to the students so that they may not misuse the website instead of protecting it.

Making sure the things purchased are genuine and at correct price.

The information about the vulnerabilities should not leak to others as they’ll be knowing the direct way to harm the network.

During beta – testing, making sure the attacker does not damage the system. His job is only to find out the vulnerabilities, not exploiting them.

Arranging for a good and affordable trainer to teach the new students. Also only those are to be taught the advanced level who appear eligible and become a part of the team.

Phase 1 :- Forming the Team

Informing everybody about the objective and selecting students having knowledge about IT Security. The students will be shortlisted by an exam for the concerned field. Those who pass the exam will be interviewed by the teachers and the eligible candidates will become a part of the team. This will take around 8-10 days.

Budget 1: Around Rs. 1,500 (for the question paper and answer sheets)

Phase 2 :- Purchasing required items.

Purchasing necessary software and hardware. The basic required softwares are firewalls, IDSs, Intrusion Prevention Systems(IPSs). The required hardware are hardware based firewalls, IDSs, IPSs, systems operating on Linux OS. Also CCVT cameras to prevent the risk of operators becoming the offenders

Budget 2: The software firewalls, IDSs cost around Rs. 3,000-4,000. The IPSs/anti virus cost around Rs. 1,000-1,500. The hardware based firewall lie in the range of Rs. 20,000 to 30,000.

Thus the total cost will approximately be Rs. 40,000.

Phase 3 :- Penetration Testing

Attacking website of college and also of other committees like Hypervision, MUN, CSI, AAPG etc. Thus finding the loopholes/vulnerabilities so that we can rectify them later. Some of the attacks used will be:

Backdoors, Denial-of-service attack, Direct-access attacks, Eavesdropping, Exploits, Indirect attacks.

This will take about 2-3 days.

Budget 3: This phase does not require much budget except expenditure of operators

Phase 4 :- Applying Security & Beta Testing

After the vulnerabilities are known, security can be applied by use of firewalls (both hardware and software based), IPSs and secure coding.

Phase 5 :- Training

Hire a trainer to train new students who will then help in securing the network. The fees will be charged by each student, thus only the interested ones will do the course.

The total budget will be of Rs. 50,000 approximately.

Increase in the weightage of CV of the student members. Plus they get some concession from their college fee based on the amount of work they do.

Those interested in hacking will be helping the college securing its websites. These people in lack of this team might be the ones attacking them.

No need to hire a cybersecurity expert and pay him lots of money.

IT Security is a very important need in todays world. This has increased the demand of IT Security experts. Thus instead of hiring one as an employee, it is much better to train our own students to do the task. It will increase their knowledge and experience in the field of their interest. The college in turn gets some more security of its valuable content like student and faculty records, exam results etc. Thus, it provides benefit to both the college and the students.