Course Description

Security issues in the realm of computers, communications, and the internet. Algorithms for encryption, cryptography, authentication, key exchange protocols, virus detection, database security, and secure internet communication. Models of security policies and computer systems certification. Prerequisites: Admission to MS in CS program, or consent of department, plus CS 3270 and CS 3350 or equivalent.

Course Syllabus

1. Basics of computer security
   1. Overview
   2. Definition of terms
   3. Security goals
   4. Shortcomings
   5. Attack and defense
2. Encryption and cryptography
   1. Ciphers and codes
   2. Public key algorithms
   3. Key distribution
   4. Digital signatures
   5. Pretty good privacy
3. Authentication and key exchange protocols
   1. Directory authentication service
   2. Diffie-Hellman key exchange
   3. Kerberos
4. Software security
   1. Malicious code
   2. Worms
   3. Intruders
   4. Error detection and correction
   5. OS protection policies
5. Trusted systems
   1. Memory protection
   2. Access control matrix
   3. User authentication
   4. Security models
   5. Disaster recovery
6. Database security
   1. Integrity constraints
   2. Multi phase commit protocols
7. Network security
   1. Threats in networks
   2. Privacy enhanced email
   3. DS authentication
8. Web and electronic commerce
   1. Threats on the web
   2. Secure socket layer
   3. Client-side certificates
   4. Applet security model
9. Security policy: case study
   1. Unix
   2. Windows NT
   3. Browsers and Java/scripts