| |
|
Introduction and Basics
- Class Introduction (syllabus, policies, and projects)
- An Overview of Computer Security
- Readings
- Security in Computing
- Chapter 1: Is there a security problem
in computing?
- Counter Hack Reloaded
Operating Systems Security
- Operating Systems Security Basics
- Authentication, access control, and audit
- Unix Security Basics
- Readings
- Security in Computing
- Chapter 4: Protection in
general-purpose operating systems
- Counter Hack Reloaded
- Chapter 3: Linux and UNIX overview
Software Security
- Program errors
- Buffer overflow, format string bugs, integer overflow, race
conditions, etc.
- Malware basics
- Readings
- Security in Computing
- Chapter 3: Program security
- Counter Hack Reloaded
- Chapter 7: Gaining access using
application and operating system attacks
Access Control
- Unix access control in depth: setuid,chroot, DTE, POSIX
capabilities, securelevel, sandboxing
- Mandatory Access Control
- Bell-LaPadula model, Trusted Operating Systems
- Role-Based Access Control
- Capabilitiy-based system
- Readings
- Security in Computing
- Chapter 3: Program security
- Counter Hack Reloaded
- Chapter 7: Gaining access using
application and operating system attacks
Database Security
- Readings
- Security in Computing
- Chapter 6:
Database Security
Network Security
- Readings
- Security in Computing
- Chapter 7:
Security in networks
- Counter Hack Reloaded
- Chapter 2: Networking overview
- Chapter 8: Gaining access using
network attacks
- Chapter 9: Denial-of-service
attacks
Concepts of Modern Cryptography
- One-time Pad, Stream Ciphers, Block Ciphers, Modes of using block ciphers.
- Public-key encryption algorithms
- Message Integrity: cryptographic
hash functions, Message Authentication Codes (MAC)
- Digital Signatures
-
Authentication & Key Establishment Protocols
- Readings
- Security in Computing
- Chapter 2: Elemetary cryptography
- Chapter 10: Cryptography explained
Other Topics
|