|
Tentative Lecture Plan
Tentative lecture flow
will be as follows. Some changes may occur depending upon the pace of
the class. In the table below, texts in GREEN in
Topics column represent notes I add after the class - in particular with
regards to coverage.
Some helpful notes: Some previous experiences of the students and mine that may be
helpful to you are as follows:
-
Students who have taken this course have felt that
this is a very dense course - primary reason for it being dense our goal
to maintain the NSA IA standards.
-
In earlier offerings of this course, students who
lacked strong mathematical background had found the first half of the
course, which is focused on theoretical issues, quite challenging.
Students are strongly recommended to read the materials before it is
covered in the class. Most of the lecture materials will be similar to
earlier offerings of the course, with updates and corrections.
-
The second half of the course content is much softer
and less effort is needed to understand the concepts - but a lot of
reading is required. This helps students to concentrate more on projects
and labs/programming assignment.
-
The course is designed primarily with the overall
security track in mind. The coverage is also expected to provide a
foundational knowledge and broad understanding of security field, if
this is the only course the student plan to take.
Course Handout
Tentative Course Schedule
|
|
Lecture/Date |
Topics |
Slides |
|
Week
1
(Aug 26) |
Introduction
to the course;
Chap 1:
Overview of Security
[Covered
Till Slide 31]
|
(Lecture
1)
(PDF)
(CSI_FBI) |
|
Week
2
(Sept 2)
|
Chap 12:
Secure Design Principles
Chap 2.2
Access Control Matrix
Access
control in OS
Unix (Garfinkel
book in Text book list in main page)
Microsoft
Reference (http://technet.microsoft.com/en-us/library/cc781716.aspx)
[Covered
Till Slide 20]
|
(Lecture
2)
(PDF) |
|
Week 3
(Sept 9)
|
Mathematical Review
(Bishop's
brown book has short intro
on these topics - Logic, Induction and Lattice)
[Covered
Till Slide 8]
|
(Lecture
3)
(PDF) |
|
Week 4
(Sept 16)
|
Chap 2
- 3 :
HRU Access Control Model and results
[Covered
Till Slide 21]
|
(Lecture
4)
(PDF) |
|
Week 5
(Sept 23)
|
Chap 4
- 6 : Security Policies, Confidentiality and Integrity Models
[Covered
Till Slide 25]
|
(Lecture
5)
(PDF) |
|
Week
6
(Sept 30)
|
Chap 6, 7 : Integrity Models, Hybrid
Models, RBAC (for RBAC refer to NIST Standard paper in Reading List)
[Covered Till
Slide 7]
|
(Lecture
6)
(PDF) |
|
Week
7
(Oct 7)
|
We continued Lecture 6 - Covered
Till Slide 27 of lecture 6 - Midterm will cover till this point
|
|
|
(Oct 14)
|
Fall Break
|
|
|
Week
8 (Oct
21) |
Risk management, Legal issues &
Physical security, Common Criteria (Lecture by: Saubhagya)
|
(Guest Lecture) |
|
Week
9
(Oct 28)
|
Midterm (Rescheduled)
|
|
|
Week
10
(Nov 4)
|
Chap 9: Basic Cryptography and Network Security
|
(Lecture
7)
(PDF) |
|
Week
11
(Nov 11)
[Conference]
|
Guest Lecture by: CERT Team
|
(Slides
1) |
|
Week
12
(Nov 18)
|
Key management and Network security
[Covered Till
Slide 41]
|
(Lecture
8)
(PDF) |
|
(Nov 25) |
Authentication and Identity;
Malicious Code; Vulnerability Analysis[Covered Till
Slide 32]
|
(Lecture
9)
(PDF) |
|
Week 13
(Dec 2)
|
IDS, Firewalls, Auditing
[15 Min Quiz]
|
(Lecture
10)
(PDF) |
|
Week 14
(Dec 9)
|
Buffer overflow & Race Conditions
[15 Min Quiz]
|
(Lecture
11)
(PDF) |