Monday, Wednesday, Friday
Sumwalt 305
Final grades will be
available: Wednesday (Dec. 12)
Instructor: Csilla Farkas
Office: Swearingen 3A43
Office Hours: Monday
and Friday
Telephone: 576-5762
E-mail: farkas@cse.sc.edu
Homepage: http://www.cse.sc.edu/~farkas/csce201-2007/csce201.htm
Prerequisites: CSCE 101
Course Description:
The focus of the course is to provide a set of
practices the students can deploy immediately to secure their computers and to
maintain safe security practices. The
course is taught as two 50 minute lectures and one 50 minute hands-on
laboratory. The lectures cover the
necessary security concepts and methods to prevent security breaches and what
to do if such a breach is detected. In
addition to the lecture materials, students will participate in security lab
exercises, performing hands-on experiments on safe security practices. The hands-on experiences enable the students
to deal with security threats and to apply appropriate counter measures. The students will learn about securing
popular computer platforms and applications running on these platforms. Tests and lab exercises will be used to
evaluate the students’ understanding of security concepts and their use in real
life applications.
Course Objectives:
Text
Books
o
D. Gollman: Computer Security, John Wiley
and Son, ISBN: 0470862939, 2006
o
G. DeLaet, G. Schauwers: Network Security
Fundamentals, Cisco Press Fundamentals Series, ISBN: 1587051672,
2004
Final grades will be available: Wednesday (Dec. 12)
Lectures
|
Date |
Topic |
Reading |
Handout |
Assignments
|
|
08/24/2007 |
Introduction |
|
|
|
|
08/27/2001 |
Basic Security concepts |
Gollmann Ch.1 |
|
|
|
08/31/2007 |
Basic Security
concepts |
Gollmann Ch.1 Recommended: A
Chronology of Data Breaches |
|
Due:
09/07/2007 |
|
09/07/2007 |
Security Design |
Gollmann Ch. 2 |
|
|
|
09/12/2007 |
Identification and
Authentication |
Gollmann Ch. 3 |
|
|
|
09/17/2007 |
Discretionary Access Control |
Gollmann Ch. 4 |
|
Due:
09/26/2007 |
|
09/19/2007 |
Online Privacy |
Guest lecturer:
Maryam Jafari-Lafti |
|
|
|
09/21/2007 |
Mandatory Access Control |
Gollmann Ch. 4 Guest Lecturer: Dr. |
|
|
|
09/24/2007 |
No Class |
Work on Homework 2 |
|
|
|
09/2802007 |
Role-Based Access Control |
Gollmann Ch.4 |
|
|
|
10/03/2007 |
Firewalls |
Gollmann Ch. 13.6 |
|
|
|
10/05/2007 |
Computer Lab |
Class at: Swearingen Bldg. 2D19 1.
Get user id and password for lab
machines 2.
Understand Windows XP user accounts
and passwords |
o
Windows XP Security Guide, http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/default.mspx
o
Windows XP Security and
administration |
|
|
10/08/2007 |
Email Security and
Malicious Code |
1.
Malicious Codes in Depth, http://www.securitydocs.com/library/2742
2.
USC Computer Services – Virus
Information Center http://www.sc.edu/ars/virus
3.
TrendMicro – Virus alerts and
advisories, http://www.trendmicro.com/vinfo |
Gollman Ch 11 Introductory lecture
on cryptography Cryptography Lecture Notes for
10/08/2007 lecture |
|
|
10/10/2007 |
Computer Lab |
Class at: Swearingen Bldg. 2D19 Instructions
for Lab exercises 1. Computer management 2. Windows Firewall 3. Malicious Code |
o
4 steps to protect your
computer, http://www.microsoft.com/protect/computer/default.mspx
o
Reading: Windows XP Security and
Privacy, http://www.microsoft.com/windowsxp/using/networking/security/features.mspx
|
|
|
10/12/2007 |
FALL BREAK |
|
|
|
|
10/15/2007 |
Cryptography and malicious code |
Same as for 10/08/2007 |
Same as for HOMEWORK 3 is available and DUE on
Oct. 22. |
Due:
10/22/2007 |
|
10/17/2007 |
Authentication in
Distributed Systems |
1.
Gollman Ch 12 |
|
|
|
10/19/2007 |
Computer Lab |
Class at: Swearingen Bldg. 2D19 Instructions
for Lab exercises |
|
|
|
10/22/2007 |
Steganography and
Watermarking |
o
Neil Johnson, Steganography, http://www.jjtc.com/pub/tr_95_11_nfj/index.html
o
Links |
|
|
|
10/24/2007 |
Practice for TEST 1 |
|
|
|
|
10/26/2007 |
Computer Lab |
Class at: Swearingen Bldg.
2D19 Instructions for Lab exercises |
|
|
|
10/29/2007 |
TEST 1 |
|
|
|
|
10/31/2007 |
Overview of TEST 1 |
|
|
|
|
11/02/2007 |
Computer Lab |
Class at: Swearingen Bldg. 2D19 Network Security Demo – A. Jain and Y. Kopylova |
|
|
|
11/7/2007 |
Intrusion Detection |
1.
Gollman Ch. 13.7 |
Recommended Reading: o
Windows
Intruder Detection Checklist by CERT, http://www.cert.org/tech_tips/WIDC.html
o
Survey of Intrusion Detection
Software by Tech Support Alert |
|
|
11/9/2007 |
Computer Lab |
Class at: Swearingen Bldg. 2D19 Instructions
for Lab exercises Homework 4 is now
available! |
Recommended Reading: o
Why Should I Use Security Event
Logs?, http://netsecurity.about.com/cs/forensics/a/aa040503a.htm
o
How to audit user access of
files, folders, and printers in Windows XP, http://support.microsoft.com/kb/310399
o
Threats and Countermeasures:
Security Settings in Windows Server 2003 and Windows XP, http://www.microsoft.com/technet/security/guidance/serversecurity/tcg/tcgch00.mspx
|
DUE Nov.
16 |
|
11/14/2007 |
Open Sources Privacy |
|
|
|
|
11/16/2007 |
Computer Lab |
Class at: Swearingen Bldg. 2D19 o
Instructions for Lab Exercises o
Catch up with lab
exercises: you can use the lab to finish
any previous lab exercises you have missed o
Question-answer on lectures,
homework, tests, etc. |
Homework 4 is DUE |
|
|
11/19/2007 |
Refresh Cryptography
|
Notes on Secret and
Public key encryption methods, and Hash function. Understand how they provide
confidentiality, integrity, authentication, availability, and
non-repudiation. |
|
|
|
11/21/2007 11/23/2007 |
Thanksgiving Break |
No classes |
|
|
|
11/26/2007 |
E-commerce,
online banking |