Office: 2100H Marie Mount Hall
Email: mcukier@eng.umd.edu
Office hours: Friday 10:00 am – 12:00 pm or by appointment
Teaching Assistant: Wende Kong
Email: wdkong@wam.umd.edu
Office hours: Tuesday 11:00 am – 1:00 pm or by appointment
Prerequisite: None
Readings:
· D. Gollmann, Computer Security, John Wiley
Course Objective: The goal of this class is to provide an introduction to computer security. Any engineer involved in the development of a computing system should be aware of the basics of computer security. Therefore, this class is open to any student in the School of Engineering without requiring a specific background in computer science.
Course Description: The first half of lectures will provide an overview of computer security. One third of these lectures will focus on the fundamentals of computer security like authentication, access control, and security models. The second third will focus on the practice of computer security using Unix and Windows NT as case studies. The last third will be dedicated to security in distributed systems including network security, World Wide Web security, and cryptography. In the second half of the lectures, technologies from three generations of computer security will be presented. The first generation of security technologies focuses on preventing intrusions and includes cryptography, access control, or a trusted computing base. The second generation of security technologies focuses on the detection of intrusions and includes firewalls, intrusion detection systems, and virtual private networks. The third generation of security technologies focuses on the operation through attack and includes intrusion tolerance, graceful degradation, and hardened cores.
Exams: There will be a midterm and a final exam. The final exam is cumulative. They will be both in classroom.
Project: The project consists in designing a more secure version of a given computing system. Further instructions will be provided.
Presentation(s): The presentations of the second half of the lectures will be given by students. Each student will present one or two security technologies. Students will select the topics of their presentation(s) among a proposed list of technologies. Students can also suggest presenting technologies not included in the list.
Homework: There will be homework assignments on several class topics. Further instructions will be provided.
Honor Statement: In this course, all assignments, exams, and project submissions carry with them an implicit statement that it is the sole work of the author, unless joint work is explicitly authorized. Unauthorized group efforts are considered academic dishonesty. Check the web site on Code of Student Conduct for definitions and sanctions.
Grading: Final grades will be determined using the following distribution:
|
Homework |
10% |
|
Presentation(s) |
20% |
|
Project |
20% |
|
Midterm |
20% |
|
Final |
30% |