Department of Computer Science

 Hello Students.

Welcome to CSCI 415.  Please be sure to read through these sections carefully to have a good understanding of classroom expectations and conduct.  Here's to a great semester.

Catalog Description:
CSCI 415:  4 s.h. Computer and Network Security

This course is designed to introduce student to topics which include attacks, standards, data integrity, symmetric key encryption, public key encryption, authentication, electronic mail security, IP security, web security, database security, secure electronic transactions, network management security, malicious software, and firewalls. This course includes a laboratory component. 

Objectives of the course:
At the end of this course, a successful student will be expected to:

§          explain the nature of attacks, security mechanisms, types and motivation of attacks.        

§          describe and explain symmetric encryption and public key encryption, authentication, cryptography algorithms and application of public key infrastructure.   

§          describe the key aspects of several network security elements like secure sockets layer (SSL), transport layer security (TLS), secure electronic transaction (SET).

§          demonstrate a solid understanding of current  network security vulnerabilities, for example, SQL injection, cross-site scripting, over flow.

§          describe and design a secure network, complete with the physical components, equipped with appropriate bandwidth, protocols, and internetworking concepts that are covered as theory in class.  They also required to be able to identify and assess the efficiencies of a network.

§          demonstrate a practical insight on secure electronic transactions

Required Textbook:
Computer Security: Principles and Practice
William Stallings, Lawrie Brown
ISBN-10: 0136004245
ISBN-13: 9780136004240
Publisher:  Pearson Prentice Hall

Prerequisites:
C- or better in CSCI 362 (Data Structures). 

Course Outline 

General Security Concepts

Chapter 1

 

Network Infrastructure

Chapters 6, 7, 8, 9, 21

 

Access Control

Chapters 3, 4, 5

 

Systems Security

Chapters 3, 5, 7, 11, 12

Cryptography

Chapters 2, 19

 

Forensics

 

Organizational Security

Chapters 13, 14, 18 (The Security Wheel)

 

Assessment and Audits

Chapters 15, 16

  

 

Grading: 

Exam 1:  30%

Exam 2:  30%

Lab Assignments (programming projects & hands-on) 35 %

Case-studies and reading assignments (incl. quizzes):  5 %

 

Barring an acceptable emergency, there are no make-ups

 

Final Letter Grades based on the following weighted scale

93 – 100:  A      90-92.9:  A-   86 – 89.9:  B+  82 – 85.9  B  79 – 81.9: B-

76 – 78.9:  C+   73 – 75.9:  C  70 – 72.9 C-      66 – 68.9:  D+   63 -65.9:  D   

60 – 62.9  D-      <59.9:  Fail

 

Labs:

Examples of programming projects you will be expected to complete, include:  Digital Signatures/ Encryption, Creating a Tokenizer, Secure Socket

There will be several hands-on labs

 

Reading Assignments and Quizzes:

Reading assignments will be announced in class, given as handouts or links.  Check class website frequently.  There will be case-studies that you will be required to read, understand, and present.  Quizzes are unannounced and based on readings, classwork, and homework

 

All work must be submitted on the assigned date or they will not be graded – barring acceptable emergencies. Check website for important dates.

 

The syllabus is subject to some change to accommodate scheduling - so be sure to check in occasionally.