CSCE 5550 - Introduction to Computer Security - Fall 2021
Class hours
Lectures: Tuesdays and Thursdays, 2:30-3:50pm, NTDP B.140
Instructor: Kirill Morozov (Department of Computer Science and Engineering)
Office hours*: Tuesdays and Thursdays 4:00-5:00pm in NTDP F.283
Appointments at other timeslots are possible pending availability.
E-mail: Kirill [dot] Morozov [at] unt.edu
Teaching assistants: TBA
Office hours*: TBA
E-mail: TBA
Recitations: Rooms and hours TBA.
The recitations will consist of the labs, which can be run in the computer classes or on your home PCs.
The labs will use VMs that are to be run in Oracle VirtualBox https://www.virtualbox.org/.
|
Course Description
The aim of this course is to introduce the concepts and principles of computer security and privacy. It covers both theoretical and practical aspects of computer security, including security models and assurance, OS and network security, common security threats and countermeasures against them, cryptography, risk analysis and data privacy.
|
Course webpage
All lectures, assignments, and other materials will be posted on Canvas.
Submissions of the assignments must be made via Canvas as well.
Note: For all communications with instructors, the subject of your e-mails must start with "CSCE 5550".
|
Reference books (recommended)
- C.P. Pfleeger, S.L. Pfleeger, and J.Margulies, "Security in Computing", 5th Edition, Prentice Hall, 2015.
- M. Bishop, "Computer Security: Art and Science", 2nd Edition, Addison-Wesley, 2019.
|
Course schedule*
- Week 1 (Aug 24 and 26): Overview of computer security and its fundamental design principles.
- Week 2 (Aug 31 and Sep 2): Access control and OS security.
- Week 3 (Sep 7 and 9): OS security, security policies, multilevel confidentiality and integrity models.
- Week 4 (Sep 14 and 16): Cryptography.
- Week 5 (Sep 21 and 23): Key management, network security, and user authentication.
- Week 6 (Sep 28 and 30): Control hijacking attacks. Internet security protocols.
- Week 7 (Oct 5 and 7): Internet security protocols. DOS attacks.
- Week 8 (Oct 12): Summary of the material covered so far.
(Oct 14): Midterm Exam.
- Week 9 (Oct 19 and 21): Firewalls and VPNs. Auditing and IDS.
- Week 10 (Oct 26 and 28): Wireless network secuirty. Isolation and confinement.
- Week 11 (Nov 2 and 4): Web security.
- Week 12 (Nov 9 and 11): Malware. Database security.
- Week 13 (Nov 16 and 18): Secure software analysis and secure coding. IT security management and risk assessment.
- Week 14 (Nov 23): Data privacy and anonymization.
(Nov 25): Thanksgiving Break (no class).
- Week 15 (Nov 30 and Dec 2): Legal and ethical aspects of computer security. Summary of the course material.
- Final Exam: Dec 7 (Tuesday), 1:30-3:30pm.
|
Grading*
- Attendance – 5%
- Homeworks – 15%
- Labs – 35%
- Programming project (groups of 2-3 students or individual) – 10%
- Mid-term exam – 15%
- Final exam – 20%
|
Course Policies
-
Grading: Assignments may be submitted up to 3 days late, with a penalty of 15% for each day.
No credit will be given after 3 days.
-
Academic Integrity: Cheating in exams/assignments, plagiarism in exams/assignments, collusion and falsification of academic records constitute academic dishonesty.
Students are responsible for being familiar with UNT’s Students Academic Integrity Policy: https://policy.unt.edu/policy/06-003.
Cheating/collusion/plagiarism in assignments/exams will result
in zero credit for them, possible “F” grade for the course, and possible disciplinary action.
-
Students with Disabilities: Students in need of academic accommodations for disability can refer
to the Office of Disability Access for initiating the required arrangements based on ADA terms.
Also, such the students are welcome to arrange an appointment with me to discuss their special needs
for academic accommodation (to ensure confidentiality).
|