CSCE 5550 - Introduction to Computer Security - Fall 2021
Class hours
Lectures: Tuesdays and Thursdays, 2:30-3:50pm, NTDP B.185
Instructor: Kirill Morozov (Department of Computer Science and Engineering)
Office hours*: Tuesdays and Thursdays 4:00-5:00pm in NTDP F.283
Appointments at other timeslots are possible pending availability.
E-mail: Kirill [dot] Morozov [at] unt.edu
Teaching assistants: Kritagya Upadhyay and Michael Nutt
Office hours*: TBA
E-mail: TBA
The labs will use VMs that are to be run in Oracle VirtualBox https://www.virtualbox.org/.
|
Course Description
The aim of this course is to introduce the concepts and principles of computer security and privacy. It covers both theoretical and practical aspects of computer security, including security models and assurance, OS and network security, common security threats and countermeasures against them, cryptography, risk analysis and data privacy.
|
Course webpage
All lectures, assignments, and other materials will be posted on Canvas.
Submissions of the assignments must be made via Canvas as well.
Note: For all communications with instructors, the subject of your e-mails must start with "CSCE 5550".
|
Reference books:
- [Recommended] C.P. Pfleeger, S.L. Pfleeger, and J.Margulies, "Security in Computing", 5th Edition, Prentice Hall, 2015.
- [Recommended] M. Bishop, "Computer Security: Art and Science", 2nd Edition, Addison-Wesley, 2019.
- [Supplementary] W. Stallings and L. Brown, “Computer Security: Principles and Practice”, 4th Edition, Pearson, 2018.
|
Course schedule*
- Week 1 (Aug 30 and Sep 1): Overview of computer security and its fundamental design principles.
- Week 2 (Sep 6 and Sep 8): OSI layers and their security.
- Week 3 (Sep 13 and 15): Routing security, DOS attacks, firewalls and VPNs.
- Week 4 (Sep 20 and 22): Intrusion detection, access control and OS security.
- Week 5 (Sep 27 and 29): OS security, security policies and multilevel security models.
- Week 6 (Oct 4 and 6): Multilevel security models, control hijacking attacks.
- Week 7 (Oct 11 and 13): Countermeasures against control hijacking, malware defenses.
- Week 8 (Oct 18): Summary of the material covered so far.
(Oct 20): Midterm Exam.
- Week 9 (Oct 25 and 27): Cryptography and key management.
- Week 10 (Nov 1 and 3): User identification, web security.
- Week 11 (Nov 8 and 10): Web security, database security.
- Week 12 (Nov 15 and 17): Secure coding and software analysis, virtualization security.
- Week 13 (Nov 22): Vulnerability analysis.
(Nov 24): Thanksgiving Break (no class).
- Week 14 (Nov 29 and Dec 1): Data privacy and anonymization, IT security management.
- Week 15 (Dec 6 and 8): Legal aspects and ethics. Summary of the course material.
- Final Exam: Dec 13 (Tuesday), 1:30-3:30pm.
|
Grading*
- Homeworks – 15%
- Labs – 25%
- Programming project – 15%
- Mid-term exam – 20%
- Final exam – 25%
|
Course Policies
-
Grading: Assignments may be submitted up to 3 days late, with a penalty of 15% for each day.
No credit will be given after 3 days.
-
Academic Integrity: Cheating in exams/assignments, plagiarism in exams/assignments, collusion and falsification of academic records constitute academic dishonesty.
Students are responsible for being familiar with UNT’s Students Academic Integrity Policy: https://policy.unt.edu/policy/06-003.
Cheating/collusion/plagiarism in assignments/exams will result
in zero credit for them, possible “F” grade for the course, and possible disciplinary action.
-
Students with Disabilities: Students in need of academic accommodations for disability can refer
to the Office of Disability Access for initiating the required arrangements based on ADA terms.
Also, such the students are welcome to arrange an appointment with me to discuss their special needs for academic accommodation (to ensure confidentiality).
|