This is the applied course that complements introductory
courses like Information Assurance CS461/ECE422 and
Computer Security CS463.
In this course students work with security tools used in today's Internet
environment.
Students in the class will be graded on labs and design projects. The
specific grade breakdown is:
- 50% lab projects. 5-6 projects during the semester
- 25% design writeups. 2 short design assignments to reinforce
the different sections.
- 25% final group project. This involves designing a signficant
security architecture for a given scenario. Implementing a subportion
of the design. Writing up and presenting the design in class.
Topics taught in this class include.
- Secure Programming
- Least-privilege programming and impersonation
- Input cleanliness
- Worm anatomy
- OS security
- Windows ACLs and security policies
- Vista security additions
- SE Linux domain type enforcement policies
- Mandatory access controls in SE Linux and perhaps other OS's
- User identity
- Database Security
- Network Security
- Firewall configuration
- IPSec
- IPv6
- Access control servers
- Network intrusion detection and monitoring
- Honey pots
- Wireless security
- Network scanning
- Defensive system design
- Security architectures
- Penetration testing