This is the applied course that complements introductory courses like Information Assurance CS461/ECE422 and Computer Security CS463. In this course students work with security tools used in today's Internet environment.

Students in the class will be graded on labs and design projects. The specific grade breakdown is:

• 50% lab projects. 5-6 projects during the semester
• 25% design writeups. 2 short design assignments to reinforce the different sections.
• 25% final group project. This involves designing a signficant security architecture for a given scenario. Implementing a subportion of the design. Writing up and presenting the design in class.

Topics taught in this class include.

• Secure Programming
• Least-privilege programming and impersonation
• Input cleanliness
• Worm anatomy
• OS security
• Windows ACLs and security policies
• Vista security additions
• SE Linux domain type enforcement policies
• Mandatory access controls in SE Linux and perhaps other OS's
• User identity
• Database Security
• Network Security
• Firewall configuration
• IPSec
• IPv6
• Access control servers
• Network intrusion detection and monitoring
• Honey pots
• Wireless security
• Network scanning
• Defensive system design
• Security architectures
• Penetration testing