Course Websites

CS 461 - Computer Security I

Last offered Fall 2022

Official Description

Fundamental principles of computer and communications security and information assurance: ethics, privacy, notions of threat, vulnerabilities, and risk in systems, information warfare, malicious software, data secrecy and integrity issues, network security, trusted computing, mandatory and discretionary access controls, certification and accreditation of systems against security standards. Security mechanisms: authentication, auditing, intrusion detection, access control, cryptography, security protocols, key distribution. Course Information: Same as ECE 422. 4 undergraduate hours. 4 graduate hours. Prerequisite: One of CS 241, CS 341, or ECE 391.

Related Faculty

Text(s)

Computer Security: Principles and Practice, 2nd. Ed., by William Stalling and Lawrence Brown

Learning Goals

Assess and address Security and Privacy (S&P) issues for policy and humans. That is, characterize and classify the threats based on human conformance to policy and evaluate the effectiveness of a range of countermeaures. (1)
Provide S&P risk analysis for basic scenarios based on core principles, specifically the Confidentiality, Integrity, Availability (CIA) requirements. (1)
Apply cryptographic hashes, pseudorandom generators, symmetric, and asymmetric cryptography with appropriate tradeoffs. (1,2,3)
Evaluate options for authentication based on secrets, tokens, and biometrics. (1)
Understand network, application, and systems security. (1,2)
Formulate access control models for basic situations. (1,2)
Write and mitigate malicious code and characterize basic means of its propagation. (1,2,3)
Assess the threat of basic Denial of Service (DoS) attacks. (1)
Provide network securty protections using firewalls and IDSs. (1,2)
Assess threats based on physical layer. (1)
Apply legal and ethical rules for S&P. (4)

Topic List

Human issues in S&P
S&P risk assessment
History of cryptography
Symmetric key encryption
Asymmetric key encryption
Systems security
Database security
Application security
Web application security
Network security
Digital signatures
Cryptology
Authentication
Authorization
Malicious code
Threat Modeling
DoS
Intrusion Detection & Firewalls
Legal and Ethical Isssues in S&P
Trusted Operating systems
Evaluation and Auditing
Physical layer security threats

Required, Elective, or Selected Elective

Selected Elective.

TitleSectionCRNTypeHoursTimesDaysLocationInstructor
Computer Security IADA69008DIS01200 - 1250 W  1304 Siebel Center for Comp Sci  Adam Bates
Ling Ren
Computer Security IADB69009DIS01300 - 1350 W  1304 Siebel Center for Comp Sci  Adam Bates
Ling Ren
Computer Security IADC69010DIS01400 - 1450 W  1131 Siebel Center for Comp Sci  Adam Bates
Ling Ren
Computer Security IADD69013DIS01500 - 1550 W  106B3 Engineering Hall  Adam Bates
Ling Ren
Computer Security IADE66966DIS01600 - 1650 W  1304 Siebel Center for Comp Sci  Adam Bates
Ling Ren
Computer Security IADH66969DIS01000 - 1050 W  1304 Siebel Center for Comp Sci  Adam Bates
Ling Ren
Computer Security IAL449547LEC41230 - 1345 T R  1320 Digital Computer Laboratory  Adam Bates
Ling Ren
Computer Security IALG72159LEC41230 - 1345 T R  1320 Digital Computer Laboratory  Adam Bates
Ling Ren
Computer Security ICSP50236PKG4 -    
Computer Security ICSP50236PKG4 -