This course provides a principled introduction to techniques for defending against hostile adversaries in modern computer systems and computer networks. Topics covered in the course include Threat modeling; ACL mechanism, Access control list; Access Control; Matrix Types of ACL; network security, including cryptography and cryptographic protocols, firewalls, and network denial-of-service attacks and defenses; Crime-ware addressing issues like phishing, malware, social engineering; Auditing; Multilevel and multi-lateral security Information flow control, MAC, MLS; Security protocols. More advanced topics will additionally be covered as time permits, such as: Program Security; techniques to provide privacy in Internet applications; and protecting digital content (music, video, software) from unintended use.
1. Students are able to describe basic components / concepts of security.
2. Students are able to describe and differentiate security and privacy.
3. Students are able to critique, deconstruct recent attacks and trends in computer security.
4. Through project, student are able to design, and implement one of the topics covered in class in detail.