Spring 2009 EE406 Introduction to Computer and Network Security, 3 credits

 

Course Description: We will discuss basic computer and network security issues in this course. We will first review basic networking and cryptography concepts, and then study algorithms and protocols used in computer and network security. We will further discuss practical security mechanisms, including Web security, TCP/IP security, firewalls, IPSec, Virtual Private Networks, intrusion detection systems, etc.

Class Time and Location: 

MW 3:30pm-4:45pm at Holmes Hall 242. 

(Note that Mar. 26^th to 30^th is Spring Break.)

Instructor: Yingfei Dong

Contacts: MY_FIRSTNAME@hawaii.edu or 956-3448 by phone. Your comments are welcome.

Office Hours: Holmes Hall 442, one hour before the class, or by email appointment.

Textbook: (required) Computer Security: Principles and Practice, by William Stallings and Lawrie Brown, ISBN-10: 0136004245 or ISBN-13: 978-0136004240

Handouts/Notes and Supplemental Text: will be available on-line or distributed in classes.

Supplemental Text

• Network Security Essentials (3rd edition). William Stallings. Prentice Hall. 2007. (ISBN: 0-13-238033-1)
• Cryptography and Network Security, (4th Edition), by William Stallings, Prentice-Hall 2003. ISBN 0131873164
• Network Security with OpenSSL [ILLUSTRATED] (Paperback), by John Viega, Matt Messier, Pravir Chandra, O'Reilly Media, ISBN: 059600270X.
• OpenSSL Org., http://www.openssl.org/,
• Alfred J. Menezes, Paul C. van Oorschot  and  Scott A. Vanstone, , Handbook of Applied Cryptography, CRC Press, ISBN: 0-8493-8523-7, October 1996, http://www.cacr.math.uwaterloo.ca/hac/

Announcements

            Please check the class web site frequently at

http://www.ee.hawaii.edu/~dong/EE406/Announcements.htm

Main Topics

• Basic Computer Security Technology and Principles
• Basics of cryptography: symmetric and public-key encryption, certificates, cryptographic hash functions, pseudo-random number generators
• Authentication and key establishment
• Access Control
• Intrusion Detection
• Malicious software
• Denial of service, Internet worms, viruses, attacks on routing infrastructure
• Firewalls and intrusion detection systems
• Other Advanced security topics

 

Grading:

Homework, Projects, Quizzes	50%
midterm exam	20%
final exam	30%

 

Assignments Guidelines:

• Unless otherwise specified, all assignments and projects are individual work.
• Assignments and Late Penalty: Assignments and projects will be posted at the class web site. Assignments & projects are due before the beginning of the class on the due day.  See Topics and Notes for the due dates. Points will be deducted from late assignments: 50% for the first 24 hours after the due time, 100% after that. No extension will be granted except for documented emergency.
• Starting to work on the assignments as early as possible.
• Identification page: All assignments must have your name, and course number at the top of the first page.
• Please staple all the pages together at the top-left corner.
• Please arrange the solutions following the sequence of the questions.
• Word processing:  It is required that you type your reports. Use a word processor and appropriate typesetting and drawing tools to do the assignments. Spell-checking the whole document before printing it. You may loose points due to spelling or grammatical errors.

Policies:  

• Make-up exams will generally not be given. Missing a quiz or exam will result in a score of zero unless extreme extenuating circumstances are discussed with the professor ahead of time or verifiable proof is presented
• Attendance Policy: You are expected to attend all classes. If you miss a class, it is your responsibility to get hold of whatever may have been discussed in the class.
• If you think you have lost some points due to grading errors, make sure you approach the instructor within a week after the assignment, project, or test is returned to you.  
• To get the most out of this class, you need to read the textbooks and spend time using computers regularly.  Be prepared for a class by preview the material to be covered in that class and participate in discussions and problem-solving exercises, if applicable, in the class.
• Academic dishonesty will not be tolerated in any form. The integrity of our program depends on the integrity of the work done by each student. The University expects a student to maintain a high standard of individual honor in his/her scholastic work. Please refer to UH Student Conduct Code at http://www.catalog.hawaii.edu/reference/appendix02.htm for Academic Honesty, Cheating, Plagiarism, Disciplinary Action, etc.