CS165 - Computer Security
Spring 2001

Course Abstract

Lecture, three hours; laboratory, three hours. Prerequisite(s): CS 141, CS 163. Examines the ways in which information systems are vulnerable to security breaches. Topics include attacks; security labels, lattices, and policies; safeguards and countermeasures; intrusion detection; authorization and encryption techniques; networks; digital signatures; certificates and passwords privacy issues, firewalls, and spoofing. Trojan hourses and computer viruses; CERT Coordination Center and electronic commerce.

Prerequisite(s):

CS141
CS163

Syllabus and Course information

Topic list for Spring 2001 is here .

Course Textbook Description

Check out the course information including final exam times by clicking here and entering Computer Science 165.(this link not operational yet)

A link to the TA's web page can be found by clicking here.(this link not operational yet)

Useful Links

Security World Wide Web Sites
Network security library web site
Issues hiring hackers, the fine line between cult and criminal
Internet Security Systems Inc. makers of RealSecure
Nessus project Web site
Source for nmap port scanning tool
RSA Security Inc.
Tripwire Inc.
F-Secure Corp.
Lance Spitzner's white papers on securing systems geared towards firewalls
SPAN ports information
To Trap A Thief (honeypots article)
Honeypot Project Security Papers
FAQ: Firewall Forensics (What Am I seeing?)
Design and Implementation of a Security System(pdf)
What is SSL
Fast...& Secure
Cryptoswift eCommerce Accelerator
Intel Netstructure devices for SSL acceleration
Security Tools Overview
NSA Takes Open Source Route

The Enevitability of Failure: The Flawed Assumption of Security in Modern Computing Environments
Java Security: Present and Future

Secure Java Class Loading

Newsgroups

alt.security

comp.security.announce

comp.security.misc

comp.security.unix

comp.risks

Take the Data and Network Security Subway

Click here to hop on the subway.

Course Outline, Schedule, and Readings
CS165 Computer Security Spring 2001

*Week*	*Monday*	*Wednesday*	*Friday*
April 2-6	Course Overview, Syllabus and Introduction (Adobe PDF 4 up) Readings: Pfleeger Chapter 1 Saltzer and Schroder paper	--	--
April 9-13	Multics History and Computer Security Principles (Adobe PDF 4 up) Readings: Saltzer and Schroder paper Pfleeger Chapter 6	--	Executable Content Problem Malicious Code (1) (Adobe PDF 4 up) --
April 16-20	Readings: Pfleeger Chapter 5 Malicious Software Tool Survey Assignment	Malicious Code(2) Java Decaf (Adobe PDF 4 up)	Tool Survey proposal due
April 23-27	Readings: Pfleeger Chapter 7 Design of Trusted Operating Systems(1): Part I: Security Models (Adobe PDF 4 up)	Design of Trusted Operating Systems(2) (Adobe PDF 4 up)	No CLASS
April 30-May 4	Tool Survey Project Due Design of Trusted Operating Systems(3) (Adobe PDF 4 up) Term Project Specification	Readings: Pfleeger Chapter 2 Cryptography and Data Security(1) (Adobe PDF 4 up)	Cryptography and Data Security(2) (Adobe PDF 4 up)
May 7 - May 11	Cryptography and Data Security(3) (Adobe PDF 4 up)	Readings: Pfleeger Chapter 3 Cryptography and Data Security(4) (Adobe PDF 4 up) Term project proposal due	Cryptography and Data Security(5)
May 14 - May 18	Cryptography and Data Security(6) (Adobe PDF 4 up)	--	Key Management and PGP (Adobe PDF 4 up)
May 21 - May 25	PGP, Hints on your presentation, Kerberos Introduction (Adobe PDF 4 up)	Kerberos and SSH (Adobe PDF 4 up)	Midterm Exam
May 28 - Jun 1	Holiday -- No class	Intrusion Detection (Adobe PDF 4 up) Student Presentations Dallas Ellison Barabasz-Lynn	Student Presentations Savag Demirjian John Weston and E. Mills
Jun 4 - Jun 8	Class Cancelled	Student Presentations Sandy Pan and Mike Dekoker Jason Byrne and Paul Devera Ashish Kakkad	Student Presentations John Tyner and Jonathan Ocab Stephen Pope Vincent Hernandez, Joseph , and Eric Will

CS165 - Computer Security Spring 2001