Lecture: 3 hours
Discussion: 1 hour
Prerequisite: Courses ECS 150, ECS 152A
Grading: Letter; homework (30%), term project (30%), midterm (20%), final (20%)
Catalog Description:
Principles, mechanisms and implementation of computer security and data
protection. Policy, encryption and authentication, access control and integrity
models and mechanisms; network security; secure systems; programming and
vulnerabilities analysis. Study of an existing operating system. No credit
for students who have completed course 155.
Expanded Course Description:
Textbook:
M. Bishop, Computer Security: Art and Science, Addison-Wesley Professional, 2002.
Computer Usage:
Students program their programming assignments and project using C and UNIX
programs. Programs are developed on workstations running UNIX operating
systems. Student use editors such as vi and emacs, and are exposed to debuggers
and other standard UNIX tools.
Laboratory Projects:
The project deals with building a tool to analyze and/or improve the security
of a computer or installation running the UNIX operating system, or using
the Internet. The student will select the goal (the purpose of the software
to be developed), determine how to measure success or failure, design the
software, implement it under the UNIX operating system, and then analyze
its effectiveness to see if the goal of the project was met.
Engineering Design Statement:
The principal project consists of the design and implementation of a tool
to enhance the security of a computer system (or systems). The students
develop their own goals, and (within guidelines given by the instructor)
develop functional specifications. They then design, implement, document,
and test (both experimentally and analytically) their software. Grading
is based on all phases, including the selection of an attainable goal, the
development of functional specifications, the design and implementation
of the software, and its evaluation. Examination questions will require
mastery of the techniques and principles used in all phases of the project.
ABET Category Content:
Engineering Science: 2 units
Engineering Design: 2 units
Goals:
Students will:
Student Outcomes:
Instructor: M. Bishop, H. Chen
Prepared By: M. Bishop (February 2005)
Overlap Statement:
The content of this course overlaps some with course 155 (Computer Security for Non-Majors). This course is designed for majors and is more theoretical than 155 and has more technical depth.
5/06