Introduction to Data and Application Security (CS 4389)

     Introduction to Data Security (CS 4389)

     Time and Location      :            Friday 10am-12:45pm , ECSS 2.306

Instructor:	Murat Kantarcioglu
Office Hours and Location :	ECSS 3.225 Tuesday 4-6pm

Teaching Assistant:	None
Office Hours and Location :	None

        Prerequisites:

CS/SE 4347

Grading:

Homework %20 (4 homework, each worth 5%)
Project %20 (Group project that may require programming)
Midterm %25
Final %25
Class Part. %10 (Class Participation)

        Course Topics:

Please see the following course syllabus (pdf)

Textbook:

Introduction to Computer Security by Matt Bishop Publisher: Addison-Wesley Professional (ISBN-10: 0321247442, ISBN-13: 978-0321247445

Recommended Reading:

Database and Applications Security: Integrating Information Security and Data Management by Bhavani Thuraisingham Publisher: Auerbach Publications; first edition ISBN-10: 0849322243, ISBN-13: 978-0849322242

Course Outline:

08.31.12 Fri	Overview of Information Security (slides) Introduction to Cryptography (slides) Reading: Bishop Chapter 8
09.07.12 Fri	Access control basics (slides) Reading: Bishop Chapter 2 and Chapter 3
09.14.12 Fri	Access control Models (slides) Basic access control for Hive and Hadoop (slides part 1, part 2) Reading: Bishop Chapter 3 Reading: Introduction to Hadoop Reading: Introduction to Hive
09.21.12 Fri	Access control Model Cont. (slides) Integrity Models (slides) Reading: Bishop Chapter 6 and Chapter 7
09.28.12 Fri	Authentication (slides) Design Principles (slides) Reading: Bishop Chapter 11 and Chapter 12
10.05.12 Fri	Access Control in Databases (slides)
10.12.12 Fri	Access Control for Distributed systems (slides)
10.19.12 Fri	Access Control for Distributed systems cont. !!! MIDTERM !!!
10.26.12 Fri	SQL Injection Attacks This class will be based on the following tutorial from Oracle: Oracle Sql injection attack tutorial
11.02.12 Fri	SQL Injection Attacks cont.
11.09.12 Fri	Introduction to Data Privacy (slides) Updated HIPAA De-identification Guidance (pdf)
11.16.12 Fri	Data Privacy cont (k-anonymity). (slides) l-diversity, t-closeness (slides) Introduction to Malware (slides)
11.23.12 Fri	No Class !!
11.30.12 Fri	Introduction to Intrusion Detection (slides) Cyber Security Trends (pdf)
12.07.12 Fri	Introduction to Economics of Cyber Security (slides) Project presentations.
12.14.12 Fri	FINAL EXAM in Class at 10am.