Data and Applications Security (CS 6348) 
 
     Time and Location :  F 10am-12:45pm@SLC-2304

     
       Instructor                            :   Murat Kantarcioglu
       Office Hours & Location   :   Friday 9am-10am, Friday: 3pm-4pm@ECSS 3.225 
 
       Teaching Assistant             :   TBD.
        Office Hours & Location  :   TBD.            


  Prerequisites                   :   CS 5343
                       

Grading:

       

  •   Homework   % 20 (4 homework, each worth 5%)
  •   Project          % 40 (Group project (up to 3 people) that requires programming)
  •   Midterm       % 20
  •   Final             % 20 (All topics covered included)

 

 
   Course Topics: (tentative)

     The course will teach principles, technologies, tools and trends for data 
    and applications security. Please see below for details.

         
           Textbook:    
       

       None.

 Course Outline:

01.17.20
  • Access control basics
  • Reading:  Fred B. Schneider’s book chapter  (pdf)

01.24.20
  • Access Control Foundations
  • Reading: Fred B. Schneider’s book chapter (pdf)
  • Reading:  HRU paper (pdf)

01.31.20
  • Access control models

02.07.20
  •  Integrity/Hybrid Models

02.14.20
  • Basic Cryptography Overview
  • Authentication
  • Reading:  Fred B. Schneider’s book chapter (pdf)
  • Homework 1 is available on elearning.
  • Project Description is available on elearning

02.21.20
  • Database Security
  • Encrypted Data storage in Databases
  • Reading:  Please read the following overview paper (pdf)
  • Reading:  Intel Sgx Overview (link)  
  • Reading:  Please read the following tutorial from Microsoft Research (pdf)

02.28.20
  • Database Security Cont.

03.06.20
  • SQL and Code injection attacks
  • Reading: Please see the tutorial from Oracle.
  • Homework 2 is available on elearning.

03.13.20

03.20.20
  • Spring Break !!!
03.27.20
  • Spring Break !!!

04.03.20
  • Access control in distributed systems
  • Reading:  Please read the following overview paper
  • Homework 3 is available on elearning.

04.10.20
  • Introduction to Data Privacy
  • Reading: K-annonymity (pdf), l-diversity (pdf), differential-privacy (pdf),
  • privacy-preserving distributed data mining (pdf)
  • Online MidTerm Exam will happen during the last 1 hour 45 min of the class

04.17.20
  • Introduction to Data Privacy cont.
  • Homework 4 is available on elearning

04.24.20
  • Introduction to Data Privacy cont.


05.08.20
Final  Exam
  • Online Final EXAM !!! 10:00AM - 12:45pm