ITIS 3200: Introduction to Information Security and Privacy

Information security and privacy has played an important role in our daily lives. Cyber physical systems (CPS) and critical infrastructures including smart grid, smart healthcare, and intelligent transportation systems all depend on the information and network security. In this course, we are going to present the basic knowledge in this literature and how these simple yet neat ideas can be combined to construct secure mechanisms. We will introduce security and privacy from policy, implementation, and enforcement aspects. We will introduce the building blocks such as encryption and authentication. We will also discuss the topics in network, system, software, and user security. Some state-of-the-art problems will also be introduced. A balance between theory and hands-on exercises will be maintained.


Syllabus

Week 1 (Jan 8): Introduction to security and problems that we face today    

Week 2 (Jan 13 and 15): Introduction to security and problems that we face today     Chapter 1: basic concepts     Chapter 2: access control matrix    

Homework 1: We post homework 1 in moodle2. The deadline is extended to Jan 23, 9:30am.    

Week 3 (Jan 20 and 22): Chapter 2: access control matrix     Chapter 4: access control types     Chapter 5: Bell-LaPadula model    

Week 4 (Jan 27 and 29): Chapter 5: Bell-LaPadula model     Chapter 6: Clark-Wilson model     Chapter 7: Chinese Wall and Role Based Access Control    

Homework 2: We post homework 2 in moodle2. The deadline is Feb 10th, 9:30am.    

Week 5 (Feb 3 and 5): Chapter 7: Chinese Wall and Role Based Access Control     Chapter 8: Crypto Systems (Part 1)    

Week 6 (Feb 10 and 12): Chapter 8: Crypto Systems (Part 1)     Chapter 8: DES encryption (Part 2)    

Midterm Exam: the Midterm exam will be on Feb 26, in class. We will run a review session on Feb 24th.    

Week 7 (Feb 17 and 19): Chapter 8: DES encryption (Part 2)    

Week 8 (Feb 24 and 26): Midterm review. One class is canceled because of snow.    

Week 9 (Mar 3 and 5): Spring break.    

Week 10 (Mar 10 and 12): Midterm exam.     Asymmetric encryption and hash function    

Homework 3: We post homework 3 in moodle2. The deadline is March 24th, 9:30am.    

Week 11 (Mar 17 and 19): Asymmetric encryption and hash function    

Week 12 (Mar 24 and 26): Usage of hash function and RSA    

Homework 4: We post homework 4 in moodle2. The deadline is April 2nd, 9:30am.    

Survey Paper/Project: We post requirements for Survey Paper/Project in moodle2. The deadline is now April 29th, 11:55pm.    

Week 13 (Mar 31 and April 2): Key management and frequently seen attacks    

Week 14 (April 7 and 9): Key management and frequently seen attacks     Authentication and Password Management    

Week 15 (April 14 and 16): Authentication and Password Management    

Homework 5: We post homework 5 in moodle2. The deadline is April 23rd, 9:30am.    

Week 16 (April 21 and 23): Design principles of security mechanisms     Web Security    

Bonus point: We post a bonus point question in moodle2. The deadline is April 28th, 9:30am.    

Week 17 (April 28): Review for final exam. Materials updated in Moodle2.