CPSC 6128 - Network Security

Instructor(s): Dr. Lydia Ray

Office: CCT429                                                          Office phone: (706) 565-3615
Department phone: (706) 568-2410                            Department FAX: (706) 565-3529
Office Hours: Mon - Fri 9.00 – 11.30 AM
e-mail address: ray_lydia@columbusstate.edu
homepage: http://csc.columbusstate.edu/ray

 

 

Catalog Description of Course: (Prerequisite CPSC 6126 Information Systems Assurance or equivalent.) This course examines the fundamentals of security issues arising from computer networks.  Topics include threats and vulnerabilities for networked computers, different types of attacks, cryptographic solutions for secure data transmission in a public network, application security (e-commerce and email), incident and disaster response.

 

Required Textbooks:  

1. Cryptography and Network Security, William Stallings, 5^th edition, ISBN : 9780132642835

 

Software and manuals are found in the lab and on the Internet.

 

Course Objectives

1.       Students will have an understanding of common attacks on computers in various networked environments.

2.       Students will learn methods to detect and remediate such attacks.

3.       Students will be able to identify threats and vulnerabilities to information systems.

4.       Students will know the techniques of securing networked computers.

5.       Students will be able to use network security tools.

 

Major Topics

1.      Public and symmetric key cryptography

2.      Key management

3.      Authentication, hash and MAC algorithm

4.      Network security application

5.      Protecting Advanced Communications (incidence response and disaster recovery)

 

Instructional Methods and Techniques

1. The class will be taught online. Learning sessions will usually be conducted via lecture notes posted in webCT. See http://www.columbusstate.edu/cs/Academics/Online/OnlineInfo.asp for information on taking an online course.
2. Students will be expected to participate in asynchronous threaded discussions.
3. All students must have access to networked computers for doing assignments.
4. Students will have an opportunity to use a variety of security tools to reinforce their learning of the concepts.

 

How to Access the Course

This course is being offered through WebCT Vista. You can access WebCT Vista at: http://webct.colstate.edu/ 

At this page, select the "Log on to" WebCT Vista link to activate the WebCT Vista logon dialog box, which will ask for your WebCT Vista username and password. Your Vista WebCT username and password are:

Username: lastname_firstname
Password: XXXX

Default password is your birthday in the format of DDMMYY.

If you try the above and WebCT Vista will not let you in, please use the "Comments/Problems" link on the WebCT Vista home page to request help. If you are still having problems gaining access a day or so after the class begins, please e-mail me immediately.

Once you've entered WebCT Vista, you will see a list of courses you have access to. The CPSC 6128 course is listed as "Network Security." Next to this, you should see my name as the instructor. You may also see new discussion postings, new calendar postings, and new mail messages. Clicking on the name of the course will take you to the course's home page. If you don't see the "Network Security" course in the list, please e-mail me immediately.

Once you have clicked on the course's name and accessed the particular course itself, you will find a home page with links to other sections and tools, and a menu on the left-hand side. Feel free to explore the areas in the course.

 

How This Course Will Work

This course will consist of readings, case projects and labs, and three exams. Occasionally, you will be given open-ended questions for threaded discussion. On a weekly basis, you will need to:

1. review the week's lesson;
2. complete the readings from the textbooks;
3. submit assignments;
4. actively participate in threaded discussions (if any);

In addition to the weekly requirements, you will need to decide on and complete a final project.

Online Discussions
You are encouraged to communicate with your friends through threaded discussions. I may also create threaded discussions to discuss about problems you face during this course.

I will read every response and every comment, but I will not necessarily respond to every response or to every comment. I will, however, interject comments where necessary for clarification.

There is no credit for participating in a discussion.

 

Discussion Etiquette

CSU is committed to open, frank, and insightful dialogue in all of its courses. Diversity has many manifestations, including diversity of thought, opinion, and values. Students are encouraged to be respectful of that diversity and to refrain from inappropriate commentary. Should such inappropriate comments occur, I will intervene as I monitor the dialogue in the discussions. I will request that inappropriate content be removed from the discussion and will recommend university disciplinary action if deemed appropriate. Students as well as faculty should be guided by common sense and basic etiquette. The following are good guidelines to follow:

• Never post, transmit, promote, or distribute content that is known to be illegal.
• Never post harassing, threatening, or embarrassing comments.
• If you disagree with someone, respond to the subject, not the person.

Never post content that is harmful, abusive; racially, ethnically, or religiously offensive; vulgar; sexually explicit; or otherwise potentially offensive.

 

Student Responsibilities

As a student in this course, you are responsible to:

• manage your time and maintain the discipline required to meet the course requirements,
• complete all readings,
• complete all assignments,
• actively participate in threaded discussions,
• read any e-mail sent by the instructor and respond accordingly.

“I didn’t know” is not an acceptable excuse for failing to meet the course requirements. If you fail to meet your responsibilities, you do so at your own risk.

 

Instructor Responsibilities

As your instructor in this course, I am responsible to:

• post weekly lessons outlining the assignments for the week,
• post discussion questions,
• read all responses to discussion questions and comments to responses,
• actively participate in weekly discussions when necessary,
• decide on and coordinate a final project with you, 
• grade discussion questions, comments, assignments, and the final project, and post scores within one week of the end of the week in which they are submitted, and
• read any e-mail sent by the you and respond accordingly within 48 hours.

Although I will read every posted discussion question and response, I will not necessarily respond to every post. 

 

Special Notes:

·         I welcome and appreciate feedback (criticism, suggestion, opinion) on every assignment questions, lecture notes and examinations that I give throughout the course.

 

Student Web Server Space

There may be times when you will want to use an actual Web server in response to discussion questions or for projects. All currently enrolled CSU students (including online students) can request free Web server space on the CSU student Web server.

Simply go to http://studentwebs.columbusstate.edu and click on the "Free Web Pages" icon. Then click on the link to request the account. Under normal circumstances, the account and space will be created in a matter of seconds.

 

Online Lab Assignments

The lab assignments will be of two types. Some assignments will require the use of your own computer. If you are using a computer at work, make sure that you have permission to use the software for the assignment. The second type of assignment will require you connecting to the Security and Assurance of Information Lab (SAIL Lab) through a VPN connection. You will receive instructions and necessary software for this type of assignments in proper time.

 

Assignments for Course

• Readings from the textbooks.
• Hands-on type projects and case study.
• Readings from outside sources such as documents found on the Internet.
• Several lab homework assignments with security tools.

Course Evaluation (tentative):

• Homework Assignments

       Includes projects and labs                          30%

• One midterm test                                                   30%
• 1 Final paper/project                                               40%

Grades may be determined according to this scale:

A 90% - 100%	B 80% - 89%
C 70% - 79%	D 60% - 69%

 

General Policies

You are responsible for all class work missed, regardless of the reason for the absence(s). Late assignments will not be accepted. No makeup exams or quizzes will be given, so please make sure you are present for all exams/quizzes. Refer to the CSU Catalog (http://aa.colstate.edu/advising/a.htm#Absence Policy) for more information on class attendance and withdrawal.

Academic dishonesty Academic dishonesty includes, but is not limited to, activities such as cheating and plagiarism (http://aa.colstate.edu/advising/a.htm#Academic Dishonesty/Academic Misconduct). It is a basis for disciplinary action. Any work turned in for individual credit must be entirely the work of the student submitting the work. All work must be your own. [For group projects, the work must be done only by members of the group.] You may share ideas but submitting identical assignments (for example) will be considered cheating. You may discuss the material in the course and help one another with debugging; however, any work you hand in for a grade must be your own.  A simple way to avoid inadvertent plagiarism is to talk about the assignments, but don't read each other's work or write solutions together unless otherwise directed by your instructor. For your own protection, keep scratch paper and old versions of assignments to establish ownership, until after the assignment has been graded and returned to you. If you have any questions about this, please see your instructor immediately. For assignments, access to notes, the course textbooks, books and other publications is allowed. All work that is not your own, MUST be properly cited. This includes any material found on the Internet. Stealing or giving or receiving any code, diagrams, drawings, text or designs from another person (CSU or non-CSU, including the Internet) is not allowed. Having access to another person’s work on the computer system or giving access to your work to another person is not allowed. It is your responsibility to prevent others from having unauthorized access to your work. No cheating in any form will be tolerated. Penalties for academic dishonesty may include a zero grade on the assignment or exam/quiz, a failing grade for the course, suspension from the Computer Science program, and dismissal from the program. All instances of cheating will be documented in writing with a copy placed in the Department’s files. Students will be expected to discuss the academic misconduct with the faculty member and the chairperson. For more details see the Faculty Handbook: http://aa.colstate.edu/faculty/FacHandbook0203/sec100.htm#109.14 and the Student Handbook: http://sa.colstate.edu/handbook/handbook2003.pdf You are expected to review the TSYS Department of Computer Science’s Academic Dishonesty Policy -  (http://csc.columbusstate.edu/policy/Academic-Dishonesty-Policy.html)

 

Since this course includes the use of computer security tools and techniques, you are required to sign a Computer Security Agreement form at http://csc.columbusstate.edu/summers/NOTES/6136/Computer-Security-Class-Student-Agreement.htm

 

Getting help
You can always contact me during my posted office hours, by e-mail, or by appointment.

CSU ADA statement
If you have a documented disability as described by the Rehabilitation Act of 1973 (P.L. 933-112 Section 504) and Americans with Disabilities Act (ADA) and would like to request academic and/or physical accommodations please contact Joy Norman at the Office of Disability Services in the Center for Academic Support and Student Retention, Tucker Hall (706) 568-2330, as soon as possible. Course requirements will not be waived but reasonable accommodations may be provided as appropriate.