CSCE 813 – Internet Security

Spring 2014

Monday, Wednesday 5:30 – 6:45 pm, SWGN 1A20

 

 

 

 

Professor:       Csilla Farkas

E-mail:            farkas@cse.sc.edu

URL:              http://www.cse.sc.edu/~farkas/csce813-2012/csce813.htm

Class hours:   Monday, Wednesday, 5:30 – 6:45 pm

Office hours:  Monday, Wednesday: 2:00 – 2:30 pm and 4:15 – 5:15 pm or by appointment

 

                                     

Course description:

The Internet is being used extensively from E-business to information gathering and from collaborative work to private communications.  As the usage of the Internet grows, so does the probability of malicious attacks against its users and components.  The course will introduce security threats, such as hackers, masqueraders, information spoofing, sniffing, and distribution of damaging software, the associated security risks, and prevention/detection/response techniques.  The course will cover three areas of Internet Security: 1) Internet Communication Security, 2) Web Application Vulnerabilities 3) Web Application Exploitations. 

 

Textbooks:

Required:

• Research articles for conference proceedings and journals
• R. Oppligger: Internet & Intranet Security, Artech House Print on Demand; 2 edition (June 1, 2007), 1580531660

 

 

 

Recommended for interested students:

• Dafydd Stuttard and Marcus Pinto, The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws (Paperback), Wiley; 2 edition (September 27, 2011), ISBN-10: 1118026470

 

 

Assignments:

• Homework assignments:  There will be several homework assignments during the semester, covering lecture materials and preparing for the exam.
• Tests: there will be two open-book, in class exams covering course materials.
• Student presentation: seminar style discussion a particular research paper in the area of web application exploitation.  Papers will be assigned to the students.
• Research project: Students, working independently or in pairs.  They will be required to complete a research projects during the semester.  Each group will choose a topic of interest in the field of Internet security, perform a thorough study of the chosen topic, identify limitations of current solutions and outline a feasible solution for one of the identified problems.  There will be several deliverables during the semester that are graded and will contribute to the final project grade. 

 

Grades: Will be calculated from grades received for research project (25%), presentation of related work (5%), homework assignments (25%), and tests (test1: 20, final exam: 25%).

 

Final grades are calculated from a total score of 100:  

90 < A, 87 < B+ <= 90, 80 < B <= 87, 76 < C+ <= 80, 65 < C <= 76, 60 < D+ <= 65, 50 < D <= 60

 

Tentative Schedule

 

Weeks 1 – 4: Internet Layers Security Solutions: Communication Security

Weeks 5 – 7: Web Application Security: the software aspect

Weeks 8 – 13: Web Application Security:  Standards, Technologies, and Research

Weeks 14 – 15: Student Presentation