CSE598k/545 - Advanced Network Security
|
 |
Overview
This course provides an in depth review of the theoretical and applied topics in network security. Students satisfactorily completing the course will be able to formulate a security model for network environments, and apply cryptography, protocol design, and emergent network security technologies to meet the requirements of that model. An extension of CSE543 (a prerequisite), the course will begin by reviewing traditional network protections. The course will then consider important works in protocol design and formal analysis, advanced authentication, network configuration and management, wireless systems, intrusion detection and other topics.
A detailed list of a lecture by lecture contents, assignments, and due dates (subject to change as semester evolves) is available on the course schedule.
Grading
The course will be graded on exams, a course project, and class participation in the following proportions:
| 40% | Course Project |
| 45% | Assignments |
| 15% | Class Participation and quizzes |
Quizzes and Assignments
Quizzes will be given at the beginning of class and will cover topics from the preceding lecture and readings. It is strongly suggested that students do the reader prior class, as a good percentage of their grade will depend on them. Quizzes missed because of absences can not be made up unless arrangements are made with the instructor prior to the course meeting.
Short writing or problem assignments will be handed out periodically in class. The content and due dates of these assignments will be decided over the course of the semester. If you cannot attend a lecture, contact other students to see if any assignments have been made.
Course Project
The course project requires the student execute a limited research project in security. The chief product of the project will be a conference style paper. Project topics will be discussed in class after the introductory material is completed. Be realistic about what can be accomplished in a single semester. However, the work should reflect real thought and effort. The grade will be based on the following factors: novelty, depth, correctness, clarity of presentation, and effort.
Project teams may include groups of up to two students, though single authored works are strongly preferred. I will advise each team/individual independently as needed. The project grade will be a combination of grades received for a number of milestone artifacts and the final project write-up. Details of the milestones and content will be given in class with the other project details.
Class Participation
Course lectures will be driven the contents of assigned papers. However, students are going to be required to participate in discussions of the paper content during each lecture. Hence, the students ability to exhibit comprehension of papers is essential to a passing grade.
Lateness Policy
Assignments and project milestones are assessed a 10% per-day late penalty, up to a maximum of 4 days. Unless the problem is apocalyptic, don't give me excuses. Students with legitimate reasons who contact the professor before the deadline may apply for an extension.
Required Texts
Most of the course readings will come from seminal papers in the field. Links to these papers will be provided on the course pages as the assignments are made. In addition, the following book will be used for readings and as reference material.
- Network Security Essentials--Applications and Standards, William Stallings, Pearson Prentice Hall, Third Edition, 2007.
Ethics Statement
This course considers topics involving personal and public privacy and security. As part of this investigation we will cover technologies whose abuse may infringe on the rights of others. As an instructor, I rely on the ethical use of these technologies. Unethical use may include circumvention of existing security or privacy measurements for any purpose, or the dissemination, promotion, or exploitation of vulnerabilities of these services. Exceptions to these guidelines may occur in the process of reporting vulnerabilities through public and authoritative channels. Any activity outside the letter or spirit of these guidelines will be reported to the proper authorities and may result in dismissal from the class.
When in doubt, please contact the instructor for advice. Do not undertake any action which could be perceived as technology misuse anywhere and/or under any circumstances unless you have received explicit permission from Professor McDaniel.
CSE545