Overview
|
This course covers emerging problems in the security of computer-based critical infrastructure with emphasis on problems that extend beyond traditional "cyber security". There will be a review of current literature on distributed state estimation attacks, network resilience models, SCADA and control system security, and optimal security measures against rational adversaries. Recent attacks against critical infrastructure will also be studied. Students completing this course will be able to identify current and future problems in critical infrastructure, secure control systems against various adversarial models, and evaluate the security of very large distributed control systems.
A detailed list of a lecture by lecture contents, assignments, and due dates (subject to change as semester evolves) is available on the course schedule.
Grading
The course will be graded on exams, a course project, and class participation in the following proportions:
| 50% | Course Projects |
| 40% | Presentations |
| 10% | Class Participation |
Class Participation
Course lectures will be driven the contents of assigned papers. However, students are going to be required to participate in discussions of the paper content during each lecture. Hence, the students ability to exhibit comprehension of papers is essential to a passing grade.
Lateness Policy
Assignments are assessed a 10% per-day late penalty, up to a maximum of 4 days. Unless the problem is apocalyptic, don't give me excuses. Students with legitimate reasons who contact the professor before the deadline may apply for an extension.
Required Texts
Most of the course readings will come from seminal papers in the field. Links to these papers will be provided on the course pages as the assignments are made.
Ethics Statement
This course considers topics involving personal and public privacy and security. As part of this investigation we will cover technologies whose abuse may infringe on the rights of others. As an instructor, I rely on the ethical use of these technologies. Unethical use may include circumvention of existing security or privacy measurements for any purpose, or the dissemination, promotion, or exploitation of vulnerabilities of these services. Exceptions to these guidelines may occur in the process of reporting vulnerabilities through public and authoritative channels. Any activity outside the letter or spirit of these guidelines will be reported to the proper authorities and may result in dismissal from the class.
Any instance of sharing or plagiarism, copying, cheating on tests, or other disallowed behavior will constitute a breach of ethics and will result in dismissal from the class with a failing grade.
Students are responsible for reporting any violation of these rules by other students, and failure to constitutes a ethical violation that carries with it similar penalties.
When in doubt, please contact the course professor for advice. Do not undertake any action which could be perceived as technology misuse anywhere and/or under any circumstances unless you have received explicit permission from Professor McDaniel.
Course Updates
[03/30/2011] I have put up a preliminary website for the 598e course. More details about the course content will be provided over the coming months.