Information and System Security (3-0-0)

Course Details:

  1. Overview of Computer Security - Confidentiality, Integrity, Availability, Policy and Mechanism, Assumptions and Trust, Assurance, Access Control Matrix
  2. Security Policies, Confidentiality Policies - Bell-LaPadula Model, Integrity Policies - Biba Integrity Model, Lipner's Integrity Matrix Model, Clark-Wilson Integrity Model, Chinese Wall Model, Role Based Access Control Model
  3. Recent Advances in RBAC variants
  4. Authentication - Passwords, Challenge-Response, Kerberos
  5. Secure System Design Principles
  6. Introduction to Assurance, Building Systems with Assurance, Evaluating Systems
  7. Malicious Logic, Vulnerability Analysis, Auditing, Intrusion Detection
  8. Database Security


Suggested Text Books
Matt Bishop, Computer Security (Pearson Education)