Education

Principles of network security and management. Review of network vulnerabilities, security at the link,

network and transport layers, IPsec, SSL, and VPNs. Email security (PGP, S/MIME); Kerberos; x.509

Certificates; SNMP security; firewalls; filters and gateways; policies and implementation of firewall policies; state full firewalls; firewall appliances.

Administration and management of security of enterprise information systems and networks. Principles and tools related to intrusion detection systems, vulnerability analysis, anomaly detection, computer forensics, application logging, auditing and data management, risk management, contingency planning and incident handling, digital immune systems, and alarms and responses. Security standards, evaluation and certification process; security planning, ethical and legal issues in information; privacy, traceability and cyber-evidence.

Learn how to solve real-world problems and experience the satisfaction of seeing a project through from start to finish. Gain hands-on experience working directly with clients and observe how senior leaders make difficult decisions. Build skills in requirements gathering, scope management and stakeholder management. Strengthen project management and interpersonal skills by working in a team-based setting under the guidance of faculty. Performance will be evaluated and graded based on the overall project success and assessments from the client, faculty and student peer reviews.

The objective of this course is to provide an understanding of information security ranging from threats, vulnerabilities, and attacks to protection, detection, and response. Students will develop the ability to converse with the terminology used in information security (e.g., confidentiality, authentication, integrity, availability). The course will cover the basics of security issues in operating systems, applications, and databases. This is followed by an examination of the architecture and generalized protocol/operational aspects of information networks to identify how security attacks (e.g., denial of service) are possible. Basics of security mechanisms such as cryptography, firewalls, and secure protocols for networks will be presented. The course will include a discussion of privacy and human factors in security (e.g., usable security).

This course is one option in the CS Senior Thesis track. Under the Practicum track, students will take two 3-credit courses, CS 4970 and CS 4971. These courses would form a year-long group-based and project-based practicum class. There would be an actual customer, which could be either internal (the course instructor, other CS professors, etc.) or external (local companies, local non-profits, etc.).

​

AY 17-18: 15 Projects / 15 Teams / 91 Students

AY 18-19: 10 Projects / 15 Teams / 92 Students

AY 19-20: 18 Projects / 18 Teams / 109 Students

This course covers the principles of secure network communications and the application of network security. Topics include: attack types, attack surfaces, attack phases, network security devices (a)symmetric key encryption, cryptographic hash function, authentication/identification techniques, key distribution, and data integrity assurance. Also, currently used security mechanisms and protocols will be discussed.

Students learn the stages of a penetration test and create a sandboxed environment to safely try various penetration testing techniques. Students then follow a hands-on approach to experience how vulnerabilities can be discovered and exploited.

A first course in programming, software development, and computer science. Introduces computing fundamentals and an appreciation for computational thinking. No previous programming experience required.