CS513 Computer Security - Topic Outline

• Introduction
  • Problem scope, threats, vulnerabilities, and attacks
  • Design principles for secure systems
• Authorization / Access Control
  • Discretionary Access Control (DAC)
    • Access control policies and matrices
    • Implementation of access control lists
    • Implementation of capabilities
    • Security in JDK 1.2 (JAVA2)
  • Mandatory Access Control (MAC)
    • "Chinese Wall" policies
    • Multi-level security and the Bell-Lapdula model.
    • Domain-type enforcement
    • Clark-Wilson commercial policies
• Authentication
  • User to machine
  • Machine to machine
• Program analysis / modification for enforcing security policies
  • Security automata
  • Software-based fault isolation (SFI)
  • Proof-carrying code (PCC)
  • Types and type safety
  • Controlling information flow
• Applied Cryptography
  • Private key cryptosystems
  • Public key cryptosystems
  • Key distribution centers
  • Certification authorities
  • PEM, PGP
• Distributed Systems Security
  • Trust management and decentralized authorization
  • Firewalls
  • Intrusion Detection
  • Mobile code security