CS 291 Network Security

Fall 2005

[Overview] [Schedule & Lecture Note] [Assignment] [Policy] [Resources]

Course Information

Course at-a-glance: [ps][pdf]

Time: Tuesday/Thursday 11am-12:15pm, Room: 306 Featheringill Hall  

Instructor: Yuan Xue (), Office: 383 Jacobs Hall, Phone: 615-322-2926

Office hours: Tuesday/Thursday 3:30pm-5pm; or by appointment.

TA: Taojun Wu (), Office: 385 Jacobs Hall, Phone: 615-322-3233

Office hours: Monday/Wednesday 3pm-4pm; or by appointment.

Web: http://vanets.vuse.vanderbilt.edu/~xue/cs291fall05/index.html

Course description:

This course provides an introduction to the principles and practice of network security. Topics include: security threats in networks, principles for providing security mechanisms (cryptography, key management, message authentication), practice of securing systems (PGP, IPsec, SSL), and recent research topics in security.

Credit: 3 credit hours

Prerequisite:

The course requires a background in computer networks (e.g. cs283 or equivalent) and programming experience (e.g., cs201 or cs270 or equivalent).

Text book:

[WS] Cryptography and Network Security: Principles and Practice (2nd Edition) by William Stallings

Reference books:

[KPS] Network Security: Private Communication in a Public World (2nd Edition), by Charlie Kaufman, Radia Perlman, Mike Speciner

[CSP] Security in Computing (3rd Edition), by Charles P. Pfleeger, Shari Lawrence Pfleeger

[MB] Computer Security: Art and Science, by Matthew A. Bishop

Grading policy (details):

bullet Class participation: 10%
bullet Homework: 30%
bullet Midterm: 25%
bullet

Project: 35%

Schedule 

Date Topic Lecture Note/Handout

(Please refer to the course website of Fall 2006)

Reading/Assignment
08/25/05 Course Overview   [MB] Section 1.1, Section 1.2
[CSP] Section 1.1 - Section 1.3
08/30/05 Computer Network Review (Part I)     
09/01/05 Computer Network Review (Part II)     
09/06/05 Security Mechanisms Overview   [WS] Chapter 1
09/08/05 Secret-key Cryptography (Classical Cipher -- Part I)   [WS] Section 2.1 - 2.2
09/13/05 Secret-key Cryptography (Classical Cipher -- Part II) [WS] Section 2.2 - 2.3
09/15/05 Secret-key Cryptography (Block Cipher Principle -- Part I)   [WS] Section 3.2, 3.6
09/20/05 Secret-key Cryptography (Block Cipher Principle -- Part II)
09/22/05 Secret-key Cryptography (DES)   [WS] Section 3.3 - 3.4
09/27/05 Secret-key Cryptography (Block Cipher Mode)   HW 1 release
[WS] Section 3.7
[CSP] Section 4.2
09/29/05 Secret Key Management   [WS] Section 7.1 - 7.3
[CSP] Section 9.7, 9.8, 11.4
10/04/05 Public-key Cryptography (Overview)   Project release
[WS] Section 9.1
10/06/05 Public-key Cryptography (RSA)   [WS] Section 9.2
[CSP] Section 6.2-6.3
10/11/05 Public Key Management   [WS] Section 10.1 - 10.2
10/13/05 Message Authentication (MAC)  

HW 1 due
HW2 release
[WS] Section 11.1 - 11.3

10/18/05 Hash Functions   [WS] Chapter 12
10/25/05 October Break    
10/27/05 Digital Signature   [WS] Section 13.1, 13.3
10/28/05 Cryptography Review  
11/01/05 Authentication Protocol (I)   [WS] Section 13.2
11/03/05 Authentication System (II)  

[WS] Section 14.1

HW 2 due

11/08/05 Mid-term Exam    
11/10/05 Web Security   [WS] Chapter 17
11/15/05 Email Security  

[WS] Chapter 15
11/17/05 IP Security/ Wireless Security  

HW3 release

11/22/05 Thanksgiving holidays    
11/24/05 Thanksgiving holidays    
11/29/05 Intrusion Detection System/Firewall    
12/01/05 Worm/DoS attack    
12/06/05 Beyond Network Security  

Project report due

HW 3 due

 

Assignment

bullet Homework 1
bullet Homework 2
bullet Homework 3
bullet Project

Policy

Grading Policy

bullet Class participation: 10%
bullet Homework: 30%
bullet Midterm: 25%
bullet

Project: 35%

Homework

There will be three homework assignments throughout the semester.  The homework assignments and their due dates will be listed on the Assignment. Homework assignments are due at the beginning of the class on the day due. Late assignments are not accepted.

Academic Integrity

Students are encouraged to discuss homework assignments and projects with each other but only in a general manner (to help understand the nature of the problem). Specific solutions cannot be discussed. And all the work you submit must be your own work. All students are required to acquaint themselves with the provisions of the University's Honor System.

In addition to the usual expectations regarding academic honesty, this course presents some particular ethical and even legal problems. First, while this is not a course in how to crack systems, it is practically impossible for us to avoid discussing concrete security weaknesses in existing systems. Any attempt to use such information to gain unauthorized access to any system is a violation of the Vanderbilt Policy on Computer Privileges and Responsibilities. Please also refer to Vanderbilt Computing And Networking Policies for more information.

Resources

bullet Purdue CERIAS
bullet FIRST
bullet IETF Security Area Working Groups
bullet NIST computer security Resource Center

© 2005, Yuan Xue ()