CS 291 Network Security

Fall 2006

[Overview] [Schedule & Lecture Note] [Assignment] [Policy] [Resources]

Course Information

Time: Tuesday/Thursday 11am-12:15pm, Room: 209 Featheringill Hall  

Instructor: Yuan Xue (), Office: 383 Jacobs Hall, Phone: 615-322-2926

Office hours: Tuesday/Thursday 3pm-4pm; or by appointment.

TA: Yanchuan Cao (yanchuan.cao@vanderbilt.edu)

Web: http://vanets.vuse.vanderbilt.edu/~xue/cs291fall06/index.html

Course description:

This course provides an introduction to the principles and practice of network security. Topics include: security threats in networks, principles for providing security mechanisms (cryptography, key management, message authentication), practice of securing systems (PGP, IPsec, SSL), and recent research topics in security.

Credit: 3 credit hours

Prerequisite:

The course requires a background in computer networks (e.g. cs283 or equivalent) and programming experience (e.g., cs201 or cs270 or equivalent).

Text book:

[WS] Cryptography and Network Security: Principles and Practice (2nd Edition) by William Stallings

Reference books:

[KPS] Network Security: Private Communication in a Public World (2nd Edition), by Charlie Kaufman, Radia Perlman, Mike Speciner

[CSP] Security in Computing (3rd Edition), by Charles P. Pfleeger, Shari Lawrence Pfleeger

[MB] Computer Security: Art and Science, by Matthew A. Bishop

Schedule 

Date Topic Lecture Note/Handout Reading/Assignment
08/24/06 Course Overview Course Information

Security Overview

  
08/29/06 Computer Network Review (I) [pdf]  
08/31/06 Computer Network Review (II) [pdf]  
09/05/06 Security Mechanisms Overview [pdf] [WS] Section 1.1, 1.2
09/07/06 Secret-key Cryptography (Cryptography Basics) [pdf] [WS] Section 2.1
09/12/06 Secret-key Cryptography (Classical Cipher) [pdf]

[WS] Section 2.2, 2.3

Homework 1 Release

09/14/06 Secret-key Cryptography (Block Cipher Principle) [pdf]

[WS] Section 3.2

[WS] Section 3.2, 3.6

09/19/06 Secret-key Cryptography (DES)   [WS] Section 3.3 - 3.4
09/21/06 Block Cipher Mode (I) [pdf] Homework 1 Due
09/26/06 Block Cipher Mode (II) [WS] Section 3.7
09/28/06 Secret Key Management  

Homework 2 Release

[WS] Section 7.1 - 7.3

10/03/06 Public-key Cryptography (Overview) [pdf]

Project Release

[WS] Section 9.1

10/05/06 Public-key Cryptography (RSA) [pdf] [WS] Section 9.2
10/10/06 Public Key Management  

Homework 2 Due

[WS] Section 10.1 - 10.2

10/12/06 Message Authentication Code [pdf]

Homework 3 Release

[WS] Section 11.1 - 11.3

10/17/06 Fall Break    
10/19/06 Hash Functions [pdf]

Homework 3 Help Session

Homework 4 Release

Project Proposal Due

[WS] Section 12.1, 12.4

10/24/06 Digital Signature [pdf]

Homework 3 Due

[WS] Section 13.1, 13.3

10/26/06 No Class   Homework 4 Due
10/31/06 Cryptography Review [pdf][outline.ppt]  
11/02/06 Email Security [pdf] [WS] Chapter 15
11/07/06 Authentication Protocol (I) [pdf]  
11/09/06 Authentication Protocol (II)  
11/14/06 Web Security [pdf]
11/16/06 IP Security [pdf]  
11/21/06 Thanksgiving holidays    
11/23/06 Thanksgiving holidays    
11/28/06 Intrusion Detection System/Firewall [pdf]  
11/30/06 Worm/DoS attack [pdf]  
12/05/06 Beyond Network SecurityWireless Security    

 

Assignment

bullet Homework 1 [hw1.pdf] [ciphertext] [hint.pdf]
bullet Homework 2 [hw2.pdf]
bullet Homework 3 [hw3.pdf]
bullet Homework 4 [hw4.pdf] (Extended deadline Oct 30 Monday)
bullet Homework 5 [hw5.pdf] [ssl-example.tar.gz] (Extended deadline Dec 7 Thursday)
bullet Project [project.pdf]

Policy

Grading Policy

bullet Class participation: 10%
bullet Homework: 35%
bullet Midterm: 25%
bullet

Project: 30%

Homework

There will be five homework assignments throughout the semester.  The homework assignments and their due dates will be listed on the Assignment. Homework assignments are due at the beginning of the class on the day due. Late assignments are not accepted.

Academic Integrity

Students are encouraged to discuss homework assignments and projects with each other but only in a general manner (to help understand the nature of the problem). Specific solutions cannot be discussed. And all the work you submit must be your own work. All students are required to acquaint themselves with the provisions of the University's Honor System.

In addition to the usual expectations regarding academic honesty, this course presents some particular ethical and even legal problems. First, while this is not a course in how to crack systems, it is practically impossible for us to avoid discussing concrete security weaknesses in existing systems. Any attempt to use such information to gain unauthorized access to any system is a violation of the Vanderbilt Policy on Computer Privileges and Responsibilities. Please also refer to Vanderbilt Computing And Networking Policies for more information.

Resources

bullet Purdue CERIAS
bullet FIRST
bullet IETF Security Area Working Groups
bullet IEEE Technical Committee on Security and Privacy:
bullet NIST computer security Resource Center
bullet Security Focus
bullet The Cryptography FAQ
bullet "Communication Theory of Secrecy Systems", by Claude Shannon

Survey

As a student of this course, your opinion is particularly valued. Please fill in the online survey form, so that I can better understand your background and your need.

© 2005, Yuan Xue ()