Visit the DTIC TEMS Initiative
    TEMS


RIAC rss feeds  
Subscribe to the RIAC
spacer image

 

 

 

Click here for the RIAC Training page

Information Security 3-Day Course

Course Description

This course provides an overview of computer security and fundamentals of computer security like identification, authentication, access control, and security models. Focus is on the practice of computer security using Unix and Windows NT as case studies. Some virus attacks will also be studied. An overview of security evaluation will be provided. Security in distributed systems including network security and World Wide Web security is addressed. Technologies from three generations of computer security will be presented. The first generation of security technologies focuses on preventing intrusions and includes access control or a trusted computing base. The second generation of security technologies focuses on the detection of intrusions and includes firewalls, intrusion detection systems, and virtual private networks. The third generation of security technologies focuses on the operation through attack and includes intrusion tolerance, graceful degradation, and hardened cores.

Who Should Take the Course

The goal of this class is to provide an introduction to computer security. Any engineer involved in the development of a computing system should be aware of the basics of computer security. Therefore, this class is open to any engineer without requiring a specific background in computer science.

What the Student Will Learn

The students will receive an introduction to computer security. The last third of the course based on students' presentations on technologies will provide a hands-on approach of computer security.

Included Materials

Students will be provided:
  • Lecture slides
  • Computer Security, D. Gollmann, John Wiley

Required Materials

None

Michel Cukier, PhD

Picture of cukier Dr. Cukier is an Assistant Professor in the Center for Risk and Reliability in the Department of Mechanical Engineering at the University of Maryland, College Park. Dr. Cukier received a physics engineering degree from the Free University of Brussels, Belgium, in 1991, and the Doctor in engineering degree from the National Polytechnic Institute of Toulouse, France, in 1996. From 1992 to 1996, he was at LAAS-CNRS, Toulouse, France for his doctoral work on coverage estimation of fault-tolerant systems. From 1996 to 2001, he was a researcher in the Perform research group in the Coordinated Science Laboratory at the University of Illinois, Urbana-Champaign. Dr. Cukier has worked for more than 14 years in computing dependability. He has over 40 refereed publications and is the co-developer of a middleware for providing adaptive fault tolerance (AQuA), a middleware for providing adaptive intrusion tolerance (ITUA) and a tool (Loki) for fault injection based on a partial view of the global state of a distributed system. He was involved in two DARPA funded projects that included evaluating computer security ("Intrusion Tolerance by Unpredictable Adaptation" and "OASIS Integration, Demonstration and Validation"). He received a National Science Foundation Faculty Early Career Development (CAREER) Award on "Probabilistic Evaluation of Computer Security Based on Experimental Data" (August 2003). His research focuses on evaluating the security of a computer network based on experimental data (i.e, vulnerability and attacker data collections). His research group has developed a host vulnerability checking tool called Ferret. The Unix version of Ferret was published in PRDC-10 and the Windows version of Ferret was published in ISSRE-2005 (available on www.sourceforge.net). Moreover, his group deployed a testbed dedicated to monitoring attackers and collecting attack data at the University of Maryland. This testbed was used to quantify the link between port scans and attacks. It was shown that port scans are linked to attacks in only about 5% of the cases and 50% of direct attacks were observed. These results were published in DSN-05 and were mentioned in Computerworld.com, Internetnews.com, and TechWeb.com. Finally, research on the statistical analysis of attacks comparing various characteristics for separating attacks will be published in DSN-06

Course Outline

  • Identification, authentication, and access control Security models
  • Practice of computer security: Unix and Windows NT
  • Virus attacks
  • Security evaluation
  • Security in distributed systems
  • Network security
  • World Wide Web security