COMP 4704 System Security Syllabus

COMP 4704 System Security

Syllabus: (asterisk topics will have hands-on exercises)

INFOSEC/OPSEC Overview
Countermeasures
- Educational
- Procedural
- Technical
Legal aspects
- National Policy
- Cyber Law and Ethics
- Trust
- Government Standards (SSAA, C&A Process, NSTISSP 6&11)
Risks
- Threats & Vulnerabilities
- Management* (Exercise 1.5, pp. 15)
- Disaster Recovery*
- Key Management*
- Security Planning
Software security*
- System Life Cycle Management
Hardware/Personnel Security*
- Transmission Security*
- Physical Security*
- TEMPEST Security*
Crypto basics
Protocols
Administrative security
- Network Security*
- Procedural Controls*
- Auditing & Monitoring*
- Role-Based Access Control (RBAC)
- Systems Management Responsibilities
- Government Accreditation & Certification
- Security Policies
Modes of Operation
Web security
Current topics, e.g. Peer-To-Peer Security