cs492

ST: Computer Security (56:198:691, 50:198:492)
Fall 2009

Jean-Camille Birget
birget@camden.rutgers.edu
http://clam.rutgers.edu/~birget
(856) 225-6653
Office: Business and Science Bldg. 320

=================================================
NEWS:

=================================================
=================================================
OLD NEWS:
...
=================================================

Class Times: Wedn, 6:00-8:40pm in BSB 107.

Office hours: Mondays 3.00 -4.20pm, and Wednesdays 4:30-5:50pm.

Course work: 1. Homeworks worth 20% of the grade. 2. Two in-class exams, worth 15% and 35% of the grade respectively. 3. An individual project, worth 30% of the grade.

Exam dates:
Exam 1 (15%):    Wednesday 14 Oct.
Exam 2 (35%):    Wednesday 18 Nov.
Individual project (30%):   Proposal due 4 Nov.; final project due Wednesday 16 Dec.

Course Summary. Security is a concern in all aspects of computer science and its applications: Communications (networks, Internet), stored data (files, data bases), operating systems, application software, business applications of computers (e-commerce, etc.). One of the main modern techniques for security is cryptography and its applications (digital signatures, anthentication, etc.). This course introduces the basics of cryptography, but the main emphasis is on applications of cryptography, computer security in general, and attacks on computer security.

Textbooks:
- Required: Cryptography and Network Security, 4th ed. (2005), by William Stallings. Publisher: Prentice Hall, ISBN-10: 0131873164, ISBN-13: 978-0131873162. The author's page for the book has useful information: http://williamstallings.com/Crypto/Crypto4e.html .
- Recommended: Handbook of Applied Cryptography (1996), by Alfred Menezes, Paul van Oorschot, and Scott Vanstone. Publisher: CRC Press, ISBN-10: 0849385237, ISBN-13: 978-0849385230. Available for free on-line from the authors at http://www.cacr.math.uwaterloo.ca/hac/ .

Other books (for reference; not required):
On security in general:
- Ch. Kaufman, R. Perlman, M. Speciner, Network Security, 2nd ed., Prentice-Hall (2002).
- M. Bishop, Computer Security, Addison-Wesley (2003).
- Ch. Pfleeger, Sh. Pfleeger, Security in Computing, 4th ed., Prentice-Hall (2007).
- Ross Anderson, Security Engineering, 2nd ed., Wiley (2008).
On viruses mainly:
- E. Skoudis, T. Liston, Counter Hack Reloaded, 2nd ed., Prentice-Hall (2006).
- M. Ludwig, The Giant Black Book of Computer Viruses, 2nd ed., Geodesics Publ., Las Vegas, Nev. (1998).
- A. Young, M. Yung, Malicious Cryptography, Wiley (2004).
- D. Salomon, Foundations of Computer Security, Springer (2005).
On cryptography mainly:
- Douglas R. Stinson, Cryptography: theory and practice (there are several editions).
- J. Katz, Y. Lindell, Introduction to Modern Cryptography, Chapman and Hall / CRC (2008).
- H. Delfs, H. Knebl, Introduction to Cryptography, Springer (2002).
- O. Goldreich, Foundations of Cryptography I, II, Cambridge U. Press (2001, 2004).

Pre-requisites: Sufficient general background in computer science and mathematics; permission of instructor.

Grading policy: Homework assignments and projects are expected to be done individually. Discussions about the ideas of an assignment and about general information with fellow students is encouraged; but the actual writing should be done completely independently. Copying (or jointly writing) large portions of an assignment is considered cheating. Moreover, many exam questions will be very similar to homework problems; the homework is intended in part to prepare you for the exams. Grading scale: [0 F [60 D [65 D+ [70 C [75 C+ [80 B [85 B+ [90 A [95 A+ 100]. Class attendance is required. Homework and project due dates are firm; unless you have a major medical or personal emergency, late work will not be accepted. The grade ``incomplete'' IN is given only when justified according to University policy.

Class web page: http://clam.rutgers.edu/~birget/cs492/cs492.html