COMPUTER SECURITY
CMSC 482 FALL 1995
TR 5:30-6:45 Prof Mark E Woodcock
ECS 233B, x2587 859-6324 (work)
woodcock@cs.umbc.edu (or umbc7)
September
5 Intro, History, Standards 1
12 Basic Models 6.1-3, 7.1-3, BLP
19 Advanced Models Chinese Wall, Goguen & Meseguer
26 Integrity and Denial of Service Clark&Wilson
October
3 Cryptography 2,3,4
10 Recursive Functions/Formal Proof Boyer & Moore (Exam)
17 Specifications/Hardware
24 Abstraction Stacks/Other formal techniques
31 I&A, Trusted Path, Audit 6.5
November
7 Malicious Code 5, Microscope & Tweezers
14 Risk Analysis 13 (Exam)
21 Sys Mgmt, Tech Issues (Turkey Day)
28 Networks, Databases 8,9,11
December
5 System Components, Evaluation Issues 10,7.4-6
12 Slack, Review 14,15
FINAL The final will be held as scheduled by the registrar, on Tuesday
December 19, from 6:00 till 8:00 P.M.
All exams will be comprehensive, closed-note, closed calculator and
closed-book.
PROJECT
1. Each student will write a short (3-5 page) paper
on a current computer security application. Precise specifications
and due dates to be determined.
2. In groups of 3 (or so) students will devise a system
security plan for a hypothetcial installation described by the
instructor. Precise specifications and due dates to be determined.
ETHICS While threat will be an important motivator for the course
material, the theme of the course will be how to protect computers, not
how to break into them (accessing a computer without authorization is a
crime and will be treated as such).
GRADES Grades will be computed from the following components, using the
following weights:
Midterm I 20
Midterm II 20
Project (written) 30
Final 30
The instructor expects this to result in a normal (boring) Bell Curve,
however the instructor reserves the right to construct one, to consider
relative improvement and class participation, to give all A's or flunk
the whole class (where appropriate).