Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSCE 727 Information Warfare

Similar presentations


Presentation on theme: "CSCE 727 Information Warfare"— Presentation transcript:

1 CSCE 727 Information Warfare

2 Instructor: Csilla Farkas Class time: M, W 2:50 – 4:05 pm
Class Homepage: Office Hours: M, W 2:30 – 4:15 pm or by appointment CSCE Farkas

3 Prerequisite(s) or corequisite(s): CSCE 522 or permission of instructor
Course objectives: Introduction to information warfare principles and technologies. Defensive information warfare Offensive information warfare CSCE Farkas

4 Basic Bibliography Required:
D. Denning: Information Warfare and Security (Addison Wesley, 1998, ISBN: ) Lecture handouts and references listed for each lecture Recommended: Cyber Warfare: Mapping the Cyber Underworld (O’Reilly Media,2nd edition, 2011, ISBN-10: , ISBN-13: ) CSCE Farkas

5 Student Work Research project: there will be one individual research project with a final submission of a research paper Homework and class participation: there will be several homework assignments based on textbook material and reading assignments Tests: there will be two in-class, open book tests CSCE Farkas

6 GRADING Research project: 25% Presentation of related work: 5%
Homework assignments: 25% Tests: 45% (midterm 20%, final 25%) Final grades are calculated from a total score of 100: 90 < A 87 < B+ <= < B <= 87 76 < C+ <= < C <= 76 60 < D+ <= < D <= 60 CSCE Farkas

7 Tentative Schedule Week 1-3: Fundamental IW concepts
Week 4-9: Offensive Activities Week 10-13: Defensive Information Warfare Week 14-15: Student Presentations CSCE Farkas

8 Questions? CSCE Farkas

9 Student Introduction Your Name Major Exposure to Information Assurance What you expect to gain from this class Area of interest CSCE Farkas

10 Information Assurance Studies
CSCE Farkas

11 IA Specialization Undergraduate and Graduate level
Core Requirement (3 Hours) CSCE 522: Information Security Principles (3 credits) – meets CNSS 4011 standard Additional Requirements: Elective IA course (3 credit) 2nd elective course (3 credits) or 500-level or above CSCE course with IA project component CSCE Farkas

12 CNSS Certifications Old criteria:
National Training Standard for Information Systems Security Professionals, CNSSI No. 4011 National Training Standard for System Administrators in Information Systems Security, CNSSI No. 4013 National Training Standard for Information Systems Security Officers, CNSSI No. 4014 New criteria: Knowledge Units CSCE Farkas

13 IA&S Courses Offered since 2000 12 new courses Approved by USC
4 undergraduate and graduate 8 graduate students only Approved by USC Accredited by the Committee on National Security Systems (CNSS) CSCE Farkas

14 (modifications are being proposed)
IA&S Certificate Program (modifications are being proposed) CSCE Farkas

15 Graduation requirements
12 hours of graduate study with B average 6 hours core courses 6 hours of elective courses CSCE Farkas

16 Core Courses CSCE 522 – Information Systems Security Principles
offered every Fall semester -- APOGEE CSCE 715– Network Security offered every Fall semester CSCE Farkas

17 Elective Courses CSCE 727 – Information Warfare
CSCE 517 – Computer Crime and Forensics CSCE 557 – Introduction to Cryptography CSCE 548 – Secure Software Construction CSCE 716 – Design for Reliability CSCE 717 – Comp. Systems Performance CSCE 727 – Information Warfare CSCE 813 – Internet Security CSCE 814 – Distributed Systems Security CSCE 824 – Secure Databases CSCE Farkas

18 Center for Information Assurance Engineering (CIAE)
Information about: Research Education Publications People Useful links CSCE Farkas

19 More Questions?

20 Committee on National Security Systems (CNSS)
CNSS 4011: National Information Assurance Training Standard for Information Systems Security Professionals CSCE additional IA course + 1 course with IA project CNSS 4013: National Information Assurance Training Standard for System Administrators CNSS 4011 requirements + CSCE 727 CNSS 4014: National Information Assurance Training Standard for Information Systems Security Officers CNSS 4011 requirements + CSCE CSCE 715 CSCE Farkas 20

21 Information Systems Security (Overview) http://www. cse. sc
CSCE Farkas

22 Security Objectives Confidentiality: prevent/detect/deter improper disclosure of information Integrity: prevent/detect/deter improper modification of information Availability: prevent/detect/deter improper denial of access to services Authenticity: Verify claimed identity Non-Repudiation: Cannot deny action CSCE Farkas

23 Achieving Security Policy Mechanism Assurance What to protect?
How to protect? Assurance How good is the protection? CSCE Farkas

24 Security Tradeoffs Security Functionality Ease of Use COST
CSCE Farkas

25 Information Security Planning
Organization Analysis Risk management Mitigation approaches and their costs Security policy and procedures Implementation and testing Security training and awareness CSCE Farkas

26 Risk Management Framework (Business Context)
Who Cares? Understand Business Context Strengthen system Why care? Identify Business and Technical Risks Synthesize and Rank Risks Define Risk Mitigation Strategy Carry Out Fixes and Validate Measurement and Reporting What should be done? How to mitigate risk? CSCE Farkas 26

27 The Art… Policies and procedures Privacy Best practices Ethics and Law
National-level considerations International considerations Etc. CSCE Farkas

28 Next Class Refresh IA Concepts
CSCE Farkas


Download ppt "CSCE 727 Information Warfare"

Similar presentations


Ads by Google