{"id":654,"date":"2015-12-30T09:12:55","date_gmt":"2015-12-30T11:12:55","guid":{"rendered":"http:\/\/www.inf.ufrgs.br\/profcomp_wp\/?page_id=654"},"modified":"2021-07-07T14:44:48","modified_gmt":"2021-07-07T17:44:48","slug":"cmp230","status":"publish","type":"page","link":"https:\/\/www.inf.ufrgs.br\/profcomp\/lista-de-disciplinas\/cmp230\/","title":{"rendered":"CMP230"},"content":{"rendered":"

Computer Systems Security<\/strong><\/h3>\n

Professor<\/b>: Weverton Luis da Costa Cordeiro
\nPrerequisites<\/b>: –
\nHours<\/b>: 60 hs
\nCredits<\/b>: 4
\nSemesters<\/b>: First semester
\nUndergraduate Enrollment<\/b>: The enrollment must be made as Special Student
\nPage Link<\/b>: http:\/\/moodle.inf.ufrgs.br\/course\/view.php?id=459<\/a><\/p>\n

SUMMARY<\/strong><\/p>\n

Overview. Security policies. Design and implementation. Network and computer systems security. Malicious software. Vulnerability analysis. Auditing. Intrusion detection.<\/p>\n

OBJECTIVES<\/strong><\/p>\n

At the end of the course students should be able to understand and analyze the fundamental properties of a computer system with respect to its security, based on a clear understanding of the key concepts and the state-of-the-art in the field.<\/p>\n

PROGRAM<\/strong><\/p>\n

\u2022 Overview of computer security: basic components, threats, policies and mechanisms, assumptions and trust, guarantees, operational and human issues, control access matrix. Policies: security policies in general, confidentiality policies and integrity policies.
\n\u2022 Project and implementation: design principles, identity representation, control access mechanisms, information flows, and the confinement problem.
\n\u2022 Network security: development of policies, network layout, availability, flooding, attack forecast. System security: policies, networks, users, authentication, processes and files.
\n\u2022 Malicious software: Trojan Horses, viruses, worms, Denial of Service attacks, botnets.
\n\u2022 Vulnerability analysis: penetration studies, vulnerability classification.
\n\u2022 Auditing: auditing system organization, mechanisms and examples.
\n\u2022 Intrusion detection: principles, models, architecture, detection systems organization, intrusion response, and intrusion tolerance.<\/p>\n

EVALUATION<\/strong><\/p>\n

Evaluation will be based on two aspects: first, given the assigned topic in systems security, the level of understanding about the subject and how it is delivered during the oral presentation; second, the volume and quality of contributions made by students during the presentation of topics other than his\/her own, related to the state-of-the-art in the topic.<\/p>\n

BIBLIOGRAPHY<\/strong><\/p>\n

It is comprised of a textbook and a set of papers from journals and events.<\/p>\n

\u2022 Bishop, M. Computer Security: Art and Science. 1a. Ed. Addison-Wesley Professional, 2003. 1136p.<\/p>\n

Journals ordered by impact factor:<\/p>\n

\u2022 IEEE Transactions on Information Forensics and Security (Impact Factor 2.338)
\n\u2022 IEEE Transactions on Dependable and Secure Computing (Impact Factor 2.093)
\n\u2022 Springer International Journal of Information Security (Impact Factor 1.681)
\n\u2022 Elsevier Computers & Security (Impact Factor 1.488)
\n\u2022 IEEE Security & Privacy (Impact Factor 1.172)
\n\u2022 IET Information Security (Impact Factor 0.892)
\n\u2022 ACM Transactions on Information and Systems Security (Impact Factor 0.600)
\n\u2022 Wiley Security and Communication Networks (Impact Factor 0.356)<\/p>\n

Events ordered by citations\/paper:<\/p>\n

\u2022 SECURITY – Usenix Security Symposium (40.2)
\n\u2022 S&P – IEEE Symposium on Security and Privacy (34.8)
\n\u2022 NDSS – Network and Distributed System Security Symposium (28.8)
\n\u2022 IMC – Internet Measurement Conference (23.6)
\n\u2022 CCS – ACM Conference on Computer and Communications Security (20.5)
\n\u2022 CSF – IEEE Computer Security Foundations Symposium (18.6)
\n\u2022 IH – Information Hiding Workshop (14.8)
\n\u2022 RAID – International Symposium on Recent Advances in Intrusion Detection (13.5)
\n\u2022 NSPW – New Security Paradigms Workshop (12.6)
\n\u2022 ESORICS – European Symposium on Research in Computer Security (9.1)
\n\u2022 SRDS – IEEE International Symposium on Reliable Distributed Systems (9.0)<\/p>\n","protected":false},"excerpt":{"rendered":"

Computer Systems Security Professor: Weverton Luis da Costa Cordeiro Prerequisites: – Hours: 60 hs Credits: 4 Semesters: First semester Undergraduate Enrollment: The enrollment must be made as Special Student Page Link: http:\/\/moodle.inf.ufrgs.br\/course\/view.php?id=459 SUMMARY Overview. Security policies. Design and implementation. Network and computer systems security. Malicious software. Vulnerability analysis. Auditing. Intrusion detection. OBJECTIVES At the end […]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":462,"menu_order":230,"comment_status":"closed","ping_status":"closed","template":"","meta":[],"_links":{"self":[{"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/pages\/654"}],"collection":[{"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/comments?post=654"}],"version-history":[{"count":5,"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/pages\/654\/revisions"}],"predecessor-version":[{"id":4768,"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/pages\/654\/revisions\/4768"}],"up":[{"embeddable":true,"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/pages\/462"}],"wp:attachment":[{"href":"https:\/\/www.inf.ufrgs.br\/profcomp\/wp-json\/wp\/v2\/media?parent=654"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}