lecture 1 overview
play

Lecture 1 - Overview CMPSC 443 - Spring 2012 Introduction to - PowerPoint PPT Presentation

Oct 17, 2022 •31 likes •181 views

Lecture 1 - Overview CMPSC 443 - Spring 2012 Introduction to Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger From

  1. Lecture 1 - Overview CMPSC 443 - Spring 2012 Introduction to Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger

  2. From small vulnerabilities come ... 2 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  3. People are part of the problem ... 3 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  4. And the rest ... • Hardware – E.g., Ford Pinto – E.g., ext2 • Physical Access – E.g., ATMs • Users – E.g., Phishing – E.g., Social engineering – E.g., Misplaced trust 4 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  5. Where is all of this going? • We are at a unique point in history. – We have little security. – We have little usable theory on what is secure. – We have little knowledge of how to get it. – Workable tools are rudimentary, but sometimes effective. • However, we have a huge amount of risk riding on computer and network security. – Financial – Medical – Personal ... • Every computing system we use is insecure ... 5 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  6. This course … • We are going to explore the tools that the address these frequent and expected vulnerabilities. – Why are we doing so poorly in computing systems at protecting our users and data from inadvertent or intentional harm? The answer: stay tuned! 6 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  7. This course … • This course is an applied applied systems course covering introductory topics in computer and network security. We will investigate the tools and problems of contemporary security: This course provides an introduction to the theory and application of security in computer and network environments. Students will develop the skills necessary to formulate and address the security needs of enterprise and personal environments. The course will begin by describing the goals and mechanisms of security as motivated by recent incidents in the area. Topics will cover cryptography, authentication, secure programming, security in operating systems, network security, secure storage, access control, denial-of-service, and file systems, and conclude with emerging trends in secure systems design. 7 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  8. You need a basic understanding of … • IP Networks • Operating Systems • Discrete Mathematics • Basics of systems theory and implementation – E.g., File systems, distributed systems, networking, operating systems, .... • Programming in C/Linux 8 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  9. Why are we here? -- Goals • Our goal: to provide you with the tools to apply current and future approaches to computer security . – Formulating a security strategy – Basic technologies – Engineering trade-offs • This is going to be a hard course . The key to success is sustained effort. Failure to keep up with readings and assignments will likely result in poor grades, and little understanding of the course material. • Pay-off : security competence is a necessary, rare, valuable skill 9 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  10. Course Challenges • Security is relative – Good understanding of other computer technologies are necessary • Security is terminology – Each application of security has different terms for concepts • Security is defensive – Consider the function available to the attacker not the user 10 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  11. Course Materials • Website - We are maintaining the course website at http://www.cse.psu.edu/~tjaeger/cse443-s12 – Course assignments, slides, and other artifacts will be made available on the course website. • Course textbooks – Kaufman, C., Perlman, R. and Speciner, M., Network Security (Private Communication in a Public World), 2nd edition, Prentice Hall 2002. – Selected readings from: Jaeger, T., Operating System Security, Morgan & Claypool, 2008. Available online. • Go to http://www.morganclaypool.com/toc/spt/1/1 • Select “Operating System Security” (works within Penn State network) 11 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  12. Course Calendar • The course calendar as all the relevant readings, assignments and test dates • Please check the website frequently for announcements and changes to the schedule. Students are responsible for any change on the schedule (we will try to make announcements in class). 12 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  13. Grades • Grading policy – 20% Mid-term exam (TBD - 8th week) – 35% Course Projects (4-5) – 15% Quizzes and Class Participation – 30% Final exam (end of semester) • Lateness policy - Assignments are assessed a 10% per-day late penalty, up to a maximum of 4 days. Unless the problem is apocalyptic, don't give us excuses. Students with legitimate reasons who contact the professor before the deadline may apply for an extension. 13 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  14. Ethics Statement This course considers topics involving personal and public privacy and security. As part of this investigation we will cover technologies whose abuse may infringe on the rights of others. As an instructor, I rely on the ethical use of these technologies. Unethical use may include circumvention of existing security or privacy measurements for any purpose, or the dissemination, promotion, or exploitation of vulnerabilities of these services. Exceptions to these guidelines may occur in the process of reporting vulnerabilities through public and authoritative channels. Any activity outside the letter or spirit of these guidelines will be reported to the proper authorities and may result in dismissal from the class. When in doubt, please contact the instructor for advice. Do not undertake any action which could be perceived as technology misuse under any circumstances unless you have received explicit permission from Professor Jaeger. 14 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

  15. And the rest of this course … • Outline 1. Overview 2. Basics 3. Cryptography/Authentication 4. Software Security 5. Systems Security 6. Network Security 7. Misc Topics 15 CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger Page

Recommend

BIOE 301/362 Lecture One Overview of Lecture 1 Course Overview: Course organization

BIOE 301/362 Lecture One Overview of Lecture 1 Course Overview: Course organization

BIOE 301/362 Lecture One Overview of Lecture 1 Course Overview: Course organization Four questions we will answer Course project Technology assessment The big picture World health: an introduction Course Organization

932 views • 68 slides
Lecture Overview Web 2.0, Tagging, Multimedia, Introduction to Web 2.0 Overview of

Lecture Overview Web 2.0, Tagging, Multimedia, Introduction to Web 2.0 Overview of

Lecture Overview Web 2.0, Tagging, Multimedia, Introduction to Web 2.0 Overview of Tagging Systems Folksonomies, Lecture, Overview of tagging Important, Must Attend, Design and attributes Martin Halvey Case Studies

908 views • 13 slides
Biomedical Engineering for Global Health Lecture One Overview of Lecture 1 Course Overview:

Biomedical Engineering for Global Health Lecture One Overview of Lecture 1 Course Overview:

Biomedical Engineering for Global Health Lecture One Overview of Lecture 1 Course Overview: Course organization Four questions we will answer Course project Technology assessment The big picture World health: an

916 views • 63 slides
Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A Threatens Privacy Threatens Try to achieve Lecture 2B: Network threats Lecture 3A: Attacks on Lecture 6A: Security Protocols Web servers, malware

381 views • 25 slides
Lecture 1: Overview Lecture 1: Overview Hsie-Chia Chang E-mail :

Lecture 1: Overview Lecture 1: Overview Hsie-Chia Chang E-mail :

Lecture 1: Overview Lecture 1: Overview Hsie-Chia Chang E-mail : hcchang@mail.nctu.edu.tw Fall 2006 Outline Outline Typical DSP Algorithm Convolution Correlation Digital Filter Adaptive Filter Decimator and

468 views • 26 slides
Bits and Bytes Computer Literacy Lecture 4 29/09/2008 Lecture Overview Lecture Topics

Bits and Bytes Computer Literacy Lecture 4 29/09/2008 Lecture Overview Lecture Topics

Bits and Bytes Computer Literacy Lecture 4 29/09/2008 Lecture Overview Lecture Topics How computers encode information How to quantify information and memory How to represent and communicate binary data The aim is to be able to

752 views • 34 slides
Lecture 8: Hashing I Lecture Overview Dictionaries and Python Motivation Prehashing

Lecture 8: Hashing I Lecture Overview Dictionaries and Python Motivation Prehashing

Lecture 8 Hashing I 6.006 Fall 2011 Lecture 8: Hashing I Lecture Overview Dictionaries and Python Motivation Prehashing Hashing Chaining Simple uniform hashing Good hash functions Dictionary Problem Abstract

452 views • 21 slides
Lecture 4 Notes: Bits and bytes Computer Literacy 1 Tuesday 28/9/2004 Lecture Overview Lecture

Lecture 4 Notes: Bits and bytes Computer Literacy 1 Tuesday 28/9/2004 Lecture Overview Lecture

Lecture 4 Notes: Bits and bytes Computer Literacy 1 Tuesday 28/9/2004 Lecture Overview Lecture topics: How computers encode information How to quantify information and memory How to represent and communicate binary data The aim

210 views • 7 slides
Lecture Overview Lecture Topics How computers encode information Bits and Bytes How

Lecture Overview Lecture Topics How computers encode information Bits and Bytes How

Lecture Overview Lecture Topics How computers encode information Bits and Bytes How to quantify information and memory How to represent and communicate binary data Computer Literacy Lecture 4 The aim is to be able to reason

250 views • 5 slides
CSC 1010 Lecture 1 Course Overview Web site Syllabus CSC 1010 Programming for All

CSC 1010 Lecture 1 Course Overview Web site Syllabus CSC 1010 Programming for All

CSC 1010 Lecture 1 Course Overview Web site Syllabus CSC 1010 Programming for All Schedule Lecture slides Reading Assignments & Textbook Handouts Lecture 1 Welcome & Getting Started 2 1 2 Why Program? Why

350 views • 6 slides
electurefy Jenny Farman | Daniel Hok Juan Posadas Overview Lecture Effective learning tool

electurefy Jenny Farman | Daniel Hok Juan Posadas Overview Lecture Effective learning tool

electurefy Jenny Farman | Daniel Hok Juan Posadas Overview Lecture Effective learning tool Problem & Solution Overview Difficult to communicate with professor Intimidating lecture setting Lack of integration between lecture

558 views • 30 slides
Usability of Programming Languages Lecture 4 - directed by your research interests Lecture

Usability of Programming Languages Lecture 4 - directed by your research interests Lecture

Overview Practical experimental course lectures are only introductory Lecture 1 - theoretical principles classic approaches l h current trends in leading research. Lecture 2 - candidate research methods advantages and

499 views • 15 slides
JavaScript Lecture 17 CS 638 Web Programming Overview of lecture On client side programming

JavaScript Lecture 17 CS 638 Web Programming Overview of lecture On client side programming

JavaScript Lecture 17 CS 638 Web Programming Overview of lecture On client side programming with JavaScript The core language Arrays Objects Variables, typing, and scoping CS 638 Web Programming Estan & Kivolowitz

671 views • 8 slides
Lecture 18: The Internet and the Web Computer Literacy 1h Thursday 4/11/2004 Lecture Overview

Lecture 18: The Internet and the Web Computer Literacy 1h Thursday 4/11/2004 Lecture Overview

Lecture 18: The Internet and the Web Computer Literacy 1h Thursday 4/11/2004 Lecture Overview Topics covered The origin of the Internet The Internet and Network organisation The Web: client-server model The Web:

443 views • 6 slides
Lecture 6. June 14 2019 Recap The last lecture gave an overview of the cancer world, describing

Lecture 6. June 14 2019 Recap The last lecture gave an overview of the cancer world, describing

Lecture 6. June 14 2019 Recap The last lecture gave an overview of the cancer world, describing some of the biological background and some of the opportunities for statisticians, computational biologists, machine learners and data scientists

1.11k views • 48 slides
Number systems Last lecture Course overview The Digital Age Todays lecture

Number systems Last lecture Course overview The Digital Age Todays lecture

Number systems Last lecture Course overview The Digital Age Todays lecture Binary numbers Base conversion Number systems Twos-complement A/D and D/A conversion CSE370, Lecture 2 Digital

502 views • 17 slides
Lecture 1: Introduction and Overview January 4, 2011 Lecture 1, Slide 1 ECS 235B, Foundations of

Lecture 1: Introduction and Overview January 4, 2011 Lecture 1, Slide 1 ECS 235B, Foundations of

Outline About This Course Basic Components Policy and Mechanism Assurance Practical Issues Lecture 1: Introduction and Overview January 4, 2011 Lecture 1, Slide 1 ECS 235B, Foundations of Information and Computer Security January 4, 2011

412 views • 28 slides
JavaScript DOM Lecture 19 CS 638 Web Programming Overview of lecture DOM JavaScript

JavaScript DOM Lecture 19 CS 638 Web Programming Overview of lecture DOM JavaScript

JavaScript DOM Lecture 19 CS 638 Web Programming Overview of lecture DOM JavaScript timers CS 638 Web Programming Estan & Kivolowitz Document Object Model Describes how the document object can be traversed and modified

276 views • 4 slides
Introduction cont. Lecture goal: Overview: get context, overview, access net, physical

Introduction cont. Lecture goal: Overview: get context, overview, access net, physical

Introduction cont. Lecture goal: Overview: get context, overview, access net, physical media feel of networking performance: loss, delay more depth, detail later in course protocol layers, service models approach:

393 views • 12 slides
Overview Credits News Lecture 14: Scientific Visualization What is SciVis? almost

Overview Credits News Lecture 14: Scientific Visualization What is SciVis? almost

Overview Credits News Lecture 14: Scientific Visualization What is SciVis? almost unchanged from lecture by Reminder: no class next week Melanie Tory (University of Victoria) I'm at InfoVis/Vis in Baltimore Data &

52 views • 4 slides
Overview Last lecture Software engineering CS3157: Advanced Will cover most in

Overview Last lecture Software engineering CS3157: Advanced Will cover most in

Overview Last lecture Software engineering CS3157: Advanced Will cover most in class, you are responsible for Programming understanding high level overview PHP Lecture #13 Will cover in class and next lab. Dec 5 Shlomo

426 views • 15 slides
1 Lecture Overview Nonlinearity and Gamma Many basic things tying together course I = a

1 Lecture Overview Nonlinearity and Gamma Many basic things tying together course I = a

Lecture Overview Foundations of Computer Graphics Many basic things tying together course Is part of the material, will be covered on midterm (Fall 2012) Raster graphics CS 184, Lecture 12: Raster Graphics and Pipeline

390 views • 5 slides
Lecture 18 None of this is comprehensive only an overview and guide to what you should expect

Lecture 18 None of this is comprehensive only an overview and guide to what you should expect

CSE 331 The plan Software Design and Implementation Today: introduction to Java graphics and Swing/AWT libraries Then: event-driven programming and user interaction Lecture 18 None of this is comprehensive only an overview and guide to

317 views • 8 slides
CFD Introduction Lecture 15 ME EN 412 Andrew Ning aning@byu.edu Outline CFD Overview CFD

CFD Introduction Lecture 15 ME EN 412 Andrew Ning aning@byu.edu Outline CFD Overview CFD

CFD Introduction Lecture 15 ME EN 412 Andrew Ning aning@byu.edu Outline CFD Overview CFD Overview Simulation Process 1. Define the problem 2. Model the geometry and a fluid domain 3. Create a mesh 4. Specify boundary conditions 5.

321 views • 7 slides

More recommend