Common Syllabus revised

Similar documents
Accounting 312: Fundamentals of Managerial Accounting Syllabus Spring Brown

Computer Architecture CSC

PSY 1012 General Psychology. Course Policies and Syllabus

Course Policies and Syllabus BUL3130 The Legal, Ethical, and Social Aspects of Business Syllabus Spring A 2017 ONLINE

Scottsdale Community College Spring 2016 CIS190 Intro to LANs CIS105 or permission of Instructor

Required Materials: The Elements of Design, Third Edition; Poppy Evans & Mark A. Thomas; ISBN GB+ flash/jump drive

ACC : Accounting Transaction Processing Systems COURSE SYLLABUS Spring 2011, MW 3:30-4:45 p.m. Bryan 202

Financial Accounting Concepts and Research

IST 440, Section 004: Technology Integration and Problem-Solving Spring 2017 Mon, Wed, & Fri 12:20-1:10pm Room IST 202

Medical Terminology - Mdca 1313 Course Syllabus: Summer 2017

Instructor Experience and Qualifications Professor of Business at NDNU; Over twenty-five years of experience in teaching undergraduate students.

Course Syllabus p. 1. Introduction to Web Design AVT 217 Spring 2017 TTh 10:30-1:10, 1:30-4:10 Instructor: Shanshan Cui

HCI 440: Introduction to User-Centered Design Winter Instructor Ugochi Acholonu, Ph.D. College of Computing & Digital Media, DePaul University

BA 130 Introduction to International Business

ECD 131 Language Arts Early Childhood Development Business and Public Service

Course Name: Elementary Calculus Course Number: Math 2103 Semester: Fall Phone:

BUS Computer Concepts and Applications for Business Fall 2012

General Chemistry II, CHEM Blinn College Bryan Campus Course Syllabus Fall 2011

Professors will not accept Extra Credit work nor should students ask a professor to make Extra Credit assignments.

ECON492 Senior Capstone Seminar: Cost-Benefit and Local Economic Policy Analysis Fall 2017 Instructor: Dr. Anita Alves Pena

San José State University

Course Syllabus MFG Modern Manufacturing Techniques I Spring 2017

The University of Texas at Tyler College of Business and Technology Department of Management and Marketing SPRING 2015

INTRODUCTION TO HEALTH PROFESSIONS HHS CREDITS FALL 2012 SYLLABUS

PSCH 312: Social Psychology

ASTRONOMY 2801A: Stars, Galaxies & Cosmology : Fall term

Coding II: Server side web development, databases and analytics ACAD 276 (4 Units)

MGMT 479 (Hybrid) Strategic Management

COURSE WEBSITE:

CHMB16H3 TECHNIQUES IN ANALYTICAL CHEMISTRY

George Mason University Graduate School of Education Education Leadership Program. Course Syllabus Spring 2006

ITSC 2321 Integrated Software Applications II COURSE SYLLABUS

ITSC 1301 Introduction to Computers Course Syllabus

CS 100: Principles of Computing

The University of Southern Mississippi

EDIT 576 DL1 (2 credits) Mobile Learning and Applications Fall Semester 2014 August 25 October 12, 2014 Fully Online Course

PHO 1110 Basic Photography for Photographers. Instructor Information: Materials:

Course Syllabus It is the responsibility of each student to carefully review the course syllabus. The content is subject to revision with notice.

MANAGERIAL LEADERSHIP

Astronomy/Physics 1404 Introductory Astronomy II Course Syllabus

EDIT 576 (2 credits) Mobile Learning and Applications Fall Semester 2015 August 31 October 18, 2015 Fully Online Course

MARKETING ADMINISTRATION MARK 6A61 Spring 2016

Spring 2015 IET4451 Systems Simulation Course Syllabus for Traditional, Hybrid, and Online Classes

Master Syllabus ENGL 1020 English Composition II

Texas A&M University - Central Texas PSYK PRINCIPLES OF RESEARCH FOR THE BEHAVIORAL SCIENCES. Professor: Elizabeth K.

LBTS/CENTER FOR PASTORAL COUNSELING

COURSE SYLLABUS HSV 347 SOCIAL SERVICES WITH CHILDREN

POFI 1349 Spreadsheets ONLINE COURSE SYLLABUS

Texas A&M University-Central Texas CISK Comprehensive Networking C_SK Computer Networks Monday/Wednesday 5.

I. PREREQUISITE For information regarding prerequisites for this course, please refer to the Academic Course Catalog.

ACCT 100 Introduction to Accounting Course Syllabus Course # on T Th 12:30 1:45 Spring, 2016: Debra L. Schmidt-Johnson, CPA

Business Administration

Course Syllabus for Calculus I (Summer 2017)

Required Text: Oltmanns, T. & Emery, R. (2014). Abnormal Psychology (8th Edition) ISBN-13: ISBN-10:

COURSE DESCRIPTION PREREQUISITE COURSE PURPOSE

Class Meeting Time and Place: Section 3: MTWF10:00-10:50 TILT 221

COURSE SYLLABUS for PTHA 2250 Current Concepts in Physical Therapy

Class Tuesdays & Thursdays 12:30-1:45 pm Friday 107. Office Tuesdays 9:30 am - 10:30 am, Friday 352-B (3 rd floor) or by appointment

Class Numbers: & Personal Financial Management. Sections: RVCC & RVDC. Summer 2008 FIN Fully Online

Indiana University Northwest Chemistry C110 Chemistry of Life

Aerospace Engineering

IST 649: Human Interaction with Computers

CIS Introduction to Digital Forensics 12:30pm--1:50pm, Tuesday/Thursday, SERC 206, Fall 2015

Cleveland State University Introduction to University Life Course Syllabus Fall ASC 101 Section:

MTH 215: Introduction to Linear Algebra

BUSINESS FINANCE 4265 Financial Institutions

CS 3516: Computer Networks

FINANCE 3320 Financial Management Syllabus May-Term 2016 *

Intensive English Program Southwest College

Graduate Program in Education

Pitching Accounts & Advertising Sales ADV /PR

Syllabus - ESET 369 Embedded Systems Software, Fall 2016

Class meetings: Time: Monday & Wednesday 7:00 PM to 8:20 PM Place: TCC NTAB 2222

SPCH 1315: Public Speaking Course Syllabus: SPRING 2014

IDS 240 Interdisciplinary Research Methods

OFFICE OF DISABILITY SERVICES FACULTY FREQUENTLY ASKED QUESTIONS

MAR Environmental Problems & Solutions. Stony Brook University School of Marine & Atmospheric Sciences (SoMAS)

Class Mondays & Wednesdays 11:00 am - 12:15 pm Rowe 161. Office Mondays 9:30 am - 10:30 am, Friday 352-B (3 rd floor) or by appointment

Name: Giovanni Liberatore NYUHome Address: Office Hours: by appointment Villa Ulivi Office Extension: 312

Firms and Markets Saturdays Summer I 2014

COURSE SYLLABUS: CPSC6142 SYSTEM SIMULATION-SPRING 2015

I. PREREQUISITE For information regarding prerequisites for this course, please refer to the Academic Course Catalog.

Business Computer Applications CGS 1100 Course Syllabus. Course Title: Course / Prefix Number CGS Business Computer Applications

ECO 2013: PRINCIPLES OF MACROECONOMICS Spring 2017

Introduction to Sociology SOCI 1101 (CRN 30025) Spring 2015

Syllabus: CS 377 Communication and Ethical Issues in Computing 3 Credit Hours Prerequisite: CS 251, Data Structures Fall 2015

Monday/Wednesday, 9:00 AM 10:30 AM

MKT ADVERTISING. Fall 2016

COURSE INFORMATION. Course Number SER 216. Course Title Software Enterprise II: Testing and Quality. Credits 3. Prerequisites SER 215

Office Hours: Day Time Location TR 12:00pm - 2:00pm Main Campus Carl DeSantis Building 5136

Course Syllabus Advanced-Intermediate Grammar ESOL 0352

International Business BADM 455, Section 2 Spring 2008

SYLLABUS. EC 322 Intermediate Macroeconomics Fall 2012

HUMAN DEVELOPMENT OVER THE LIFESPAN Psychology 351 Fall 2013

Biology 1 General Biology, Lecture Sections: 47231, and Fall 2017

Course Syllabus. Alternatively, a student can schedule an appointment by .

TROY UNIVERSITY MASTER OF SCIENCE IN INTERNATIONAL RELATIONS DEGREE PROGRAM

ADMN-1311: MicroSoft Word I ( Online Fall 2017 )

APPLIED RURAL SOCIOLOGY SOC 474 COURSE SYLLABUS SPRING 2006

CPMT 1347 Computer System Peripherals COURSE SYLLABUS

Transcription:

Department of Information Sciences and Technology Volgenau School of Engineering IT 369 Data and Application Security Common Syllabus revised 01.14.2017 This syllabus contains information common to all sections of IT 369 for the Fall 2016 semester. Information specific to each section will be made available to registered students via the Blackboard course management system. University Policies The University Catalog is the central resource for university policies affecting student, faculty, and staff conduct in university affairs. Unless explicitly noted, any conflict between the policies in the University Catalog and the content of this document is unintentional. Please notify the author to resolve any such conflicts. Scheduled Sections 001 Tuesdays 1630-1910 IT 369 Data and Application Security Credits: 3 Introduces concept of data and application security. Discuss challenges of database, and application and industrial control system security. Prerequisite(s): IT 207, IT 223 Notes: none Hours of Lecture or Seminar per week: 3 Copyright 2017 Thomas G. Winston All rights reserved. Page 1 of 11

Course Description From http://catalog.gmu.edu/ Prerequisites IT 207, IT 223 Rationale Security has become a global concern, especially since the events of September 11, 2001. Understanding application and data security is not only a critical part of a cyber security curriculum, it is also a topic that can prepare students for challenging and exciting careers in the the IT security field. Application and data security are an important sub-discipline under the umbrella of cyber security. Application and data security provides students a look at how malware infects computers, how SQL injections and DNS injections work, as well newer topics such as healthcare information systems data security and industrial control systems secur Copyright 2017 Thomas G. Winston All rights reserved. Page 2 of 11

Objectives On successful completion of this course, students will be able to: Describe common security models of database management, and industrial control systems, and other network and network application based security paradigms. Apply security principles to design and development of database, industrial control and webbased programs. Understand how to analyze malware and its paths into file systems and structures. Understand and recognize patterns to assess and exploit vulnerabilities on systems Understand and be able to assess ICS/SCADA system security issues. Labs : There will be labs using the virtual machine environment. Instructions for accessing this environment will be part of the Assignment A. The labs will be designed to test some of the theory used in class. Textbooks There will be many readings from scholarly journals for this course, assigned during the course running. There are 5 required textbooks for this course: Computer Security and Penetration Testing ISBN-13: 978-0840020932 ISBN-10: 0840020937 Scada Supervisory Control and Data Acquisition Copyright 2017 Thomas G. Winston All rights reserved. Page 3 of 11

ISBN-13: 978-1936007097 ISBN-10: 1936007096 Securing the API Stronghold (free) - http://nordicapis.com/wp-content/uploads/securing-the-apistronghold.pdf Recommended, but not required. Basta, Alfred and Zgola, Melissa (2012). Database Security, Course Technology, Cengage Learning, ISBN: 978-0-4354-5390-6 Recommended only Crypotography I course by Dan Boneh (Stanford) on coursea.org (for review NOT required) Copyright 2017 Thomas G. Winston All rights reserved. Page 4 of 11

Faculty and Staff Course Coordinator: Dr. Tom Winston Teaching Assistant: Grading Grades will be awarded in accordance with the Mason Grading System for undergraduate students. See the University Catalog, Academic Policies, AP.3.1 Undergraduate Grading for more information. The grading scale for this course is: 97 100% A+ Passing 93 96% A Passing 90 92% A- Passing 87 89% B+ Passing 83 86% B Passing 80 82% B- Passing 76 79% C+ Passing 70 75% C Passing 60 69% D Passing 0 59% F Failing * Grades of "C-" and "D" are considered passing grades for undergraduate courses. However, a minimum grade of "C" is required in the AIT major for any course that is a prerequisite for one or more other courses. This course is a prerequisite for several courses in AIT Concentrations see http://catalog.gmu.edu/ for course descriptions including prerequisite requirements. Copyright 2017 Thomas G. Winston All rights reserved. Page 5 of 11

Raw scores may be adjusted by the Instructor to calculate final grades. Final grades will be based on the following components: Final Paper 30% Class Participation - homework 10% Mid-term exam 30% Final exam 30% Final Paper Students will write a final paper on a research topic related to the topics covered in this course. Students will use APA referencing style, and the paper will not exceed 15 pages, including references. No table of contents is required, however proper citation format is required, and plagiarism will result in an F for the course. No exceptions. Mid-term exam The mid-term exam will be conducted during the 6 th scheduled class session and will be based on topics addressed in Lectures 1-5. The mid-term exam will be closed book no reference materials other than those provided with the exam paper will be permitted. Mid-term exams will be returned to students once all mid-term exams for all sections have been graded. Homework There will be a variety of in-class, and homework exercises for this grade. Final exam The final exam will be held during the scheduled final exam session (see http://registrar.gmu.edu/calendars/2014fall/exams/ ) and will be based on topics addressed throughout the entire course. The final exam will be closed book no reference materials other than those provided with the exam paper will be permitted. Final exams will be retained by the Department of Information Sciences and Technology and will not be returned to students. Final Grades will be posted on PatriotWeb. This is your official record for this course. Copyright 2017 Thomas G. Winston All rights reserved. Page 6 of 11

Schedule Lecture Content 1 Introductions, overview of course, information security, Database Security I Intro, MySQL review Database Security II SQL injections 2 Database Security III Defense against SQL Inj Reconnassance, Scanning Tools, Sniffers Reading* Lectures 1-3 DB Lectures 4-6,7 DB Lectures 8-10 DB CS&PT 2-4 3 API text 1,2,3 Introduction to OAuth and OAuth2 4 API 4,5,6,7 Various will be posted 5 API 8, 9, 10 6 Mid-term exam TCP/IP vulnerabilities; Spoofing; Session Hijacking CS&PT 5,7,8 7 Hacking Network Devices; DOS; Buffer Overflows CS&PT 9,11, 12 8 Buffer Overflows; Programming Exploits CS&PT 12, 13 9 Checkpoint review, interview review; sample tech eval. Various will be posted 10 Industrial Control Systems Security I Chaps. 2,3 ICS/SCADA 11 Industrial Control Systems Security II Chaps. 6,7 ICS/SCADA 12 Industrial Control Systems Security III Chaps. 8,11, 12 ICS/SCADA 13 The Internet of Things and Application Security TBD 14 Review for Final TBD - Final exam * See References above The reading assignment shown for each lecture is to be completed prior to that lecture. This schedule is subject to revision before and throughout the course. Registered students should see Blackboard for the latest class schedule. Important Dates Copyright 2017 Thomas G. Winston All rights reserved. Page 7 of 11

Please see the Fall 2016 Semester Calendar for important dates, including the last days to add and drop courses. Religious Holidays A list of religious holidays is published by University Life. Any student whose religious observance conflicts with a scheduled course activity must contact the Instructor at least 2 weeks in advance of the conflict date in order to make alternative arrangements. Attendance Policy Students are expected to attend every class, to complete any required preparatory work (including assigned reading see Schedule above) and to participate actively in lectures, discussions and exercises. As members of the academic community, all students are expected to contribute regardless of their proficiency with the subject matter. Students are expected to make prior arrangements with Instructor if they know in advance that they will miss any class and to consult with the Instructor as soon as possible if they miss any class without prior notice. Any student who expects to miss more than one class session is strongly advised to drop the course and take it in a later semester when he/she can attend every class. Mason policy requires students to take exams at the scheduled time and place, unless prior approval is granted by the Dean of the school. Failure to attend a scheduled exam will result in a score of zero (0) for that exam. Please note that exams may be re-scheduled by the Registrar to compensate for disruptions in the semester schedule and students are expected to be available throughout the exam period including the scheduled Make-up Day. Classroom conduct Students are expected to conduct themselves in a manner that is conducive to learning, as directed by the Instructor. Any student who negatively impacts the opportunity for other students to learn may be asked to leave the classroom. Electronic devices are potential distractions in the classroom environment. Cell phones, pagers and other handheld devices must be turned off or set to "silent" mode and not used while class is in session. Laptop computers and similar devices may be used only if such use is directly related to the classroom activity in progress for some activities the Instructor may require that such devices not be used in order to maximize student engagement. Communications Registered students will be given access to a Blackboard section for this course. Blackboard will used as the primary mechanism (outside of lectures) to disseminate course information, including announcements, lecture slides, homework and other assignments, and scores for homework and exams. Some announcements may be sent via Blackboard to students' Mason email accounts Copyright 2017 Thomas G. Winston All rights reserved. Page 8 of 11

Communication with the Instructor on issues relating to the individual student only should be conducted using Mason email, via telephone, or in person - not in the public "Discussions" forums on Blackboard. To protect student privacy any communication related in any way to a student's status must be conducted using secure Mason systems if you use email to communicate with the Instructor you MUST send messages from your Mason email account. Students must activate and monitor their Mason email accounts to receive important information from the University, including messages related to this class. Lecture slides are complements to the lecture process, not substitutes for it - access to lecture slides will be provided in Blackboard as a courtesy to students provided acceptable attendance is maintained. All course materials (lecture slides, assignment specifications, etc) are published on Blackboard in Adobe Portable Document Format (PDF). This allows users of most computing platforms to view and print these files. Microsoft Word (or a compatible word processing application) is required for preparing assignments it is available on computers in the Mason open labs. Privacy Instructors respect and protect the privacy of information related to individual students. As described above, issues relating to an individual student will be discussed via email, telephone or in person. Instructors will not discuss issues relating to an individual student with other students (or anyone without a need to know) without prior permission of the student. Homework, quizzes, mid-term exams and other assessable work will be returned to individual students directly by the Instructor (or by a faculty or staff member or a Teaching Assistant designated by the Instructor, or via another secure method). Under no circumstances will a student's graded work be returned to another student. Instructors, staff, and Teaching Assistants will take care to protect the privacy of each student's scores and grades. Disability Accommodations The Office of Disability Services (ODS) works with disabled students to arrange for appropriate accommodations to ensure equal access to university services. Any student with a disability of any kind is strongly encouraged to register with ODS as soon as possible and take advantage of the services offered. Accommodations for disabled students must be made in advance ODS cannot assist students retroactively, and at least one week's notice is required for special accommodations related to exams. Any student who needs accommodation should contact the Instructor during the first week of the semester so the sufficient time is allowed to make arrangements. Copyright 2017 Thomas G. Winston All rights reserved. Page 9 of 11

Campus Notifications Students are encouraged to subscribe to the Mason Alert system to receive notifications of campus emergencies, closings, and other situations that could affect class activities. Each classroom has a poster explaining actions to be taken in different types of crisis. Further information on emergency procedures is available at http://cert.gmu.edu/. In the event of an emergency, students are encouraged to dial 911. Other Resources Mason provides many useful resources for students. The following resources may be particularly useful: The Writing Center The Academic Advising Center The University Libraries Counseling and Psychological Services University Career Services See http://www.gmu.edu/resources/students/ for a complete listing of Mason resources for students. Academic Integrity All members of the Mason community are expected to uphold the principles of scholarly ethics. The AIT major bas been designed to achieve several specific outcomes. One of those outcomes is: An understanding of professional, ethical, legal, security, and social issues and responsibilities. Graduating students are bound by the ethical requirements of the professional communities they join. The ethics requirements for some of the communities relevant to AIT graduates are available via the following links: ACM Code of Ethics and Professional Conduct IEEE Code of Ethics EC-Council Code of Ethics On admission to Mason, students agree to comply with the requirements of the Mason Honor Code. The Honor Code will be strictly enforced in this course. Honor Code cases are heard by a panel of students students who meet the requirements are encouraged to nominate themselves to serve on the Honor Committee. Copyright 2017 Thomas G. Winston All rights reserved. Page 10 of 11

Any use of the words or ideas of another person(s), without explicit attribution that clearly identifies the material used and its source in an appropriate manner, is plagiarism and will not be tolerated. The Instructor reserves the right to use manual and/or automated means (including such services as SafeAssign) to detect plagiarism in any work submitted by students for this course, and to direct Teaching Assistants and/or other faculty and/or staff members to do likewise in support of this course. For this course, the following requirements are specified: All assessable work is to be prepared by the individual student, unless the Instructor explicitly directs otherwise. All work must be newly created by the individual student for this course for this semester. Any usage of work developed for another course, or for this course in a prior semester, is strictly prohibited without prior approval from the Instructor. Instances of cheating whether perceived or real will result in actions to be determined by the instructor in accordance with University policies. This can include 1. An Honor Code Violation 2. A failure for the assignment in question 3. A failure for the course. George Mason requires instructors to report all instances of perceived cheating to the Office of Academic Integrity. Students are encouraged to ask for clarification of any issues related to academic integrity and to seek guidance from the Instructor, other faculty members, academic advisors, or the Office for Academic Integrity. Copyright 2017 Thomas G. Winston All rights reserved. Page 11 of 11

2024 © educationdocbox.com Privacy Policy | Terms of Service | Feedback