|Nov 09, 2004|
|EECS 498-1: Computer Security and Trustworthy Computing
|Prerequisite: EECS 482. 4 credits.
Semester: Winter 2005
Instructor: Professor Atul Prakash
Security components and threats. Integrity: one-way hash functions, digital signatures. Confidentiality: stream and block ciphers, efficiency considerations in use of cryptography. Authentication methods and their security analysis: passwords, biometrics, smartcards, network authentication protocols such as Kerberos and SSL. Authorization: access control models, discretionary-access control and mandatory-access control policies. Software security analysis: attack trees. Software attacks and writing secure code: exploits of buffer overflows, race conditions, misplaced trust. Security testing: fault-injection techniques, fuzzers, code analysis tools. OS kernel attacks and defenses. Auditing and intrusion detection. Perimeter security: firewalls. Overall system planning for security. Group programming projects. [More Info]|