T. Andrew Yang

Email: yang@uhcl.edu

Web: 

https://sceweb.uhcl.edu/yang/

Tel.:

(281) 2833835 

Last updated:

 

8/20: Test 1 time corrected

8/19/2024: first posted

CSCI 4323 Computer Security

fall 2024  (8/19 – 11/26 + final exam)

-         Instruction Mode:

·         This class will be held as a face-to-face class with supplemental services using Canvas, Zoom, and UHCL websites. 

Normally, students are expected to attend the class in person in the assigned classroom. However, when necessary (e.g., as announced by the university or the professor), the class may be taught as a remote class via Zoom. When a class session is conducted as an online class, click https://uhcl.zoom.us/j/93285948037?pwd=U3NJMmhMaWVjZy9INUxwbS9ENDBvZz09 to join the class online.

-         Using Canvas:

·         Class-related announcements and discussions are posted in the Canvas. Be sure to check the posted messages before each of the class meetings.

·         For those who are new to Canvas, visit the UHCL's Canvas Student Support page (at https://www.uhcl.edu/computing/course-development/canvas-student-support) to become familiar with the app.

Class Notes, Topics & Schedule

Grading policy

Time (Classroom)

Tuesdays & Thursdays, 11:30am – 12:50pm (Delta 201)

Course Description: Introduction to encryption and decryption; security mechanisms in computer architectures, operating systems, database, networks, and introduction to network security.

Prerequisite: CSCI 1370 Software Development with Java, or equivalent.

Course Objectives: Introduction to encryption and decryption; security mechanisms in computer programs, operating systems, databases, networks, administration of computer security, and legal/ethical issues in computer security.   This course provides foundation knowledge for further advanced study of security issues in computer systems and applications.

 

Learning Outcome:

-        Understand the five security components (confidentiality, integrity, authenticity, availability, and nonrepudiability), and apply them when evaluating a given security mechanism.

-        Understand the process of developing a secure application, including development of security policies, sample policy languages, relationship between security policies and mechanisms, and different types of security mechanisms.

-        Understand basic cryptography (encryption and decryption) and major cryptographical protocols, including symmetric and asymmetric cryptography, message digests, HMAC, digital signatures, digital certificates, key exchange, and key storage, etc.

-        Develop sample applications using security protocols provided by a given language such as Java (JCA, JCE).

-        Understand legal and ethical issues in computer security (privacy issues, Computer Security Act, HIPPA, etc.).

-        Have an overall understanding of some security applications, including authentication, access control, network security, and system security.

Class Format: Lectures are combined with discussions. Students are expected to be active participants, by studying the relevant chapters and/or research papers, and participating at in-class discussions.

 

Lifelong learning

“Education is not something you can finish.” (Isaac Asimov)

A note about Bloom's Taxonomy and your learning …

(source: https://tips.uark.edu/using-blooms-taxonomy/ )

Instructor: Dr. T. Andrew Yang

-        Email address: yang@uhcl.edu

-        Web site: https://sceweb.uhcl.edu/yang

-        Office: Delta 174

-        Phone: (281) 283-3835 (Please leave a message if not available.)

 

-        Drop-in Office Hours:

Tuesdays: 10:00am-11:30am

Wednesdays: 12:00-1:00pm

Thursdays: 10:00am-11:30am

o   In-person: D174

o   via Zoom meetings, click this link during the posted office hours: https://uhcl.zoom.us/j/93285948037?pwd=U3NJMmhMaWVjZy9INUxwbS9ENDBvZz09

 

-        To communicate with the professor, you are encouraged to email your questions or issues to yang@uhcl.edu and, if necessary, set up a time with the professor to have an online meeting. Emails are typically replied within 24 hours. If you have not received a response within 24 hours, either send a reminder email or leave a message at (281) 283-3835.

 

-        Using emails effectively:

Emailing has become an indispensable tool in most work places.

Emails without a subject line or the signature line will be considered as potentially malicious and be discarded. Here is a sample subject line: "CSCI 4323 Lab #1, question 3". The signature line should have your full name and the name of the class.

Although email messages tend to be informal, please check the grammar and spelling of your messages to ensure their legibility.

Try to provide sufficient details in your email message, such as the problem(s) you have encountered, the solution(s) you have tried, and the outcome you have got from these solution(s).

Teaching assistant info and office hours

 

Jaknalli, Shriya

Email: JAKNALLIS0447@UHCL.edu

 

Office hours:

Monday:  10 AM  to 11 AM (1 hour)

Tuesday: 1 PM to 6 PM  ( 5 hours)
Wednesday:   12 PM to 4 PM (4 hours)

Thursday: 3 PM to 7 PM (4 hours)

Zoom meet: https://uhcl.zoom.us/j/8969663039

 

TA’s office hours are conducted in Delta PC Lab (2nd floor) and as Zoom meetings as well.

 

Required Text:

B: Matt Bishop. Introduction to Computer Security. Addison Wesley. 2004. (ISBN: 0321247442)

+ Instructor's handouts in the class and/or on the Web

 

Recommended Text:

D: Wenliang Du, Computer & Internet Security: A Hands-on Approach, 2nd EditionMay 1, 2019ISBN10: 1733003932, ISBN13: 9781733003933.

Resources:

·         The SEED Security Labs: https://seedsecuritylabs.org/

·         SEED Cryptography Labs: https://seedsecuritylabs.org/Labs_16.04/Crypto/

·         Computer & Internet Security  slides, problems and labs: https://www.Hands-onsecurity.net/resources.html

Topics and Notes­

NOTE: The following schedule will be adhered to as closely as possible, although changes are probable. Always check with your instructor if you are not sure about what would be covered next week.

week (dates)

Topics & Slides (Book: Chapters)

Due Dates

1 (8/20, 22)

-       Syllabus

§  Canvas (Discussion Board, Labs, Exams, etc.), Zoom (if online sessions), Web (syllabus & schedule), Emails

I. Fundamentals

-       Overview of computer security (B: 1)

 

2 (8/27, 29)

-       Overview: components and mechanisms

 

3 (9/3, 5)

-        

 

4 (9/10, 12)

-       Security Policies (B: 4)

 

Lab 1 (9/12)

5 (9/17, 19)

II. Cryptography et. al.

-       Symmetric Cryptography 1 (B: 8, D: 21)

 

Quiz (9/19)

6 (9/24, 26)

-        

 

7 (10/1, 3)

-       Asymmetric Cryptography 2 (B: 8, D: 23) + Extended Euclidean Algorithm (B: 31) + inverse.java (computing the inverse of a mod n, given a and n)

-        

 

8 (10/8, 10)

-       Review for Test 1

-       Sample midterm exam from the past

 

Test 1 (10/10)

11:30am-12:50am

9 (10/15, 17)

-       Certificates (B: 9, D: 24)

 

Lab 2 (10/17)

10 (10/22, 24)

-        

 

11 (10/29, 31)

-        

 

12 (11/5, 7)

-       Key Exchange (B: 9)

 

13 (11/12, 14)

-        

 

Lab 3 (11/14)

14 (11/19, 21)

-        

 

 

15 (11/26, 28)

-       Review for Test 2

-       Take your online course evaluations at https://apps.uhcl.edu/OnlineEvals (before the last teaching day).

 

16

-       Final exam week

Test 2: Tuesday 12/3, 10:00am-11:30am

 

 

Test 2

 

Attendance Policy: You are expected to attend all classes. If you have ever missed a class, be sure to watch the recorded session to learn what had been covered. It is your responsibility to get hold of whatever may have been discussed in the class.

Evaluation:

Category

Percentage

Take-home labs (10% each X 3)

 

Quiz

30%

5%

Test 1

25%

Test 2

35%

Participation+

5%

 

Total:

100%

+ Class Participation: Participating in the class is expected. You should ask or answer questions during the in-class or online discussions.

Grading Scale:

The accumulated points from all the categories determine a person's final grade. There will be no extra-credit projects.

Percentile

Grade

 

Percentile

Grade

90% or above

A

 

70%  73%

C

87%  89%

A-

 

67%  69%

C-

84%  86%

B+

 

64%  66%

D+

80%  83%

B

 

60%  63%

D

77%  79%

B

 

57%  59%

D-

74%  76%

C+

 

Less than 57%

F

Grading policy:

-        All students are graded the same way according to the grading scale posted above.

-        Unless a grading error is found in an exam or assignment, a student’s grade will NEVER be changed once it is assigned.

-        No extra projects or assignments would be given to an individual student to help improve his/her grades.

Advices:

o   Your grades will be continually updated in the Blackboard. It is your obligation to monitor your grade-in-progress regularly, and immediately ask questions or seek help if you are concerned.

o   Once a grade is assigned and posted (in the Blackboard), a student may appeal for correction of the assigned grade (if a grading error is found) within a week. After that, the grade is finalized.

o   Never bother to appeal for a change of your grade once it is finalized; the best and proper time of improving your chance of earning a good grade is before it is finalized.

Quizzes, Tests, and Exams:

Both analytic and synthetic abilities are emphasized. Being able to apply the learned knowledge toward problem solving is also highly emphasized in the tests. 

Unless due to unexpected, documented emergency, no makeup tests or quizzes will be given.

Assignments and Late Penalty:

Assignments will be posted on the class web site as well as in the Blackboard. The due date and time of each assignment is specified when it is published in the Blackboard.

A late assignment will not be graded. No extension will be granted except for documented emergency. Starting to work on the assignments as early as possible is always the best strategy.

 

Assignments Guidelines:

-        Identification page: All assignments must have your name, and course name/number/section number (e.g., CSCI 4323) at the top of the first page.

-        Proper organization of submitted material: If your submission include multiple documents, combine all of them into a single document (for example, a single PDF or ZIP).

-        Order! Order! Arrange the solutions following the sequence of the questions. Write the question number at the top-right corner of each page.

-        Word processing: It is required that you type your reports (e.g., print them using a printer). Use a word processor and appropriate typesetting and/or drawing tools to do the assignments. Spellcheck the whole document before printing it. You may lose points due to spelling or grammatical errors. 

A note about problem-solving:

An important part of problem solving is correct understanding of the given problem.

-        Try to have a good grasp of the problem before starting the process of finding the solution(s).

-        Use any resources, including the instructor, the TA, your classmates/friends, and online resources to ensure that you have correctly understood the given problem.

-        While trying to figure out the solution(s), continue to verify your understanding of the problem.

-        Read the given instructions carefully before taking any action; while preparing your solutions, be sure to follow the given instructions.

NOTE: When a grade is assigned, the grade can only be appealed within a week after the grade has been posted. Always review a graded lab or test immediately and, if needed, talk to the instructor within a week.

Academic Honesty Policy:

NOTE: Unless otherwise specified, all assignments, projects, quizzes, tests and exams are individual work.

Students should take caution not to violate the academic honesty policy specified by the university.

Per the UHCL academic honesty policy, plagiarism is defined as follow.

Plagiarism:

a. Incorporating the work or idea of another person into one’s own work without acknowledging the source of that work or idea.

b. Attempting to receive credit for work performed by another person, including papers obtained in whole or part from individuals or other sources.

c. Copying copyrighted computer programs or data files belonging to someone else.

Visit http://cse.uhcl.edu/yang/citing.htm for more information about cited references.

Instructor's Notes:

-        Important: If you think you have lost some points due to grading errors, make sure you approach the instructor within a week after the assignment, project, or test has been graded.

-        To get the most out of this class, you need to read the textbooks and spend time using computers regularly. Be prepared for a class by previewing the material to be covered in that class and participate in discussions and problem-solving exercises, if applicable, in the class.

-        Taking notes and understanding what are covered in classes are essential for successfully passing the exams.

-        As a student being trained to become a professional person, you are expected to behave according to the professional codes of conduct (e.g., the IEEE Code of Conduct) or code of ethics (e.g., the ACM Code of Ethics).

As a starting point, listed below are some of the common behaviors that do not conform to the codes of ethics:

-       Being regularly late for the class.

-       Chatting with another person while the instructor or someone is giving a speech in class.

-       Being regularly late when submitting assignments.

-       Asking the instructor or the TA for a favor when submitting a late assignment.

-       Checking out others’ answers during an exam.

-       Continuing to write when an exam’s time is up, or submitting an online exam past the due time.

-       Violating academic honesty when working on the assignments or exams.

-       Using others’ write-up without proper citing when writing a paper or report.

-       …

Related Links:

·  UHCL General Program Requirements: https://catalog.uhcl.edu/current/

 

· Withdrawals, Appeals, GPA, Repeated Courses, and the 6 Drop Rule: https://www.uhcl.edu/registrar/enrollment/six-drop-rule

 

· ASSESSMENT FOR ACCREDITATION:

The School of Science and Computer Engineering may use assessment tools in this course and other courses for curriculum evaluation.  Educational assessment is defined as the systematic collection, interpretation, and use of information about student characteristics, educational environments, learning outcomes, and client satisfaction to improve program effectiveness, student performance, and professional success. This assessment will be related to the learning objectives for each course and individual student performance will be disaggregated relative to these objectives.  This disaggregated analysis will not impact student grades, but will provide faculty with detailed information that will be used to improve courses, curriculum, and student performance.

· UHCL Disability Policy:

If you believe that you have a disability requiring an academic adjustment/auxiliary aid, please contact the Accessibility Support Center by phone at 281-283-2648, or email disability@uhcl.edu, or go to the office in the Student Services Building (SSCB), Room 1.302.

The University of Houston System complies with Section 504 of the Rehabilitation Act of 1973 and the Americans with Disabilities Act of 1990, pertaining to the provision of reasonable academic adjustments/auxiliary aids for students with a disability. In accordance with Section 504 and ADA guidelines, each University within the System strives to provide reasonable academic adjustments/auxiliary aids to students who request and require them.

 

Go to the Index

UHCL Covid-related Policies and Information (Fall 2021)

The documentation below contains language approved by the Office of General Council from UH System for inclusion in all syllabi. 

Face Covering Policy
To reduce the spread of COVID-19, the University strongly encourages everyone (vaccinated or not) to wear face coverings indoors on campus including classrooms for both faculty and students.  In addition, please respect each other’s personal space in the classroom to help reduce viral spread.

Presence in Class
Your presence in class each session means that you:

·        Are NOT exhibiting any  Coronavirus Symptoms that makes you think that you may have COVID-19

·        Have NOT tested positive or been diagnosed for COVID-19

·        Have NOT knowingly been exposed to someone with COVID-19 or suspected/presumed COVID-19

If you are experiencing any COVID-19 symptoms that are not clearly related to a pre-existing medical condition, do not come to class. Please see Student Protocols for what to do if you experience symptoms and potential exposure for what to do if you have potentially been exposed to COVID-19. The Covid-19 Reporting Forms for students are easily accessible and you are encouraged to report a diagnosis or an exposure.

COVID-19 Information
Students are encouraged to visit the University’s COVID-19 website for important information including on-campus testing, vaccines, diagnosis and symptom protocols, campus cleaning and safety practices, report forms, and positive cases on campus. Please check the website throughout the semester for updates.

Vaccinations
Data suggests that vaccination remains the best intervention for reliable protection against COVID-19. Students are asked to familiarize themselves with pertinent vaccine information, consult with their health care provider. The University strongly encourages all students, faculty and staff to be vaccinated. 

Reasonable Academic Adjustments/Auxiliary Aids
The University of Houston-Clear Lake complies with Section 504 of the Rehabilitation Act of 1973 and the Americans with Disabilities Act of 1990, pertaining to the provision of reasonable academic adjustments/auxiliary aids for disabled students. In accordance with Section 504 and ADA guidelines, UHCL strives to provide reasonable academic adjustments/auxiliary aids to students who request and require them. If you believe that you have a disability requiring an academic adjustments/auxiliary aid, please contact the Accessibility Support Center.

Recording of Class
Students may not record all or part of class, livestream all or part of class, or make/distribute screen captures, without advanced written consent of the instructor. If you have or think you may have a disability such that you need to record class-related activities, please contact the Accessibility Support Center. If you have an accommodation to record class-related activities, those recordings may not be shared with any other student, whether in this course or not, or with any other person or on any other platform. Classes may be recorded by the instructor. Students may use instructor’s recordings for their own studying and notetaking. Instructor’s recordings are not authorized to be shared with anyone without the prior written approval of the instructor. Failure to comply with requirements regarding recordings will result in a disciplinary referral to the Dean of Students Office and may result in disciplinary action.

Syllabus Changes
Due to the changing nature of the COVID-19 pandemic, please note that the instructor may need to make modifications to the course syllabus and may do so at any time. Notice of such changes will be announced as quickly as possible through BlackBoard.

Resources for Online Learning
The University of Houston-Clear Lake is committed to student success, and provides information to optimize the online learning experience through our Office of Information Technology website and the special Covid-19 Computing Resources website. Please visit this website for a comprehensive set of resources, tools, and tips including: obtaining access to the internet, E-Services, and Blackboard; requesting a laptop through the Online Learning Assistance Program (OLARP); using your smartphone as a webcam; and downloading Microsoft Office 365 at no cost. For questions or assistance contact supportcenter@uhcl.edu.

UHCL Email
Please check and use your UHCL email for communications related to this course.

Go to the Index