T. Andrew Yang

 

Email: yang@uhcl.edu

Web page:  http://sce.uhcl.edu/yang/

Tel.: (281) 283-3835


Last updated: 4/06

CSCI 5931 Research Topic: Network Security
Spring 2006 (1/17 - 5/1 + final)

 

Class Notes, Topics & Schedule
- Print out the class notes and bring them to the class.

Presentation & Projects

Announcements

Office Hour
  • Check the discussion group for recent announcements & reminders.  To join the group, you'd need to have a yahoo id. To be accepted into the discussion group, make sure that your yahoo id contains both your first and last names. If you have not joined the discussion group yet, you may join at http://groups.yahoo.com/group/NetworkSecuritySpring06/.

Time & Classroom

Thursdays, 7-9:50pm (Delta 234)

Course Prerequisite:  CSCI5233 Computer Security and CSCI4132 Network Protocols (or csci5132 Internet Protocols), or the instructor’s approval.

Course Objectives:  This course provides an essential study of computer security issues and methods in networking systems. Topics to be covered include review of networking, advanced cryptography, access control, distributed authentication, TCP/IP security, firewalls, IPSec, Virtual Private Networks, intrusion detection systems, and advanced topics such as wireless security, identity management, etc.

Class Format:  Lectures are combined with discussions and, if applicable, student presentations and discussions of advanced topics.  Students are expected to be active participants, by studying the relevant chapters and/or research papers, and participating at in-class discussions.

Instructor:   Dr. T. A. Yang

(office) Delta 106

(phone#) (281) 283-3835 (Please leave a message if not available. 

NOTE: If the suite office is locked, you may use the phone outside the office to call me (by entering the extension 3835).

  (email address) yang@uhcl.edu Note: Emails without a subject line or signature will be considered as potential viruses and be discarded.  Here is a sample subject line: "CSCI5233 project #1, question 1".

  (web site)  http://sce.uhcl.edu/yang NOTE: Find the assignments and/or projects at the  Assignments & Projects page.

Office Hours : See http://sce.uhcl.edu/yang/teaching/officeHours.htm

NOTE: In addition, you are highly encouraged to send your questions to me by e-mails (yang@uhcl.edu ). Try to provide sufficient details in your email message, such as the problem(s) you have encountered, the solution(s) you have tried, and the outcome you have got from these solution(s).

Teaching Assistant: 

  Name: Duy Cao (email: duycao_uhcl@yahoo.com)

Location: PC LAB / NT LAB

Office Hours:

Monday: 4:00pm – 7:00pm

Tuesday: 4:00pm – 10:00pm

Wednesday: 1:00pm – 3:00pm

Thursday: 01:00pm – 4:00pm

Required Text:

M:

Saadat Malik, Saadat Malik. Network Security Principles and Practices (CCIE Professional Development). Pearson Education. 2002. (ISBN: 1587050250) 

+ Instructor's handout in the class and/or on the Web

  • Supplemental Materials

Check out the research papers about WLAN security, mobile security, etc. by clicking this.

RFC 2828 Internet Security Glossary. R. Shirey. May 2000.

To find a particular RFC, visit the RFC Search site.

  • Slides and Background info

Symmetric cryptography (S: Ch 2): 2a, 2b, 2c, 2d, 2e

Public-key cryptography (S: Ch3): 3a, 3b, 3c

CSCI5233: slides

Topics and Notes

  • The following schedule will be followed as much as possible, although changes are probable.  Always check with your instructor if you are not sure what would be covered next week.
  • Lecture slides were originally created by Lawrie Brown and Henric Johnson (available from Prentice Hall's web site), with modifications by A. Yang.

wk (dates)

Topics & Slides (Book: Chapters)

Due

1 (1/19)

Syllabus
I. Review and Fundamentals

Overview of networking security

Tour of the Computer Security Lab (D158) & the Distributed Computer Security Lab (D140)

 

 

Check out the swappable drives

2  (1/26)

ITU's Recommendation X.800
OSI model

Team membership (email)

3  (2/2)

II. Building Security into the Network

The model of network security process (M: Ch 1)

+ a refined network security development model

Defining security zones (M: Ch 2)

Presentation (abstract)

4  (2/9)

Device security (M: Ch 3)

Device security (B)

Project 1

5  (2/16)

Secure Routing (M: Ch 4)
Secure LAN switching (M: Ch 5)

 

6  (2/23)

IEEE 802.1x protocol

NAT and security (M: Ch 6)

Project 2

7  (3/2)

midterm exam (closed book)

Midterm exam

8  (3/9)

WLAN traffic graphing application using simple network management protocol. Bhargavi Hiremagalur, Dulal C. Kar. Journal of Computing Sciences in Colleges, Vol. 20, Issue 4. April 2005: 151-159. (local copy)

 

9  (3/16) spring break

10  (3/23)

Individual Presentations

(Send me your presentation sldies to be posted here at least 24 hours in advance.)

Oral presentation

11  (3/30)

IV. System Security

Firewalls (M: Ch 7)

Project 3

12  (4/6)

PIX Firewalls (M: Ch 8)

IOS Firewalls (M: Ch 9)

 

13  (4/13)

VPN (M: Ch 10, 11, 12)

Project 4

14  (4/20)

Intro. to IP security (slides from the Stallings book)

IPsec VPNs (M: Ch 13)

Project 4 (new date)

15 (4/27)

Intrusion Detection (M: Ch 14, 15)

Network Access Control (M: Ch 16, 17, 18, 19)

Written presentation (report)

16 (5/4)

comprehensive final exam (open-book)

Thur. May 4, 7-9:50pm (D234)

Final exam or

advanced project+

+ Advanced projects

Teams that have excelled in the required projects may be allowed to work on advanced projects, in lieu of the final exam requirement. The demo and the final report of the advanced project are due at 12 noon of the final exam day. Around the 10th week, get permission and discuss details of the advanced project with the instructor.

  Computer Labs & Hours

Check http://sce.uhcl.edu/computing.asp for lab information, open hours, FAQs, etc.

·        UNIX account information at:  http://sce.uhcl.edu/UnixLabFAQ.asp    

·        NT account information at:  http://sce.uhcl.edu/accountSearch.html

·        All the software that is available for use in the UNIX and NT labs can be found at the following web pages: http://sce.uhcl.edu/NTLabIntroduction.asp for the NT lab and http://sce.uhcl.edu/UnixLabSoftware.asp for the UNIX lab.

Evaluation:

 

category

percentage

presentations

15%

projects

40%

midterm exam

25%

final exam (or advanced project+)

20%

Grading Scale:

 

 

Percentile

Grade

93% or above

A

90% - 92%

A-

87% - 89%

B+

84% - 86%

B

80% - 83%

B-

77% - 79%

C+

74% - 76%

C

70% - 73%

C-

60%-69%

D

59% or below

F

 

Projects:

The projects will involve the design and implementation of networking protocols and/or application. Students are expected to employ the theories and techniques learned in the class to design the system. Network simulation environments, such as NS-2, may be used in implementing the projects.

Details of the projects will be later made available at Assignments & Projects


Tests:

Both analytic and synthetic abilities are emphasized. Being able to apply the learned knowledge toward problem solving is also highly emphasized in the tests. 

Assignments and Late Penalty:

Assignments and projects will be posted at the class web site. Assignments & projects are due before the beginning of the class on the due day.  See Topics and Notes for the due dates. 

Points will be deducted from late assignments: 20% for the first 24 hours after the due time, 40% for the next 24 hours, 70% for the third 24 hours, and 100% after that. No extension will be granted except for documented emergency. Starting to work on the assignments as early as possible is always the best strategy.
NOTE: Unless otherwise specified, all assignments and projects are individual work.  Students should take caution not to violate the academic honesty policies.  See  http://b3308-adm.uhcl.edu/PolicyProcedures/Policy.html for details.

Assignments Guidelines:

a. Identification page: All assignments must have your name, and course name/number/section number (e.g., CSCI5931-01) at the top of the first page.

b. Proper stapling:  Staple all the pages together at the top-left corner. NOTE: Do not use paper clips.

c. Order ! Order!  Arrange the solutions following the sequence of the questions. Write the question number at the top-right corner of each page.

d. Word  processing:  It is required that you type your reports (e.g., print them using a printer). Use a word processor and appropriate typesetting and drawing tools to do the assignments. Spell-check the whole document before printing it. You may loose points due to spelling or grammatical errors.

Attendance Policy:

You are expected to attend all classes. If you ever miss a class, it is your responsibility to get hold of whatever may have been discussed in the class.

Instructor's Notes:

  • Unless due to unexpected, documented emergency, no make-up exams will be given. No make-up exams will be granted once the exams have been corrected and returned to the class. 
  • Important:   If you think you have lost some points due to grading errors, make sure you approach the instructor within a week after the assignment, project, or test is returned to you.  
  • To get the most out of this class, you need to read the textbooks and spend time using computers regularly.  Be prepared for a class by preview the material to be covered in that class and participate in discussions and problem-solving exercises, if applicable, in the class.
  • Due to the intensive nature of graduate classes, 15-20 hours per week are expected of students in studying the textbook/notes and working on the assignments, in addition to class attendance.   Expect to spend more hours during summer sessions.

Go to the  Index

  Main Page

  Biography

  Teaching

o       Office hours

   Research

o       Active projects

o       Research interest

o       Publications

o       Presentations

o       Grants

   Services

o       Student support

o       Committees

o       Curricular development

o       Centers

   Other Links