Faculty Contact Information:
Dr. Leonello Calabresi
e-mail: lcalabresi@faculty.ed.umuc.edu
work phone: +39 081 842 7128
|
|
Consultation:
Before or after each class meeting, or by appointment.
Class meetings are Tuesdays and Thursdays, 18.00 - 21.00, starting October 28th and ending December 18th.
|
|
Required Texts and Readings:
|
Whitman, M.and Mattord, J. (2003). Principles of Information Security. Boston, MA: Thompson - Course Technology.
|
|
Supplementary Readings:
The standard for papers in the graduate program is the APA style. All participants in this course and all graduate INSS, MGMT, PUAD, and ECON courses should have a copy of the style guide:
American Psychological Association. (2001). Publication Manual of the American Psychological Association, 5th Edition. Washington DC: Author.All graduate students should be prepared to utilize the UMUC online library at http://www.umuc.edu/library/. The library contains a large number of full text academic journals that are free of charge and immediately available. The library homepage also contains a number of links related to improving students' research and writing skills.
|
|
Recommended Journals:
|
Publications of the various professional societies (such as ACM -- the Association for Computing Machinery, the IEEE Computing Society, and the various management professional societies) are strongly recommended. In addition, there are many trade journals (such as eWEEK) that MIS professionals should become familiar with, many of these being published both weekly and on-line.
|
|
Course Description:
|
3 semester hours credit. Prerequisites: Either INSS 510, INSS 520, INSS 530, or permission of the Program Director. Explores security policies, models, and mechanics for secrecy, integrity, and availability. Topics include operating systems models and mechanisms for mandatory and discretionary controls; data models, concepts, and mechanisms for database security; basic cryptography and its applications; security in computer networks and distributed systems; as well as control and prevention of viruses and other malicious programs.
|
|
Course Goals:
Upon completion of the course, participants should:
1. Understand the threats, vulnerabilities and risks with an information system infrastructure
2. Understand the security issues in network systems
3. Have a basic understanding of cryptography
4. Be familiar with cryptographic technologies including symmetric key cryptosystem and asymmetric key cryptosystem
5. Have a basic understanding of firewalls, routers and protocols in communication systems
6. Be familiar with Risk Management practices
7. Be able to distinguish between business continuity and disaster recovery
8. Develop an understanding of laws and ethics regarding information systems security
|
|
Course Objectives:
At the conclusion of this course the student will be able to:
1. Identify the resources of an information system that must be protected
2. Distinguish information security from operations and physical security
3. List potential security threats, vulnerabilities and risks of information systems, particularly on the network
4. Define and discuss the role of cryptography
5. Evaluate various data encryption methods
6. Identify various control mechanisms used to prevent, detect and correct error in an information system
7. Define the responsibilities of Security Administrators
8. Be able to develop a disaster recovery plan for an information system
9. Develop standards, guidelines and procedures to implement security policy in an information system
|
|
Grading Information:
Grades for this course will be assigned as follows:
A 92 - 100
B 80 – 91.9
C 70 – 79.9
F Below 70%
Please note that Bowie State University does not use "D" for graduate students. The grade F(a) is used to designate academic failure. F(n) is used to designate failure for non-completion. Grades of Incomplete or Withdrawal are governed by UMUC-Europe policies. For further details, please refer to the UMUC-Europe Graduate Catalog, available in your local Education Center or online at http://www.ed.umuc.edu/general_info/publications/catalogs.
|
|
Course Requirements:
Graduate school at the masters level focuses on helping students obtain the education needed for success as professionals in their chosen fields. Thus, UMUC-Europe Graduate Programs and Bowie State University share the common goals of promoting excellence in academic scholarship through thoughtful inquiry and the skillful application of knowledge and theory for the betterment of society.
In order to maximize your graduate educational experience in general and this course in particular, you are required to:
10% - Participate in classroom discussions
20% - Write graduate level papers and orally/visually present prepared material
15% - Homework assignment
25% - Complete a Midterm examination
30% - Complete a Final examination (Comprehensive)
|
|
Description of Course Requirements:
* It will be to the your advantage to attend all classes. When absence is unavoidable, it is your own responsibility to makeup any work missed before the next class session. For administrative purposes, attendance will be recorded. If you are expecting or experiencing long absences during the term then you should contact the faculty.
* Write graduate level papers or case studies: You are required to conduct professional-level research, including appropriately citing works of others and avoiding plagiarism. Plan on committing a considerable amount of time over the duration of this course producing professional level deliverables for your papers or case studies.
* Orally/visually present prepared material: You are required to present your results in a professional manner. In a face-to-face course, this typically means an oral presentation accompanied by appropriate visual material.
* Offline discussions will be held during class sessions as needed. Their purpose is to give you options to discuss the topics covered. You are expected to come to class prepared to engage in all discussions in a professional and informed manner. Usually this requires two to three hours for every hour of a face-to-face class.
* Complete one or more written examination(s): The examination process in this class will assist you in developing the writing and critical thinking skills necessary for successfully passing the comprehensive exam required of all graduate students. The examinations will be based on essay questions. You are expected to write your answers with proper terminology.
* Homework assignments will be given after each class meeting. They will be based on exercises at the end of each chapter. You are expected to hand it on the due date, and to be able to discuss it in class. Late homework will be penalized 20%. If you are absent on the due date you have the chance to hand it on next meeting date.
|
|
Course Schedule:
This schedule presents 16 units or modules, with each unit corresponding to a regular three-hour weekday meeting.
Initial meeting:
Introductions
Review of syllabus
Clarification of goals, objectives and requirements
Orientation to subject
Introduction to Information Security (Ch. 1)
Second meeting:
The Need for Security (Ch. 2)
Third meeting:
Legal, Ethical and Prof. Issues in Information Security (Ch. 3)
Fourth meeting:
Risk Management: Identifying and Assessing Risk (Ch. 4)
Paper topic proposal due.
Fifth meeting:
Risk Management: Accessing and Controlling Risk (Ch. 5)
Sixth meeting:
Blueprint for Security (Ch. 6)
Seventh meeting:
Planning for Continuity (Ch. 7)
Eighth meeting:
Question Time
Midterm Examination (2 hrs)
Ninth meeting:
Security Technology (Ch. 8)
Rough draft of paper encouraged this week or next
Tenth meeting:
Cryptography (pg 323-354)
Eleventh meeting:
Physical Security (Ch. 9)
Twelfth meeting:
Implementing Security (Ch. 10)
Thirteenth meeting:
Security and Personnel (Ch. 11)
Final version of paper due
Fourteenth meeting:
Information Security Maintenance (Ch. 12)
Fifteenth meeting:
Student presentations
Course evaluations
Sixteenth meeting:
Final Examination – Comprehensive, with heavier emphasis on
material since the Mid-term (3 hrs)
|
|
Academic Policies:
Please refer to the UMUC - Europe Graduate Catalog, available online at http://www.ed.umuc.edu/general_info/publications/catalogs/index.html or from your local Education Center, for information on the following:
Academic Integrity
Course Load
Exception to Policy
Grade Appeal Process
Make-up Examinations
Nondiscrimination
Students with Disabilities
|
|
Faculty Bio:
|
Leonello Calabresi was born in Aversa (CE), Italy in 1966. He received the Doctor Degree in Computer Science in 1997 at University of Salerno. He works as a researcher for Advanced Systems S.r.l. Company in Naples. He has been teaching for Maryland in Europe since March 2001. Since 1994 he has contributed in the creation of Advanced Systems’ Legacy System, developing client / server software components, based on Internet Technology, and defining the general guidelines for the development of Multi-Tier and Web based Applications in that Company. Since May 2002 he is the head of the Quality System Program in Advanced Systems. He has a broad range of experience on research projects in the field of Data Warehousing, that were developed on several of the most diffused OSs – going from IBM operating systems such as MVS and OS/400, through Microsoft Windows Platforms. Nowadays he is a reference point in Advanced Systems in the field of Object Oriented Programming and Object Oriented Design, for C++, Delphi, and Java.
|
|