Data and Applications Security (CS 6348) 
 
   Time and Location :  F 10am-12:[email protected] 2.203
     
Instructor                            :   Murat Kantarcioglu
Office Hours & Location :   Friday [email protected] 3.225
 
       Teaching Assistant             :     Lingchao Chen 
Office Hours & Location : Please e-mail
[email protected]

Prerequisites                  :   CS 5343
                        

Grading:

  •   Homework   %16 (4 homework, each worth 4%)
  •   Project         %24 (Group project (up to 3 people) that requires programming)
  •   Midterm       %25
  •   Final            %35 (All topics covered included)

 

   Course Topics: (tentative)
The course will teach principles, technologies, tools and trends for data
and applications security. Please see the course syllabus for details.

         
           Textbook:    
      

   None.

 Course Outline:

01.13.17

  • Access control basics
  • Reading:  Fred B. Schneiderís book chapter  (pdf)

01.20.17

  • Access Control Foundations
  • Reading: Fred B. Schneiderís book chapter (pdf)
  • Reading:  HRU paper (pdf)

01.27.17

  • Access control models

02.03.17

  • Access control models cont.

02.10.17

  • Integrity/Hybrid Models

02.17.17

  • Basic Cryptography Overview
  • Authentication
  • Reading:  Fred B. Schneiderís book chapter (pdf)
  • Homework 1 is available on elearning.
  • Project Description is available on elearning

02.24.17

03.03.17

  • Database Security
  • Encrypted Data storage in Databases
  • Reading:  Please read the following overview paper (pdf)
  • Reading:  Intel Sgx Overview (link)  
  • Reading:  Please read the following tutorial from Microsoft Research (pdf)
  • Homework 2 is available on elearning.

03.10.17

  • Access control in distributed systems
  • Reading:  Please read the following overview paper

03.17.17

  • Spring Break !!!

03.24.17

  • Midterm !!!
  • Homework 3 is available on elearning.

03.31.17

  • SQL and Code injection attacks
  • Reading: Please see the tutorial from Oracle.

04.07.16

  • Introduction to Data Privacy
  • Reading: K-annonymity (pdf), l-diversity (pdf), differential-privacy (pdf),
  • privacy-preserving distributed data mining (pdf)
  • Homework 4 is available on elearning.

04.14.17

  • Introduction to Data Privacy cont.

04.21.17

  • No Class.

04.22.17

Saturday
  • Introduction to Data Privacy cont. 
  • Please note this is a Saturday !!! Exact time and location will be determined.
04.28.17

  • Policy, legal etchics and compliance
  • Economics of data security and privacy
  • Reading:  Economics of privacy (pdf)

05.06.17

Saturday
  • We will have the final exam at the time scheduled by the university.
  • It will be held at 5/6/2017, Saturday, 11:00AM - 1:45PM at ECSS 2.203