INFORMATION SECURITY INSTITUTE

650.414 (S)

RIGHTS IN THE DIGITAL AGE (3) Jacobs   Limit 20   Perm. Req’d.  (This course will be taught in Washington, DC and video-cast into Hodson Hall Rm 213.)  This course will examine various legal and policy issues presented by the tremendous growth in computer technology, especially the Internet. The rights that various parties have with respect to creating, modifying, using, distributing, storing, and copying digital data will be explored. The concurrent responsibilities, and potential liabilities, of those parties will also be addressed. The course will focus on intellectual property issues, especially copyright law, and other legal and economic considerations related to the use and management of digital data. Copyright law and its role within the framework of intellectual property law will be presented in a historical context with an emphasis on its applicability to emerging-technology issues. Specifically, the treatment of various works, such as music, film, and photography that were traditionally, analog in nature will be analyzed with respect to their treatment in the digital domain; works that are by their nature digital, such as computer software, will also be analyzed. The current state of U.S. copyright law will be presented, as will relevant international treaties and foreign laws. The goal of the course is to provide those involved or interested in digital rights management with a general awareness of the rights and obligations associated with maintaining and distributing digital data.

Sec. 01

M 3:30-5:30pm

650.433 (E)

EMBEDDED COMPUTER SYSTEMS (3) Kalb   Limit 20   Depart. Majors Only
Course taught On-line   This course provides an understanding of differences in network-based   computers, program mobility, current intrusion protection technologies and exploitation methods along with material relating to computer hacking and vulnerability assessment.

Sec. 01

On-line

650.457 (E)

COMPUTER FORENSICS (3) Lavine  Limit 25  This course introduces students to the field of computer forensics and it will focus o n the various contemporary policy issues and applied technologies.  Topics to be covered include: legal and regulatory issues, investigation techniques, data analysis approaches, and incident response procedures for Windows and UNIX systems.  Homework in this course will relate to laboratory assignments and research exercises.  Students should also expect that a group project will be integrated into this course.

Sec. 01

M 6-8:30pm 9:30pm 9:30-12

650.459 (E)

SOFTWARE VULNERABILITY ANALYSIS (3) Stubblefield  Limit 16   Course added 4/27/07

Sec. 01

On-line

650.651

HEALTH INFORMATION PRIVACY LAW AND POLICY Hodge   Limit 26
Core health course for MSSI Course meets October 30-December 18 Oct. 23-December 22
This course pertains to issues relating to protecting health information privacy in the modern era. Theoretical and ethical discussions underlying health information privacy are covered. The primary focus of the course is to provide a modern context through which privacy protections are debated, constructed, implemented, and enforced. The course attempts to instruct students on the legal, policy, and practical issues surrounding the protection of health information privacy. The major federal and state privacy laws and policies and how these laws and policies are implemented in the public and private sectors is considered.

Sec. 01

T 10:30-1:45

650.736

INFORMATION SECURITY PROJECTS Staff    Limit 16  Perm. Req’d.   MSSI students only

Sec. 01

T 3-5

NOTE: The following courses are cross-listed from the Computer Science Department – see the Computer Science Department’s listings for descriptions.

600.415 (E)

DATABASE SYSTEMS (3) Yarowsky   Limit 30  Prereq: 600.226   Students may receive credit for 600.315 or 600.415, but not both. Graduate level version of 600.315 Cross-listed with Computer Science

Sec. 01

ThF 2:30-3:45

600.419 (E)

STORAGE SYSTEMS (3) Burns   Limit 20 Prereq: 600.226 and 600.333/433  Students may receive credit for 600.314 or 600.419, but not both. Graduate level version of 600.319
Cross-listed with Computer Science

Sec. 01

MTW 1

600.421 (E)

OBJECT ORIENTED SOFTWARE ENGINEERING (3) Smith   Limit 30   Prereq: 600.226 and 600.120  Students may receive credit for 600.321 or 600.421, but not both. Graduate level version of 600.321.
Cross-listed with Computer Science

Sec. 01

ThF 1-2:15

600.424 (E)

NETWORK SECURITY (3) MonroseLimit 30  Prereq: 600.120, 600.349/449, 600.344/444, and 600.226   Students may receive credit for 600.324 or 600.424, not both   CS and MSSI graduate students only     This course focuses on communication security in computer systems and networks. The course is intended to provide students with an introduction to the field of network security. The course covers network security services such as authentication and access control, integrity and confidentiality of data, firewalls and related technologies, web security, anonymity, and privacy. Course work involves implementing various security techniques. A course project is required.
Cross-listed with Computer Science

Sec. 01

MW 2-3:15

600.433 (E)

COMPUTER SYSTEMS (4) Masson  Limit 50  Students may receive credit for 600.333 or 600.433, but not both.  Graduate version of 600.333.
Cross-listed with Computer Science

Sec. 01

MTW 10

600.442 (E,Q)

CRYPTOGRAPHY AND NETWORK SECURITY (3) Ateniese   Limit 40
Prereq: 600.226, 600.271, 550.171, and systems course     This course focuses on algorithms and protocols for secure network communication.  Topics include cryptographic algorithms (DES, Diffie-Hellman, RSA), authentication, key management, secure networking, certification, trust management, and secure electronic commerce.
Cross-listed with Computer Science

Sec. 01

ThF 1-2:15

600.443 (E)

SECURITY AND PRIVACY (3) Rubin  Limit 50 Prereq: Basic course in operating systems & networks or Perm. Req’d Lecture topics will include computer security, network security, basic cryptography, system design methodology, and privacy. There will be a heavy workload, including written homework, programming assignments, exams and a comprehensive final. The class will also include a semester -long project that will be done in teams and will include a presentation by each group to the class. [Applications] (was Systems previously) Cross-listed with Computer Science Course added 9/10/07

Sec. 01

ThF 2:30-3:45

600.463 (E)

ALGORITHMS I (3) Awerbuch  Limit 30
Prereq: 600.226 or Perm. Req'd.  
Students may receive credit for 600.463 or 600.363, but not both   Graduate version of 600.363     Cross-listed with Computer Science

Sec. 01

MTW 9

600.643

ADVANCED TOPICS IN COMPUTER SECURITY Rubin   Limit 20
Prereq: Any 400-level course in Security This course focuses on advanced research topics in communications security.  The course is structured as a research seminar where students present research papers to the class.  Topics include protocol analysis, security in inter-domain routing, broadcast authentication protocols, covert channels and anonymous communication, key management, advanced traceback schemes, attack propagation modeling among others.  A course project is required.       
Cross-listed with Computer Science

Sec. 01

ThF 2:30-3:45

NOTE: The following course is taught through the School of Professional Studies in Business and Education and must be for interdivisionally. Descriptions and times are found in the SPSBE catalogue, on the JHUISI website, and outside of Wyman 407.

774.715

FINANCIAL ISSUES IN MANAGING A SECURE OPERATION Agresti   Limit 25 (This course meets for 10 weeks beginning September 5-November 7)
This course addresses the risks (financial, reputation, business, and third party), costs, ROI, and other business issues concerned in planning and managing a secure operation. Topics include: disaster recovery, outsourcing issues; service level agreements; evaluating external security service providers; assessing security total cost of ownership; audit procedures; financial integrity; cost/benefit analyses; back-up and recovery provisions; insurance protection; contingency and business continuity plans; qualitative and quantitative risk analysis; monitoring the security of the enterprise; information economics; performance reporting; automated metrics reporting; responses to threats; effects of security policies and practices on business and customers; preparing a business case for information security investments; and developing cost effective solutions given constraints in money, assets, and personnel. Case studies and exercises will be used to illustrate financial planning and evaluation of security operations.
NOTE: This course is taught through the School of Professional Studies in Business and Education and must be for inter-divisionally.

Sec. 01

W 5:45-9:45pm