Information Security

Course Title: Information Security

Course No: IT 244

Nature of the Course: Theory + Lab

Semester: 5

Credit Hours: 3

Course Description

This course introduces the basic concepts of computer and information security. This course prepares the students to meet the new challenges in the world of increasing threats to computer security by providing them with an understanding of the various threats and countermeasures. This course includes cryptographic algorithms, authentication systems, intrusion detection and prevention, malicious logics, network security and security audits.

Course Objectives

The objective of this course is to familiarize the students with the theoretical and practical concepts of information security, different security measures, policies and security mechanisms, security audits so that students will be able to design, implement and manage the secure computer system.

Course Contents

1. Introduction

5 hrs

1.1. Computer Security Concepts

1.2. Threats, Attacks and Assets

1.3. Security Functional Requirements

1.4. Security Design Principles

1.5. Attack Surfaces and Attack Trees

1.6. Computer Security Strategy

1.7. Access Control Principles

1.8. Subjects, Objects and Access Rights

1.9. Discretionary Access Control

1.10. Role Based Access Control

1.11. Attribute Based Access Control

1.12. Identity, Credential and Access Management

1.13. Trust Frameworks

1.14. Overview of the Bell-LaPadula Model and Biba integrity model

2. Symmetric and Asymmetric Cryptographic Algorithms

13 hrs

2.1. Classical Cryptosystems

Substitution and Transposition Ciphers

Block Cipher Vs Stream Ciphers

2.2. Symmetric Encryption Principles

2.3. Fiestel Cipher Structure

2.4. Data Encryption Standards (DES)

Basic concepts of fields

Modular Arithmetic

Galois Fields

Polynomial Arithmetic

2.5. Advanced Encryption Standards (AES)

2.6. Prime Numbers

Fermat's Theorem

Primality Testing: Miller-Rabin Algorithm

2.7. Euclidean Algorithm

2.8. Extended Euclidean Algorithm

2.9. Euler Totient Function

2.10. Asymmetric Encryption

2.11. Diffie-Hellman Protocol

2.12. RSA Algorithm

3. Message Authentication and Hash Functions

6 hrs

3.1. Message Authentication

3.2. Hash Functions

3.3. Message Digests

3.4. Secure Hash Algorithms

SHA-1

SHA-2

3.5. Hash Based MAC (HMAC)

3.6. Digital Signature

4. User Authentication

5 hrs

4.1. User Authentication Principles

4.2. Password-Based Authentication

4.3. Token-Based Authentication

4.4. Biometric Authentication

4.5. Two Factor Authentication

4.6. Kerberos Protocol

Kerberos 5

4.7. Security Issues for User Authentication

5. Intrusion Detection and Prevention

5 hrs

5.1. Intruders

5.2. Intrusion Detection

5.3. Intrusion Detection Analysis Approaches

5.4. Host-Based Intrusion Detection

5.5. Network-Based Intrusion Detection

5.6. Hybrid Intrusion Detection

5.7. Intrusion Detection Exchange Format

5.8. Honeypots

5.9. Intrusion Prevention System

6. Malicious Software

4 hrs

6.1. Malicious Software

6.2. Types of Malicious Software

6.3. Advanced Persistent Threat

6.8. System Corruption

6.15. Countermeasures for Malwares

7. Network Security

5 hrs

7.1. Overview of Network Security

7.2. Digital Certificates and X.509 certificates

Certificate Life Cycle Management

PKI trust models

PKIX

7.3. Secure Socket Layer (SSL)

7.4. Transport Layer Security (TLS)

7.5. IP Security

7.6. Email Security

7.7. PGP and its Services

Applications and types

7.8. Firewalls

Applications and types

7.9. VPN

8. IT Security Management, Risk Assessment and Security Auditing

5 hrs

8.1. IT Security Management

8.2. Organizational Context and Security Policy

8.3. Security Risk Assessment

8.4. Security Risk Analysis

8.5. Security Auditing Architecture

8.6. Security Audit Trails

8.7. Implementing Logging Function

8.8. Audit Trail Analysis

Laboratory Works

The laboratory work covers implementing programs for the following: Classical ciphers like Caesar, Railfence; DES, AES; Primality Testing, Euclidean Algorithms, Diffie-Hellman RSA; MD5, SHA-1, SHA-2; Authentication systems like password based, token based, two factor authentication etc.

1.Classical Ciphers
2.DES and AES
3.Primality Testing and Euclidean Algorithms
4.Diffie-Hellman and RSA
5.MD5, SHA-1 and SHA-2
6.Authentication Systems

Text Books

1.William Stallings, cryptography and network security principles and practice eighth edition, 2023, Pearson
2.William Stallings and Lawrie Brown, Computer Security: Principles and Practice, fifth edition, Pearson

Reference Books

1.Mark Stamp, Information Security: Principles and Practices, Wiley
2.Matt Bishop, Introduction to Computer Security, Addison Wesley
3.Matt Bishop, Computer Security, Art and Science, Addison Wesley

Notes:

This syllabus follows the official BIM curriculum of Tribhuvan University. In case of any doubt or revision, the university’s published syllabus shall be considered authoritative.https://www.fomecd.edu.np/syllabuses

Information Security

Information Security

Select University

Select Program

TabFlux . Information Security . TU . BIM