University of Maryland

University College

DISTANCE EDUCATION

COURSE:

Information Systems and Security, IFSM 430 (DE)
3 Semester Hours of Upper Level Credit towards a Baccalaureate Degree.
16 study/work weeks (from Jun. 16th through Oct. 9th 1998)

FACILITATOR:

Daniel Bennette

MODE:

Distance Education

(See NOTE below)

In addition to the regular communication via e-mail and a listserve, this class will use a web-based, virtual class environment called "WebTycho." This environment requires logging into a computer in Heidelberg, using your Web browser (Netscape 4+ or Internet Explorer 4+ required), and participating in discussions, electronic study groups, on-line chats, uploading and downloading class materials and conducting research to foster students' learning. Students will also be asked to create their own web page, either on a University computer or on another computer available to them. I will also make a LINUX computer available for some student project work. This means that you will have some additional connectivity expenses.

E-MAIL:

bennette@faculty.ed.umuc.edu

Prerequisites:

CMIS 102 or IFSM 201 or three CAPP seminars or equivalent. Telnet capability and regular access to the World Wide Web using a graphical Web browser are required for this DE version of this course. You will need to be able to download, install and use some freeware or shareware software on the computer that you will be using in the course.

Recommended CAPP seminars which complement this course are:
CAPP 100E (Networks & Communications),
CAPP 100J (Security & Viruses)
and CAPP 100K (The Internet).

COURSE DESCRIPTION

This course surveys the establishment and the maintenance of a practical information security program. The security implications of databases, telecommunication systems and software are examined along with techniques to assess risks and to discover abuses of systems. Computer-based information systems play an essential role in the operation of governments and businesses everywhere. Nearly all current activities are involved in some way in the transfer of sensitive information, data or funds. This course addresses today's increased concerns regarding confidentiality, privacy and volatility in our increasingly computerized society. The course covers many aspects of data security and focuses on hardware, software, facilities and communications. It presents the concepts of physical security, the security of data within the computer and on networks, the human-machine interface, operational aspects of security, as well as the legal aspects. Several short projects, involving research using scholarly sources, in an area of information security, will be required. The purpose of the projects are to allow the student to demonstrate their overall knowledge in a specific area of focus.

COURSE OBJECTIVES

The primary objective is to familiarize the student with the threats and countermeasures available in computing. A secondary objective is to familiarize students with the controls and considerations necessary and available to reduce the affects of computer threats.

TEXT

Security in Computing (ISBN: 0-13-337486-6), 2nd. ed.,
Charles P. Pfleeger,
Prentic-Hall, Inc.,Upper Saddle River, N.J.:1997
(the soft cover version is ISBN: 0-13-185794-0)

View Table of Contents

Suggested Supplementary Textbooks (not required)

Practical UNIX & Internet Security (ISBN: 1-56592-148-8),
Simson Garfinkel, O'Reilly & Associates, Incorporated, 1996.

Computer Security Management (ISBN: 0-87835-881-1),
Karen Anne Forcht,
Boyd & Fraser Publishing Co.:1997
View Table of Contents

SUPPLEMENTAL READING

Numerous articles and related readings will be assigned or made available by the instructor.

GRADES FOR THIS COURSE WILL BE BASED ON

Participation / Homework (15 %)
Assignments / Current Events (15 %)
Class Projects (15 %)
Quizzes (20 %)
Proctored Final examination (35 %)

AND WILL BE ASSIGNED AS FOLLOWS

A= 93 to 100
B= 85 to 92.9
C= 75 to 84.9
D= 65 to 74.9
F= Less than 65

PENALTIES FOR LATENESS
Written assignments not received by due dates are downgraded 5% / day

NOTE:

Distance education courses offered by the University of Maryland University College are conducted through computer conferencing. The distance education program is not considered independent study, and it does not attempt to emulate correspondence courses -- in the distance education program, students can expect to interact frequently with their teachers and their fellow students, primarily through E-mail, but also via the Internet.