خالد عبد الاله بن سعيد

Course Description:
This course covers the following topics: Security policies, models, and mechanisms for secrecy, integrity, availability and usage.  Operating system models and mechanisms for mandatory and discretionary controls, RBAC, data models, concepts and mechanisms for software and database security, basic cryptography (public and private) and its applications, security in computer networks and distributed systems and control and prevention of viruses and other rogue programs. In addition, the basics of physical security, incidence response, disaster recovery, business continuity, and forensics.
 
Objectives:         

• A one mile breadth, and one inch deep about information security from theory to practice writing, using and thinking in information security 
• Principles of Information Security.
• How to research and writing short papers about some subject in Information Security.
• How to use some Information Security tools. 
• How to get prepared to achieve security certifications such as CISSP and Security+. 

Tutorials:
Tutorials on this course are aimed to formalize the student with the practical ways of implementing information security concepts.

On this semester the student are expected to learn the following:

• Implementing cryptographic methods using JAVA.
• Understanding of some of the well-known web-applications vulnerabilities such as (SQL injection and XSS).
• Understanding of how network monitoring works and its relevance to security application. 
• Understating the ways of detecting and scanning variabilities on network devices using tools such as Nessus and Zen-Map

The remaining weeks will focus on the project and the presentation.