| Course Name |
Operating Systems Security
|
|
Code
|
Semester
|
Theory
(hour/week) |
Application/Lab
(hour/week) |
Local Credits
|
ECTS
|
|
CE 304
|
FALL
|
2
|
2
|
3
|
5
|
| Prerequisites | CE 303 To Succeed (To get a grade of at least DD) or CE 323 To Succeed (To get a grade of at least DD) | |||||
| Course Language | English | |||||
| Course Type | ELECTIVE_COURSE | |||||
| Course Level | First Cycle | |||||
| Mode of Delivery | Face-To-Face/Online | |||||
| Teaching Methods and Techniques of the Course |
Application: Experiment / Laboratory / Workshop Lecture / Presentation |
|||||
| National Occupational Classification Code | - | |||||
| Course Coordinator |
|
|||||
| Course Lecturer(s) | - | |||||
| Assistant(s) | - | |||||
| Course Objectives | The objective of this course is to teach the students security related details of most widely used operating systems, threat analysis, and countermeasures against the threats. | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| Learning Outcomes |
The students who succeeded in this course;
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| Course Description | A study of technical security policies, models, and mechanisms for confidentiality, integrity, and availability with respect to operating systems from an engineering point of view. | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| Related Sustainable Development Goals |
-
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
Core Courses |
|
| Major Area Courses |
X
|
|
| Supportive Courses |
|
|
| Media and Managment Skills Courses |
|
|
| Transferable Skill Courses |
|
| Week | Subjects | Required Materials | Learning Outcome |
| 1 | Introduction, basic terms & concepts in information security & related legal issues | Preliminary work 1 | LO1 |
| 2 | Basics of OS Security; concepts, general & common problems, threats, countermeasures | Preliminary work 2 | LO2 |
| 3 | Access controls & methodologies, IAAA in OS & relevant technologies & applications in today’s world | Preliminary work 3 | LO3 |
| 4 | Centralized / decentralized IAAA solutions, different IAAA architectures in secure OS | Preliminary work 4 | LO4 |
| 5 | Audit & monitoring in OS | Preliminary work 5 | LO1 |
| 6 | Intro to cryptography, protection of assets, data, systems in OS with today’s best practices | Preliminary work 6 | LO3 |
| 7 | Secure system management; models, solutions, various technologies | Preliminary work 7 | LO5 |
| 8 | Midterm Exam | - | |
| 9 | Open source architecture & approach and its relation with information security & OS security | Preliminary work 8 | LO2 |
| 10 | IAAA differences of Linux vs. Windows architectures | Part I Guide to Operating Systems Security, Michael Palmer | LO4 |
| 11 | IAAA differences of Linux vs. Windows architectures | Part II Guide to Operating Systems Security, Michael Palmer | LO3 |
| 12 | Network related issues in OS Security | Part I Guide to Operating Systems Security, Michael Palmer | LO5 |
| 13 | Network related issues in OS Security (including cryptographic basics) | Part II Guide to Operating Systems Security, Michael Palmer | LO2 |
| 14 | Related vulnerabilities, threats & countermeasures (DOS attacks, malicious codes, XSS, rootkits, JavaScript, SQL, Ajax, .Net, Apache, IIS, etc) | Part I Guide to Operating Systems Security, Michael Palmer | LO3 |
| 15 | Review of the Semester | - | |
| 16 | Final Exam | - |
| Course Notes/Textbooks |
Guide to Operating Systems Security Michael Palmer Publisher: Thomson 2003 (2004 2nd ed) ISBN 13: 9780619160401©2004 ISBN 10: 0619160403 |
| Suggested Readings/Materials |
Maximum Linux Security (2nd Edition) John Ray Sams 2 Pap/Cdr edition 2001 ISBN10: 0672321343 ISBN13: 9780672321344 Hacking Exposed Windows Server 2003 Joel Scambray & Stuart McClure McGrawHill Osborne Media 2006 ISBN10: 0072230614 ISBN13: 9780072230611 CISSP Textbook Vallabhaneni S.Rao SRV Pro Publications 2002 ASIN: B0006S7QN0 ISO27001:IEC British Standards Institution 2005 Hacking Exposed: Network Security Secrets & Solutions Stuart McClure et al McGrawHill Osborne Fourth Edition 2003 ISBN 0072227427 Applied Cryptography: Protocols Algorithms and Source Code in C Schneier Bruce Second Edition 1998 ISBN 0471117099 Hacking Exposed Web Applications Scambray Joel et al Second Edition McGrawHill Osborne 2006 ISBN 0072262990 |
| Semester Activities | Number | Weighting | LO1 | LO2 | LO3 | LO4 | LO5 |
| Laboratory / Application | 1 | 10 | X | X | X | X | |
| Homework / Assignments | 1 | 40 | X | X | X | ||
| Midterm | 1 | 20 | X | X | X | X | |
| Final Exam | 1 | 30 | X | X | X | X | X |
| Total | 4 | 100 |
| Semester Activities | Number | Duration (Hours) | Workload |
|---|---|---|---|
| Participation | - | - | - |
| Theoretical Course Hours | 16 | 2 | 32 |
| Laboratory / Application Hours | 16 | 2 | 32 |
| Study Hours Out of Class | 14 | 2 | 28 |
| Field Work | - | - | - |
| Quizzes / Studio Critiques | - | - | - |
| Portfolio | - | - | - |
| Homework / Assignments | 4 | 5 | 20 |
| Presentation / Jury | - | - | - |
| Project | - | - | - |
| Seminar / Workshop | - | - | - |
| Oral Exams | - | - | - |
| Midterms | 1 | 18 | 18 |
| Final Exam | 1 | 20 | 20 |
| Total | 150 |
| # | PC Sub | Program Competencies/Outcomes | * Contribution Level | ||||
| 1 | 2 | 3 | 4 | 5 | |||
| 1 |
Engineering Knowledge: Knowledge of mathematics, science, basic engineering, computation, and related engineering discipline-specific topics; the ability to apply this knowledge to solve complex engineering problems. |
||||||
| 1 |
Mathematics |
||||||
| 2 |
Science |
||||||
| 3 |
Basic Engineering |
||||||
| 4 |
Computation |
||||||
| 5 |
Related engineering discipline-specific topics |
LO1 | |||||
| 6 |
The ability to apply this knowledge to solve complex engineering problems |
||||||
| 2 |
Problem Analysis: Ability to identify, formulate and analyze complex engineering problems using basic knowledge of science, mathematics and engineering, and considering the UN Sustainable Development Goals relevant to the problem being addressed. |
LO2 LO5 | |||||
| 3 |
Engineering Design: The ability to devise creative solutions to complex engineering problems; the ability to design complex systems, processes, devices or products to meet current and future needs, considering realistic constraints and conditions. |
||||||
| 1 |
Ability to design creative solutions to complex engineering problems |
||||||
| 2 |
Ability to design complex systems, processes, devices or products to meet current and future needs, considering realistic constraints and conditions |
LO3 | |||||
| 4 |
Use of Techniques and Tools: Ability to select and use appropriate techniques, resources, and modern engineering and computing tools, including estimation and modeling, for the analysis and solution of complex engineering problems, while recognizing their limitations. |
LO4 | |||||
| 5 |
Research and Investigation: Ability to use research methods to investigate complex engineering problems, including literature research, designing and conducting experiments, collecting data, and analyzing and interpreting results. |
||||||
| 1 |
Literature research for the study of complex engineering problems |
||||||
| 2 |
Designing experiments |
||||||
| 3 |
Ability to use research methods, including conducting experiments, collecting data. analyzing and interpreting results |
||||||
| 6 |
Global Impact of Engineering Practices: Knowledge of the impacts of engineering practices on society, health and safety, economy, sustainability, and the environment, within the context of the UN Sustainable Development Goals; awareness of the legal implications of engineering solutions. |
||||||
| 1 |
Knowledge of the impacts of engineering practices on society, health and safety, economy, sustainability, and the environment, within the context of the UN Sustainable Development Goals |
||||||
| 2 |
Awareness of the legal implications of engineering solutions |
||||||
| 7 |
Ethical Behavior: Acting in accordance with the principles of the engineering profession, knowledge about ethical responsibility; awareness of being impartial, without discrimination, and being inclusive of diversity. |
||||||
| 1 |
Acting in accordance with the principles of the engineering profession, knowledge about ethical responsibility ethical responsibility |
||||||
| 2 |
Awareness of being impartial and inclusive of diversity, without discriminating on any subject |
||||||
| 8 |
Individual and Teamwork: Ability to work effectively, individually and as a team member or leader on interdisciplinary and multidisciplinary teams (face-to-face, remote or hybrid). |
||||||
| 1 |
Ability to work individually and within the discipline |
||||||
| 2 |
Ability to work effectively as a team member or leader in multidisciplinary teams (face-to-face, remote or hybrid) |
||||||
| 9 |
Verbal and Written Communication: Taking into account the various differences of the target audience (such as education, language, profession) on technical issues. |
||||||
| 1 |
Ability to communicate verbally |
||||||
| 2 |
Ability to communicate effectively in writing |
||||||
| 10 |
Project Management: Knowledge of business practices such as project management and economic feasibility analysis; awareness of entrepreneurship and innovation. |
||||||
| 1 |
Knowledge of business practices such as project management and economic feasibility analysis |
||||||
| 2 |
Awareness of entrepreneurship and innovation |
||||||
| 11 |
Lifelong Learning: Lifelong learning skills that include being able to learn independently and continuously, adapting to new and developing technologies, and thinking questioningly about technological changes. |
||||||
*1 Lowest, 2 Low, 3 Average, 4 High, 5 Highest
As Izmir University of Economics transforms into a world-class university, it also raises successful young people with global competence.
More..Izmir University of Economics produces qualified knowledge and competent technologies.
More..Izmir University of Economics sees producing social benefit as its reason for existence.
More..