Faculty Contact Information:
Phone: 06202/5 77 82 14
(Note - this phone number will be invalid beginning approximately 1 Aug. New one will be posted on the webboard and my web site.)
webboard:
http://webboard.ed.umuc.edu/~mis
web site:
http://faculty.ed.umuc.edu/~sdean/
Snail Mail:
UMUC - unit 29216
APO AE 09102 | |
Consultation:
30 minutes prior to class time, during lunch break,
other times by appointment.
Class Meetings:
21/22 Aug; 11 Sept; 18/19 Sept; 2/3 Oct. 0900-1700 | |
Required Texts and Readings:
| Whitman, M.and Mattord, J. (2003). Principles of Information Security. Boston, MA: Thompson - Course Technology. | |
Supplementary Readings:
The standard for papers in the graduate program is the APA style. All participants in this course and all graduate INSS, MGMT, PUAD, and ECON courses should have a copy of the style guide:
American Psychological Association. (2001). Publication Manual of the American Psychological Association, 5th Edition. Washington DC: Author.All graduate students should be prepared to utilize the UMUC online library at http://www.umuc.edu/library/. The library contains a large number of full text academic journals that are free of charge and immediately available. The library homepage also contains a number of links related to improving students' research and writing skills. | |
Recommended Journals:
| Publications of the various professional societies (such as ACM -- the Association for Computing Machinery, the IEEE Computing Society, and the various management professional societies) are strongly recommended. In addition, there are many trade journals (such as eWEEK) that MIS professionals should become familiar with, many of these being published both weekly and on-line. | |
Course Description:
| 3 semester hours credit. Prerequisites: Either INSS 510, INSS 520, INSS 530, or permission of the Program Director. Explores security policies, models, and mechanics for secrecy, integrity, and availability. Topics include operating systems models and mechanisms for mandatory and discretionary controls; data models, concepts, and mechanisms for database security; basic cryptography and its applications; security in computer networks and distributed systems; as well as control and prevention of viruses and other malicious programs. | |
Course Goals:
Upon completion of the course, participants should:
1. Understand the threats, vulnerabilities and risks with an information system infrastructure
2. Understand the security issues in network systems
3. Have a basic understanding of cryptography
4. Be familiar with cryptographic technologies including symmetric key cryptosystem and asymmetric key cryptosystem
5. Have a basic understanding of firewalls, routers and protocols in communication systems
6. Be familiar with Risk Management practices
7. Be able to distinguish between business continuity and disaster recovery
8. Develop an understanding of laws and ethics regarding information systems security | |
Course Objectives:
At the conclusion of this course the student will be able to:
1. Identify the resources of an information system that must be protected
2. Distinguish information security from operations and physical security
3. List potential security threats, vulnerabilities and risks of information systems, particularly on the network
4. Define and discuss the role of cryptography
5. Evaluate various data encryption methods
6. Identify various control mechanisms used to prevent, detect and correct error in an information system
7. Define the responsibilities of Security Administrators
8. Be able to develop a disaster recovery plan for an information system
9. Develop standards, guidelines and procedures to implement security policy in an information system | |
Grading Information:
Grades for this course will be assigned as follows:
A 92%
B 80 – 91%
C 70 – 79%
F Below 70%
Please note that Bowie State University does not use "D" for graduate students. The grade F(a) is used to designate academic failure. F(n) is used to designate failure for non-completion. Grades of Incomplete or Withdrawal are governed by UMUC-Europe policies. For further details, please refer to the UMUC-Europe Graduate Catalog, available in your local Education Center or online at http://www.ed.umuc.edu/general_info/publications/catalogs. | |
Course Requirements:
Graduate school at the masters level focuses on helping students obtain the education needed for success as professionals in their chosen fields. Thus, UMUC-Europe Graduate Programs and Bowie State University share the common goals of promoting excellence in academic scholarship through thoughtful inquiry and the skillful application of knowledge and theory for the betterment of society.
Course Grade comes from these components:
20% Midterm Exam
25% Final Exam
15% Take-Home Exam Paper and Presentation
25% “Hot Topic” Project Proposal, Paper, Presentation
15% Participation and In-Class Work | |
Description of Course Requirements:
Participate in classroom discussions: You are expected to come to class prepared to engage in all discussions in a professional and informed manner. Usually this requires two to three hours for every hour of a face-to-face class and approximately ten hours of preparation per week for a DE class.
Complete graduate level projects or programming assignments, write graduate level papers or case studies: You are required to conduct professional-level research, including appropriately citing works of others and avoiding plagiarism. Resubmission of course work from previous classes (whether or not taken at UMUC, UMUC-Europe or BSU), partially or in its entirety, is not acceptable in this course and will result in an automatic failure on the assignment.
Orally/visually present prepared material: You are required to present your results in a professional manner. In a face-to-face course, this typically means an oral presentation accompanied by appropriate visual material. In a DE class, this means creating a visual/textual presentation for your instructor and classmates.
Complete one or more written examination(s): The examination process in this class will assist you in developing the writing and critical thinking skills necessary for successfully passing the comprehensive exam required of all graduate students. Some of the examination questions used for this course will either be taken directly from past comprehensive exams or written as though to be included on a comprehensive exam.
Description of Course Requirements
The Midterm and Final Exams will be in-class exams. Each will have both closed book and open book (and notes) components.
The Take-Home Exam will consist of one or more comprehensive-exam-type questions. Not all students will be assigned the same question(s). The question(s) is/are to be researched using additional sources, and to be answered in a 3-5 page paper, and a Powerpoint presentation to be given in class.
The “Hot Topic” Project is to be selected by the student, and is subject to approval by the instructor. As indicated on the schedule, the topic is to be emailed to the instructor prior to the second weekend of class. During the second weekend, the student is to give a Powerpoint presentation of the proposed topic, which should be posed as a focused question to be researched and answered. The presentation must state the question to be answered, and provide a summary of preliminary results and a plan for further work. During this presentation, it is expected that other students will propose additional questions to be considered in this project, and to be answered within the paper and the final presentation of the project work.
Participation and In-Class Work
There will be in-class exercises and discussion questions. In case of unavoidable absences, some of these can be made up via postings to the webboard,
http://webboard.ed.umuc.edu/~mis
where we will also have opportunities for discussion between class meetings. | |
Course Schedule:
Projected Course Schedule
Note that each day we meet from 0900-1700. The lunch break will be 1230-1330 when possible, with its actual time depending on how the day’s learning activities are going.
Division of material between morning and afternoon is tentative in this schedule, and will be adjusted as needed.
There will be supplementary material presented along with textbook chapters – if you must miss class, you are responsible for that material and for getting it from fellow students. Where possible, it will also be made available by the instructor via the webboard.
AM Sat 21 Aug:
Introduction;
Introduction to Information Security (Ch. 1);
The Need for Security (Ch. 2).
PM Sat 21 Aug:
The Need for Security (Ch. 2);
Legal, Ethical and Professional Issues in Information Security (Ch. 3).
AM Sun 22 Aug:
Risk Management: Identifying and Assessing Risk (Ch. 4);
Risk Management: Assessing and Controlling Risk (Ch. 5).
PM Sun 22 Aug:
Blueprint for Security (Ch. 6);
Planning for Continuity (Ch. 7).
Tuesday 7 September - “Hot Topics” proposals must be emailed to the instructor by this date. This can be a rough, one-paragraph description.
AM Sat 11 Sept:
Midterm Exam;
presentations of “Hot Topic” proposals.
PM Sat 11 Sept:
Security Technology (Ch. 8);
Cryptography appendix (pp. 323-354).
Note that this class does NOT meet Sunday 12 September.
AM Sat 18 Sept:
Supplementary information on Cryptography.
PM Sat 18 Sept:
Physical Security (Ch. 9);
Implementing Security (Ch. 10).
AM Sun 19 Sept:
Implementing Security (Ch. 10),
Security and Personnel (Ch. 11).
PM Sun 19 Sept:
Student presentations of Take-Home mini-papers.
Final version of “Hot Topics” paper due via email by Thursday 30 September.
AM Sat 2 Oct:
Information Security Maintenance (Ch. 12);
Supplementary Topics (readings to be assigned).
PM Sat 2 Oct:
Supplementary Topics (readings to be assigned);
Course Review (based on student questions).
AM Sun 3 Oct:
Last-minute questions;
Final Exam.
PM Sun 3 Oct:
“Hot Topic” Presentations. | |
Academic Policies:
|
The University has a license agreement with Turnitin.com, a service that helps prevent plagiarism from internet resources. I may be using this service in this class by either requiring students to submit their papers electronically to Turnitin.com or by submitting questionable text on behalf of a student. If you or I submit part or all of your paper, it will be stored by Turnitin.com in their database throughout the term of the University's contract with Turnitin.com. If you object to this temporary storage of your paper, you must let me know no later than two weeks after the start of this class. Please Note: If you object to the storage of your paper on Turnitin.com, I may utilize other services to check your work for plagiarism The official university policy on Plagiarism and Academic Dishonesty can be found at http://www.umuc.edu/policy/aa15025.shtml. Section I.C. states: "Faculty may determine if the resubmission of course work from previous classes (whether or not taken at UMUC), partially or in its entirety, is acceptable when assigning a grade on that piece of course work. Faculty must provide this information in their written syllabi. If the resubmission of course work is deemed to be unacceptable, a charge may not be brought under this Policy and will be handled as indicated in the written syllabi."
Please refer to Description of Course Requirements for specific information on how resubmissions will be treated in this course and to the UMUC-Europe Graduate Catalog for information on the following:
Academic Integrity
Course Load
Exception to Policy
Grade Appeal Process
Make-up Examinations
Nondiscrimination
Students with Disabilities
Hard copies of the catalog are available at your local Education Center. | |
Faculty Bio:
| Dr. Dean earned the BA in Mathematics from Vanderbilt University, and the MS and PhD in Computer Science from the University of Alabama in Birmingham. She has worked at various times as a programmer, programmer/analyst, systems analyst, and project manager in the areas of medical information systems, small business support, and life insurance. Since 1975, she has been involved in teaching and curriculum development in computing and mathematics, most recently at Samford University in Birmingham, AL. She has served on the Board of Directors and as President of the Consortium for Computing Sciences in Colleges. She serves on the Regional Board of the CCSC Southeastern Conference, and as Associate Editor of the Journal for Computing Sciences in Colleges. Her areas of interest include curriculum development, database management systems, programming languages, security, and operating systems. | |