Link to Blackboard Learn login page
Link to Piazza class page
This course is an introduction to the elements of information security and protection. It covers issues for systems and networks, including policy, design, operation, incident detection and response, and more.
Catalog description: This course focuses on social, legal, and economic aspects of information security and privacy, also including ethics, policies, and human behavioral issues. The course covers the interactions between non-technological aspects of information security as well as relevant technological aspects. It focusses on how non-technological facets can inform and guide technological choices, and how technological choices can enhance or detract from the broader organizational and societal goals. Typically offered Spring.
3 class hours, 3 credit hours
CS 42600 or CS 526 Computer Security or equivalent course with the consent of the instructor (can be taken concurrently).
All of my courses operate under the same general policies and standards . My students are expected to study and understand all of these policies. Potential students are encouraged to check these out before signing up for one of my classes.
MWF in LWSN 1106, 11:30am ‐ 12:20pm
Tentatively scheduled for March 9, in class
No books or notes. NO electronic devices.
The midterm may be done as a take-home exam due March 9 instead of in-class.
Comprehrensive. No books or notes. NO electronic devices.
There will also be a final paper, due on the last day of classes (May 1).
Eugene H. Spafford (Spaf)
Some classes will be taught by other faculty or video when Spaf is out of town.
For office hours, telephone/email, etc., see Spaf's homepage .
There will be a course email list used for high-priority announcements. This will use your registered @purdue.edu email address; make sure this is forwarded to an account you read on a regular basis.
Some announcements may be posted in Blackboard, so be sure to check that at least once each week.
This informational page will be updated over the course of the semester! Be sure to check it regularly.
Blackboard will be used to distribute assignments and collect your responses. Grades will only be available there.
The final grade in the class will be based on assignments, a midterm exam, a final paper, and a comprehensive final exam. Classroom and discussion participation may be used to adjust final grades. In-class quizzes may be given without advance notice.
The determination of final scores will be approximately 15% for projects, 25% for the term paper, 25% for the midterm, and 35% for the final exam.
I have adopted this 10 point scale for assignments, originally described by Professor Clifton for grading all non-test items:
|10||Exceptional work. So good that it makes up for substandard work elsewhere in the course. These will be rare, and for many homeworks/problems a perfect score will correspond to an 8.|
|8||What I'd expect of a Ph.D. candidate or outstanding MS student. This corresponds to an A grade.|
|6||Average Master's degree student work, but not what I'd like to see for a Ph.D. candidate. This corresponds to a B grade.|
|4||Okay for a Master's candidate who does extremely well in other courses. This corresponds to a C grade.|
|2||Not good enough for a graduate student. But something.|
|0||Missing work, or so bad that you needn't have bothered.|
The following shows an approximate week-by-week list of topics and readings (readings will be fleshed out as the semester advances). The actual presentation of some of these topics may change, subject to availability of guest lecturers and additional resources.
|Week / Dates||Topics||Readings & Notes|
|1 / Jan 13||
Class introduction & policies and overview of class.
Overview of course.
|2 / Jan 20||
Personnel security and insider threat
|3 / Jan 27||
|4 / Feb 3||
|5 / Feb 10||
Economics of information security
|6 / Feb 17||
|7 / Feb 24||
Behavioral and usability issues in security and privacy
|8 / Mar 2||
Privacy: social, ethical and legal considerations
|9 / Mar 9||
Regulations and compliance
|March 11||Midterm Exam|
|March 14||Spring Break!|
|10 / Mar 23||
Web security issuesLiability and its limits for intermediaries (mere conduit, caching, hosting)
|11 / Mar 30||
Cyber warfare and international issues
|12 / Apr 6||
Also note that the CERIAS Symposium and associated events are this week!
|April 7-8||CERIAS Annual Symposium!|
|13 / Apr 13||
Ethical aspects of information security
|14 / Apr 20||
|15 Apr 27||Wrap-up and overflow.|
|Finals / Week of May 4||Final Exam: Comprehensive, closed book, time/place TBD|
Students are encouraged to attend the weekly security seminar or to view the podcasts online.
Other information, handouts, assignments, etc will all be on the class page in Blackboard and eventually linked in here.