Syllabus
|
Course Code: MCA-20-25 Course Name: Elective-II - (iii) Security in Computing |
||
| MODULE NO / UNIT | COURSE SYLLABUS CONTENTS OF MODULE | NOTES |
|---|---|---|
| 1 | Computer Security Concepts, Threats, Attacks and Assets, Security Functional Requirements, Security Architecture and Scope of Computer Security, Computer Security Trends and Strategies. Cryptography: Terminology and Background, Substitution Ciphers, Transpositions, Cryptanalysis, Program Security: Secure Program, Non-malicious Program Error, Viruses and other Malicious Code, Targeted Malicious Code, Control against Program Threats. |
|
| 2 | Database Security: Database Management System, Relational Databases, Database Access Control, Inference, Security Requirements, Reliability and Integrity, Sensitive Data, Database Encryption. Network Security: Threats in Network, Network Security Controls, and Firewall- Need for firewall, Characteristics, Types of firewall, Firewall Basing, Intrusion Detection System- Types, Goals of IDS, IDS strengths and Limitations. |
|
| 3 | Internet Security Protocols and Standards: Secure Socket Layer (SSL) and Transport Layer Security (TLS), IPv4 and IPv6 Security, Kerberos 672, X.509, Public Key Infrastructure. Linux Security Model, File System Security, Linux Vulnerability, Linux System Hardening, Application Security. Window Security Architecture, Windows Vulnerability, Windows Security Defense, Browser Defenses. |
|
| 4 | Physical Security Threats, Physical Security Prevention and Mitigation Measures, Recovery form Physical Security Breaches, Security Auditing Architecture, Security Audit Trail, Security Risk assessment, Security Controls or Safeguard, IT Security Plan, Implementation of Controls, Cybercrime and Computer Crime, Intellectual Property, Privacy, Ethical Issues. | |
