Syllabus - Introduction to Information Security (IS 304)

CSE

Introduction to Information Security (IS 304)

III

UNIT 1

Introduction

Needs for Security; Basic security terminologies e.g. threats, vulnerability, exploit etc.; Security principles(CIA), authentication, nonrepudiation; security attacks and their classifications; Mathematical foundation - Prime Number; Modular Arithmetic; Fermat’s and Euler’s Theorem; The Euclidean Algorithms; The Chinese Remainder Theorem; Discrete logarithms.

UNIT 2

Symmetric Key Cryptography

Classical cryptography – substitution, transposition and their cryptanalysis; Symmetric Cryptography Algorithm – DES, 3DES, AES etc.; Modes of operation: ECB, CBC etc.; Cryptanalysis of Symmetric Key Ciphers: Linear Cryptanalysis, Differential Cryptanalysis.

UNIT 3

Asymmetric Key Cryptography

Key Distribution and Management, Diffie-Hellman Key Exchange algorithm; Asymmetric Key Cryptography Algorithm– RSA, ECC etc.; Various types of attacks on Cryptosystems.

UNIT 4

Authentication & Integrity

MAC, Hash function, SHA, MD5, HMAC, Digital signature and authentication protocols; Authorization; Access control mechanism; X.509 Digital Certificate.

UNIT 5

E-mail, IP and Web Security

E-mail security – PGP, MIME, S/MIME; IP security protocols; Web security – TLS, SSL etc.; Secure Electronic Transaction(SET); Firewall and its types; Introduction to IDPS; Risk Management; Security Planning.

Practicals

Reference Books

Michael E. Whitman, Herbert J. Mattord, “Principles of Information Security”, 6th Edition, Cengage Learning.
Stallings William, “Cryptography and Network Security - Principles and Practice”, 7th Edition, Pearson.