Security for Large-Scale Systems
Course Description
This course provides an in-depth examination of the issues in system security. This class will discuss the design and implementation of secure computer systems. We will start with learning the classic approaches to security attacks and defenses from the perspective of a single host system. Topics in this course will include access control, information flow control, system auditing, privilege separation, security policies, host-based intrusion detection etc. Then we will study how these classic mechanisms are expanded and adapted to modern distributed system platforms such as cloud platforms, Internet of Things platforms, and large enterprises. Student will study recent research works on the aforementioned topics, and will work with the instructor to complete a research project in system security. This course assumes prior knowledge of operating system concepts.
Organization
- Course number: COMPSCI 690G
- Class hours: Wednesday and Friday 11:15AM - 12:30PM
- Class location: Computer Science Building Room 142
- Instructor:
Pubali Datta
- Office Hours: Friday 2PM - 3PM and by appointment
- E-mail: pdatta@umass.edu
- Office Location: CS 344
- TA: Weiqi Feng
- Office Hours: Wednesday 10AM - 11AM
- E-mail: weiqifeng@cs.umass.edu
- Office Location: LGRT T223
- Class communications: Canvas (Note: Please include COMPSCI 690G in your email subject line for class related stuff!)
Prerequisites
None. Note: Undergraduate degree in computer science, or CS377 or equivalent. Programming knowledge & principles of computer systems design knowledge is expected.
Learning Objectives
- Understand the security models and mechanisms of modern computer systems.
- Learn about vulnerabilities, attacks and defenses in a host system.
- Apply security concepts in modern real-world platforms like cloud, IoT and enterprises.
- Learn about current research trends in system security.
- Acquire programming skills to solve practical system security problems.
- Able to independently conduct systems security research.
Requirements
Participate
Students will attend every class and actively participate in class discussions.
Read Literature
Students will read all of the assigned papers in advance of each class.
Programming Assignments
Students will be given 2 programming assignments, which you will need to submit
on Canvas. Each programming assignment will be related to the topics covered in class.
Paper Review Assignments
Students will prepare summaries for the assigned readings and submit them on
Canvas. These summaries will be submitted prior to the start of the class and
graded by the
instructional team. Details about paper review expectations will be discussed in the
first class as part of the introductory material.
Complete a Term Project
Students will conduct a major reserch project in system security, with the chief
deliverable being a conference-style paper at the end of the semester. Project
topics will be discussed in introductory class material.
As part of the term project, there will be milestones throughout the semester (e.g., project proposals) that will
be graded as homework assignment. Projects teams may include groups of up to 2 students; however, groups of
greater size will be expected to make greater progress. The instructor will
advise each team/individual independently as needed. The project grade will be a
combination of grades received for a number of milestone artifacts and the final
conference-quality report.
| Grading Item | Weight |
|---|---|
| Programming assignments | 25% |
| Paper Reviews | 25% |
| Project | 45% |
| Participation | 5% |
Attendance Policy
Students are expected to attend the class in person. If there are certain reasonable circumstances (for example, job interview, attending conference etc.) that require you to miss a few sessions, you should contact the instructors before class. Failure to attending more than three classes can lead to failing the class.
Collaboration Policy
Instructors support discussing the assignments with fellow classmates to learn from each other. However, all of the content students submit need to be produced independently, in their own words and based on their understanding of the solution. Copying of assignment solutions is not permitted.
Accommodation Statement
The University of Massachusetts Amherst is committed to providing an equal educational opportunity for all students. If you have a documented physical, psychological, or learning disability on file with Disability Services (DS), you may be eligible for reasonable academic accommodations to help you succeed in this course. If you have a documented disability that requires an accommodation, please notify me within the first two weeks of the semester so that we may make appropriate arrangements. For further information, please visit Disability Services ( https://www.umass.edu/disability/)
Academic Honesty Statement
Since the integrity of the academic enterprise of any institution of higher education requires honesty in scholarship and research, academic honesty is required of all students at the University of Massachusetts Amherst. Academic dishonesty is prohibited in all programs of the University. Academic dishonesty includes but is not limited to: cheating, fabrication, plagiarism, and facilitating dishonesty. Appropriate sanctions may be imposed on any student who has committed an act of academic dishonesty. Instructors should take reasonable steps to address academic misconduct. Any person who has reason to believe that a student has committed academic dishonesty should bring such information to the attention of the appropriate course instructor as soon as possible. Instances of academic dishonesty not related to a specific course should be brought to the attention of the appropriate department Head or Chair. Since students are expected to be familiar with this policy and the commonly accepted standards of academic integrity, ignorance of such standards is not normally sufficient evidence of lack of intent ( http://www.umass.edu/dean_students/codeofconduct/acadhonesty/).
Title IX Statement
In accordance with Title IX of the Education Amendments of 1972 that prohibits gender-based discrimination in educational settings that receive federal funds, the University of Massachusetts Amherst is committed to providing a safe learning environment for all students, free from all forms of discrimination, including sexual assault, sexual harassment, domestic violence, dating violence, stalking, and retaliation. This includes interactions in person or online through digital platforms and social media. Title IX also protects against discrimination on the basis of pregnancy, childbirth, false pregnancy, miscarriage, abortion, or related conditions, including recovery. There are resources here on campus to support you. A summary of the available Title IX resources (confidential and non-confidential) can be found at the following link: https://www.umass.edu/titleix/resources. You do not need to make a formal report to access them. If you need immediate support, you are not alone. Free and confidential support is available 24 hours a day / 7 days a week / 365 days a year at the SASA Hotline 413-545-0800.