Currently there are two undergraduate courses and three graduate courses 
supported by ISIS in computer and network security. Students willing to 
pursue a concentration program in Information Assurance (IA) please 
consult <a href="/courses/iaprogram.html">this page</a>.<br>
<br>
If you want more information on how to obtain instruction material please consult 
<a href="/courseware/">this page</a>.<br>
<br><br>


<u><strong>Undergraduate Courses:</strong></u> <br>
<br>
<u>CS 392 Computer Security</u><br>
(<a href="/courses/cs392-f2008/" target="_courses" title="CS 392/6813 Computer Security">Fall 2008</a>)
(<a href="/courses/cs392-f2007/" target="_courses" title="CS 392/6813 Computer Security">Fall 2007</a>)
(<a href="/courses/cs392-f2006/" target="_courses" title="CS 392 Computer Security">Fall 2006</a>)
(<a href="/courses/cs392/" target="_courses" title="CS 392 Computer Security">Fall 2005</a>)
(<a href="/courses/cs392-f2004/" target="_courses" title="CS 392 Computer Security">Fall 2004</a>)
<br>
Basic notions of confidentiality, integrity, availability. Cryptographic 
systems, coding and decoding of messages. Network, database, and 
operating system security issues, capability and access-control 
mechanisms. Computer Viruses; authentication models; protection models; 
security kernels. Physical security issues; Personnel security; policy 
formation and enforcement; legal aspects; ethical aspects. Audit; 
Classification and trust modeling; Risk assessment. <br>
<br>
<u>CS 393 Network Security</u><br>
(<a href="/courses/cs393-s2005/" target="_courses" title="CS 393 Network Security">Spring 2005</a>) 
(<a href="/courses/cs393/" target="_courses" title="CS 393 Network Security">Spring 2004</a>) 
(<a href="/courses/cs393-s2003/" target="_courses" title="CS 393 Network Security">Spring 2003</a>) 
(<a href="/courses/cs393-s2002/" target="_courses" title="CS 393 Network Security">Spring 2002</a>) 

<br>
Review of topics in networking. Basic notions of confidentiality, 
integrity, availability; cryptographic systems, coding and decoding of 
messages. Cryptographic protocols for privacy, integrity, key exchange 
and access control. TCP/IP security; Firewalls, IPSec; Virtual Private 
Networks. Web Security; mobile code security; secure E-commerce. 
Intrusion detection, prevention, response. Advanced topics. Prereq: 
Operating systems, Computer Networks. <br>
<br>
<u><strong>New: Cyber Security Certificate:</strong></u> <br>
Polytechnic is proud to offer a Certificate in Cyber Security program.
A complete description can be found on the 
<a href="http://www.poly.edu/epoly/programs/cybersecurity/index.php">Certificate in Cyber Security page</a>.<br><br>
<u><strong>Graduate Courses:</strong></u> <br>
<br>                                                                     
<br>
<u>CS 681 Information, Privacy and Security</u><br>
(<a href="/courses/cs392-f2008/">Fall 2008</a>) 
(<a href="/courses/cs392/">Fall 2005</a>) 
(<a href="/courses/cs681/">Fall 2004</a>) 
(<a href="/courses/cs392-f2003/" target="_courses" title="CS 393 Network Security">Spring 2003</a>)

<br>
Introduction to security and privacy issues associated with information 
systems. Cost/risk tradeo . Technical, physical, and administrative 
methods of providing security. Control of access through technical and 
physical means. Identi cation and authentication. Encryption, including 
the Data Encryption Standard (DES) and public key systems. Management of 
encryption systems, including key protection and distribution. Privacy 
legislation and technical means of providing privacy <br>
<br>
<u>CS 682 Network Management and Security</u><br>
(<a href="/courses/cs393-s2005/">Spring 2005</a>) 
(<a href="/courses/cs682/">Spring 2004</a>)<br>
Review of topics in networking. Basic notions of confidentiality, 
integrity, availability; cryptographic systems, coding and decoding of 
messages. Cryptographic protocols for privacy, integrity, key exchange 
and access control. TCP/IP security; Firewalls, IPSec; Virtual Private 
Networks. Web Security; mobile code security; secure E-commerce. 
Intrusion detection, prevention, response. Advanced topics. <br>
<br>
<u>CS 904 Financial Cryptography</u><br>
The course provides a thorough introduction to the theory and applications 
of cryptography. Introduces underlying number theory and develops public 
and private-key algorithms; RSA, El-Gamal, DES, AES are analyzed. 
Various modes of operations of the algorithms, advantages and 
disadvantages of di erent modes are also discussed. Protocols for 
important applications such as authentication and key-distribution are 
developed. The course highlights the weaknesses and strengths of each 
system, possibleattacks and implementation considerations. <br>
<br>
<u>CS 996 Modern Cryptography</u><br>
(<a href="/courses/cs996-s2007/default.php">Spring 2007</a>)<br>
This course deals with the study of modern cryptography from
a theoretical perspective, the emphasis of the course being
on "provable security". In particular, we study the
cryptographic primitives that are the building-blocks of
various cryptographic applications. The course involves the
study of notions of security for a given cryptographic
primitive, its various constructions, and respective
security analysis based on the security notion. The
cryptographic primitives that we cover include pseudo-random
functions, symmetric encryption (block ciphers), hash
functions and random oracles, message authentication code,
asymmetric encryption and digital signatures.
<br>
	<u>CS 996 Advanced Project in Computer Security - Information Security Management</u><br>
	<a href="/courses/cs996-management-s2005/" target="_courses">(Spring 2005)</a>
	<a href="/courses/cs996-management/" target="_courses">(Spring 2004)</a><br>
	This course covers the life cycle management of information security: risk
	analysis, security policy, information security program management, information
	security administration, incident response. It is also covers federal
	government policies for classified information. <br>
<br>
	<u>CS 996 Advanced Project in Computer Security - Digital Forensics</u><br>
	<a href="/courses/cs996-forensics-s2005/" target="_courses">(Spring 2005)</a>
	<a href="/courses/cs996-forensics/" target="_courses">(Spring 2004)</a><br>
	This course covers the all technical, legal, and law enforcement aspects of 
	digital forensics. The course covers various topics such as "Incident response 
	process", "Network based evidence", "Data analysis techniques", etc.<br>
	<br>
	<u>CS 996 Advanced Project in Computer Security - Pentration and Testing</u><br>
	<a href="/courses/cs996p/" target="_courses">(Fall 2005)</a>
	<a href="/courses/cs996-pent-test-f2004/" target="_courses">(Fall 2004)</a>
	<a href="/courses/cs996-f2003/" target="_courses">(Fall 2003)</a><br>
	This is a special interest course in computer & network security that focuses 
	on penetration testing and vulnerability analysis.<br>
	<br>
	<u>CS 996 Advanced Project in Computer Security - Cryptography</u><br>
	<a href="/courses/cs996c/" target="_courses">(Fall 2004)</a><br>
	This is a special interest course in cryptography. More information will be 
	posted soon.<bR>
	<br>
Students will be required to complete project in the Computer or Network security field. Please check back for more information.
<br><br>
<u>CS 904 Financial Cryptography</u><br>
The course o ers a thorough introduction to the theory and applications
of cryptography. Introduces underlying number theory and develops public
and private-key algorithms; RSA, El-Gamal, DES, AES are analyzed.
Various modes of operations of the algorithms, advantages and
disadvantages of di erent modes are also discussed. Protocols for
important applications such as authentication and key-distribution are
developed. The course highlights the weaknesses and strengths of each
system, possibleattacks and implementation considerations. <br>
<br>


<u>CS 909 Biometrics</u><br>
This course introduces various types of biometric identification 
schemes. An introduction to physical security and e ective 
implementation of physical security is discussed with the help of case 
studies. Basic signal processing is introduced using JPEG algorithm; 
Theory and practises of voice identification, fingerprint and retinal 
scans are introduced. The course introduces, with the use of examples 
from MATLAB, face recognition and retina identification. Each year the 
students do a eld trip to the Biometric Testing Lab of the International 
Biometrics Group, a consulting company located inthe Financial District.
<br>
<br>
<u>CS 916 Application Security </u> <br>
(<a href="/courses/cs916-appsec-s2005/" target="_courses" title=CS 916 Application Security">Spring 2005</a>) 
<a href="/courses/cs916-appsec-s2005/" target="_courses" title=" CS 916 Application Security">
</a>
(<a href="/courses/cs916/" target="_courses" title=CS 916 Application Security">Spring 2004</a>) 
<a href="/courses/cs916/" target="_courses" title=" CS 916 Application Security">
</a><br> 

This course will give students the theoretical foundation and practical knowledge of applying computer security principles on the application level.  First, we will study the principles important for application security, concentrating on the issues of access control and data hiding and encapsulation.  We will then study the security model in Java 2 in detail, with students performing programming assignments that use this model.  The topics covered will include - configuring the security policy on trusted hosts that may run untrusted code - using digital signatures to sign code components - deploying code in the form of signed and sealed classes - using assertion mechanisms to check for object integrity at run-time - security aspects of using the Java serialization mechanism - using the Java security model in the context of RMI
<br><br>
In the second part of the course, the students
will concentrate on implementing a non-trivial
distributed system.  The work will be performed in
groups.  After the implementation of the system is
finished by all groups, the students will be asked
to write malicious classes and attempt to disrupt
operation of the systems implemented by other
groups.  The instructor will also use malicious
classes to validate the students' work.

<br><br>

<u>CS 9033 Mobile Application Programming</u><br>                               
(<a href="/courses/cs9033-s2009/">Spring 2009</a>)<br>                          
Mobile Application Programming (MAP) was taught
for the first time in Spring 2009.  MAP is a
project course, that is designed to give the
students an opportunity to create a product out of
an idea in a rapid pace.  Students develop
projects on one of the two popular programmable
mobile platforms: Apple's Iphone OS or Google's
Android OS. The projects unlock the unique and
ever growing set of abilities of the latest mobile
devices such as accelerometer, multi-touch screen,
compass, wifi, GPS, camera and accelerated
graphics.  Students work in teams of 3 members.
Both their personal and team progress are
evaluated throughout the semester with
deliverables including reports and milestones.
<br>                                                                            
<br>