Security in information systems
S Lichtenstein
4 points * 2 hours per week * First/Second semester * Caulfield/Clayton * Prerequisites: SYS2161 or SYS2168
The subject will provide students with a knowledge of security issues in information systems, and will enable them to plan, develop and manage secure information systems. The subject has importance in an era in which security breaches of information systems are so evident. Review of security concepts: importance, components, principles, problems, terminology, quality. Types of threats, including hackers, viruses, worms, trojan horses, vandalism; study of major, real-life, disastrous security breaches; analysis of security breaches and risks. Study of security philosophies, including the concepts of building a fence around a system, trusted systems; security modelling and other security representation and protection techniques, including logging, access matrices, risk analysis, passwords, auditing, and other controls. Security for different types of applications; ethical and legal issues; computer crime: types of crimes and criminals, crime detection and prevention; other issues, including concepts of disaster recovery, restrictive systems; security management.
Assessment
Examination (2 hours): 50% * Practical work: 50%
Prescribed texts
Baskerville R Designing information systems security Wiley, 1988
Lichtenstein S Course notes for sale: SYS3194 Dept Information Systems, Monash U 1995