59-505 Introduction to Information Security

This course provides a broad overview of the threats to the security of information systems, the responsibilities and basic tools for information security, and the levels of training and expertise needed in organizations to reach and maintain a state of acceptable security. Topics include an introduction to confidentiality, integrity, and availability; authentication models and protection models; security kernels; secure programming; intrusion detection and response; operational security issues; physical security issues; and personnel security. Additional topics include policy formation and enforcement; access controls and information flow; legal and social issues; identification and authentication in local and distributed systems; classification and trust modeling; and risk assessment.