| Dersin Adı |
Operating Systems Security
|
|
Kodu
|
Yarıyıl
|
Teori
(saat/hafta) |
Uygulama/Lab
(saat/hafta) |
Yerel Kredi
|
AKTS
|
|
CE 304
|
FALL
|
2
|
2
|
3
|
5
|
| Ön-Koşul(lar) | Array | |||||
| Dersin Dili | English | |||||
| Dersin Türü | ELECTIVE_COURSE | |||||
| Dersin Düzeyi | Lisans | |||||
| Dersin Veriliş Şekli | Face-To-Face/Online | |||||
| Dersin Öğretim Yöntem ve Teknikleri |
Application: Experiment / Laboratory / Workshop Lecture / Presentation |
|||||
| Ulusal Meslek Sınıflandırma Kodu | - | |||||
| Dersin Koordinatörü |
|
|||||
| Öğretim Eleman(lar)ı | - | |||||
| Yardımcı(ları) | - | |||||
| Dersin Amacı | The objective of this course is to teach the students security related details of most widely used operating systems, threat analysis, and countermeasures against the threats. | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| Öğrenme Çıktıları |
Bu dersi başarıyla tamamlayabilen öğrenciler;
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| Ders Tanımı | A study of technical security policies, models, and mechanisms for confidentiality, integrity, and availability with respect to operating systems from an engineering point of view. | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| Dersin İlişkili Olduğu Sürdürülebilir Kalkınma Amaçları |
-
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
Temel Ders |
|
| Uzmanlık/Alan Dersleri |
X
|
|
| Destek Dersleri |
|
|
| İletişim ve Yönetim Becerileri Dersleri |
|
|
| Aktarılabilir Beceri Dersleri |
|
| Hafta | Konular | Ön Hazırlık | Öğrenme Çıktısı |
| 1 | Introduction, basic terms & concepts in information security & related legal issues | Preliminary work 1 | LO1 |
| 2 | Basics of OS Security; concepts, general & common problems, threats, countermeasures | Preliminary work 2 | LO2 |
| 3 | Access controls & methodologies, IAAA in OS & relevant technologies & applications in today’s world | Preliminary work 3 | LO3 |
| 4 | Centralized / decentralized IAAA solutions, different IAAA architectures in secure OS | Preliminary work 4 | LO4 |
| 5 | Audit & monitoring in OS | Preliminary work 5 | LO1 |
| 6 | Intro to cryptography, protection of assets, data, systems in OS with today’s best practices | Preliminary work 6 | LO3 |
| 7 | Secure system management; models, solutions, various technologies | Preliminary work 7 | LO5 |
| 8 | Midterm Exam | - | |
| 9 | Open source architecture & approach and its relation with information security & OS security | Preliminary work 8 | LO2 |
| 10 | IAAA differences of Linux vs. Windows architectures | Part I Guide to Operating Systems Security, Michael Palmer | LO4 |
| 11 | IAAA differences of Linux vs. Windows architectures | Part II Guide to Operating Systems Security, Michael Palmer | LO3 |
| 12 | Network related issues in OS Security | Part I Guide to Operating Systems Security, Michael Palmer | LO5 |
| 13 | Network related issues in OS Security (including cryptographic basics) | Part II Guide to Operating Systems Security, Michael Palmer | LO2 |
| 14 | Related vulnerabilities, threats & countermeasures (DOS attacks, malicious codes, XSS, rootkits, JavaScript, SQL, Ajax, .Net, Apache, IIS, etc) | Part I Guide to Operating Systems Security, Michael Palmer | LO3 |
| 15 | Review of the Semester | - | |
| 16 | Final Exam | - |
| Ders Kitabı |
Guide to Operating Systems Security Michael Palmer Publisher: Thomson 2003 (2004 2nd ed) ISBN 13: 9780619160401©2004 ISBN 10: 0619160403 |
| Önerilen Okumalar/Materyaller |
Maximum Linux Security (2nd Edition) John Ray Sams 2 Pap/Cdr edition 2001 ISBN10: 0672321343 ISBN13: 9780672321344 Hacking Exposed Windows Server 2003 Joel Scambray & Stuart McClure McGrawHill Osborne Media 2006 ISBN10: 0072230614 ISBN13: 9780072230611 CISSP Textbook Vallabhaneni S.Rao SRV Pro Publications 2002 ASIN: B0006S7QN0 ISO27001:IEC British Standards Institution 2005 Hacking Exposed: Network Security Secrets & Solutions Stuart McClure et al McGrawHill Osborne Fourth Edition 2003 ISBN 0072227427 Applied Cryptography: Protocols Algorithms and Source Code in C Schneier Bruce Second Edition 1998 ISBN 0471117099 Hacking Exposed Web Applications Scambray Joel et al Second Edition McGrawHill Osborne 2006 ISBN 0072262990 |
| Yarıyıl Aktiviteleri | Sayı | Katkı Payı % | LO1 | LO2 | LO3 | LO4 | LO5 |
| Laboratuvar / Uygulama | 1 | 10 | X | X | X | X | |
| Ödev | 1 | 40 | X | X | X | ||
| Ara Sınav | 1 | 20 | X | X | X | X | |
| Final Sınavı | 1 | 30 | X | X | X | X | X |
| Toplam | 4 | 100 |
| Yarıyıl Aktiviteleri | Sayı | Süre (Saat) | İş Yükü |
|---|---|---|---|
| Katılım | - | - | - |
| Teorik Ders Saati | 16 | 2 | 32 |
| Laboratuvar / Uygulama Ders Saati | 16 | 2 | 32 |
| Sınıf Dışı Ders Çalışması | 14 | 2 | 28 |
| Arazi Çalışması | - | - | - |
| Küçük Sınav / Stüdyo Kritiği | - | - | - |
| Portfolyo | - | - | - |
| Ödev | 4 | 5 | 20 |
| Sunum / Jüri Önünde Sunum | - | - | - |
| Proje | - | - | - |
| Seminer/Çalıştay | - | - | - |
| Sözlü Sınav | - | - | - |
| Ara Sınavlar | 1 | 18 | 18 |
| Final Sınavı | 1 | 20 | 20 |
| Toplam | 150 |
| # | PC Alt | Program Yeterlilikleri / Çıktıları | * Katkı Düzeyi | ||||
| 1 | 2 | 3 | 4 | 5 | |||
| 1 |
Engineering Knowledge: Knowledge of mathematics, science, basic engineering, computation, and related engineering discipline-specific topics; the ability to apply this knowledge to solve complex engineering problems. |
||||||
| 1 |
Mathematics |
||||||
| 2 |
Science |
||||||
| 3 |
Basic Engineering |
||||||
| 4 |
Computation |
||||||
| 5 |
Related engineering discipline-specific topics |
LO1 | |||||
| 6 |
The ability to apply this knowledge to solve complex engineering problems |
||||||
| 2 |
Problem Analysis: Ability to identify, formulate and analyze complex engineering problems using basic knowledge of science, mathematics and engineering, and considering the UN Sustainable Development Goals relevant to the problem being addressed. |
LO2 LO5 | |||||
| 3 |
Engineering Design: The ability to devise creative solutions to complex engineering problems; the ability to design complex systems, processes, devices or products to meet current and future needs, considering realistic constraints and conditions. |
||||||
| 1 |
Ability to design creative solutions to complex engineering problems |
||||||
| 2 |
Ability to design complex systems, processes, devices or products to meet current and future needs, considering realistic constraints and conditions |
LO3 | |||||
| 4 |
Use of Techniques and Tools: Ability to select and use appropriate techniques, resources, and modern engineering and computing tools, including estimation and modeling, for the analysis and solution of complex engineering problems, while recognizing their limitations. |
LO4 | |||||
| 5 |
Research and Investigation: Ability to use research methods to investigate complex engineering problems, including literature research, designing and conducting experiments, collecting data, and analyzing and interpreting results. |
||||||
| 1 |
Literature research for the study of complex engineering problems |
||||||
| 2 |
Designing experiments |
||||||
| 3 |
Ability to use research methods, including conducting experiments, collecting data. analyzing and interpreting results |
||||||
| 6 |
Global Impact of Engineering Practices: Knowledge of the impacts of engineering practices on society, health and safety, economy, sustainability, and the environment, within the context of the UN Sustainable Development Goals; awareness of the legal implications of engineering solutions. |
||||||
| 1 |
Knowledge of the impacts of engineering practices on society, health and safety, economy, sustainability, and the environment, within the context of the UN Sustainable Development Goals |
||||||
| 2 |
Awareness of the legal implications of engineering solutions |
||||||
| 7 |
Ethical Behavior: Acting in accordance with the principles of the engineering profession, knowledge about ethical responsibility; awareness of being impartial, without discrimination, and being inclusive of diversity. |
||||||
| 1 |
Acting in accordance with the principles of the engineering profession, knowledge about ethical responsibility ethical responsibility |
||||||
| 2 |
Awareness of being impartial and inclusive of diversity, without discriminating on any subject |
||||||
| 8 |
Individual and Teamwork: Ability to work effectively, individually and as a team member or leader on interdisciplinary and multidisciplinary teams (face-to-face, remote or hybrid). |
||||||
| 1 |
Ability to work individually and within the discipline |
||||||
| 2 |
Ability to work effectively as a team member or leader in multidisciplinary teams (face-to-face, remote or hybrid) |
||||||
| 9 |
Verbal and Written Communication: Taking into account the various differences of the target audience (such as education, language, profession) on technical issues. |
||||||
| 1 |
Ability to communicate verbally |
||||||
| 2 |
Ability to communicate effectively in writing |
||||||
| 10 |
Project Management: Knowledge of business practices such as project management and economic feasibility analysis; awareness of entrepreneurship and innovation. |
||||||
| 1 |
Knowledge of business practices such as project management and economic feasibility analysis |
||||||
| 2 |
Awareness of entrepreneurship and innovation |
||||||
| 11 |
Lifelong Learning: Lifelong learning skills that include being able to learn independently and continuously, adapting to new and developing technologies, and thinking questioningly about technological changes. |
||||||
*1 Lowest, 2 Low, 3 Average, 4 High, 5 Highest
İzmir Ekonomi Üniversitesi, dünya çapında bir üniversiteye dönüşürken aynı zamanda küresel çapta yetkinliğe sahip başarılı gençler yetiştirir.
Daha Fazlası..İzmir Ekonomi Üniversitesi, nitelikli bilgi ve yetkin teknolojiler üretir.
Daha Fazlası..İzmir Ekonomi Üniversitesi, toplumsal fayda üretmeyi varlık nedeni olarak görür.
Daha Fazlası..