Syllabus

This syllabus is tentative and will undoubtedly continue to change as the quarter progresses. If there is a topic you’re interested in but not shown, please let me know; I may well change this to cover it.

All readings are from the text. We will also discuss papers, which will be made available on the appropriate days.

Week 1.   Dates: Jan 8, 10, 12
Topics: Reference monitor, access control matrix, safety question, Take-Grant Model, SPM
Reading: text, §2, 3–3.4, 20.1.2.2
Week 2. Dates: Jan 15, 17, 19     [Note: No class on Jan 15 (Martin Luther King, Jr., Day)]
Topics: Expressive power of models, comparing models, security policies
Reading: text, §3.4–3.7, 4
Due: Jan 19: homework 1
Week 3. Dates: Jan 22, 24, 26
Topics: Confidentiality policies, Bell-LaPadula, System Z, integrity models, Biba, Clark-Wilson
Reading: text, §5, 6.1–6.2, 6.4, A
Due: Jan 26: project selection
Week 4. Dates: Jan 29, 31, Feb 2     [Note: No class on Feb 2]
Topics: Trust models, availability models, hybrid models, Brewer-Nash model, CISS model, ORCON
Reading: text, §6.5, 7, 8.1–8.3
Due: Feb 7: homework 2
Week 5. Dates: Feb 5, 7, 9     [Note: No class on Feb 5, 7]
Topics: RBAC, break-the-glass policies, traducement, basic policy composition, noninterference
Reading: text, §8.4–8.5, 9.1–9.2
Due: Feb 9: project progress report
Week: 6. Dates: Feb 12, 14, 16
Topics: Noninterference, unwinding theorem, nondeducibility, restrictiveness
Reading: text, §7.3–7.4, 8
Due: Feb 16: homework 3
Week 7. Dates: Feb 19, 21, 23     [Note: No class on Feb 19 (Presidents Day)]
Topics: Assurance overview, assurance in building systems, assurance in design
Reading: text, §9
Week 8. Dates: Feb 26, 28, Mar 1
Topics: Entropy, information flow
Reading: text, §17, C
Due: Mar 1: homework 4
Week 9. Dates: Mar 4, 6, 8
Topics: Principles of secure design, confinement problem, isolation
Reading: §14, 18–18.2
Week 10. Dates: Mar 11, 13, 15     [Note: Mar 15 is last class]
Topics: Covert channel analysis, malware
Reading: §18.3, 23.8
Due: Mar 15: homework 5
Mar 21: Due: completed project


UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: [email protected]
ECS 235B, Foundations of Computer and Information Security
Version of January 4, 2024 at 9:43PM

You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh