SRA 221 - Penn State Altoona

SRA 221 

Fundamentals of Information Security 

Dr. J. Ryoo 

Fall 2010 

Syllabus: SRA 221 

Division of Business and Engineering 

Penn State Altoona 

Course Title 

SRA 221: Fundamentals of Information Security-Fall 2010 

Section 001 

Credits: 3 

Meeting Times 

Lectures: Tuesdays and Thursdays 8:00 AM to 9:15 AM 

Instructor 

Professor Jungwoo Ryoo 

Office location: 147 LRC (library building) 

E-mail: jryoo@psu.edu 

WWW: http://www.personal.psu.edu/jxr65 

Telephone: (814) 949-5243 

Office Hours 

At Dr. Ryoo's office (and by appointments) 

• Mondays and Wednesdays: 1:30 PM to 3:30 PM 

Course Homepage 

Angel (http://cms.psu.edu) 

Prerequisites 

• SRA 111: Introduction to Security and Risk Analysis 

1/8



Dr. J. Ryoo 

Fall 2010 

• IST 110: Information, People, and Technology 

• CMPSC 101: Introduction to C++ Programming 

Required Texts 

Raymond R. Panko, Corporate Computer and Network Security, Prentice Hall, 2009 (ISBN: 0-13- 

185475-5). 

Course Description 

SRA 221 provides an overview of information security including security architecture, access control, 

and secure Internet applications. This course is required for all SRA majors and covers the 

following topics: 

• Security Fundamentals, 

• Basics of Cryptography, 

• Firewall Technologies, 

• Virtual Private Networks (VPNs), 

• Authentication, 

• Access Control, 

• Privacy and Identity Protection 

• Intrusion Detection, and 

• Software Security. 

with a focus on the relationship to e-business and the digital global economy. 

The aforementioned topics will be presented with relevant hands-on learning modules to promote 

deeper understanding. In addition, students will be given a term project in which they can 

synthesize the concepts and skills obtained during lecture sessions. 

2/8



Course Objectives 

Dr. J. Ryoo 

Fall 2010 

In this course, students should learn: 

• The fundamental concepts and issues of information security, 

• The mainstream information security technologies, 

• How real world enterprises are attacked, and 

• How to defend an organization against well known cyber attacks. 

Topics 

• Module 1: Security Fundamentals 

• Module 2: Access Control 

• Module 3: Firewall Technologies 

• Module 4: Basics of Cryptography 

• Module 5: Virtual Private Networks (VPNs) 

• Module 6: Authentication 

• Module 7: Privacy and Identity Protection 

• Module 8: Intrusion Detection 

• Module 9: Software Security 

3/8



Tentative Schedule 

Dr. J. Ryoo 

Fall 2010 

Date Week Session Lecture Topics Chapter Homework Due 

8/23/2010 1 1 Security Fundamentals 1 

8/25/2010 1 2 Security Fundamentals 1 Photo, Team Info., Bio. 

8/30/2010 2 3 Planning 2 

9/1/2010 2 4 Access Control 5 Team Contract 

9/6/2010 3 5 Access Control 5 

9/8/2010 3 6 Access Control 5 Research Proposal 

9/13/2010 4 7 Firewalls 6 

9/15/2010 4 8 Firewalls 6 

9/20/2010 5 9 Firewalls 6 Extra Credit 

9/22/2010 5 10 Exam Prep 6 

9/27/2010 6 11 Midterm Exam One 

9/29/2010 6 12 The Elements of Cryptography 3 Project Report One 

10/4/2010 7 13 The Elements of Cryptography 3 

10/6/2010 7 14 The Elements of Cryptography 3 

10/11/2010 8 15 Second Life N/A 

10/13/2010 8 16 Second Life N/A 

10/18/2010 9 17 Second Life N/A 

10/20/2010 9 18 Second Life N/A 

10/25/2010 10 19 Cryptographic System Standards 4 

10/27/2010 10 20 Cryptographic System Standards 4 

11/1/2010 11 21 Exam Prep 4 Project Report Two 

11/3/2010 11 22 Midterm Exam Two 

11/8/2010 12 23 Application Security 8 



11/17/2010 13 26 Intrusion Detection Systems N/A 

11/22/2010 14 N/A Thanksgiving N/A 

11/24/2010 14 N/A Thanksgiving N/A 



12/6/2010 16 31 Term Project Presentations 9 

12/8/2010 16 32 Term Project Presentations 9 Final Project Report 

Grading Policy 

Grade Distribution 

• Labs: 10% 

• Homework Assignments: 10% 

• Term Project 10% 

• Midterm I: 20% 

• Midterm II: 20% 

• Final: 30% 

• In-class presentations: 2% extra credit 

4/8



Dr. J. Ryoo 

Fall 2010 

There will also be pop quizzes throughout the semester. Their results will be used as extra 

credit (3%) to boost your overall grade. 

Grading Scale 

A: 93% to 100% 

A-: 90% to 92.9% 

B+: 87% to 89.9% 

B: 83% to 86.9% 

B-: 80% to 82.9% 

C+: 77% to 79.9% 

C: 70% to 76.9% 

D: 60% to 69.9% 

F: less than 60% 

Course Format 

In a real-life work environment, problem solving and troubleshooting skills are a must. Even 

more important is an ability to gain new knowledge and apply it in the process. The format of 

this class is deliberately designed to help students acquire these skills throughout the semester. 

At the beginning of each class, students will be given a coherent set of problems and learning 

objectives relevant to these problems (5 minutes). All the information necessary to solve the 

problems will be provided during the lecture (45 minutes). Students then work on a quiz and 

hands-on exercise (25 minutes) based on the problems posed earlier in the class. 

Term Project 

Throughout the semester each student will participate in a group project. A group will consist of 

three students. The nature of the project is either (1) scholarly research or (2) Community 

Service Learning (CSL). 

Students participating in research project groups will be guided and advised by me at each 

important juncture of their research project and will be taught basic academic research skills. A 

set of candidate topics will be available. A research group may pursue a topic of its own choice 

with a prior permission from me. 

Below is a summary of the tentative project schedule and deliverables at each milestone. 

• Proposals and references (Due on September 8th) 

– Research groups: consult Research Proposal Preparation Guideline on Angel. 

• Project Report Part One (Due on September 29th) 

Consult the Project Report document on Angel. 

– Research Group Project Report: include group members, your research topic, copies of 

scholarly journal articles, and 5 page partially finished term paper (not including the 

references) of your proposed paper. 

5/8



Dr. J. Ryoo 

Fall 2010 

• Project Report Two (Due on November 1st) 

Consult the Status Report document on Angel. 

– Research Group Project Report Two: include group members, your research topic, a 10 

page updated term paper, and a list of tasks yet to be accomplished. 

• Submission of presentation materials (Due on December 1st) 

PowerPoint slides, videos, and exam questions must be turned in on time. Follow 

guidelines on Angel. 

• Research presentations: 

– Place: classroom 

• Submission of the Final Project Report (3000 words excluding the references) (Due on 

December 8th). 

• Publications The authors of the papers of excellent quality will have a chance to present 

their work in one of the following conferences: 

– International Conference on Business, Economics, and Information Technology 

(ICBEIT) 2011 Guam, March, 2011. 

∗ http://www.aa.psu.edu/icbeit/ 

– Penn State Altoona Annual Undergraduate Research Fair, April 2011. 

∗ http://www.aa.psu.edu/honors/URF.htm 

– Penn State Behrend-Sigma Xi: Undergraduate Research and Creative Accomplishment 

Conference, April, 2011. 

∗ http://www.erie.psu.edu/research/ 

Important Dates 

• September 1: Add/Drop deadline 

• September 27: Midterm exam I 

• November 3: Midterm exam II 

• December 10: Last day to withdraw from the class 

• December : Final exam 

Attendance 

Students are expected to attend every class unless there are health or other justifiable reasons. 

Make-up Examinations 

Students are required to make every effort to take all examinations at their scheduled times. If a 

student will have to be absent for any University-approved and documented reasons at the time 

of midterm or final examinations, he or she must contact the instructor well in advance of the 

examinations (at least one day prior to the examination) to make special arrangements. Note 

that make-up exams are given on the following Friday (of the originally scheduled exam) at 

4:00 PM. 

6/8



Classroom Etiquette 

Dr. J. Ryoo 

Fall 2010 

In general, students are expected to behave in a way that does not hinder other students' 

learning. For example, students are expected to turn off their cell phones before each class. Do 

not bring your cell phone on the midterm and final exam days. 

Assignment Submission and Deadline Policies 

Homework assignments must be submitted by the designated due date. Students are 

recommended to type their homework and to use electronic submission (Angel). A drop box will 

be created for each assignment. Handwritten homework will not be considered if not legible. In 

case of electronic submission, printed copies are still expected to be handed in before class on 

the due date. Assignments are assessed a ten percent per-day late penalty, up to a maximum of 

four days. Unless the problem is apocalyptic, don't give execuses. Students with legitimate 

reasons who contact the professor before the deadline may apply for an extension. 

Communication Policies 

The instructor prefers E-mails to phone calls. Dr. Ryoo checks his E-mail regularly. Therefore, 

sending an E-mail is the best way to contact him. 

Penn State University’s Academic Integrity Policy 

Academic Integrity Definition and Expectations: Academic integrity is the pursuit of scholarly 

activity in an open, honest and responsible manner. Academic integrity is a basic guiding 

principle for all academic activity at The Pennsylvania State University, and all members of the 

University community are expected to act in accordance with this principle. Consistent with this 

expectation, the University's Code of Conduct states that all students should act with personal 

integrity, respect other students' dignity, rights and property, and help create and maintain an 

environment in which all can succeed through the fruits of their efforts. 

Academic integrity includes a commitment not to engage in or tolerate acts of falsification, 

misrepresentation or deception. Such acts of dishonesty violate the fundamental ethical 

principles of the University community and compromise the worth of work completed by others. 

(Policies and Rules for Students, Section 49-20.) 

Consequences of academic dishonesty: The instructor may assign an academic sanction 

ranging from a warning, to failure on an assignment or in the course, or to removal from the 

course. (Note that a failure in a course may affect a student's status in a program and/or in the 

University.) The instructor reports each academic sanction to the Office of Judicial Affairs, which 

keeps a record. Students can appeal academic sanctions to the Committee on Academic Integrity 

through the Office of Academic Affairs. In more serious cases of academic dishonesty, the 

Office of Judicial Affairs may apply disciplinary sanctions in addition to the academic sanctions. 

These may range from a warning to probation, suspension or expulsion from the University. An 

XF grade is a formal University disciplinary sanction that indicates on the student's academic 

transcript that failure in a course was due to a serious act of academic dishonesty. (Policies and 

Rules for Students, Section 49-20, and Academic Integrity Procedure G-9.) 

7/8



Dr. J. Ryoo 

Fall 2010 

While students can help each other (no more than two people in a group) with their homework 

assignments, they are still expected to do their own work individually. Copying 

someone else's work is not permitted at all. Note that the instructor checks similarities to 

ensure the originality of the work. 

Statement on Accessibility 

If you have a documented disability which requires classroom accommodations, please notify 

the instructor. All students with disabilities are required to register with Office for Disability 

Services on campus for the provisions of appropriate accommodations. Disability Services is 

located in the Health and Wellness Center, 814-949-5540. 

The content of this syllabus is subject to change during the semester on a daily basis. The 

changes will be announced in class and the details of the revisions will be reflected on the 

course homepage. 

8/8

SRA 221 - Penn State Altoona

Create successful ePaper yourself

Delete template?

Save as template?