Learn the fundamentals of information security, including Security Design Principles, Threat Modeling and Security Policy. This is a self-paced course that provides an introduction to information security and cybersecurity. Students gain a broad overview of Information Security and Privacy (ISP) through high-level ISP concepts. We discuss both traditional design principles and principles that were developed to design secure systems.
Class Deals by MOOC List - Click here and see EdX's Active Discounts, Deals, and Promo Codes.
This is the 1st course in the intermediate, undergraduate-level offering that makes up the larger Cybersecurity Fundamentals MicroBachelors Program. We recommend taking them in order, unless you have a background in these areas already and feel comfortable skipping ahead.
- Information Security - Introduction to Information Security
- Information Security - Authentication and Access Control
- Information Security - Advanced Topics
- Network Security - Introduction to Network Security
- Network Security - Protocols
- Network Security - Advanced Topics
- Penetration Testing - Discovering Vulnerabilities
- Penetration Testing - Exploitation
- Penetration Testing - Post Exploitation
These topics build upon the learnings that are taught in the introductory-level Computer Science Fundamentals MicroBachelors program, offered by the same instructor.
We'll talk about several examples of insecure design and techniques to improve the design. We take an in-depth dive into creating models to measure potential threats. We also talk about risk and ways of managing and measuring the risk to assets. We conclude by taking an in-depth look at different security policy models, including the Bell-La Padula (BLP) Model, the Biba Integrity Model, Lipner's Model, and Clark-Wilson Integrity Model. Next, we consider the practical aspects of the implementation of the policy models.
This course is part of the Cybersecurity Fundamentals MicroBachelors® Program.
What you'll learn
- Define the three major terms in cybersecurity (Confidentiality, Integrity, and Availability)
- Differentiate between threats, vulnerabilities, and attacks
- Articulate different security mechanisms.
- Describe the specification, design, & implementation of secure systems
- Describe How to Design Security
- Enumerate the Fundamental Design Principles
- Describe Principles of Secure Design
- Analyze Security, Privacy, Ethics & Legal Issues related to design
- Enumerate the Security Life Cycle
- Describe Threat Modeling
- Analyze Threats using Ranking
- Apply Attack Trees
- Discuss the meaning of "security policy"
- Outline the elements of security policy
- Differentiate between security policy types, models, and levels
- Define and compare five security models (Bell-La Padula Model, Biba Integrity Model, Lipner’s Model, 17. Clark-Wilson Integrity Model and Chinese Wall Model)
- Apply multilevel security policies
Syllabus
Week 1 - Introduction to Information Security
Week 2 - Security Design Principles
Week 3 - Threat Modeling
Week 4 - Security Policy
Week 5 - Final Exam
