Clark Atlanta University

Information Assurance Design

CIS 472: Computer Architecture

Overview:

Description

Objective

Goals/Outcome

Outline

Suggested Assignments

References

Suggested Time: 3 Class Periods

Course Length: 3 Hours

Pre-Requisite : CIS 121, CIS 225

Target Audience

Levels	Disciplines
Levels	CS	CIS
Undergraduate	x	x
Graduate

Description:

The information assurance module for this course focuses on the introduction of security architecture. It will identify the elements of security architecture and describe the services it must provide in order to ensure security, the system elements required to implement the architecture, and the performance required to ensure that it functions properly. It also examines unintentional errors, intentional attacks, and layered security architecture.

Objective(s):

The primary purpose of this course is to:

·        To provide definitions to terminology related to information assurance issues in computer organization.

·        Identify Information Assurance issues related to the basic components of computer architecture.

·        Identify the elements of security architecture and discuss the security services provided, required system elements, and required performance levels.

·        Discuss layered security architecture and its problems

·        Identify unintentional and intentional threats that affect computer architecture.

Goals/Outcome:

The students will be able to:

Identify terminology related to Information Assurance and computer/security architecture.

Identify the basic components of computer architecture and discuss there importance in Information Assurance.

Define the term security architecture and identify the elements that it should include.

Understand the concept of a layered security architecture and its problems

Discuss the threat of unintentional errors and intentional attacks to computer security.

Outline:

Terminology

Ø      Security Policy

Ø      Security Measures

Ø      Security Mechanism

Ø      Security Perimeter

Ø      Security Model

Ø      Threat Action

Information Assurance and the Basic Components of Computer Architecture

Ø      Domains

Ø      States

Ø      Finite State Machines

Ø      Security Domains

Introduction to Security Architecture

Ø      Security Services

Ø      Required System Elements

Ø      Required Performance Levels

Elements of Security Architecture

Ø      Administrative security

Ø      Communication security

Ø      Computer security

Ø      Emanations security

Ø      Personnel security

Ø      Secure storage

Ø      Physical security

o       Hardware

o       Software

Firmware Intentional and Non-intentional Attacks to Computer Architecture

Layered Security Architecture- Common Data Security Architecture(CDSA)

Ø      Applications

Ø      Layered services and middleware

Ø      Common Security Services Manager (CSSM) infrastructure

o       Security Service Provider Modules

Problems with Layered Security Architecture

Ø      Overtaxing

Ø      Mismatching

Suggested Assignments:

·        Students will write a paper discussing the implications of overtaxed and mismatched security layers.

References:

·        Krause, Micki & Tipton, Harold. “Handbook of Security Management: Computer Architecture” March, 2005 <http://www.cccure.org/Documents/HISM/404-407.html>

·        Mackey, Richard. “Layered Insecurity.” Information Security. June 2002

April 23, 2005 <http://infosecuritymag.techtarget.com/2002/jun/insecurity.shtml>

·        “Security Forum.” The One Group. 1995-2005

      April 23, 2005 <http://www.opengroup.org/security/l2-cdsa.htm>

·        “Strong, Layered WLAN Security Architecture Protects Users, Data, Network.” 3com Corporation. 1995-2005

      <http://www.3com.com/wireless/FIPS/fips_architecture.html>