Description of course project

Each project team will consist of 2 students. Students are responsible for finding their project partner, selecting TWO project topics (indicate first choice and second choice), and then sending both (group and topic) to me before Nov 8 (by e-mail). The final allocation of project topics will be done on the 'first-come-first-served' basis. If there is a lot of interest I may break up a topic into more specialized subtopics and assign them to groups.

The project work will be assessed through:

• 8-page long written report submitted no later than December 7 (single spacing, 11 point font size),
• 15-min oral presentation on date TBA.

• written report : content (coverage, depth of understanding reflected) - 5%
• written report : quality of writing (structure, syntax, proper citations, reference section, etc.) - 5%
• oral presentation (clarity and general understanding) - 5%

Presentation times (that I have received so far):

• Maria and Angela: Mon Dec 19, 1 pm.
• Osman, Rehema, Nivedita Dec 19, 6 pm.
• Heba and Ankit : Mon Dec 19, 7 pm.
• Paul, Aimen : Sun Dec 18, 3 pm.
• Amir : Mon Dec 19, 7:30 pm.
• Mokhsh and Shamas: Dec 21, noon
• Alex and Boze Dec 21 12:30.
• Ivan, Frank, Dec 21 1 pm.
• Yong Wang, Dec 21, 1:30 pm.

List of projects

1. Internet Worms - Maria A. M, and Angela G.
   • The blaster worm: then and now pdf
   • http://dl.acm.org/citation.cfm?id=948190
2. Virtual Private Networks - Moksh K, Shamas C.
   • http://technet.microsoft.com/en-us/library/bb742566.aspx
   • http://www.cisco.com/web/about/ac123/ac147/archived_issues/ipj_1-1/what_is_a_vpn.html
   • http://technet.microsoft.com/en-us/library/bb742566.aspx
3. Honeypots and Honeynets
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=1193207
   • http://www.scopus.com/record/display.url?eid=2-s2.0-33846625241&origin=inward&txGid=DbmgvLSApv0zxzxWMIBM0it%3a2
4. Botnets - Aimen K., Paul K.
   • http://downloads.hindawi.com/journals/wcn/2009/692654.pdf
   • http://www.albany.edu/~goel/publications/botnetbookchapter.pdf
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=4591703
5. Application level attacks: DNS Spoofing/Poisoning
   • http://www.windowsecurity.com/articles/Understanding-Man-in-the-Middle-Attacks-ARP-Part2.html
   • http://www.windowsecurity.com/articles/Understanding-Man-in-the-Middle-Attacks-ARP-Part2.html
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=5280128
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=1588824
6. Application level attacks: Session Hijacking- Heba I. AND Ankit A.
   • http://www.windowsecurity.com/articles/Understanding-Man-in-the-Middle-Attacks-ARP-Part3.html
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=4768661
7. Smart Cards Technology (Security and Attacks) - Alex N., Boze Z.
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=5455788
   • http://www.smartcard.co.uk/tutorials/sct-itsc.pdf
8. Security: Authentication Tokensa - Frank W., Ivan D.
   • http://en.wikipedia.org/wiki/Security_token
   • http://malpaso.ru/securid/rr2001-04.pdf
   • http://theether.net/download/RSA/SecurID/7.1SP2/auth_manager_planning_guide.pdf
9. Spyware
   • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=1362621
   • http://www.cs.ucsb.edu/~seclab/projects/spyware/usenix06_spyware.pdf
10. Octave Risk Management framework
    • http://www.cert.org/octave/approach_intro.pdf
    • http://www.proceedings2006.imcsit.org/pliks/160.pdf
11. Steganography - Osman A., Rehema M, Nivedita M.
    • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=4655281
    • http://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=935180
12. SQL Injection - Amir S.
13. Cloud Computing Security