INFORMATION SECURITY(CA5321)- ANNA UNIVERSITY TRICHY

INFORMATION SECURITY(CA5321)

ANNA UNIVERSITY TRICHY

ELECTIVE III AND IV 

LTPC 

3003

UNIT I INTRODUCTION 9

Critical Characteristics of Information – NSTISSC Security Model – Components of an Information System – Securing the Components – Balancing Security and Access – The SDLC – The Security SDLC – Need for Security – Business Needs – Threats – Attacks – Legal – Ethical and Professional Issues.

UNIT II SECURITY ANALYSIS 9

Risk Management: Identifying and Assessing Risk – Assessing and Controlling Risk.

UNIT III LOGICAL DESIGN 9

Blueprint for Security – Information Security Policy – Standards and Practices – ISO 17799/BS 7799 – NIST Models – VISA International Security Model – Design of Security Architecture – Planning for Continuity.

UNIT IV PHYSICAL DESIGN 9

Security Technology – IDS – Scanning and Analysis Tools.

UNIT V NETWORK AND COMPUTER SECURITY 9

Cryptography – Access Control Devices – Physical Security – Security and Personnel.

Total: 45

TEXT BOOKS

1. E.Michael Whitman and J.Herbert Mattord, “Principles of Information Security”, Vikas Publishing House, New Delhi, 2003.

2. Mark Merkow and James Breithaupt “Information Security: Principles and Practices, 1/E “, Pearson Education, 2005

3. Ron Weber, “Information Systems Control and Audit”, Pearson Education, New Delhi, 2004.

REFERENCES

1. Micki Krause, F.Harold Tipton, “Handbook of Information Security Management”, Vol 1-3 CRC Press LLC, 2004.

2. Stuart Mc Clure, Joel Scrambray, George Kurtz, “Hacking Exposed”, Tata McGraw Hill, 2003.

3. Matt Bishop, “Computer Security Art and Science”, Pearson/PHI, 2002.