Computer Science 491S

Recall from the Policy lecture that we  referenced a number of laws, but didn’t investigate.

http://www.massachusetts.edu/SecurityAwareness/datasecuritylaws.html

A good resource for computer policy and law for Universities is ICPL Recommended Links.

For federal law, the Department of Justice maintains a good reference at: http://www.cybercrime.gov/cclaws.html

However, more interesting is material aimed at prosecutors working in the field. We will review this in class:

http://www.cybercrime.gov/ccmanual/index.html

For a reasonable summary on Information Security law, it is worth looking at the security focus four part series:

Part 1, Part 2, Part 3, Part 4.

To find the actual text of US Federal Law, a helpful resource is THOMAS.

Note that all the above references federal law. There is also an extensive body of state law concerning information security. A good reference on state law for Massachusetts is available from http://www.lawlib.state.ma.us/ . We will review a small amount of the state material, but the focus will be on federal law. Recall that the protections afforded under state law vary greatly.

As these will be covered on tomorrow’s quiz, they are being posted here.

415-lec9-unix.pdf

Lab 3 is due at the beginning of class on Thursday 11 December.

415-lab3-f08-incident.pdf

Exam 2 will be given in class on Thursday 4 December. This exam will cover material since the last exam. Note, that since much of the material in the second half of class depends on a thorough understanding of the introductory material, you should ensure that you are comfortable in your understanding of the breadth of the course materials. This exam will not explicitly cover topics such as AES and RSA, but will cover topics such as SSL/TLS. Understanding AES and RSA is fundamental to understanding how SSL/TLS work. As such, this is not a comprehensive course exam, but the second exam for the semester.