《信息安全概论》课程介绍
《信息安全概论》课程是网络与信息安全专业的学科基础,担负着系统而全面地介绍安全专业基础知识、引导学生进入网络与信息安全领域大门的重要任务。
本课程全面介绍了网络与信息安全专业的基础理论与应用实践。课程内容涉及安全领域的方方面面,着重讲解的是基本概念而不是过于深入的技术细节。课程侧重点在于勾勒本专业的框架,力求使学生对所学专业有比较全面的了解,为今后的学习打下良好的基础。
课程覆盖了5个关键领域:
(1)简介:威胁、弱点以及各种控制;
(2)密码学:安全控制的主要手段;
(3)代码:程序中的安全,包括应用软件、操作系统、数据库系统和网络;
(4)管理:计算机安全的管理方法,理解计算机安全经济学;
(5)法律、隐私和道德:控制计算机安全风险的非技术方式。
The introduction of course --- Introduction to Information Security
This course is an introduction of information security and covers principles of information security. Topics include:
· introduction: threats, vulnerabilities, and controls
· encryption: the "Swiss army knife" of security controls
· code: security in programs, including applications, operating systems, database management systems, and networks
· management: building and administering a computing installation, from one computer to thousands, and understanding the economics of cybersecurity
· law, privacy, ethics: non-technical approaches by which society controls computer security risks
Course will focus on both the breadth and depth. The course is intended for the first year undergraduates.