bal@cs.vu.nl (Bal Henri) (04/08/91)
========================== 5-day course on Security by Eugene Spafford Amsterdam, 10-14 June 1991 ========================== On 10-14 June, prof. Eugene Spafford of Purdue University will present a course on computer security. The course is organized by the Dutch "Academie voor Informatica" and will be held in Amsterdam, The Netherlands. Course Description: ------------------ This is a course on practical aspects of Unix security. Some theoretical background will be presented, but the emphasis is on actions that can be taken in a production environment to decrease the risk of loss and compromise. Attendees are expected to be familiar with simple system administration of Unix systems. Topics included in the course include: * definitions of security * risk and threat analysis methods * process concepts; controlling user access * file and directory security * managing setuid/setgid programs * password and authentication schemes * defending against breakins * protecting modems and network connections * NFS, YP, Kerberos and associated topics * configuring network firewalls * discovering and tracing breakins * auditing methods * integrity protection * encryption methods * programmed threats and vandalware (viruses, worms, etc.) * physical security * some future directions & useful resources Biosketch of E.H. Spafford: --------------------------- Eugene H. Spafford is an Assistant Professor at the Department of Computer Sciences of Purdue University. He does research on issues relating to increasing the reliability of computer systems, and the consequences of computer failures. This work led to his highly visible role in dealing with the Internet Worm issue and his continuing presence in the world of security, especially that of Unix systems. Professor Spafford directed the development of the COPS security checker program for Unix -- a widely-distributed tool to be included in the 4.4 BSD release. He is coauthor of the book Practical Unix Security, published by O'Reilly and Associates (1991), and the book Computer Viruses: Dealing with Electronic Vandalism and Programmed Threats, ADAPSO (1989). Dr. Spafford is an external associate of the DARPA Computer Emergency Response Team at the SEI, and a member of the advisory board of the National Research Center on Computers and Society. Further information: -------------------- The course fee is Dfl 3250,- Further details can be obtained from: dr. H.E. Bal, Vrije Universiteit Email: bal@cs.vu.nl Phone: +31 20 5485574 Fax: +31 20 6427705