I have handed all the coursework and assessments to the p/g office, and they will be ready for collection from Monday afternoon. Complete exercises with all the solutions I have written out are available.
The assigment for end-of-term assessment is now public. I want to see papers from Week 3 and 6, as well as one week of your choice. I recommend to choose one of Weeks 1, 8, and 9; as these sheets have proved useful and unproblematic during peer assessment.
I have improved the wording of some of the weekly sheets, so you may want to check that you have the latest version.
Ainuddin and I have assessed the work submitted last week. I apologise for forgetting to hand it out in yesterdays session. It is possible to pick it up from my office.
I have created a new page with commentaries to the weekly exercises (see right hand menu). The aim is to indicate how exam questions could be phrased within each topic covered by the weekly exercises. At the moment I have covered Week 1-4, and I will continue with the later exercises. I'd appreciate feedback on the commentaries so far.
The solution to part 2 of the weekly exercise sheet for Week 7, can be found in the paper by Dr. David F.C. Brewer and Dr. Michael J. Nash in the reading list (section title «Bell-LaPadula»). The paper is useful background reading as an example of how formal models can be developed and formally compared. However, question is very difficult and not the most important for the course; so please do not worry if you do not understand all the details.
I was recommended to consider Ross Anderson's book on Security Engineering as a textbook. The book is even available online. So far, I have not had time to look much at it myself, but Ross Anderson is a big name in Computer Security, so it if you want to read more, it is probably worth looking at.
The last sessions of the term will be
Normal sessions run until 13 November.
I plan to cover the material in nine weeks, finishing 13 November. The session 20 November will be shortened to 2h only, to go through the ninth weekly exercise and any questions arising. There will be an extra 2h session 27 November to answer questions and do revision. Feel free to raise any questions by email beforehand; that would give me a chance to prepare depth-answers.
The end-of-term assessment will be given in session and on web pages 20 November, with due date 27 November (before the session).
After the session on 20 November, I will be away for the rest of that week. I will try to answer my email, but if possible, try to ask the questions before or in the session.
I have published a new document with exercises and solutions for Week 1-4. If there are some solutions you feel you need, and which are not there, please ask. For the weekly exercises of week 3, I will not publish any solutions of my own; please refer to the published student paper instead. It is not perfect, but it is very good, and my feedback note tells you how to improve it.
One sample paper for the Week 3 Assignment has been made available with feedback. See the new item `Assignment Samples' in the right hand menu.
The C code I promised to illustrate password hashing can be found under the new `Miscellaneous' header in the right hand menu.
I have corrected the large lattice of security levels in today's slides. I have also added an extra clarifying remark in one of the exercises in this week's assignment.
One of the red stickers today asked for better wording in the exercises. I have had a second look at those for this week (which led to the extra remark), but otherwise saw no way to improve it. If the assignment is still hard to read or ambiguous, I would appreciate it if you send me an email about it.
There are some wording in previous weeks which I am not satisfied with, so I do agree with the red stickers, and I will double-check wording in future weeks.
The pdf-s with exercises will include three sections. «Weekly exercises» are the ones you should prepare for the following session. «In Sesseion» are supposed to be done in session, if time permits. «Extra Exercises» are recommended as a help in exam revision, for you to do when or if you have time.
$Id: index.inc,v 1.15 2007/11/30 22:29:20 css1hs Exp $
![[Filler]](/images/umiext.jpg)