The information security course examines the design and implementation of information security system that assures content confidentiality. Topics include introduction to confidentiality, integrity, availability, authentication techniques and models, controls and protection models, security kernels, secure programming, audit, intrusion, detection and response, operational security issues, physical security issues, personal security, policy formation and enforcement, access controls, information flow, legal, privacy and social issues, identification and authentication in local and distributed systems, classification and trust modeling, risks and vulnerabilities, risk assessment, database security, encryption, host based and network based security issues, secure network design, implementation and transition issues, and techniques for responding to security breaches.