MSIA Core Courses
The standards set by the National Security Telecommunications and Information Systems Security Committee of the National Security Agency (known as NSTISSI 4011) have been used as the model for the development of DSU's MSIA program. The computer science and security courses offered by Dakota State University have been certified as a 100% mapping to the committee on National Security Systems (CNSS), National Standards 4011 and 4013. This certification is made by the Information Assurance Courseware Evaluation (IACE) Program, part of the National INFOSEC (Information Security) Education and Training Program administered by the U.S. National Security Agency.
INFA 701 Principles of Information Assurance
(3 credit hours)
This course covers key bodies of knowledge and specializations in security, privacy, and compliance associated with enterprise information systems. The course explores defense-in-depth techniques of layering people, process and technology controls to secure the enterprise. Topics include information security law, ethics, security concepts and mechanisms; security technologies; authentication mechanisms; mandatory and discretionary controls; basic cryptography and its applications; digital forensics, biometrics database security, intrusion detection and prevention, anonymity and privacy issues for information systems. Emerging frameworks and tools are explored to complete the student’s foundational understanding of information assurance.
INFA 713 Managing Security Risks (3 credit hours)
Information technology holds the potential to create strategic, operational, financial, and reputational issues for an organization. Information technology risk management science provides decision-makers with the information needed to determine information security risk so decisions can be made regarding risk mitigation. This course is a study of the existing risk management frameworks, models, processes and tools to equip students with the theory, science and practical knowledge to operationalize risk management in an organization or government agency. Topics include outsourcing and off-shoring risks, and their mitigation through third party risk management programs. Students will examine cutting-edge risk management science to understand the future of information technology risk management.
INFA 715 Data Privacy (3 credit hours)
This course explores computational techniques for releasing information in such a way that data privacy cannot be violated and provides a formal framework for privacy-enhancing technologies and models of privacy protection. It explores privacy enhancements from economic, legal and policy perspectives and introduces cutting-edge, privacy-preserving frameworks for data-mining systems.
INFA 721 Computer Forensics (3 credit hours)
Identifying, acquiring, preserving, and analyzing electronic evidence from single machines, networks, and Internet. It will explore both technical and legal issues of computer forensics investigations. Topics include forensics law and regulation issues, incidence response, open and commercial tools, evidence recovery theory and practice of computer file systems, memory, registry, network logs and communications. Special focus will be given to windows systems and networks.
INFA 734 Web Software Security (3 credit hours)
This course provides in-depth knowledge of current vendor-independent web application hacking techniques and the defensive programming approaches necessary to mitigate such attacks. Attacks and mitigation strategies related to filter evasion, session management, database interaction, path traversal, and file inclusion will be emphasized.
INFA 736 Offensive Network Security (3 credit hours)
This course provides theoretical and practical aspects of Network Penetration Testing. The course includes in-depth details and hands on labs for each of the five distinct phases of an ethical hack including reconnaissance, scanning and vulnerability assessment, gaining access and exploitation, maintaining access, and covering tracks. An applied approach with a focus on current tools and methodologies will be stressed.
INFS 754 Network Security/Intrusion Detection (3 credit hours)
Provides a comprehensive overview of network security and intrusion detection. Topics include security overview, authentication, attacks and malicious code, communication security, Web security, network security topologies, intrusion detection, firewalls and VPNs, security baselines, security algorithms, physical security, disaster recovery, forensics overview, and other state-of- the-art developments.