605.731.81 - Survey of Cloud Computing Security
Description
The promise of significant cost savings and inherent flexibility of resources are an impetus for the adoption of cloud computing by many organizations. Cloud computing also introduces privacy and security risks that are not traditionally present in a siloed data center. This course focuses on these security concerns and countermeasures for a cloud environment. An overview of cloud computing and virtualization, the critical technology underpinning cloud computing, provides the necessary background for these threats. Additional topics vary but may include access control, identity management, denial of service, account and service hijacking, secure APIs, malware, forensics, regulatory compliance, trustworthy computing, and secure computing in the cloud. This course follows a seminar-style format where students are expected to lead class discussions and write a publication-quality paper as part of a course project.
Expanded Course Description
Prerequisites
Operating Systems (605.612 or equivalent) is recommended. Prior knowledge of cloud computing (e.g., 605.635) is encouraged but not required.
Instructor
Joel Coffman
Course Structure
The course materials are divided into modules which can be accessed by clicking Modules on the course menu. A module will have several sections including the overview, content, readings, discussions, and assignments. You are encouraged to preview all sections of the module before starting. Most modules run for a period of seven (7) days, exceptions are noted in the Course Outline. You should regularly check the Calendar and Announcements for assignment due dates.
Course Topics
The exact topics may change each semester due to students' interests. A general list is as follows:
- Introduction to Cloud Computing
- Cloud Security
- Virtualization
- Trusthworthy computing
- Secure Computation
- Cloud Management
- Data Management
- Data Security
- Regulatory Compliance
- Forensics and Malware
Course Goals
To expose students to recent research in cloud computing and the security issues surrounding this field. Students will read and discuss academic research papers to discover the current threats to security and privacy in cloud computing and how to defend against those threats.
Course Learning Outcomes (CLOs)
- Compare and contrast the various cloud delivery and deployment models, particularly the security implications of each.
- Understand the basics of virtualization technology and current attacks against it.
- Distinguish between terms such as “cloud computing” and “big data” and explain their differences.
- Describe the mechanisms used to secure cloud computing platforms, including trustworthy computing, secure computation, and data security in cloud environments.
- Identify the challenges that cloud computing introduces for regulatory compliance and digital forensics.
- Students will gain an appreciation for ongoing research in the area of cloud computing security. Students will critically review research papers to articulate their contributions to the field and the limitations of that work.
Textbooks
None. A variety of current papers pertaining to cloud security will serve as the texts for the course.
Student Coursework Requirements
Students are expected to read the assigned papers each week and may be required to write a short synopsis (≈½-page) of the reading material. Students will be required to present at least one paper to the class and may lead a discussion of that material. The course project will include both a presentation and a paper that provides technical details of the work.
Grading Policy
Assignments are due according to the dates posted in your Canvas course site. You may check these due dates in the Course Calendar or the Assignments in the corresponding modules. Expect grades to be posted one week after the due date of each assignment.
If you believe that an assignment has been graded incorrectly, you have one week from the date that assignment was returned to request a regrade. Your request must be accompanied by a detailed written explanation of why you believe you deserve additional credit. Requiring a written explanation saves time when regrading, demonstrates greater mastery of the material on your part, and improves your technical writing skills.
Poor performance in either spelling or grammar is taken as an indication of poor written communication ability that may detract from your grade.
Final grades will be determined using the following scale:
Grade | % |
A | 90–100 |
B | 80–90 |
C | 70–80 |
D | 60–70 |
F | < 60 |
Note: ± may be assigned at the instructor’s discretion.
Final grades will be determined using the following weighting:
Item | % |
Participation (discussions, presentation critiques, peer reviews, etc.) | 37.5 |
Presentation(s) | 15.0 |
Project | 47.5 |
Course Policies
Late Penalties
Assignments should be completed on time. Contact me in advance if there are extenuating circumstances that preclude submission by an assignment’s due date. Extension requests at the last-minute or after the due date are unlikely to be granted unless, for example, you’ve spent the last 24 hours in the emergency room (ER).
If an extension has not been granted, late submissions will be penalized 25% per day. For example, an assignment submitted 6 hours after the deadline will receive 75% of the credit that would have been awarded had the submission been on time. Submissions more than three days late may not be accepted – i.e., they may earn no credit.
Discussions
Participation in the discussion forums must occur throughout the module. More specifically, the first post must be made by the fourth day of the module and subsequent posts must be made by the final day of the module. For example, if the module opens on Wednesday, then students’ first post must be no later than Saturday but subsequent posts (i.e., replies to others’ posts) may be made at any time before the end of the module.
The discussion rubric in Canvas details the expectations for posts. Full credit is reserved for “exceptional” posts that not only address the prompt but also integrate and synthesize material from a variety of sources, demonstrating mastery of the topic. Posts that are off-topic or superficial (e.g., those that simply (dis)agree with prior posts) will not receive credit.
Generative AI
The use of generative artificial intelligence (generative AI) tools, such as ChatGPT, are not a substitute for active learning, including reading research papers, responding to discussion prompts, and writing about your own research as part of this course. You may use generative AI tools to assist your learning, just like you might use Google or Wikipedia to find more information about a topic, but presenting the output of generative AI tools as your own work is a form of plagiarism.
Per the ACM Policy on Authorship, an author must
- be an identifiable human being,
- make substantial intellectual contributions to the work, and
- accept full responsibility for all the content.
Accordingly, you must disclose the use of generative AI tools whenever they are used to create content regardless of the amount of content (e.g., even a single sentence requires disclosure), and the disclosure should include the specific tool(s) used, inputs to the tool(s), and any editing of the output. Again, the use of generative AI tools is no substitute for active learning, and credit may not be provided for completing assignments with the use of these tools.
Academic Policies
Deadlines for Adding, Dropping and Withdrawing from Courses
Students may add a course up to one week after the start of the term for that particular course. Students may drop courses according to the drop deadlines outlined in the EP academic calendar (https://ep.jhu.edu/student-services/academic-calendar/). Between the 6th week of the class and prior to the final withdrawal deadline, a student may withdraw from a course with a W on their academic record. A record of the course will remain on the academic record with a W appearing in the grade column to indicate that the student registered and withdrew from the course.
Academic Misconduct Policy
All students are required to read, know, and comply with the Johns Hopkins University Krieger School of Arts and Sciences (KSAS) / Whiting School of Engineering (WSE) Procedures for Handling Allegations of Misconduct by Full-Time and Part-Time Graduate Students.
This policy prohibits academic misconduct, including but not limited to the following: cheating or facilitating cheating; plagiarism; reuse of assignments; unauthorized collaboration; alteration of graded assignments; and unfair competition. Course materials (old assignments, texts, or examinations, etc.) should not be shared unless authorized by the course instructor. Any questions related to this policy should be directed to EP’s academic integrity officer at ep-academic-integrity@jhu.edu.
Students with Disabilities - Accommodations and Accessibility
Johns Hopkins University values diversity and inclusion. We are committed to providing welcoming, equitable, and accessible educational experiences for all students. Students with disabilities (including those with psychological conditions, medical conditions and temporary disabilities) can request accommodations for this course by providing an Accommodation Letter issued by Student Disability Services (SDS). Please request accommodations for this course as early as possible to provide time for effective communication and arrangements.
For further information or to start the process of requesting accommodations, please contact Student Disability Services at Engineering for Professionals, ep-disability-svcs@jhu.edu.
Student Conduct Code
The fundamental purpose of the JHU regulation of student conduct is to promote and to protect the health, safety, welfare, property, and rights of all members of the University community as well as to promote the orderly operation of the University and to safeguard its property and facilities. As members of the University community, students accept certain responsibilities which support the educational mission and create an environment in which all students are afforded the same opportunity to succeed academically.
For a full description of the code please visit the following website: https://studentaffairs.jhu.edu/policies-guidelines/student-code/
Classroom Climate
JHU is committed to creating a classroom environment that values the diversity of experiences and perspectives that all students bring. Everyone has the right to be treated with dignity and respect. Fostering an inclusive climate is important. Research and experience show that students who interact with peers who are different from themselves learn new things and experience tangible educational outcomes. At no time in this learning process should someone be singled out or treated unequally on the basis of any seen or unseen part of their identity.
If you have concerns in this course about harassment, discrimination, or any unequal treatment, or if you seek accommodations or resources, please reach out to the course instructor directly. Reporting will never impact your course grade. You may also share concerns with your program chair, the Assistant Dean for Diversity and Inclusion, or the Office of Institutional Equity. In handling reports, people will protect your privacy as much as possible, but faculty and staff are required to officially report information for some cases (e.g. sexual harassment).
Course Auditing
When a student enrolls in an EP course with “audit” status, the student must reach an understanding with the instructor as to what is required to earn the “audit.” If the student does not meet those expectations, the instructor must notify the EP Registration Team [EP-Registration@exchange.johnshopkins.edu] in order for the student to be retroactively dropped or withdrawn from the course (depending on when the "audit" was requested and in accordance with EP registration deadlines). All lecture content will remain accessible to auditing students, but access to all other course material is left to the discretion of the instructor.