Information Security - Authentication and Access Control

Learn more fundamentals of information security, including Introduction to Cryptography, Authentication, Access Control and Containerization.

Information Security - Authentication and Access Control

There is one session available:

After a course session ends, it will be archived.
Estimated 6 weeks
7–9 hours per week
Progress at your own speed

About this course

Skip About this course

This is the 2nd course in the intermediate, undergraduate-level offering that makes up the larger Cybersecurity Fundamentals MicroBachelors Program. We recommend taking them in order, unless you have a background in these areas already and feel comfortable skipping ahead.

  1. Information Security - Introduction to Information Security
  2. Information Security - Authentication and Access Control
  3. Information Security - Advanced Topics
  4. Network Security - Introduction to Network Security
  5. Network Security - Protocols
  6. Network Security - Advanced Topics
  7. Penetration Testing - Discovering Vulnerabilities
  8. Penetration Testing - Exploitation
  9. Penetration Testing - Post Exploitation

These topics build upon the learnings that are taught in the introductory-level Computer Science Fundamentals MicroBachelors program, offered by the same instructor.

This is a self-paced course that provides a continuation of information security and cybersecurity topics. Among the topics covered are Introduction to Cryptography, Authentication, Access Control, and Containerization. Students learn about both symmetric and asymmetric encryption and their uses. We also take a look at one-way hashing and how it differs from encryption. We drill into ways that encryption is used in PKI and Digital Certificates. Next, we tackle authentication. Authentication is relevant to multiple fields. In art, antiques, and anthropology, a common problem verifies that a given artifact was produced by a particular person or a specific place or period of history. In computer science, verifying a user's identity is often required to allow access to confidential data or systems. Next, we move on to different access control mechanisms. We then drill into the implementation details of access control in several other operating systems. We follow up with a deep dive into compatibility based access control mechanisms. Finally, we look at access control in virtual machines (VM), virtualization, and containerization. We look into how the operating system achieves access control, and whether these methods are sufficient.

At a glance

What you'll learn

Skip What you'll learn
  1. Describe Strengths and Weaknesses of Data Encryption Standard (DES)
  2. Describe Strengths and Weaknesses of Advanced Encryption Standard (AES)
  3. Describe Public Key Cryptography
  4. Describe Asymmetric Key Algorithms
  5. Define Hash Functions
  6. Describe Public Key Signatures
  7. Describe the Benefits of the Different Types of Authentication
  8. Define access control
  9. Apply four types of access control (Discretionary, Mandatory, Role Based, and Unix/Linux File Access Control)
  10. Describe the use of the SetUID permission in Unix/Linux
  11. Analyze an access control scenario using an Access Control Matrix
  12. Differentiate between ACL and Capabilities
  13. Describe the use of a Reference Monitor
  14. Describe the Security Mechanisms built into Chromium OS
  15. Give Examples of Covert Channels including both Timing Channels and Storage Channels
  16. Describe the Purpose of an Operating System (OS)
  17. Differentiate between Type 1 and Type 2 Hypervisors
  18. Describe Containers and their Purpose
  19. Describe Sandbox Computation

Week 1 - Introduction to Cryptography

Week 2 - Authentication

Week 3 - Access Control Part 1

Week 4 - Access Control Part 2

Week 5 - Containerization

Week 6 - Final Exam

About the instructors

Who can take this course?

Unfortunately, learners from one or more of the following countries or regions will not be able to register for this course: Iran, Cuba and the Crimea region of Ukraine. While edX has sought licenses from the U.S. Office of Foreign Assets Control (OFAC) to offer our courses to learners in these countries and regions, the licenses we have received are not broad enough to allow us to offer this course in all locations. edX truly regrets that U.S. sanctions prevent us from offering all of our courses to everyone, no matter where they live.