Information Security and Cyber Law
- Information Security : Overview, need for information security, objectives of Information security.
- Global information systems and their evolution, basics of information systems, role of the Internet and the World Wide Web - Understanding about the threats to information systems security Building blocks of InfoSec, How Organizations manage security of their information systems Information security risk analysis fundamentals
- Importance of physical security and biometrics controls for protecting information systems assets
- Security considerations for the mobile work force
- Network security perspectives, networking and digital communications (overview only), security of wireless networks.
- Cryptographic techniques and Encryption, Intrusion Detection Systems and Firewalls, security of virtual private networks
- Security issues in application development with emphasis on integration of enterprise applications, database security, operating security and security of electronic mailing systems
- Security models and frameworks and standards through introduction to the ISO 27001, SSE-CMM (systems security engineering – capability maturity model), COBIT (Control Objectives for Information and related technologies) and the Sarbanes-Oxley Act (SOX) and SAS 70 (statement on auditing standards)
- Privacy Fundamentals, business practices‘ impact on data privacy, technological impact on data privacy, privacy issues in web services and applications based on web services
- Information security best practices – staffing, audits, disaster recovery planning and business continuity planning and asset management
- Ethical issues and intellectual property concerns for information security professionals – copy right, data protection etc. matters
- Introduction of IT Act 2000, main features of IT Act 2000, Digital Signature
- Access Control : Operating system Access Controls, Group and Roles, Access Control lists, Unix Operating System Security, Windows NT, Capabilities, Added Features in Windows 2000, Granularity, Sandboxing and Proof-carrying code, Hardware protection, Other technical Attacks.
- Cryptography & PKI : Symmetric Cryptography, Asymmetric Cryptography, Keys, Hash Functions, Digital Signatures.
- Distributed Systems - Concurrency, Fault Tolerance and Fault Recovery, Naming.
- Multilevel and Multilateral Security : Multilevel Security, Multilateral Security
- Electronic Banking –Banking and Bookkeeping.
- Monitoring Systems –Introduction, Alarms, Prepayment Masters.
- Biometrics : Physiological biometric techniques, behavioral biometric techniques,
- New biometric techniques, biometric systems.
- Incident Response : Incident Response, Prerequistes to planning an IRT.
- Network attack and Defence : Most Common Attacks, Scripts Kiddies and Packaged Defence.
- Management Issues : Organisational Issues,
- Protecting E-commerce Systems – Introduction
- Hacking – Introduction
Books Recommended :
1. Information Systems Security Management - Nina S. Godbole (Wiley India Pvt. Ltd.)
2. Security Engineering - Ross Anderson
3. Information Security Management Handbook - Harold Tpton & Micki Krause (Auerbach Publications)
4. Network Security Essentials: Applications and Standards - W. Stallings (Pearson Education)
5. eSecurity and You - Sandeep Oberoi (Tata McGraw-Hill)
6. Cyber Laws – Singh Yatindra
7. Cyber Crime – Bansal S K
8. Cyber law , E-commerce & M-Commerce – Ahmand Tabrez
9. Handbook of Cyber and E-commerce laws – Bakshi P M & Suri R K
10. Management Fundamentals and Information Systems Dr. Sushila Madan (Taxmann‘s)
PHP & My-SQL
Unit – I : Introduction to PHP , PHP installations , PHP syntax , Variables , Constants , Data types, Operators and Expressions , PHP control flow statement : Conditional and Loop statements , Switch statement , Break and Continue.
Unit – II : PHP function : Arithmetic ,String , Library , Date and Time functions User defined functions : Defining a function with Parameters and without parameters , Returing value from function , Dynamic function calls , Accessing varibales with the global statement , Function calls with the static statement , Setting default values for arguments , Passing arguments to a function by value , Passing arguments to a function by reference. Arrays : Array types , Declaration , Creation , Entering data into an array , Printing of array element , Searching , Sorting and Merging of array , String manipulation
Unit – III : PHP Forms : Form handling , Elements of form , Working with forms , Combine HTML and PHP code. Form validation : Server side and Client validation , Working with regular expression File handling : PHP Files : Concept of file, Mode of files , Open and Close , Creation and Reading of files , Working with directories in PHP , Upload – File form PHP Cookies : Anatomy of a cookie , Setting a cookie with PHP , Deleting a cookie, Creating session cookie PHP Sessions : Starting a session , Working with session variables , Destroying a session , Passing session Ids , Encoding and Decoding session variables
Unit – IV : Introduction to MySql , Benefits of MySql , Parameters of MySql : Database objects , reserve words , key words , literals , variables , data types Commands to be covered
1. Data Definition Commands
2. Data Manipulation Commands
3. Data Control Commands
Clauses : where , order by , group by , having , intersect , MySql predicates : Comparison , like , between , null , exists , Subqueries , Connectivity with PHP
1. PHP6 AND MYSQL – BIBLE BY STEVE SUEHRING , TIM CONVERSE AND JOYCE PARK ( WILEY INDIA )
2. BEGINNING PHP AND MYSQL , FOURTH EDITION BY JASON GILMORE
3. Beginning PHP, Apache, MySQL Web Development
4. Teach Yourself MySQL in 21 days - Techmedia
Elective : (i) Advance Java (ii) OOPS & C++ (iii) ASP.NET
Elective (i) Advance Java
Unit – I Overview of Networking - Networking Basics , Client-Server Architecture , Working with URLs – Creating a URL , Parsing a URL , Reading Directly from a URL , Connecting to a URL, Reading from and Writing to a URL connection , Network Protocols , Developing Networking Applications in Java. Sockets – Introduction , Reading from and Writing to a Socket , Writing the Server Side of a Socket Datagrams – Datagram , Writing a Datagram Client and Server , Broadcasting to Multiple Recipients
Unit – II Swing : Swing Features and Concepts , Using Swing Components – The JComponent Class , Using Top-Level Containers ( Frames , Dialogs , Applets ) , Using Intermediate Swing Containers ( Panels , Scroll Panes , Split Panes , Tabbed Panes , Internal Frames, Layered Panes , Root Panes ) Using Atomic Components (Buttons , check Boxes and Radio buttons , combo Boxes , Labels , Lists , Menus , Tables , Text Components , Trees ) Laying out Components within a Container - Using Layout Managers ( BorderLayout , BoxLayout, CardLayout, FlowLayout, GridLayout,GridBagLayout ) Writing Event Listerners - Implementing Listeners for Commonly Handled Events ( Action Listener , Component Listeners , Container Listener , Focus Listener , Internal Frame Listener , Item Listener , Key Listener , Mouse Listener , Mouse-Motion Listener , Window Listener )
Unit – III Java Beans : Definition , Advantage , Installing , Starting and using BDK ( Bean Development Kit), Using the BeanBox – Starting and Using the BeanBox , The BeanBox Menus , Using the BeanBox to Generate Applets , Writing a Simple Bean Properties – Simple Properties , Bound Properties , Constrained Properties , Indexed Properties , Manipulating Events in the BeanBox , The BeanInfo Interface , Bean customization , Bean Persistence , Using the BeanContext API JSP : Advantage of JSP technology ( Comparison with ASP / Servlet ) , JSP Architecture , JSP Access Model , JSP Synatx Basic ( Declarations , Expression , Scriplets , Comments ) , JSP Implicit Object , Object Scope , Synchronization Issue , Session management
Unit - IV JDBC : Introduction , Establishing Connectivity and working with connections interface , Working with statements , Creating and Executing SQL statements , Working with Result Set Object and Result Set Meta Data Servlets : Introduction , Life cycle servlets , Java Servlets , Java Servlets Development Kit , creating , Compiling and running servlet , The servlet API : javax.servlet package , Reading the servlet Parameters , Reading Initialization parameter , The javax.servlet.htp. Package , Handling HTTP Request and Response ( GET / POST Request ) BOOKS RECOMMENDED
1. PATRICK NAUGHTON & HERBERT SCHILDT, "THE COMPLETE REFERENCE: JAVA 2", TATA MCGRAW HILL, 1999
2. JOSEPH WEBER, "USING JAVA 2 PLATFORM", PRENTICE HALL OF INDIA, 2000.
3. DEITEL & DEITEL, "JAVA HOW TO PROGRAM", PRENTICE HALL, 5TH EDITION ,2002
4. PETER HAGGAR, "PRACTICAL JAVA: PROGRAMMING LANGUAGE GUIDE", ADDISON-WESLEY PUB CO, 1ST EDITION, 2000
5. BRUCE ECKEL, "THINKING IN JAVA", PEARSON EDUCATION ASIA, 2ND EDITION, 2000
Elective (ii) :
OOPS & C++
UNIT – I Benefits of OPP, Data type in C++, User-defined data types, operators in C++ Variables and constants, manipulators, operator precedence, Control structures – if-then, switch st, while loop, do-while loop, goto break, continue, user defined and standard library function, function prototype, default arguments, return by reference, call by value call by reference, overloading of functions.
UNIT – II Classes and objects private member functions, nesting of members functions, static data members, static member function, array of objects, objects, as function arguments, friendly function returning objects, constructions, destructions, constructing two dimensional arrays., Operation overloading, overloading Unary Operators, Overloading Binary Operators, Overloading Binary operators using friends, Type conversion. Inheritance, private, public and protected access specifier, Single inheritance, multilevel inheritance, Multiple Inheritance, Hierarchical Inheritance, Hybrid Inheritance. Virtual function, abstract classes, Pure virtual function, pointers to objects, this pointer, pointer to derived class.
UNIT – III C++ streams, C++ stream classes, Unformatted I/O operations, Classes for the stream operations, opening and closing a file, error handling, ios flags, redirecting input ans output, open() with different modes. Sequential input and output operations. Command-line arguments, overloading the extraction and insertion operators, difference in text and binary modes, write(), read(),
UNIT – IV Data structure using C++ Stack : push and pop operation, polish notation, evaluation of postfix expression. Queue – insertion and deletion operation Linked list : Memory representation, memory allocation, garbage collection, traversing insertion deletion, searching a node in linked list. BOOK RECOMMENDED:
1. C++ Programming for the absolute beginner by Henkemans Lee (PHI)
2. Object Oriented Programming in C++ by Barkakati (PHI)
3. Object Oriented Programming with C++ - by E Balguruswamy (TATA Megraw Hill)
4. Mastering C++ : by Stephen Prata
5. Data structure in C++ - by N.S. Kutti and P Y Padhye
Unit – I
Introduction to ASP, Advantages/Disadvantages, applications of ASP Upgrading ASP to ASP.NET ASP vs. ASP.NET, Upgrading HTML Pages to ASP.NET, Upgrading ASP Pages to ASP.NET Creating Web Forms Applications Creating an ASP.NET Web Application Project, Responding to Events, Where Does Processing Occur?, Namespace Fundamentals, Maintaining State Information Creating a User Interface • Using Controls, • Validating Data, • Navigating Between Forms, • Navigation Between Pages
Unit-II Data Binding • Bind Data to the UI , Transform and Filter Data Storing and Retrieving Data with ADO.NET Accessing Data with ADO.NET, Using Data Sets on Web Forms, Processing Transactions Catching and Correcting Errors • Using Exception Handling, Using Error Pages, Logging Exceptions
Unit-III Web Services • Creating Web Services, Discovering Web Services, Instantiating and Invoking Web Services Testing Web Applications • Creating Tests, • Running Tests, • Debugging
Unit-IV Building and Deploying Web Applications • Building a Web Application, Deploying a Web Application, Creating an Installation Program Maintaining Security • Authenticating and Authorizing Users, Using Windows Authentication, Using Forms Authentication Books Recommended
1. Mastering ASP.Net BPB Publication
2. ASP.net – The Complete Reference Tata McGraw Hill
3. Active Server Pages 3.0 (in 21 days) by Techmedia
4. Beginning Active Server Pages 3.0 by Wrox Press
Practicals : Practical-I : PHP & My-SQL Practical-II : Elective
Project : Towards the end of the second year of study, a student will be examined in the course ―Project Work‖.
a. Project Work may be done individually or in groups (Maximum 3 students) in case of bigger projects. However if project is done in groups, each student must be given a responsibility for a distinct module and care should be taken to monitor the progress of individual student.
b. The Project Work should be done using the tools covered in Master of Computer Management.
c. The Project Work should be of such a nature that it could prove useful or be relevant from the commercial / management angle.
d. The project work will carry 100 marks.
e. Project Work can be carried out in the Institute or outside with prior permission of the Institute.
f. The external viva-voce examination for Project Work would be held as per the Examination Time Table of the second year of study, by a panel of one external and one Internal examiner.
Types of Project
As majority of the students are expected to work out a project in some industry/research and development laboratories/educational institutions/software export companies, it is suggested that the project is to be chosen which should have some direct relevance in day-today activities of the candidates in his/her institution. The Applications Areas of project - Financial/Marketing/Database Management System/ Relational Database Management System/E-Commerce /Internet/ Manufacturing/ web Designing etc.
Project Proposal (Synopsis)
The project proposal should be prepared in consultation with the guide. The project guide must be a person having minimum Qualification MCM/M.Sc. (Computers)/ M.Sc. (Maths/Electronics/Statistics/Physics + Post B.Sc. Dip. In Comp. Sc. & Appl.)/MCA. The project proposal should clearly state the objectives and environment of the proposed project to be undertaken. It should have full details in the following form:
1. Title of the project
2. Objectives of the Project
3. Project Category (DBMS/RDBMS/OOPS/Web Designing/Internet etc.)
4. Tools/Platform, Languages to be used
5. A complete Structure of the program:
ii. Numbers of Modules.
iii. Data Structures or Tables
iv. Process Logic.
v. Types of Report Generation.
6. Scope of future Application.
Project Report Formulation.
1. Title Page.
2. Certificate Page.
3. Declaration Page.
4. Acknowledgment Page.
5. Index or Content Page.
ii. Preliminary System Analysis.
• Identification of Need.
• Preliminary Investigation.
• Feasibility Study.
• Need Of New System.
• Flaws in Present System.
iii. Project Category.
iv. Software Requirement Specification.
v. Detailed System Analysis.
• Data Flow Diagram.
• Numbers of Modules and Process Logic.
• Data Structures and Tables.
• Entity-Relationship Diagram.
vi. System Design.
• Source Code.
• Input screen & Output Screen.
vii Validation Checks. viii Implementation, Evaluation and Maintenance. ix Security Measures taken. x Future Scope of the project. xi Bibliography.
New MCM Syllabus Semester Pattern From 2012-13
1. Practical-I : Programming in C & Operating Systems
2. Practical-II : Tally & MS-Office
1. Practical-I : Visual Basic
1. Practical-I : Core Java
2. Practical-II : Oracle
1. Practical-I : PHP & My-SQL
2. Practical-II : Elective
Master of Computer Management (MCM)
QUESTION PAPER PATTERN
Total Marks : 80
N.B.) a) Any Five questions should be attempted out of Eight questions.
b) All Questions carry equal marks. (Sixteen marks each)
Q. 1 : Unit – I
Q. 2 : Unit – I
Q. 3 : Unit – II
Q. 4 : Unit – II
Q. 5 : Unit – III
Q. 6 : Unit – III
Q. 7 : Unit – IV
Q. 8 : Unit – IV
BCA Bachelor Of Computer Application, BCCA, Bachelor of Commerce & Computer Application BE IT/CS, Information technology/Computer Science MCA, Master of Computer Application MCM, Master of Computer Management Diploma , Polytechnic Others,
C / C++ ,
Hardware & Networking
CCNA, MCSE, Hardware, Networking