Advanced course on principles and practice of engineering secure information systems. Topics covered include threats and vulnerabilities, counter measures, legal and policy issues, risk management and assurance. In-depth coverage of various research problems, which vary from one offering of the course to another.