|
Upon completion of the course, the student:
- Can explain and illustrate the main security properties such as confidentiality, integrity, authenticity, etc.
- Knows the fundamental security terminology that is essential to read security news, bulletins, and to apprehend advanced techniques
- Can recognize and explain the main attacks to computer and information security
- Knows the main security solutions and their underlying principles
- Can conduct risk analysis to determine the most adequate set of security solutions for a given context
- Can apply state-of-the-art techniques to design secure software systems
Assessment
The course includes three graded components:
- Two group assignments (team size 3)
- A1: Risk assessment with Coras
- A2: Security requirements modeling with STS-ml
- Each 25% of the final grade
- Final exam
Furthermore, the course will include 3 intermediate, non-graded tests on the materials that have been presented and have to be studied.
These are mandatory yet not graded. These tests represent so-called formative feedback that is meant for you to check your progress.
In order for a student to pass, this applies:
- The grade of the final exam should be at least 6.0
- The overall weighted average of all components should be at least 5.5
For a repair test this applies:
- Overall average < 4.0 → No retake possible: not enough effort
- If exam < 6.0 → Retake final exam
- If exam ≥ 6.0 and overall average < 5.5 → hand in revision of A1 and/or A2 (discuss with coordinator)
|
 |
|
Information Security is a course that provides the students with comprehensive, in-depth knowledge about information and computer security.
his field is of importance for every individual: think of the privacy concerns when we are using social media, or consider the viruses and worms that endanger our computers.
Moreover, security is crucial when it comes to organizations, which have to protect themselves from attackers aiming to spoil their reputation or to steal some trade secrets, have to train their own employees so that they act in accordance with security best practices and norms, and have to design software systems that are not harmful and that cannot be exploited by attackers.
Course form
Lectures, tutorials.
The course will feature a tight interplay between theory and practice.
Literature
Mandatory: Charles P. Pfleeger, Shari Lawrence Pfleeger, Jonathan Margulies "Security in Computing" , 5th edition. Prentice Hall, ISBN: 978-0134085043
Enrollment
Students Informatica please note that you can take either INFOB3INSE or INFOB3SEC as part of your program, but not both courses.
|
|
|