AbstractThis course provides the necessary tools for analysing systems and security protocols.
In security I, you learned about the adversarial environment
and how difficult it is to secure IT systems. In security II, you learn
about the foundations of cryptography and security protocols and ways to
analyze their security. You will learn how security properties are not
compositional; that security is not absolute, that is, any
"secure" system leaves residual assumptions, especially
Specifically, this course provides the theoretical and practical foundation for understanding and working the area of Cybersecurity:
- security protocol design techniques
- tool-based practical verification, e.g., using Proverif
- formal techniques in computational and symbolic models
- security policies and properties, including IndCPA and IndCCA security
- case studies
Security I (7,5 ECTS), elective course on the MSc in Software Design
Discrete Mathematics (7,5 ECTS), mandatory course on the MSc in Software Design
Introduction to Programming (15 ECTS), mandatory course on the MSc in Software Design
Intended learning outcomes
After the course, the student should be able to:
- Design and analyze cryptographic protocols for adversarial environments
- Analyze basic cryptographic protocol designs in the computational model
- Explain and apply proofs by reduction to prove the security of cryptographic constructions
- Explain cryptanalysis and timing attacks
- Analyze the properties of security protocols using tools
The course comprises lectures, lab sessions. In parallel, a project runs throughout the course. There will be 12 weeks of lectures, 2 weeks of project work only.
There will be six quizzes on Learn-IT. To be eligible for the exam you must reach at least a 50% average (of all quizzes total).
At the end of the course, you must submit as a group a project to Learn-IT, which will be evaluated pass/fail. To be eligible for the exam, you must pass the project.
The student will receive the grade NA (not approved) at the ordinary exam, if the mandatory activities are not approved and the student will use an exam attempt.
The course literature is published in the course page in LearnIT.
Ordinary examExam type:
A: Written exam on premises, external (7-trinsskala)
A11: Written exam on premises. Open book exam.