This is an introductory course on information security. The course focuses on introductory aspects of analysis, design and implementation of secure software.
Security is a fundamental aspect that is necessary to take care of in today's development of software.
The student taking this course will have an introductory knowledge on attacker models, cryptographic tools and principal security protocol from real-world scenarios.
The course addresses five major topics:
- The principal security requirements and attacker models
- The fundamental cryptographic tools in Information Security
- Primary security protocols and Internet standards (PKI, TLS)
- Practical techniques for penetrating and hardening IT-systems
Intended learning outcomes
After the course, the student should be able to:
- Describe, relate, and discuss basic security principles
- Identify and describe access control techniques
- Identify, describe, and evaluate design approaches meeting specific security requirements
- Illustrate, analyse, and evaluate security standards
- Identify and describe the proper use of cryptography in security
- Describe and compare most common attack practices
- Describe and explain intrusion detection and prevention
- Analyse an IT-system for security risks and reflect on potential improvements of the system
Ordinary examExam type:
A: Written exam on premises, external (7-trinsskala)
A11: Written exam on premises. Open book exam.
The duration of the written examination is 4 hours. You are allowed to use all aids (books, notes, software and online resoources).