Course - System Security - IMT4123
IMT4123 - System Security
About
New from the academic year 2016/2017
Examination arrangement
Examination arrangement: Written examination
Grade: Letters
Evaluation | Weighting | Duration | Grade deviation | Examination aids |
---|---|---|---|---|
Written examination | 100/100 | 3 timer |
Course content
Access control (formal models and systems)
System security analysis (attack-defense trees and threat modelling)
Secure software development (requirement, design, code, testing)
Vulnerabilities and attack patterns and methods (injection, overflow, race conditions, MITM )
Distributed system security (covert channels, trust modelling and propagation)
Operating systems security (hardware protection, privileges, I/O protection, virtualization)
Learning outcome
Candidates who have successfully completed this course, should have achieved the following total learning outcome
Knowledge:
Candidates are expected to possess in-depth knowledge of modelling techniques for secure computer systems
Candidates have advanced knowledge of common vulnerabilities, attack mechanisms, and methods against computer and information systems
Candidates have thorough knowledge on the theory and methods underlying access control
Candidates have thorough knowledge on security techniques and methods applied in operating systems
Candidates have thorough knowledge about software security and secure development process
Skills:
Candidates are capable of applying relevant methods for security modelling and analysis of software applications and information systems.
Candidates are capable of analysing, evaluating and enhancing the security of information systems independently by identifying potential threats and propose possible countermeasures
General Competence :
Candidates can analyse relevant professional and research ethical problems related to securing information system and software.
Candidates are capable of applying their knowledge and skills in new fields, in order to carry out advanced tasks and projects.
Candidates can work independently and are familiar with terminology of the field of software and system security.
Candidates can communicate about academic issues related to system and software security both with specialists and public audience.
Candidates can contribute to innovation and innovation processes in information security.
Learning methods and activities
Forelesninger|Obligatoriske oppgaver|Oppgaveløsning
Utfyllende informasjon:
The course will be made accessible for both campus and remote students. Every student is free to choose the pedagogic arrangement form that is best fitted for her/his own requirement. The lectures in the course will be given on campus and are open for both categories of students. All the lectures will also be available on Internet through the university¿s learning management system.
Obligatoriske arbeidskrav:
Students are expected to hand in at least 4 (four) obligatory exercises.
Compulsory assignments
- Coursework Requirements
Further on evaluation
Utfyllende om kontinuasjon:
Ordinary re-sit examination in August.
Specific conditions
Admission to a programme of study is required:
Information Security (MIS)
Information Security (MISD)
Information Security (MISEB)
Recommended previous knowledge
Candidates should have read IMT4113 Introduction to Cyber and Information Security.
Course materials
The following textbooks are the primary references; further recommended reading is provided in the course syllabus.
M. Bishop: Computer Security: Art and Science. Addison-Wesley, 2003.
D. Gollmann: Computer Security, 2nd edition Wiley, 2006
R. Anderson: Security Engineering: A Guide to Building Dependable Distributed Systems. John Wiley & Sons, Chichester, UK (2001)
Credit reductions
Course code | Reduction | From | To |
---|---|---|---|
IMT4541 | 3.7 | ||
IMT4561 | 1.2 |
No
Version: 1
Credits:
7.5 SP
Study level: Second degree level
Term no.: 1
Teaching semester: SPRING 2017
Language of instruction: English
-
- Information Security
- Basel Katt
Department with academic responsibility
Department of Information Security and Communication Technology
Examination
Examination arrangement: Written examination
- Term Status code Evaluation Weighting Examination aids Date Time Examination system Room *
- Spring ORD Written examination 100/100 2017-05-31 10:00
-
Room Building Number of candidates - Summer KONT Written examination 100/100 2017-08-11 09:00
-
Room Building Number of candidates
- * The location (room) for a written examination is published 3 days before examination date. If more than one room is listed, you will find your room at Studentweb.
For more information regarding registration for examination and examination procedures, see "Innsida - Exams"