course-details-portlet

TTM4135

Information Security

Credits 7.5
Level Second degree level
Course start Spring 2012
Duration 1 semester
Language of instruction English
Examination arrangement Portfolio assessment

About

About the course

Course content

Cryptography; symmetric and public-key, cryptographic protocols, key distribution, authentication, digital signature structures. Network security; access control, services and mechanisms for authentication, IPSec, application layer security and secure network management. System security; intrusion detection, malicious software, firewalls, identification.

Learning outcome

A. Knowledge:
To get a basic understanding of principles and practice of cryptography and network security by gaining knowledge in four broad categories:
1) Cryptographic algorithms (symmetric encryption, asymmetric encryption and cryptographic hash functions with related topics of message authentication codes and digital signatures).
2) Establishing mutual trust by studying the techniques and algorithms for key management, key distribution and user authentication.
3) Network security by studying the use of cryptographic algorithms in network protocols and network applications.
4) Computer security by studying the techniques for securing computers against intruders and malicious software.

B. Skills:
1) To set up own Certificate Authority (CA) based on OpenSSL with Digital certificates signed by the TTM4135 staff.
2) To set up Apache web server with client/server authentication with X.509 certificates access protected HTML pages.
3) To be able to login with PHP script using MySQL, cookies and sessions.

Learning methods and activities

Lectures, technical essay, laboratories and exercises. The course can be held in English if international students attend. Portfolio assessment is the basis for the grade in the course. The portfolio includes a written final exam (60%), report (20%) and exercise (20%). The results for the parts are given in %-scores, while the entire portfolio is assigned a letter grade. If there is a re-sit examination, the examination form may be changed from written to oral.

Compulsory assignments

  • Technical essay
  • Exercises

Course materials

1. William Stallings: Cryptography and Network Security: Principles and Practice: International Version, Fifth Eddition, Publisher: Pearson Higher Education, Copyright: 2011. Support litterature (In Norwegian):
Svein J. Knapskog: Informasjonssikkerhet i internett, Tapir Akademisk Forlag, 2005,
2. Power Point Slides given during the lectures.

Credit reductions

Course code Reduction From
SIE5040 7.5 sp
This course has academic overlap with the course in the table above. If you take overlapping courses, you will receive a credit reduction in the course where you have the lowest grade. If the grades are the same, the reduction will be applied to the course completed most recently.

Subject areas

  • IKT
  • Safety and Reliability
  • Sivilingeniør
  • Technological subjects
  • Telematics

Contact information

Course coordinator

Lecturers

Department with academic responsibility

Department of Information Security and Communication Technology

Examination

Examination

Examination arrangement: Portfolio assessment
Grade: Letters

Ordinary examination - Spring 2012

Skriftlig eksamen
Weighting 60/100 Date 2012-05-25 Time 09:00 Duration 3 timer Place and room Not specified yet.
Arbeider
Weighting 40/100

All about examinations at NTNU