course-details-portlet

TTM4185 - Security and robustness in ICT systems

About

Examination arrangement

Examination arrangement: Digital exam
Grade: Letter grades

Evaluation Weighting Duration Grade deviation Examination aids
Digital exam 100/100 4 hours H

Course content

The course will focus on information and communication networks as critical infrastructure, where the central functions (basics, operations, maintenance of quality of service), and the properties of autonomy and heterogeneity are described. The course demonstrates how communication networks are integrated with other systems, such as Content Delivery Networks, P2P, Virtual Networks, Clouds, Emergency (wireless) networks, sensor networks, business critical systems, Smart Grids, and discusses what can happen when attacked or prone to outages. A descriptive taxonomy is introduced, which includes information security, privacy, safety, dependability, survivability, performances portability, and a classification of threats. Threats include both human-made (both intentional, incompetence, ignorance, accident) and random failure (environments / nature, weather, wear-out). Several countermeasures exist, and this course covers technological (security mechanisms, fault avoidance and fault tolerant design, measurement / monitoring, standards), organizational (contingency, preparedness, importance of role specification, communication between operational units), and political, including laws and regulations (e-Governance). The course focuses on the qualitative aspects, and will provide brief introduction to methods such as risk management and the application of graph theory.

Learning outcome

A. Knowledge: To gain basic understanding of: 1) How information and communication networks support and interact with others socially critical system 2) the criticality, complexity and diversity (technological, organizational, interacting actors) of information systems and communications networks 3) approaches to represent information and communication networks for the evaluation of the best possible design 4) Different taxonomy for describing security and robustness properties, threats, and countermeasures 5) The broad set of threat through presentations of various risks (ranging from human to random, malicious people unfortunate combination of random events) 6) Various countermeasures for securing information systems and communication networks against such threats (including technological, organizational, regulations and laws, economic, political) 7) That it is a compromise between the demands for quality and safety (security, reliability, performance), cost (OPEX / CAPEX), environment (energy efficiency), 8) The use of contracts and agreements (e.g., Terms of Service, Service Level Agreements, privacy policies, etc.) to describe this B. Skills: 1) To learn methodical approach to analysis of risks / threats 2) To be able to carry out basic risk assessments 3) To be able to use graphs to represent the complexity and qualitative analysis of the impact of threats 4) To be able to identify and prioritize appropriate countermeasures to mitigate threats

Learning methods and activities

Lectures and practical exercises.

Compulsory assignments

  • Exercise 1
  • Exercise 2

Further on evaluation

The exam is given in English only, but can be answered in English or in Norwegian. Two exercises are compulsory and must be approved to qualify for the exam.

If there is a re-sit examination, the examination form may be changed from digital exam to oral exam.

Specific conditions

Compulsory activities from previous semester may be approved by the department.

Course materials

To be announced at the beginning of the term.

More on the course

No

Facts

Version: 1
Credits:  7.5 SP
Study level: Intermediate course, level II

Coursework

Term no.: 1
Teaching semester:  AUTUMN 2022

Language of instruction: English, Norwegian

Location: Trondheim

Subject area(s)
  • Safety and Reliability
  • Telematics
  • Information Security
  • Communication Technology
  • Technological subjects
Contact information
Course coordinator: Lecturer(s):

Department with academic responsibility
Department of Information Security and Communication Technology

Examination

Examination arrangement: Digital exam

Term Status code Evaluation Weighting Examination aids Date Time Examination system Room *
Autumn ORD Digital exam 100/100 H 2022-12-14 15:00 INSPERA
Room Building Number of candidates
Summer UTS Digital exam 100/100 H INSPERA
Room Building Number of candidates
  • * The location (room) for a written examination is published 3 days before examination date. If more than one room is listed, you will find your room at Studentweb.
Examination

For more information regarding registration for examination and examination procedures, see "Innsida - Exams"

More on examinations at NTNU