norsk norsk&engelsk / norwegian&english

Course Description IMT4162 - Information Security and Security Architecture (2005/2006)

LevelPostgraduate
ECTS Credits10
DurationAutumn
LanguageEnglish
Prerequisite(s) 
Aim

Students who have passed this course should:
- have acquired good knowledge of the common terminology and security models in information security
- understand the security mechanisms of operating systems and databases
- understand the general problems in software security
- understand the most common software vulnerabilities (buffer overflows, race conditions and input validation etc)
- understand the problems of randomness

Content

Introduction to information security including:
- Identification, authentication, authorization and access control
- Security models
- Overview of software systems engineering and architecture principles for software security
- Security evaluation of products and systems, attack trees and source-level security auditing tools
- Practical security in common operating systems
- Analysis of technology such as programming languages, operating systems and authentication
- Buffer overflow, race conditions and other common threats for software solutions
- Database security
- Problems of randomness and determinism
- Client security and malicious software

Study MethodsEssay, Lectures, Laboratory Work, Exercises, Project Works, Meeting(s) / Seminar(s)
AssessmentPortfolio Assessment
The portfolio is composed of two written tests, an oral presentation and one project assignment with oral presentation. Presentation portfolio is identical to work portfolio, there are no oppurtunities for improving already delivered parts, but the final grade will be based on an evaluation of the entire portfolio.
Grading SystemAlphabetical Scale, A (best) - F (fail)
Course RequirementsNone