Security

2021/2022

Content, progress and pedagogy of the module

Disclaimer.
This is an English translation of the module. In case of discrepancy between the translation and the Danish version, the Danish version of the module is valid.

Learning objectives

Knowledge

  • CIA model (basic security features)
  • access control models, eg Multi-Level Security, Biba, Role-Based and Attribute-Based Access Control
  • processes for secure software development, eg building security in, OpenSAMM or Secure Development Lifecycle (SDL)
  • software security, eg language-based security, secure information flow and techniques / tools for securing software
  • basic network security, including knowledge of basic analysis and attack tools
  • basic attack methods (“hacking”), eg “reverse engineering”, including knowledge of various attack tools

Skills

  • be able to perform high-level security analyzes, eg using the CIA model, of a simple IT system
  • be able to use one or more relevant security tools for analysis, modeling or (simulated) attacks
  • be able to document and prioritize identified security features / problems in a smaller IT system

Competences

  • be able to use one or more of the above models / theories to identify and analyze relevant security features in a small IT system; and on the basis of a security analysis be able to propose and argue for the choice of countermeasures as well as select / design an appropriate security model for a smaller IT system
  • be able to keep up to date with the latest developments, especially in attack methods and targets as well as associated countermeasures

Type of instruction

The teaching is organized in accordance with the general teaching methods for the education, cf. section 17.

Extent and expected workload

The student is expected to spend 27.5 hours per ECTS, which for this activity means 137.5 hours.

Exam

Exams

Name of examSecurity
Type of exam
Written or oral exam
ECTS5
Assessment7-point grading scale
Type of gradingExternal examination
Criteria of assessmentThe criteria of assessment are stated in the Examination Policies and Procedures

Additional information

Contact: Study Board for Computer Science via cs-sn@cs.aau.dk or 9940 8854

Facts about the module

Danish titleSikkerhed
Module codeDSNSWB613
Module typeCourse
Duration1 semester
SemesterSpring
ECTS5
Language of instructionDanish
Empty-place SchemeYes
Location of the lectureCampus Aalborg
Responsible for the module

Organisation

Study BoardStudy Board of Computer Science
DepartmentDepartment of Computer Science
FacultyTechnical Faculty of IT and Design