Advanced Network and System Security


Content, progress and pedagogy of the module

In this course, the students learn to protect networks and systems against cyber attacks, and they learn to analyse and test network/system for vulnerabilities. Such systems can be based either on software alone, or it can be cyber physical systems consisting of both hardware and software elements. It can also be an embedded system, or a distributed system connected through one or more networks. The course includes advanced topics in network security, including intrusion detection/prevention, deception technologies, and the underlying theories and methods.

Learning objectives


  • Must have knowledge of methods and techniques for monitoring networks and systems in order to prevent and detect cyber-attacks, including intrusion detection and intrusion prevention systems.
  • Must have knowledge of deception technologies, such as different kinds of honeypots and their limitations.
  • Must have knowledge of covert channels and steganography.


  • Must have skills in analysis and testing of systems and networks in order to uncover relevant cyber risks and attack vectors, including network scanning and penetration testing.
  • Must have skills in prevention of cyber-attacks in networks and systems by selecting and establishing relevant countermeasures.
  • Must have skills in gathering network traffic and network traffic data.
  • Must have skills in configuration and operation of secure test environments


  • Must have competences in assessing, selecting and applying methods in order to secure and/or to conduct security testing of a given system, evaluate the specific results generated by using these methods, as well as reflecting over approach and results
  • Must have competences in understanding Internet-based threats and attack techniques, including DoS (Denial of Service) attacks, DDOS (Distributed Denial of Service) attacks, exploitation of vulnerabilities, lateral movement, and information theft.
  • Must have competences in fundamental techniques within network traffic monitoring, including active and passive monitoring techniques and the application within detection of malicious network activities

Type of instruction

Types of instruction are listed at the start of §17; Structure and contents of the programme.



Name of examAdvanced Network and System Security
Type of exam
Written or oral exam
Assessment7-point grading scale
Type of gradingInternal examination
Criteria of assessmentThe criteria of assessment are stated in the Examination Policies and Procedures

Facts about the module

Danish titleAvanceret netværks- og systemsikkerhed
Module codeESNMCSPM3K2
Module typeCourse
Duration1 semester
Language of instructionEnglish
Empty-place SchemeYes
Location of the lectureCampus Copenhagen
Responsible for the module


Education ownerMaster of Cyber Security and Privacy
Study BoardStudy Board of Electronics and IT
DepartmentDepartment of Electronic Systems
FacultyThe Technical Faculty of IT and Design