Information System Security
BIS Acad. year 2008/2009 Winter semester 5 credits
The course aims to the security goals, security functions, and security mechanisms. The content is: Introduction into information security, basic terms, threats, weak points, security measures, criteria for system security assessment, Common Criteria, data transmission security, operating system and database security, malicious software, role of cryptography.
Language of instruction
Subject specific learning outcomes and competences
Students will learn basic principles of information systems security. They will learn also terminology, basic security goals, functions, and mechanisms.
The goal is to make students familiar with the basic concepts of information systems security.
- Savard, J. J. G.: A Cryptographic Compendium, 2000, available on WWW
- Stallings, W.: Cryptography and Network Security, Prentice Hall, 1999, ISBN 0-13-869017-0
Syllabus of lectures
- Threats, vulnerabilities
- Security measures
- Criteria for system security assessment
- Common criteria (CC)
- Security functions
- Risk analysis
- Data transmission security
- Operating system security
- Database security
- Web security
- Smart card applications
- Role of cryptography
Syllabus - others, projects and individual work of students
- A homework on security mechanisms.
- A homework on applied cryptography.
A mid-term exam evaluation and an evaluation of projects.