Course syllabus

Avancerad webbsäkerhet
Advanced Web Security

EITN41, 7,5 credits, A (Second Cycle)

Valid for: 2016/17
Decided by: Education Board A
Date of Decision: 2016-04-05

General Information

Elective for: BME5, C4-da, C4-sec, D4-ks, E5
Language of instruction: The course will be given in Swedish


The course aims at deepen the student’s knowledge about the security problems and solutions that relate to web based technology. Some areas requiring use of cryptographic primitives will be addressed in detail. Knowledge of these will give the student tools to understand also related areas.

Learning outcomes

Knowledge and understanding
For a passing grade the student must

Competences and skills
For a passing grade the student must

Judgement and approach
For a passing grade the student must


Data representations: CMS, ASN.1, BER, CER and DER encoding

Web Services Security: SOAP, REST, SAML, XML Signature and encryption , WS-* standards, OAuth, OpenID

PKI: CRL, OCSP, RA, CA, and signing procedures

Anonymity: Anonymity solutions, Chaum mixes, Tor, attacks

E-voting: E-voting protocols, homomorphic encryption, ZK-proofs, threshold decryption

e-commerce: Electronic payments, SET, 3D Secure, Bitcoin, micropayments, untraceable E-cash

Web server security: ModSecurity

All course material will be in English.

Examination details

Grading scale: TH
Assessment: Home assignments, which are graded, gives grade 3 or 4. If grade 4 is achieved on home assignments, grade 5 can be obtained after successful oral exam. Approved laboratory assignment is required for passing the course.


Required prior knowledge: EIT060 Computer Security, EITF05 Web Security
The number of participants is limited to: No
The course overlaps following course/s: EITN40

Reading list

Contact and other information

Course coordinator: Dr. Martin Hell,
Course homepage:
Further information: The course material will be in English.