Valid for: 2020/21
Decided by: PLED C/D
Date of Decision: 2020-03-30
Main field: Technology.
Elective for: C4-sec, D4-se, D4-ns, E4
Language of instruction: The course will be given in English
The goal of this course is to give insight in methodology and principles behind the design of secure software and hardware systems. In particular the course focuses on how to tackle security risks in the design process. The course intends to give understanding of the whole process from requirements gathering to design choice and analysis of a security critical system.
Knowledge and understanding
For a passing grade the student must
Competences and skills
For a passing grade the student must
Judgement and approach
For a passing grade the student must
apply the acquired knowledge in a project that will be performed jointly with other students. In order to finalize the project requires the student must gather additional knowledge and insight. Quality of motivation in solution in depth and reflection on alternatives will be judged in the project, in the home exams as well as in the final written exam.
Introduction: Computer systems are becoming more complex and encompass more and more functions solving everyday problems as well as giving services for the society and enhancing our infrastructures. However, this trend comes with an increased risk for hacker or cyber-attacks. Hence, an important part of reducing this risk is knowledge and engineering skills in how to design more robust computer systems. The course focuses on methods and tools in secure systems engineering and how to apply the methods and tools to solve real life security problems.
The course is divided into three main blocks:
1) Security design methods and tools
2) Security and performance analysis of systems
3) Project
Security design methods and tools
Security and performance analysis of systems
Project
At the beginning of the course a list of project proposal will be given. Every project has as goal to make a security system design. The project group will consist of 2-4 people and the group will select one of the give projects in the proposal list. The group will make a complete security design including a protocol design for the chosen project problem. The group will also make a security analysis of a design made by another project group.
Grading scale: TH - (U,3,4,5) - (Fail, Three, Four, Five)
Assessment: For a passing grade the student must apply the acquired knowledge in the chosen project (2hp). For a passing grade both a pass in the home exams and the written exam are required. The final grade is settled through a joint score based on the results on the home exams (2hp) and the written exam (3.5).
The examiner, in consultation with Disability Support Services, may deviate from the regular form of examination in order to provide a permanently disabled student with a form of examination equivalent to that of a student without a disability.
Parts
Code: 0119. Name: Project.
Credits: 2. Grading scale: UG. Assessment: Project report plus presentation.
Code: 0219. Name: Examination.
Credits: 3,5. Grading scale: TH. Assessment: Exam that will give the grade U, 3,4 or 5
Code: 0319. Name: Take-home Exam.
Credits: 2. Grading scale: TH. Assessment: Two take-home exams that will give the grades U, 3, 4 or 5
Assumed prior knowledge: EITF05 Web Security
The number of participants is limited to: No
Course coordinator: Christian Gehrmann, christian.gehrmann@eit.lth.se
Further information: The course will give the student knowledge and skills in the security design and analysis of computer and communication systems.