Teaching directory
Course 2022-2023

[IHDCM035]

  • 3 credits
  • 30h
  • 1st quarter
Language of instruction: French / Français

Learning outcomes

This class covers the main dimensions of the security of an Information System: 
  • methodological aspects to help formalize the process to analyse the security of a system and the elaboration of an action plan
  • foundations of cryptography, authentication protocols and access control models
  • a layered approach to analyse threats and solutions for the security of the various IS layers: infrastructure, OS, software

 

Objectives

The first objective of the course is to raise awareness around IS security. It then aims at providing the students with the necessary concepts, methods and tools to elaborate a realistic and concrete action plan to address IS security issues, in a risk-based approach

Content

The course is made of the following modules:

  • risk management 
  • foundation of cryptography
  • authentication protocols
  • access control models and management
  • infrastructure security
  • operating system security
  • software security

Teaching methods

The course is composed of a series of presentations, and complemented by a partical work completed by students along the year, which is part of the evaluation

Evaluations

Evaluation is based on a written report submitted by the student, addressing a specific IS security topic, for instance, network security in a BYOD perspective, authentication means and policies, security protocol, backup policy, secure development policy... The topic must be first analyzed in a risk-based approach, and then propose an action plan that must be realistic and complete, covering the various levels described in the course.

This way of evaluation requires from the student not only the understanding of the course content, but also his ability to utilize the concepts taught to bring an added value to his analysis

The report is presented during an oral presentation during which the quality of the analysis together with the mastery of the topics taught during the course are assessed

Moreover, a separate homework is part of the evaluation, which studies a specific security tool and the presentation of the research to the group.

Recommended readings

  • Allen, Julia H., et al. Software Security Engineering: A Guide for Project Managers. Addison-Wesley Professional, 2008.
  • Anderson, Ross J. Security Engineering: A Guide to Building Dependable Distributed Systems. Wiley, 2008.
  • Calder, Alan, and Steve Watkins. IT Governance: A Manager's Guide to Data Security and ISO 27001 / ISO 27002. Kogan Page, 2008.
  • Gollmann, Dieter. Computer Security. Wiley, 2006.
  • Schneier, Bruce. Applied Cryptography: Protocols, Algorithms, and Source Code in C, Second Edition. Wiley, 1996.

Language of instruction

French / Français

Location for course

NAMUR

Organizer

Faculté d'informatique
rue Grandgagnage 21
5000 NAMUR
P. 081725252
F. 081724967
secretariat.info@unamur.be

Degree of Reference

Master's Degree