Computer system security

Teacher(s)

Sadre Ramin;

Language

English
> French-friendly

Main themes

• Forged E-Mail, Spam and Malwares,
• Basics in cryptography,
• Network and Application Vulnerabilities: IT spoofing, session hijacking, exploits, sniffing,
• Firewalls,
• Proxies, IDS, Hacking methods,
• Secure communications,
• Security at the User Level.

Learning outcomes

At the end of this learning unit, the student is able to :

In accordance with the AA curriculum of the “Bachelor of Computer Science” program, this course contributes to the development, acquisition and assessment of the following learning outcomes: S1.L8 S2.1-4 S4.3-4 S5.1-2 In line with the AA reference framework of the “Master in Civil Engineering in Computer Science” program, this course contributes to the development, acquisition and assessment of the following learning outcomes: INFO1.1-3 INFO2.1-5 INFO5.4-5 INFO6.1, INFO6.4, INFO6.5 The course offers a broad view of computer system security. Students who successfully complete this course will be able to: defend the need for protection and security; identify the strengths and weaknesses of IT system security; explain the problems associated with cybercrime and outline the fundamental principles involved in combating it; compare and highlight the differences between current methods of implementing security.

Content

The course provides an introduction to a wide range of security problems linked to computer networks and devices connected to such networks.
We will see the major attack mechanisms (Denial of Service, cache poisoning, XSS, code injection, etc.), as well as defense mechanisms such as encryption, firewalls, and intrusion detection. The latter includes state of the art signature based detection and machine-learning based anomaly detection. In the exercises, you will learn to perform such attacks, how to identify them, and how to secure a system against them.
Some topics addressed in previous years:

• Code injection (including SQL injection and XSS)
• DDoS attacks and reflection
• Network monitoring with netflow and protection with firewalls
• Intrusion detection systems
• Introduction to cryptography and how it is used to secure network communication and DNS

Teaching methods

Evaluation methods

Mode of evaluation for the June session:

• Exam (50% of the final mark)
• Project activities in groups (40% of the final mark)
• Individual project activity (10% of the final mark)

August session: The project activities (in groups and individual) cannot be done or redone for the August session and the student will keep the grades obtained for them in the June session with the weights for the final mark as indicated above. Not participating to the project activities at the dates indicated by the teacher will result in a zero mark for the respective part.
The teacher may request a student to go through an additional oral exam as a complement of the exam and/or of the project activities, in cases including, but not limited to, technical issues, or suspicion of irregularities.

Other information

You will need basic knowledge in network protocols, computer systems, and C programming, for example from the following courses:

• Networks: LINFO1341 or LELEC2920
• Computer systems and C: LINFO1252 or LINFO2241

Online resources

Teams and/or Moodle

Faculty or entity

> INFO