ITKST50 Secure Systems Design (5 cr)
Learning outcomes
Students learn how to identify the security requirements relevant to a given context. Students become familiar with the most common security flaws, treats and vulnerabilities. Students learn about the secure development Best Practices and techniques. Students become familiar with available secure design tools. Students discover available resources for secure systems development.
Study methods
Class activities, individual essay, group project and individual report.
Content
Core Security Concepts. Security Attacks. Implementing Information Security. Security Standards. Introduction to Systems Development Lifecycle. Common Development Methods. Secure System Lifecycle. Common Tools for Secure Systems Development.
Materials
Publicly available online materials such as OWASP, US-CERT.
Literature:
| ISBN-number | Author, year of publication, title, publisher |
|---|---|
| Andress, Jason. The basics of information security: understanding the fundamentals of InfoSec in theory and practice. Syngress, 2014. ISBN: 9780128007440; Tipton, Harold F., and Kevin Henry, eds. Official (ISC) 2 guide to the CISSP CBK. Auerbach Publications, 2006. ISBN: 0849382319.; McGraw, Gary. Software security: building security in. Vol. 1. Addison-Wesley Professional, 2006. ISBN: 0321356705. |
Assessment criteria
Class Activities 15%; Case Study 1: Individual Essay 20%; Case Study 2: Group Project 40%; Post-course Individual Report 25%
Prerequisites
This course assumes that you have already completed your bachelor’s studies and you are currently doing your master’s or doctoral studies. This course also assumes, you’ve already studied basics about system development life-cycle and common development methods and practices. Basics of information security and common attacks, threats and vulnerabilities.