The goal of this class is to give students an overview of information security and to teach the basics that every student needs to know, even if she does not focus on information security.

The following contents will be covered:

• Common Threats and Countermeasures 
• Low-Tech Reconnaissance (Social engineering, Physical Break-Ins, Dumpster Diving) 
• Computer Related Reconaissance (Searching The Web, Whois-Database, DNS) 
• Scanning (Finding Live Hosts, Port Scanning, TCP Stack Fingerprinting, Network Mapping) 
• Breaking In (Password Cracking, Sniffing, Spoofing, Session Hijacking) 
• Malware & Others (Viruses, Worms, Trojan Horses, Spyware, Adware, Rootkits, Phishing) 
• DDoS and DoS attacks 
• Security Management Security Plans (Security Policy, Current Security Status, Requirements, Implementation, Security Team) 
• Incident Response Plans (Advance Planning, Response Team, After the Incident is Resolved) 
• Risk Analysis (Identify Assets, Determine Threats, Estimate Likelihood of Exploitation, ...) 
• Cryptography (Terminology)
• Symmetric Cryptosystems
• Asymmetric Cryptosystems 
• Key Management
• Applications of Encryption 
• Secure Coding (Basic Terminology)
• Common Threats (Buffer Overrun, High Privilege Issues, "All Input is Evil") 
• Good Practices in Secure Coding

ECTS Breakdown (3 ECTS = 75 hours):

• Lectures (18h)
• Self-studies & Learning for Exams (18h)
• up to 5 Assignments (36h)
• Exams (3h)

<a href="http://10Kstudents.eu" target="_blank"><img alt="10K students" src="http://10kstudents.eu/s/img/10K_students_logo.png"  align="middle" height="70" width="163" border="0"></a>

Practical assignements and two written exams (mid term and final) during the semester. 

Computer Security: Principles and Practice William Stallings Lawrie Brown ISBN-10: 0136004245 ISBN-13: 9780136004240

none