Courses: INF143 Web Security - Autumn 2018

ECTS Credits

Level of Study

Bachelor

Full-time/Part-time

Full-time

Language of Instruction

English

Teaching semester

Autumn

Objectives and Content

Objectives:
INF143 gives the students an introduction to web security. Well known attacks on computer systems and their corresponding countermeasures are discussed. After the course the students should be able to identify weaknesses in a computer system and be able to suggest how to mitigate them.

Content:
The course discusses different attack methods on computer systems available on the Internet, such as SQL injection, Cross Site Scripting, Denial of Service attacks and password guessing. Securing wireless WiFi networks is explained. How a public key infrastructure is established is part of the curriculum, with particular attention to server authentication on the Internet today.

Learning Outcomes

On completion of the course the student should have the following learning outcomes defined in terms of knowledge, skills and general competence:

Knowledge
The student knows

how the most usual attacks on servers on the Internet happen
how the different standards for securing wireless networks are realised
what a PKI is, oand how the system with server certificates on the Internet works

Skills
The student is able to

assess which security controls that are most effective against the common attack techniques in computer systems
explain what kind of security we get in a PKI, with emphasis on practical examples

General competence

The student can discuss which security solutions that will be effective and relevant to introduce in a computer system exposed to the Internet

Required Previous Knowledge

Recommended Previous Knowledge

INF142

Credit Reduction due to Course Overlap

Access to the Course

Access to the course requires admission to a programme of study at The Faculty of Mathematics and Natural Sciences

Teaching and learning methods

The teaching comprises of lectures and group exercises:

Lectures: 4 hours pr. week for 11 weeks
Group exercises: 2 hours pr. week for 10 weeks

Compulsory Assignments and Attendance

Submission of compulsory exercise. Accepted compulsory exercise is valid for one semester after acceptance.

Forms of Assessment

The forms of assessment are:

Compulsory exercise counts for 20% of total grade.
Written examination (3 hours) counts for 80% of total grade.

Examination Support Material

Grading Scale

The grading scale used is A to F. Grade A is the highest passing grade in the grading scale, grade F is a fail.

Assessment Semester

Examination both spring semester and autumn semester. In semesters without teaching the examination will be arranged at the beginning of the semester.

Reading List

The reading list will be available within June 1st for the autumn semester and January 1st for the spring semester.

Course Evaluation

The course will be evaluated by the students in accordance with the quality assurance system at UiB and the department.

Programme Committee

The Programme Committee is responsible for the content, structure and quality of the study programme and courses.

Course Coordinator

Course coordinator and administrative contact person can be found on Mitt UiB, or contact mailto:studieveileder@ii.uib.noStudent adviser

Course Administrator

The Faculty of Mathematics and Natural Sciences represented by the Department of Informatics is the course administrator for the course and study programme.

Contact Information

Student adviser:

mailto:studieveileder@ii.uib.noStudent adviser

T: 55 58 42 00