Systems and Data Security

Code:

CC4030

Acronym:

CC4030

Level:

400

Keywords
Classification	Keyword
OFICIAL	Computer Science

Instance: 2022/2023 - 2S

Active?	Yes
Responsible unit:	Department of Computer Science
Course/CS Responsible:	Master in Information Security

Cycles of Study/Courses

Acronym	No. of Students	Study Plan	Curricular Years	Credits UCN	Credits ECTS	Contact hours	Total Time
M:CC	14	Study plan since 2014/2015	1	-	6	42	162
M:ERSI	46	Official Study Plan since 2021_M:ERSI.	1	-	6	42	162
M:SI	44	Study plan since 2020/2021	1	-	6	42	162

Teaching language

Suitable for English-speaking students

Objectives

Introduction to the problem of security of information systems and data. Obtain detailed knowledge about the main weaknesses intrinsic to the operating systems and computers. Presentation of methods for building systems capable of withstanding attacks, operating errors and chance occurrences caused by intelligent opponents. Study of tools, processes and methods needed to plan, implement and test secure systems and adapt existing systems to real contextual environments constantly evolving. The students will:

Learning outcomes and competences

• Identify, assess and diagnose possible failures, risks and vulnerabilities in information systems.


• Understand authentication systems and access control and how to use them to implement security policies.


• Understand the goals and use of automated intrusion detection systems.


• Understand the security issues in software development and techniques to avoid them.

Working method

Presencial

Program

Main program topics:

• Examples of secure systems.


• Authentication Systems


• Pragmatic mechanisms and techniques for managing passwords.


• Biometric Systems.


• Mechanisms for access control (Access Control) and monitoring systems.


• Intrusion detection systems;


• Auditing mechanisms for the evaluation of secure systems;


• Software security:




• Trojans, Viruses, Worms;




• Cryptographic Mechanisms and secure management of keys.




• PKI Systems.




• BlockChain based systems.


• Secure P2P systems

Mandatory literature

Stamp Mark; Information security. ISBN: 9780471738480
Anderson Ross 1956-; Security engineering. ISBN: 9780470068526

Teaching methods and learning activities

Lectures classes where the concepts will be discussed with some detail. Lab classes where the tools presented will
be used in a controlled environment to implement and then audit some of the security mechanisms discussed in class. 

Study and experimentation of a current proposed theme, about systems security. Presentation of the work
developed on a course mini-workshop, that all course students must attend. The students must prepare a report
and a presentation.

Evaluation Type

Distributed evaluation without final exam

Assessment Components

designation	Weight (%)
Exame	50,00
Trabalho escrito	50,00
Total:	100,00

Amount of time allocated to each course unit

designation	Time (hours)
Apresentação/discussão de um trabalho científico	8,00
Estudo autónomo	14,00
Frequência das aulas	42,00
Trabalho escrito	10,00
Total:	74,00

Eligibility for exams

Eligibility needs minimum grade of 40% on lab assignments and minimum grade of 40% in exam

Calculation formula of final grade

Final grade will be based on assignment grade and exam grade, using the following expression:
(WAG x 10+EG x 10)/20
where:
EG = exam grade (0-20)
AG = assignment grade (0-20)
WAG = min(max(EG - 4, AG), EG + 4))