Information Security

Code:

MCI0007

Acronym:

SEGINF

Keywords
Classification	Keyword
OFICIAL	Computer Science

Instance: 2011/2012 - 1S

Active?	Yes
Web Page:	http://web.fe.up.pt/~jmcruz/seginf/
E-learning page:	http://moodle.fe.up.pt/
Responsible unit:	Department of Informatics Engineering
Course/CS Responsible:	Master in Information Science

Cycles of Study/Courses

Acronym	No. of Students	Study Plan	Curricular Years	Credits UCN	Credits ECTS	Contact hours	Total Time
MCI	5	Plano de estudos oficial	1	-	6	60	162

Teaching language

Suitable for English-speaking students

Objectives

Objectives
This course focus on the recognition of the vulnerabilities of Digital Information in today's society to an abusive and destructive use and the basic knowledge of the means (especially computers) available to alleviate the problem.
Skills
The incidence of learning aid and assessment of students who enroll in the Course Unit resides on scientific and technical skills (related to the matters expressed in the Program Unit) that students should acquire. However, it is also wanted to see revealed and developed skills in oral and written communication, analysis and synthesis, self-study as well as interpersonal relationships.
Learning Outcomes
At the end of this course, students should be able to:
- Describe the fundamental concepts of system security (confidentiality, integrity, etc.).
- Analyze current computer applications for personal use and for work (web browsing, email communication, etc..) and identify the issues and actions that constitute security risks to the environments in which they operate (eg, response to requests of information received from unknown entities);
- Propose measures to protect the information stored and circulating in networked computer systems (to avoid disclosure of private information, usurpation of identity, etc.)..

Program

Introduction to Computer Security
Basic cryptography
Authentication and access control
Protection of communication channels
Security in computer networks
Social Engineering
Malware
Standards: recommendations, certification, audits

Mandatory literature

Bishop, Matt; Introduction to Computer Security. ISBN: 0-321-24744-2

Complementary Bibliography

Stallings & Brown; Computer Security, Prentice Hall, 2007. ISBN: 978-0-13-600424-0
André Zúquete; Segurança em Redes Informáticas, Lidel, edições técnicas Lda., 2006. ISBN: 972-722-399-0
Henrique São Mamede; Segurança informática nas organizações. ISBN: 978-972-722-441-8

Teaching methods and learning activities

Lectures on presentation and discussion of the matter, followed by examples.
Practical classes for resolution and discussion of suggested exercises and supplemented with periods of study and research of techniques and situations published on the literature and on the Internet.
Presentation, by groups of students, of illustrative, specific aspects of matter from the practical work proposed to them.

Evaluation Type

Distributed evaluation with final exam

Assessment Components

Description	Type	Time (hours)	Weight (%)	End date
Attendance (estimated)	Participação presencial	56,00
Exercises during semester	Teste	15,00
Final practical assignement	Trabalho escrito	35,00
Final examination	Exame	2,00
	Total:	-	0,00

Amount of time allocated to each course unit

Description	Type	Time (hours)	End date
Study during semester	Estudo autónomo	40
Study of preparation for exam	Estudo autónomo	15
	Total:	55,00

Eligibility for exams

As specified in the current General Evaluation Rules.

Calculation formula of final grade

Final grade = 0.4 P + 0.6 E
where:
P - grade of the practical work
E - grade of the written exam

For successfully completing the course one needs to get in each component, at least 40% of its maximum rating.

Examinations or Special Assignments

Throughout the course, students are urged to work on a set of practical and theoretical-practical exercises, but which do not count directly for the final score.
Also along the course, groups of 2-3 students will carry out practical work, in a manner described in more detail in a separate document, which are used for assessment. This work, whose themes and assignment to groups of students will be controlled by the teacher, includes: the study and planning of the assigned topic, the development of the subject outside the classroom and the presentation and discussion of the final product (which includes at least one report) on the last class of the semester. The grade for the work includes the components mentioned; members of the same group may have a different classification in this item if there is a clear difference of contribution in the global effort.

Special assessment (TE, DA, ...)

All components of assessment apply to all students, whatever their registration type, because they do not require a regular presence in the classroom.

Classification improvement

It is possible to improve the grades in the regular exam periods only on the written test component; in which case, the test will be identical to the test examination of the regular period.
A general improvement in the classification, if permitted by law, will be held in the next edition of the curricular unit.

Observations

All written tests are performed individually, without consultation of any documentation and have a duration of 2 hours.
Important: situations of dishonest academic conduct will be submitted to the Course Director.