SECURITY 2

Academic year
2019/2020 Syllabus of previous years
Official course title
SECURITY 2
Course code
CM0494 (AF:306570 AR:166140)
Modality
On campus classes
ECTS credits
6
Degree level
Master's Degree Programme (DM270)
Educational sector code
INF/01
Period
2nd Semester
Course year
1
Where
VENEZIA
This course aims at introducing basic concepts and techniques for the development of secure systems and networks, providing the necessary skills and concepts for evaluating and increasing the security of applications, systems and networks. This second part of the course will focus on the key aspects of web security and mobile security, as well as formal techniques to analyze, improve and breach the security of systems.
- knowledge of basic concepts and techniques for the development of secure systems and networks;
- knowledge of attack and defense techniques related to programs, systems and networks;
- development of skills for the application of concepts to the analysis of real systems;
- development of skills for the management of security.
It is required basic knowledge of mathematics, programming (good level of imperative programming and basic notions of scripting), computer architectures, operating systems and computer networks.
Web security: client-side security, server-side security, secure communication, web protocols.

Mobile security: Android security architecture, permission system, secure Android programming.

Formal methods for security: information flow control, protocol verification, adversarial machine learning.
Sullivan & Liu - Web Application Security, A Beginner's Guide (2011)
Elenkov - Android Security Internals: An In-Depth Guide to Android's Security Architecture (2014)
The exam consists of a written test that aims at verifying the knowledge of the different topics of the course. The course will also include optional assignments, which aim at putting into practice the acquired knowledge and at verifying the competence in attacking and securing IT systems and networks. The assignments can provide an extra score with respect to the mark of the written exam.
Theoretical lectures in class;
Online resources (lecture notes and slides);
Assignments on case studies.
English
written
Definitive programme.
Last update of the programme: 19/07/2019