DD2395 Computer Security 6.0 credits


Course in computer science that gives an overview of the field of computer security. The course will cover threats as well as counter measures.

The importance and public awareness of computer security is ever increasing. In the past few years, high profile threats such as botnets or ransomware have been making headline news, and security is starting to become a selling point for products.

There are many areas where computer security is a business-critical issue, such as on-line banking, gaming, and web services.

  • Education cycle

    Second cycle
  • Main field of study

    Computer Science and Engineering
  • Grading scale

    A, B, C, D, E, FX, F

Course offerings

Autumn 18 dasak18 for programme students

Autumn 18 SAP for Study Abroad Programme (SAP)

  • Periods

    Autumn 18 P2 (6.0 credits)

  • Application code


  • Start date


  • End date


  • Language of instruction


  • Campus

    KTH Campus

  • Tutoring time


  • Form of study


  • Number of places

    No limitation

  • Schedule

    Schedule (new window)

  • Course responsible

    Sonja Buchegger <buc@kth.se>

  • Target group

    Only open for students within the SAP-programme.

Intended learning outcomes

The students should be able to:

  • recognize threats to confidentiality, integrity, and availability of systems,
  • explain the basic computer security terminology and concepts and use them correctly,
  • find and apply documentation of security-related problems and tools,
  • analyze small pieces of code or system descriptions in terms of their security,
  • identify vulnerabilities of such code or descriptions and predict their corresponding threats,
  • select counter-measures to identified threats and argue their effectiveness,
  • compare counter-measures and evaluate their side-effects,
  • present and explain their reasoning to others

in order to be able to:

  • develop software or computer systems with security in mind,
  • go on to more specialized topics, such as network security.

Course main content

  • introduction to security
  • introduction to cryptography
  • authentication, access control, security models
  • intrusion detection, firewalls
  • malware: virus/worm/trojans
  • web attacks
  • buffer overflows 
  • secure programming
  • human factors, audits, social engineering.


Recommended prerequisites

Internet protocols and principles, basics of command-line interface and operating systems, and general programming skills are prerequisites. Web programming (html, javascript, sql) knowledge is needed for lab exercises.


The course literature is not yet decided but will be announced on the course web page at least 4 weeks before course start.


  • LAB1 - Laboratory Work, 3.0, grading scale: P, F
  • TEN1 - Examination, 3.0, grading scale: A, B, C, D, E, FX, F

In this course all the regulations of the code of honor at the school apply, see:https://www.kth.se/en/eecs/utbildning/hederskodex/. As an example of a concrete application of the code of honor, course participants will not attack systems without the consent of the owner and users of the system.

Offered by

EECS/Computer Science


Sonja Buchegger, e-post: buc@kth.se


Sonja Buchegger <buc@kth.se>

Add-on studies

DD2449 Foundations of Cryptography, DD2460 Software Safety and Security, EP2500 and EP2520 Networked Systems Security


Course syllabus valid from: Spring 2019.
Examination information valid from: Spring 2019.