DD2395 Computer Security 6.0 credits
Overview of computer/cybersecurity (6 ECTS). Taught together with DD2391 Cybersecurity overview, with overlapping content. The courses can thus not be combined, i.e., one cannot receive credits for both courses.
Choose semester and course offering
Choose semester and course offering to see current information and more about the course, such as course syllabus, study period, and application information.
Content and learning outcomes
Course contents
- introduction to computer security
- introduction to cryptography
- authentication, access control, security models
- intrusion detection, firewalls
- malware: virus/worms/troyans
- web attacks
- buffer overflow attacks
- human factors, security audits, and social manipulation
- selected current security related problems and technologies
Intended learning outcomes
After passing the course, the student shall be able to
- identify threats against confidentiality, integrity and availability in a system
- explain basic terminology and concepts in computer security and use them
- find and use documentation of security related problems and tools
- analyse simple program code and system descriptions to identify vulnerabilities and predict their corresponding threats
- select countermeasures against identified threats and argue for their suitability
- compare countermeasures and evaluate their side effects,
- present and explain their reasoning to others,
in order to
- be able to develop software and computer systems with security in mind
- if interested, be able to move on and specialise in computer and network security.
Course disposition
Literature and preparations
Specific prerequisites
Completed courses in programming equivalent to DD1310/DD1311/DD1312/DD1314/DD1315/DD1316/DD1318/DD1331/DD1337/DD100N/ID1018 and computer science equivalent to DD1338/DD1320/DD1321/DD1325/DD1327/ID1020.
Active participation in a course offering where the final examination is not yet reported in LADOK is considered equivalent to completion of the course.
Being registered for a course counts as active participation.
The term 'final examination' encompasses both the regular examination and the first re-examination.
Recommended prerequisites
Internet protocols and principles, basics of command-line interface and operating systems, and general programming skills are prerequisites. Web programming (html, javascript, sql) knowledge is needed for lab exercises.
Equipment
Literature
Examination and completion
If the course is discontinued, students may request to be examined during the following two academic years.
Grading scale
Examination
- LAB1 - Laboratory Work, 3.0 credits, grading scale: P, F
- TEN1 - Examination, 3.0 credits, grading scale: A, B, C, D, E, FX, F
Based on recommendation from KTH’s coordinator for disabilities, the examiner will decide how to adapt an examination for students with documented disability.
The examiner may apply another examination format when re-examining individual students.
Opportunity to complete the requirements via supplementary examination
Opportunity to raise an approved grade via renewed examination
Examiner
Ethical approach
- All members of a group are responsible for the group's work.
- In any assessment, every student shall honestly disclose any help received and sources used.
- In an oral assessment, every student shall be able to present and answer questions about the entire assignment and solution.
Further information
Course web
Further information about the course can be found on the Course web at the link below. Information on the Course web will later be moved to this site.
Course web DD2395Offered by
Main field of study
Education cycle
Add-on studies
DD2520 Applied Cryptography, DD2448 Foundations of Cryptography, DD2460 Software Safety and Security, EP2500 and EP2520 Networked Systems Security
Contact
Supplementary information
In this course, the EECS code of honor applies, see:
http://www.kth.se/en/eecs/utbildning/hederskodex