The course is centered around a project assignement in which students conduct a threat modeling-based cyber risk assessment and suggest a cyber defesne action plan. The course also includes a number of guest lectures related to cyber threat modeling and security risk assessment.
EP2790 Security Analysis of Large-Scale Computer Systems 7.5 credits

Companies today have thousands of software-based computer systems that all are depending on one another in a large complex network, a system-of-systems. That cyberattacks succeed is to a large extent due to this complexity. The security engineers at a company need to understand the whole system with all its potential vulnerabilities, while an attacker only needs find one way in. Luckily for the defenders, as they have access to the system environment they don't have to start on a blank sheet and discover the environment as the attacker has to do. To add to the complexity, attackers can use a large number of different attack techniques but there also exist plenty of defense mechanisms. Coming up with and maintaining an overall defence solution that at the same time enables the supported business to thrive is a great challenge.
This course teaches a threat modeling-based method for analyzing cybersecurity risks for systems-of-systems. It includes developing and combining models for computer system resilience, threat actor capabilities, and business impacts of realized threats into an overall cyber risk assessment. Moreover the course addresses how cyber risk analysis is used for identifying and arguing for cost efficient defense mechanism selection for protecting the analyzed system-of-systems.
Information per course offering
Choose semester and course offering to see current information and more about the course, such as course syllabus, study period, and application information.
Information for Autumn 2025 Start 27 Oct 2025 programme students
- Course location
KTH Campus
- Duration
- 27 Oct 2025 - 12 Jan 2026
- Periods
- P2 (7.5 hp)
- Pace of study
50%
- Application code
50326
- Form of study
Normal Daytime
- Language of instruction
English
- Course memo
- Course memo is not published
- Number of places
Places are not limited
- Target group
Open for all master's programmes as long as it can be included in your programme.
- Planned modular schedule
- [object Object]
- Schedule
- Schedule is not published
- Part of programme
Master's Programme, Communication Systems, åk 2, SMK, Recommended
Master's Programme, Communication Systems, åk 2, TRN, Recommended
Master's Programme, Cybersecurity, åk 1, Conditionally Elective
Master's Programme, Cybersecurity, åk 2, Conditionally Elective
Master's Programme, Information and Network Engineering, åk 1, Recommended
Master's Programme, Information and Network Engineering, åk 1, NWS, Recommended
Master's Programme, Information and Network Engineering, åk 2, Recommended
Master's Programme, Information and Network Engineering, åk 2, NWS, Recommended
Contact
Course syllabus as PDF
Please note: all information from the Course syllabus is available on this page in an accessible format.
Course syllabus EP2790 (Autumn 2025–)Content and learning outcomes
Course disposition
Course contents
This course teaches a threat modeling-based method for analyzing cybersecurity risks for systems-of-systems. It includes developing and combining models for computer system resilience, threat actor capabilities, and business impacts of realized threats into an overall cyber risk assessment. Moreover the course addresses how cyber risk analysis is used for identifying and arguing for cost efficient defense mechanism selection for protecting the analyzed system-of-systems.
Intended learning outcomes
After passing the course, the student should be able to
- model in detail the architectures of large-scale computer systems (including software, networks, etc.)
- carefully and well balanced describe and evaluate threats and attacks in large-scale computer systems
- clearly describe defense mechanisms for computer systems and how these relate to vulnerabilities and attacks
- carry out qualified and well balanced risk analyses based on system models
- in a professional manner report and present models, a cybersecurity risk analysis, and defense strategies for a computer system
in order to
- understand and explain which threats a specific system can have
- understand and explain how attacks work and propagate through a system architecture
- argue why certain risks should be prioritised
- choose an effective defense to decrease risk.
Literature and preparations
Specific prerequisites
Knowledge and skills in programming, 5 credits, equivalent to completed course DD1310-DD1318/DD1331/DD1337/DD100N/ID1018.
Knowledge in cybersecurity, 6 credits, equivalent to completed course DD2391/DD2395/IK2206/IV1013
or
knowledge and skills in ethical hacking, 7,5 credits, equivalent to completed course EP2720
or
knowledge in secure network systems, 7,5 credits, equivalent to completed course EP2500/EP2520.
Literature
Examination and completion
If the course is discontinued, students may request to be examined during the following two academic years.
Grading scale
Examination
- PRO1 - Project work, 6.0 credits, grading scale: A, B, C, D, E, FX, F
- SEM1 - Seminars, 1.5 credits, grading scale: P, F
Based on recommendation from KTH’s coordinator for disabilities, the examiner will decide how to adapt an examination for students with documented disability.
The examiner may apply another examination format when re-examining individual students.
Examiner
Ethical approach
- All members of a group are responsible for the group's work.
- In any assessment, every student shall honestly disclose any help received and sources used.
- In an oral assessment, every student shall be able to present and answer questions about the entire assignment and solution.
Further information
Course room in Canvas
Offered by
Main field of study
Education cycle
Supplementary information
In this course, the EECS code of honor applies, see:
http://www.kth.se/en/eecs/utbildning/hederskodex.
This course overlaps with EP279V.