FAKULTETA ZA ELEKTROTEHNIKO, RAČUNALNIŠTVO IN INFORMATIKO


Subject
 ICT SECURITY 
https://aips.um.si/PredmetiBP5/UcnaEnotaInfo.asp?Zavod=15&Jezik=A&Leto=2018&Nacin=&Predmet=62U147

Study unit code    62U147 2018

Level Study program or it's part Year Semester
2 BU31 INFORMATION SYSTEMS 3 Winter

ECTS kredits 6

Hours - Lectures 45
Hours - Computer Work 30
Hours - Individual Student's Work 105

Lecturers
doc. dr. HÖLBL MARKO

Languages - lectures slovene
Languages - tutorial slovene

Prerequisits
Basic knowledge of informatics and programming skills.  
Content (Syllabus outline)
• Basics of ICT security: principles and goals of security, threats in ICT. • Physical security and biometrics: concept of physical risks and their countermeasures, biometric access control. • Cryptography basics: the concepts of cryptography, the role of cryptography in ICT security. • Secure e-commerce: basics of public key infrastructure, digital signatures. • Protection of communication technologies: risks and attacks, means of protection, modern approaches and technologies for communications’ security, protection of wireless networks. • Standards, security policies and security planning: planning security, security policies, analysis of security risks. • Software security: operating systems’ security, malicious software. • User aspects of security and privacy.  
Readings
• W. Stallings, L. Brown: Computer Security: Principles and Practice, 3rd Edition, Prentice Hall, New Jersey, 2015. • M.T. Goodrich, R. Tamassia: Introduction to Computer Security, Pearson, Boston, 2011. • C. P. Pfleeger, S. L. Pfleeger: Analyzing Computer Security: A Threat / Vulnerability / Countermeasure Approach, Prentice Hall, New Jersey, 2012. • C. P. Pfleeger, S. L. Pfleeger: Security in Computing, 4rd Edition, Prentice Hall, New Jersey, 2006. • A. Perez: Network Security, Wiley, Indianapolis, 2014.  
Objectives and competences
The objective of this course is to acquaint students with the concepts in the field of information systems’ security and communications’ security, the ability to recognize problems and the mechanisms for securing a specific information system and appropriate communication technologies.  
Intended learning outcomes - knowledge and understanding
On completion of this course the student will be able to • recognize security risks in information systems and appropriate communication technologies, • take appropriate counter measurements, • implement a system for complete protection.  
Intended learning outcomes - transferable/key skills and other attributes
• Communication skills: writing a professional report of the performed exercises, oral lab work defence, manner of expression at written examination. • Use of information technology: searching information on the worldwide web, implementation of computer programs and the use of computer programming environment. • Problem solving: autonomous study, resolving a problem with the used of program code and the implementation of a complete solution.  
Learning and teaching methods
• lectures, • lab work, • project work.  

Assessment Weight (%)
Lab work 30  
completed project 30  
midterm written exams 40  
Comments
Midterm written exams may be replaced by a written exam in the weight of 40%. 
[EOP]