MSc/Masters » Module Details

IY5522 Security Technologies

First term, core module for Secure Digital Business Pathway only.

Module leader

G. Price.

Aims

This module deals with core technologies of information security in today’s IT infrastructures. As such, it combines elements of both network security and computer security, the first of which is concerned with the protection of data over networks and the latter with the protection of data at end user systems. Concerning network security, we study current networking concepts, Internet security issues, and security in wired and wireless networks (including mobile cellular networks). Computer security covers security issues at the end user system, including access control, smart cards, and biometrics.

Objectives

On completion of this course students should be able to:

  • Provide an overview of fundamental technologies for the Internet and networked applications and their security issues.
  • Examine security issues in certain enabling technologies for electronic commerce.
  • Assess mobile and wireless communication technologies in terms of their security vulnerabilities.
  • Demonstrate an understanding of how to make computer systems secure.

Provisional Syllabus

The Internet: Overview of operation of the Internet. TCP/IP and IP security. Email and the web. The IETF and RFCs.

Internet security issues: Browser technology. Web security. SSL/TLS (transport (IP) security versus application security).

Smart card standards and capabilities: Smart cards and their practical use. ISO standards.

Wireless technologies: Overview of the ongoing development of wireless technologies such as Bluetooth and Wireless LAN.

Mobile phone technologies: GSM, 3G, WAP. Emerging standards and dedicated security services.

Computer security issues: Concepts and technology. Access control.

User identification and verification: Biometric techniques.

Method of examination

Written examination.

Main references

  • W. Stallings, Network security essentials (international edition), Prentice-Hall, 2002.
  • V. Hassler, Security Fundamentals for E-Commerce, Artech House, 2001.
  • D. Gollmann, Computer Security, John Wiley & Sons, 1999.

Other references

  • M. Hendry, Smart Card Security and Applications, 2nd Edition, Artech House, 2001.
  • R. Oppliger, Security Technologies for the World Wide Web, Artech House, 2000.
  • J. Schiller, Mobile Communications, Addison-Wesley, 2003.
  • T.M. Swaminatha and C.R. Elden, Wireless Security and Privacy, Addison-Wesley, 2003.