| Title: | Computer Security Principles |
|---|
| Long Title: | Computer Security Principles |
|---|
| Field of Study: |
Computer Science
|
| Valid From: |
Semester 1 - 2015/16 ( September 2015 ) |
| Module Coordinator: |
Sean McSweeney |
| Module Author: |
Sean McSweeney |
| Module Description: |
This module introduces the student to security issues surrounding the use of a computing device. It concentrates on the threats associated with computer use and how to defend yourself against those threats. |
| Learning Outcomes |
| On successful completion of this module the learner will be able to: |
| LO1 |
Describe different types of security threats. |
| LO2 |
Recognise the issues involved in being a security aware computer user. |
| LO3 |
Compare and contrast common cryptographic protocols. |
| LO4 |
Identify threats and use security software to mitigate risk. |
| LO5 |
Analyse the issues involved in the secure usage of the Internet. |
| Pre-requisite learning |
Module Recommendations
This is prior learning (or a practical skill) that is strongly recommended before enrolment in this module. You may enrol in this module if you have not acquired the recommended learning but you will have considerable difficulty in passing (i.e. achieving the learning outcomes of) the module. While the prior learning is expressed as named MTU module(s) it also allows for learning (in another module or modules) which is equivalent to the learning specified in the named module(s).
|
|
Incompatible Modules
These are modules which have learning outcomes that are too similar to the learning outcomes of this module. You may not earn additional credit for the same learning and therefore you may not enrol in this module if you have successfully completed any modules in the incompatible list. |
| No incompatible modules listed |
Co-requisite Modules
|
| No Co-requisite modules listed |
Requirements
This is prior learning (or a practical skill) that is mandatory before enrolment in this module is allowed. You may not enrol on this module if you have not acquired the learning specified in this section.
|
| No requirements listed |
Module Content & Assessment
| Indicative Content |
|
Information Security Concepts
The CIA triad, defense in depth, AAA, legal requirements for data protection.
|
|
Malware and Threats
Viruses, worms, spyware, ransomware, rootkits & backdoors, botnets, social engineering.
|
|
Internet Security Principles
Safe browsing habits, effective application of personal firewalls, secure and private use of a browser,
browser settings and extensions to mitigate threats, cookies, using email securely, spam, privacy issues,
effective usage of anti-virus and anti-spyware.
|
|
Personal Device and Network Security
Protecting privacy, anti-spam, anti-virus, security products, considerations for different device categories,
wireless security issues, dangers of open access WiFi – man in the middle attacks, computer backups (on
and offline), patch application, BIOS and HDD passwords, use of cloud storage.
|
|
Introduction to Cryptography
Symmetric, asymmetric, hashing, digital signatures, SSL/TLS, application of encryption to sensitive data,
non-repudiation.
|
|
Authentication Fundamentals
Password selection and entropy, biometrics, multi-factor authentication, password managers and
dangerous reuse of passwords, password sharing.
|
| Assessment Breakdown | % |
|---|
| Course Work | 50.00% |
| End of Module Formal Examination | 50.00% |
| Course Work |
|---|
| Assessment Type |
Assessment Description |
Outcome addressed |
% of total |
Assessment Date |
| Practical/Skills Evaluation |
Lab Assessment on basic security principles. |
2,4,5 |
25.0 |
Week 6 |
| Practical/Skills Evaluation |
Lab Assessment on security principles and threats. |
1,2,4,5 |
25.0 |
Week 11 |
| End of Module Formal Examination |
|---|
| Assessment Type |
Assessment Description |
Outcome addressed |
% of total |
Assessment Date |
| Formal Exam |
End of Semester Formal Examination |
1,2,3,4,5 |
50.0 |
End-of-Semester |
| Reassessment Requirement |
Repeat examination
Reassessment of this module will consist of a repeat examination. It is possible that there will also be a requirement to be reassessed in a coursework element.
|
The institute reserves the right to alter the nature and timings of assessment
Module Workload
| Workload: Full Time |
| Workload Type |
Workload Description |
Hours |
Frequency |
Average Weekly Learner Workload |
| Lecture |
Lecture |
2.0 |
Every Week |
2.00 |
| Lab |
Lab |
2.0 |
Every Week |
2.00 |
| Independent & Directed Learning (Non-contact) |
Independent & directed learning |
3.0 |
Every Week |
3.00 |
| Total Hours |
7.00 |
| Total Weekly Learner Workload |
7.00 |
| Total Weekly Contact Hours |
4.00 |
| Workload: Part Time |
| Workload Type |
Workload Description |
Hours |
Frequency |
Average Weekly Learner Workload |
| Lab |
Lab |
2.0 |
Every Week |
2.00 |
| Lecture |
Lecture |
2.0 |
Every Week |
2.00 |
| Independent & Directed Learning (Non-contact) |
Independent & directed learning |
3.0 |
Every Week |
3.00 |
| Total Hours |
7.00 |
| Total Weekly Learner Workload |
7.00 |
| Total Weekly Contact Hours |
4.00 |
Module Resources
| Supplementary Book Resources |
|---|
- Dieter Gollmann 2011, Computer Security [ISBN: 978047074115]
| | This module does not have any article/paper resources |
|---|
| Other Resources |
|---|
- website: privacy online
- website: 12 ways to protect your privacy online
- website: Bud logs in: choosing a secure password
- website: CERT Coordination CenterBefore You Connect a New Computer to the
Internet
- website: CERT Coordination CenterSecuring Your Web Browser
- website: MicrosoftStrong passwords: How to create and use
them
|
Module Delivered in
|
