252-1414-00L  System Security

SemesterAutumn Semester 2021
LecturersS. Capkun, A. Perrig
Periodicityyearly recurring course
Language of instructionEnglish



Courses

NumberTitleHoursLecturers
252-1414-00 VSystem Security2 hrs
Mon10:15-12:00HG D 1.2 »
S. Capkun, A. Perrig
252-1414-00 USystem Security
The exercises begin in the second week of the semester.
2 hrs
Thu14:15-16:00HG D 3.2 »
16:15-18:00CAB G 11 »
S. Capkun, A. Perrig
252-1414-00 ASystem Security2 hrsS. Capkun, A. Perrig

Catalogue data

AbstractThe first part of the lecture covers individual system aspects starting with tamperproof or tamper-resistant hardware in general over operating system related security mechanisms to application software systems, such as host based intrusion detection systems. In the second part, the focus is on system design and methodologies for building secure systems.
Learning objectiveIn this lecture, students learn about the security requirements and capabilities that are expected from modern hardware, operating systems, and other software environments. An overview of available technologies, algorithms and standards is given, with which these requirements can be met.
ContentThe first part of the lecture covers individual system's aspects starting with tamperproof or tamperresistant hardware in general over operating system related security mechanisms to application software systems such as host based intrusion detetction systems. The main topics covered are: tamper resistant hardware, CPU support for security, protection mechanisms in the kernel, file system security (permissions / ACLs / network filesystem issues), IPC Security, mechanisms in more modern OS, such as Capabilities and Zones, Libraries and Software tools for security assurance, etc.

In the second part, the focus is on system design and methodologies for building secure systems. Topics include: patch management, common software faults (buffer overflows, etc.), writing secure software (design, architecture, QA, testing), compiler-supported security, language-supported security, logging and auditing (BSM audit, dtrace, ...), cryptographic support, and trustworthy computing (TCG, SGX).

Along the lectures, model cases will be elaborated and evaluated in the exercises.

Performance assessment

Performance assessment information (valid until the course unit is held again)
Performance assessment as a semester course
ECTS credits7 credits
ExaminersS. Capkun, A. Perrig
Typesession examination
Language of examinationEnglish
RepetitionThe performance assessment is offered every session. Repetition possible without re-enrolling for the course unit.
Mode of examinationwritten 90 minutes
Additional information on mode of examinationGrading: 20% exercises and related reports (compulsory continuous performance assessments), 80% final exam.
Written aidsKeine
This information can be updated until the beginning of the semester; information on the examination timetable is binding.

Learning materials

 
Main linkCourse Webpage
Only public learning materials are listed.

Groups

No information on groups available.

Restrictions

There are no additional restrictions for the registration.

Offered in

ProgrammeSectionType
CAS in Computer ScienceFocus Courses and ElectivesWInformation
Cyber Security MasterCore CoursesWInformation
Cyber Security MasterElective CoursesWInformation
DAS in Cyber SecurityCore CoursesOInformation
Data Science MasterCore ElectivesWInformation
Electrical Engineering and Information Technology MasterAdvanced Core CoursesWInformation
Electrical Engineering and Information Technology MasterCore SubjectsWInformation
Computer Science MasterCore CoursesWInformation
Computer Science MasterCore Focus Courses General StudiesWInformation
Computer Science MasterFocus Core Courses Distributed SystemsWInformation
Computer Science MasterElective CoursesWInformation
Computer Science MasterMinor in Information SecurityWInformation
Computer Science MasterMinor in Systems SoftwareWInformation
Science, Technology, and Policy MasterData and Computer ScienceWInformation