University of Essex

CE235-5-SP-CO:
Computer Security

The details

Year: 2016/17

Department: Computer Science and Electronic Engineering (School of)

Campus: Colchester Campus

Term: Spring

Level: Undergraduate: Level 5

Status: Current

Start date:

End date:

Credits: 15

Last updated: 06 March 2009

Requisites for this module

Pre-requisites: (none)

Co-requisites: (none)

Pre and / or co-requisites: (none)

Prohibited modules: (none)

Key module (requisite for): CE324

Key module for

BENGG420 Computer Networks,
BENGG421 Computer Networks (Including Year Abroad),
BENGI120 Computer Networks (Including Placement Year)

Module description

This course considers security as it relates to a single computer at an introductory level. Cryptography is introduced and the various scenarios that involve encryption and authentication are investigated. There will be practical work that will give students an opportunity to explore key security tools. The management and planning issues are covered in policy and risk management.

Learning Outcomes

After completing this module, students will be expected to be able to:

1. Identify and describe common security vulnerabilities.
2. Recommend security tools and procedures for specific attacks.
3. Describe the nature of malicious code and how it can spread, be identified and removed.
4. Compare the performance of various cryptographic schemes.
5. Explain the principles of risk analysis and use risk analysis to select controls.

Outline Syllabus

Principles of security
-Confidentiality, integrity and availability (CIA)
-Vulnerabilities, threats, controls
-Forensics and recovery of systems

Security tools
-Internal and external scanning
-Log file analysis
-Intrusion detection

Secure applications
-Common problems in applications
-Detailed example of stack based buffer overflow

Malware and malicious code
-Viruses, trojans, worms
-History and classification
-Anatomy of a virus and how viruses spread
-Identifying viruses and antivirus software

Cryptography
-Applications of encryption to computer security
-Types of encryption algorithms
-Examples of encryption algorithms commonly used
-Key and password management
- Hash functions, one way functions, examples

User authentication
-Methods of user authentication
-Biometric access control (e.g. fingerprint, iris etc.)
-Other techniques (e.g. smartcard)

Security policy
-Example security policy

Module aims

No information available.

Module learning outcomes

No information available.

Module information

STUDENTS SHOULD NOTE THAT THIS MODULE INFORMATION IS SUBJECT TO REVIEW AND CHANGE.

Learning and teaching methods

Lectures and Labs

Bibliography

(none)

Assessment items, weightings and deadlines

Coursework / exam	Description	Coursework weighting
Coursework	Programming Assignment 1	16.67%
Coursework	Programming Assignment 2	16.66%
Coursework	Programming Assignment 3	33.34%
Written Exam	Progress Test	33.33%
Exam	Main exam: 120 minutes during Summer (Main Period)

Exam format definitions

Remote, open book: Your exam will take place remotely via an online learning platform. You may refer to any physical or electronic materials during the exam.
In-person, open book: Your exam will take place on campus under invigilation. You may refer to any physical materials such as paper study notes or a textbook during the exam. Electronic devices may not be used in the exam.
In-person, open book (restricted): The exam will take place on campus under invigilation. You may refer only to specific physical materials such as a named textbook during the exam. Permitted materials will be specified by your department. Electronic devices may not be used in the exam.
In-person, closed book: The exam will take place on campus under invigilation. You may not refer to any physical materials or electronic devices during the exam. There may be times when a paper dictionary, for example, may be permitted in an otherwise closed book exam. Any exceptions will be specified by your department.

Your department will provide further guidance before your exams.

Overall assessment

Coursework	Exam
30%	70%

Reassessment

Coursework	Exam
0%	0%

Module supervisor and teaching staff

Supervisor:

Teaching staff: Dr Leila Musavian & Dr Richard Sutcliffe

Contact details: School Office, email: csee-schooloffice (non-Essex users should add @essex.ac.uk to create full e-mail address), Telephone 01206 872770

Availability

Available to incoming Essex Abroad / Exchange students: Yes

Available to Outside Option: No

Available to Audit: No

External examiner

Name: Dr Tahmina Ajmal

Institution: University of Bedfordshire

Academic role: Senior Lecturer

Resources

Teaching materials: Available via Moodle

Lecture recording: Of 29 hours, 20 (69%) hours available to students:
9 hours not recorded due to service coverage or fault;
0 hours not recorded due to opt-out by lecturer(s).

Further information

Department website: Computer Science and Electronic Engineering (School of)

Disclaimer: The University makes every effort to ensure that this information on its Module Directory is accurate and up-to-date. Exceptionally it can be necessary to make changes, for example to programmes, modules, facilities or fees. Examples of such reasons might include a change of law or regulatory requirements, industrial action, lack of demand, departure of key personnel, change in government policy, or withdrawal/reduction of funding. Changes to modules may for example consist of variations to the content and method of delivery or assessment of modules and other services, to discontinue modules and other services and to merge or combine modules. The University will endeavour to keep such changes to a minimum, and will also keep students informed appropriately by updating our programme specifications and module directory.

The full Procedures, Rules and Regulations of the University governing how it operates are set out in the Charter, Statutes and Ordinances and in the University Regulations, Policy and Procedures.

Module Directory

CE235-5-SP-CO:Computer Security