ACIT4050 Applied Computer and Network Security Course description

The aim of this course is to build further on the grounding of principles in the earlier security courses, covering both practical and theoretical aspects of cyber security. The course will give an in-depth insight into societal aspects of computer and network security, practical experience in penetration testing, and insights into relevant mechanisms of cyber defense. Real-life cases of security incidents will be discussed and then analyzed in depth by the students.

Specification for students’ laptop

It is recommended that students come with laptops that can support the lab sessions during lectures.

Laptops should have enough hard disk, memory and CPUs to run at least one Kali Linux and one Ubuntu or Windows virtual machines at the same time.

Minimum laptop specification

PC

4 cores CPU

8GB of RAM

100-120 GB of free hard disk space

MacBook

M1 or 4 cores CPU

8GB of RAM

100-120 GB of free hard disk space

In addition, students are expected to be familiar with Linux operating system. For example, they should be able to install packages and run basic Linux commands.

The student should have the following outcomes upon completing the course:

Knowledge

Upon successful completion of the course, the student has:

• thorough knowledge of cyber security
• advanced knowledge of mechanisms for cyber defense, and how they are used in practice
• a thorough understanding of societal aspects of cyber security
• a thorough understanding of the relation between security and privacy
• good understanding of and insights into penetration testing

Skills:

Upon successful completion of the course, the student can:

• describe the main aspects of the relation between security and privacy
• describe central problems related to cyber security governance
• perform basic operations related to penetration testing
• plan and describe the structure of cyber defense for an organization

General com​petence:

Upon successful completion of the course, the student:

• understands the role of, and mechanisms that are used in penetration testing
• understands the role of, and mechanisms that are used for cyber defence
• can explain and discuss security challenges related to cyber security to experts and non-experts alike
• can explain and discuss societal aspects of cyber security with experts and non-experts alike.

This course features weekly lectures and workshops to provide both theoretical content and hands-on experience. Students work individually or in groups to complete assignments. The students supplement the lectures and workshops with their own reading. Compulsory assignments are given throughout the semester.

The following required coursework must be approved before the student can take the exam:

• 8 assignments focusing on technical work or on theoretical aspects, documented in reports.

Individual written exam 3 hours.

The exam grade can be appealed.

New/postponed exam

In case of failed exam or legal absence, the student may apply for a new or postponed exam. New or postponed exams are offered within a reasonable time span following the regular exam. The student is responsible for registering for a new/postponed exam within the time limits set by OsloMet. The Regulations for new or postponed examinations are available in Regulations relating to studies and examinations at OsloMet.

No aids are permitted

Grade scale A-F.

Two internal examiners. External examiner is used periodically.

Professor Olav Lysne