DATA3790 Privacy and identity technology project Course description

The student will carry out a project in the field of data protection and identity technology, preferably in collaboration with a relevant IT company, individually or in a group of up to five students. The aim is to provide the students with an introduction to data protection and identity technology, while they solve a commercial problem in the form of an extensive project assignment with a work load equivalent to 10 hours a week over a 12-week period. If the project is carried out during the summer, the work must correspond to four days a week over a six-week period.

The increasing use of digital media and internet to solve more and more of our tasks in both our private life and our work life (banking, shopping, health, education, exams, employment, news, tourism etc.), increases the chance of a data breach or misuse of personal information. In order to prevent this and ensure that trust in digital solutions is maintained, we need good data protection. By good data protection we mean that personal data must be treated carefully and used in such a way that it benefits users, customers and employees.

The aim of the new legislation GDPR (General Data Protection Regulation) is to focus on these issues and demand that all businesses that process personal data have a good data protection system in place, which among other things means that the registered person’s rights are maintained in a secure and reassuring way. These rights are about the right to access, deletion, portability, correction of wrong data and limits to processing. To comply with the strict demands for good personal data protection, it is necessary to have good technical support. This could be technology that supports the identification of persons, process automation, fraud prevention, handling the rights and consent of the data subjects, administration and quality assurance of data processor agreements, internal control support etc.

In addition to the projects on offer, students can find their own projects within a relevant company, public organization or nonprofit. In this case, it is the student's responsibility to find a supervisor for the project within the external organization. All student-initiated projects must be approved by the course coordinator before the start of the project.

Completion of the course requires a placement in the relevant health care environment corresponding to two days a week over a 12-week period.If the project is carried out during the summer, the work must correspond to four days a week over a six-week period.

The elective course will only run if a sufficient number of students a registered.

This course has a focus on the practices and technologies used for network-based services such as large web sites and backend systems. It provides topics specific to large architectures, such as: containers, service architectures, load balancing and service continuity. In addition, topics which are relevant for working with software projects often found in this context are covered, such as release management, automated testing and agile development principles.

No formal requirements over and above the admission requirements.

The students will work individually or in groups of up to five students to complete a project in the field of personal data and identity technology in cooperation with relevant external parties such as businesses or public organisations. The students are given access to relevant online resources, and receive supervision from an internal and/or external supervisor.

The course can be carried out individually by agreement with the course coordinator.

The projects are chosen/assigned at the start of the semester.

The student should have the following outcomes upon completing the course:

Knowledge

Upon successful completion of the course, the student will:

• have advanced knowledge of service architectures and how they are applied in the industry
• have advanced knowledge of the platforms used to deploy large-scale services
• have a deep understanding of the principle of service continuity and the techniques and methods used to make services scalable and robust
• have a deep understanding of the DevOps movement and its history
• have expert insight into release management from an operations perspective

Skills

Upon successful completion of the course, the student:

• can evaluate and discuss a service architecture in relationship to the intended service function with regard to performance, scale and robustness
• can apply load balancing and scaling techniques in order to create robust services
• can define release-management strategies
• can evaluate and discuss a release-management plan in relationship to an agile development project

General competence

Upon successful completion of the course, the student:

• can discuss the state of agile service management in the industry
• can communicate challenges, analysis and conclusions in developer operations with regard to service architectures and release management to specialists as well as the general public

This course uses the flipped classroom methodology to cover topics in its theoretical form as homework and let students experience them with hands-on work in the classroom. Students work individually in order to complete technical assignments. Lab-work is supervised by the teacher who provides feedback to the student along the way.

Students will organize their work surrounding a chosen project. The project report will based on a task which they can choose from a list of available projects. The task will be a combination of technical work along with a theoretical discussion.

Towards the end of the course, students will spend more time on their own projects in class under continuous supervision from the course teachers. Students can use that time to discuss approaches and challenges to their own projects.

None

The students will work individually to complete a task from the available list provided in the class. The results are documented as a project report. The total amount of text should be 4000 +/- 500 words, not including references and appendix with scripts etc.

The exam can be appealed.

New/postponed exam

In case of failed exam or legal absence, the student may apply for a new or postponed exam. New or postponed exams are offered within a reasonable time span following the regular exam. The student is responsible for registering for a new/postponed exam within the time limits set by OsloMet. The Regulations for new or postponed examinations are available in Regulations relating to studies and examinations at OsloMet.

All aids are permitted, provided the rules for plagiarism and source referencing are complied with.