ACIT4050 Applied Computer and Network Security Course description

The aim of this course is to build further on the grounding of principles in the earlier security courses, covering both practical and theoretical aspects of cyber security. The course will give an in-depth insight into societal aspects of computer and network security, it will give the students practical experience in penetration testing, and it will give them insights into relevant mechanisms of cyber defense. Actual security incidents will be discussed and then analyzed in depth by the students.

No formal requirements over and above the admission requirements.

The student should have the following outcomes upon completing the course:

Knowledge

Upon successful completion of the course, the student:

• has thorough knowledge of cyber security
• has advanced knowledge of mechanisms for cyber defense, and how they are used in practice
• has a thorough understanding of societal aspects of cyber security
• has a thorough understanding of the relation between security and privacy
• has good understanding of and insights into penetration testing

Skills:

Upon successful completion of the course, the student:

• can describe the main aspects of the relation between security and privacy
• can describe central problems related to cyber security governance
• can perform basic operations related to penetration testing
• can plan and describe the structure of cyber defense for an organization

General com​petence:

Upon successful completion of the course, the student:

• understands the role of, and mechanisms that are used in penetration testing
• understands the role of, and mechanisms that are used for cyber defence
• can explain and discuss security challenges related to cyber security to experts and non-experts alike
• can explain and discuss societal aspects of cyber security with experts and non-experts alike

• Attack mechanisms
• Defense mechanisms
• Cyber governance, e.g. security vs. privacy
• Penetration testing

This course features weekly lectures and workshops to provide both theoretical content and hands-on experience. Students work individually or in groups to complete assignments. The students supplement the lectures and workshops with their own reading. Compulsory assignments are given throughout the semester.

The following required coursework must be approved before the student can take the exam:

The student is required to complete at least 8 of 12 assignments to a satisfactory level. The assignments focus on technical work or on theoretical aspects, and are documented in reports.

Individual written exam 3 hours.

The exam grade can be appealed.

New/postponed exam

In case of failed exam or legal absence, the student may apply for a new or postponed exam. New or postponed exams are offered within a reasonable time span following the regular exam. The student is responsible for applying for a new/postponed exam within the time limits set by OsloMet. The Regulations for new or postponed examinations are available in Regulations relating to studies and examinations at OsloMet.

None.

For the final assessment a grading scale from A to E is used, where A denotes the highest and E the lowest pass grade, and F denotes a fail.

Two internal examiners. External examiner is used periodically.

Professor Olav Lysne