Information Security

General

• Course Code: 1801
• Semester: 8th
• Course Type: Specialization (SP)
• Course Category: Compulsory (CO)
• Scientific Field: Data Management - Artifial Inteligence (DMAI)
• Lectures: 4 hours/week
• ECTS units: 6
• Course webpage: https://moodle.teithe.gr/course/view.php?id=4175
• Teching and exams language: Greek, English
• The course is offered to Erasmus students
• Recommended prerequisite courses: (1405) Web Languages and Technologies
• Coordinator: Ilioudis Christos
• Instructors: Ilioudis Christos

Educational goals

This course focuses on the basic principles of information security and cryptography and how they are used in modern computer and communication systems.

• To learn the basic concepts in information systems security,
• Identify vulnerabilities, threats and evaluate the risks
• Develop and implement access control models and policies and be able to develop an appropriate security policy and the necessary safeguards to support it
• Evaluate and select and implement appropriate cryptographic algorithms
• Analyze and evaluate the vulnerabilities of Web systems and be able to suggest appropriate protection mechanisms
• To recognise the internet security problems, and to enforce the suitable security protocols and mechanisms
• Τo know the web vulnerabilities and a framework to protect web servers and apps
• To know the standards and frameworks of information systems security as well as the existing legal framework on personal data protection

General Skills

• Develop the knowledge of topics relevant to Information and Net security
• Develop your skills in applied scientific thinking and problem solving

Course Contents

Topics include:

• Introduction to information security
• security models,
• access control policies,
• risk analysis
• cryptographic algorithms, public-key cryptography
• Identification authentication (smart cards, biometrics, etc)
• Public Key Infrastructure,
• Introduction to Internet Security,
• Security protocolls on internet (IPSEC, SSL etc)
• Security mecahanisms on internet (firewalls, IDS, VPN)
• web security (SQL injections, etc)
• legal framework on information security

Teaching Methods - Evaluation

Teaching Method

• lectures (4 hours/week), invited persons from academia and industry

Use of ICT means

• moodle /zoom

Teaching Organization

Students evaluation

Final exams: 65 %

Project: 35%

Recommended Bibliography

Recommended Bibliography through "Eudoxus"

1. ΑΣΦΑΛΕΙΑ ΠΛΗΡΟΦΟΡΙΩΝ ΣΤΟ ΔΙΑΔΙΚΤΥΟ, Κωδικός Βιβλίου στον Εύδοξο: 320065 Έκδοση: 1/2016. Συγγραφείς: ΜΑΥΡΙΔΗΣ, ΙΩΑΝΝΗΣ, ISBN: 978-960-603-193-9, Τύπος: Ηλεκτρονικό Βιβλίο, Διαθέτης (Εκδότης): Ελληνικά Ακαδημαϊκά Ηλεκτρονικά Συγγράμματα και Βοηθήματα - Αποθετήριο "Κάλλιπος" (GREEK)
2. ΑΣΦΑΛΕΙΑ ΥΠΟΛΟΓΙΣΤΩΝ: ΑΡΧΕΣ ΚΑΙ ΠΡΑΚΤΙΚΕΣ, Κωδικός Βιβλίου στον Εύδοξο: 50656354, Έκδοση: 3η Αμερικανική/2016, Συγγραφείς: WILLIAM STALLINGS, LAWRIE BROWN, ISBN: 978-960-461-668-8, Τύπος: Σύγγραμμα, Διαθέτης (Εκδότης): ΕΚΔΟΣΕΙΣ ΚΛΕΙΔΑΡΙΘΜΟΣ ΕΠΕ (GREEK)

Complementary international bibliography

1. Matthew Bishop, Computer Security: Art and Science Addison-Wesley, 2003. ISBN 0-201-44099-7
2. Security in Computing, 2nd Edition, Charles P. Pfleeger, Prentice Hall