EP279V Cyber Security Analysis
KTH Royal Institute of Technology
- Knowledge and skills in basic programming, 6 credits, corresponding to course DD1315/DD1316/DD1337/ID1018.
- Knowledge in English corresponding to the upper secondary course English B/English 6.
Companies today have thousands of software based computer systems that all are depending on one another in a large complex network, a system-of-systems. That IT attacks succeed to a large extent due to this complexity. A company needs to understand the whole system while an attacker only needs find one way in. At the same time, there is a large set of attack types that are utilised and plenty of proposed defence mechanisms.
This course main content aims to develop students' understanding of:
- the complex IT landscape of today by creating models of such.
- which attacks that are utilised today to cause harm and how these can propagate through a large network.
- what defences there are and when they are best suited against different attack types.
- how risk can be calculated and used to prioritise security work.
By in the course provide;
- Lectures
- seminars
- guest lectures from the industry,
- a larger project, and
- several smaller course components within the project.
After passing the course, the student should be able to
- model threats in large-scale computer systems (including software, networks etc),
- simulate attacks in large-scale computer systems
- carry out risk analysis based on a model and simulation
- describe which defence mechanisms computer system can have
- report and present models, simulation, risk analysis, and defense strategy for a given system
in order to
- understand and explain which threats a specific system can have
- understand and explain how attacks work and propagate through a system architecture
- argue why certain risks should be prioritised
- choose the right defence to decrease risk.
Reviews
Improve accuracy by rating this course