TÜRKÇE
ENGLISH
Information
| Code | CEN454 |
| Name | Information Systems Security |
| Term | 2023-2024 Academic Year |
| Semester | 8. Semester |
| Duration (T+A) | 3-0 (T-A) (17 Week) |
| ECTS | 6 ECTS |
| National Credit | 3 National Credit |
| Teaching Language | İngilizce |
| Level | Lisans Dersi |
| Type | Normal |
| Label | E Elective |
| Mode of study | Yüz Yüze Öğretim |
| Catalog Information Coordinator | |
| Course Instructor |
1 |
Course Goal / Objective
Understanding security vulnerabilities on operating system, network, software and web and ability to take precautio
Course Content
Operating system security, network and distributed system security, software security and web security, types of attacks, identification and authentication, security policies
Course Precondition
There are no prerequisites.
Resources
1. William Stallings , “Network Security Essentials”, 5th Edition, 2014
Notes
2. Kaufman, Perlman, and Speciner, “Network Security: Private Communication in a Public World”, 2nd Edition, 2002 3. Wu and Irwin, “Introduction to Computer Networks and Cybersecurity”, 2013
Course Learning Outcomes
| Order | Course Learning Outcomes |
|---|---|
| LO01 | Understand security vulnerabilities on operating systems, network, software and web |
| LO02 | Understanding common attacks |
| LO03 | Ability to provide secure system design |
| LO04 | Performing penetration tests |
Relation with Program Learning Outcome
| Order | Type | Program Learning Outcomes | Level |
|---|---|---|---|
| PLO01 | Bilgi - Kuramsal, Olgusal | Has capability in the fields of mathematics, science and computer that form the foundations of engineering | 3 |
| PLO02 | Bilgi - Kuramsal, Olgusal | Identifies, formulates, and solves engineering problems, selects and applies appropriate analytical methods and modeling techniques, | 3 |
| PLO03 | Bilgi - Kuramsal, Olgusal | Analyzes a system, its component, or process and designs under realistic constraints to meet the desired requirements,gains the ability to apply the methods of modern design accordingly. | 4 |
| PLO04 | Bilgi - Kuramsal, Olgusal | Ability to use modern techniques and tools necessary for engineering practice and information technologies effectively. | 3 |
| PLO05 | Bilgi - Kuramsal, Olgusal | Ability to design and to conduct experiments, to collect data, to analyze and to interpret results | 3 |
| PLO06 | Bilgi - Kuramsal, Olgusal | Has ability to work effectively as an individual and in multi-disciplinary teams, take sresponsibility and builds self-confidence | 4 |
| PLO07 | Beceriler - Bilişsel, Uygulamalı | Can access information,gains the ability to do resource research and uses information resources | 3 |
| PLO08 | Beceriler - Bilişsel, Uygulamalı | Awareness of the requirement of lifelong learning, to follow developments in science and technology and continuous self-renewal ability | 4 |
| PLO09 | Yetkinlikler - Bağımsız Çalışabilme ve Sorumluluk Alabilme Yetkinliği | Ability to communicate effectively orally and in writing, and to read and understand technical publications in at least one foreign language | 3 |
| PLO10 | Yetkinlikler - Öğrenme Yetkinliği | Professional and ethical responsibility, | 4 |
| PLO11 | Yetkinlikler - Öğrenme Yetkinliği | Awareness about project management, workplace practices, employee health, environmental and occupational safety, and the legal implications of engineering applications, | 5 |
| PLO12 | Yetkinlikler - Öğrenme Yetkinliği | Becomes aware of universal and social effects of engineering solutions and applications, entrepreneurship and innovation, and knowledge of contemporary issues |
Week Plan
| Week | Topic | Preparation | Methods |
|---|---|---|---|
| 1 | Threats | Reading related chapter | |
| 2 | Access control theory | Reading related chapter | |
| 3 | Security policies, integrity policies, hybrid policies | Reading related chapter | |
| 4 | Cryptography | Reading related chapter | |
| 5 | Constructing safe system kernel | Reading related chapter | |
| 6 | Secure design steps | Reading related chapter | |
| 7 | User authentication and authorization | Reading related chapter | |
| 8 | Mid-Term Exam | Review lecture notes | |
| 9 | TCP/IP security issues | Reading related chapter | |
| 10 | Network intrusion detection and prevention systems | Reading related chapter | |
| 11 | Security in distributes systems | Reading related chapter | |
| 12 | Control flow integrity | Reading related chapter | |
| 13 | Cross site scripting | Reading related chapter | |
| 14 | SQL injection | Reading related chapter | |
| 15 | Case study | Reading related chapter | |
| 16 | Term Exams | Review lecture notes | |
| 17 | Term Exams | Review lecture notes |
Student Workload - ECTS
| Works | Number | Time (Hour) | Workload (Hour) |
|---|---|---|---|
| Course Related Works | |||
| Class Time (Exam weeks are excluded) | 14 | 3 | 42 |
| Out of Class Study (Preliminary Work, Practice) | 14 | 5 | 70 |
| Assesment Related Works | |||
| Homeworks, Projects, Others | 0 | 0 | 0 |
| Mid-term Exams (Written, Oral, etc.) | 1 | 15 | 15 |
| Final Exam | 1 | 30 | 30 |
| Total Workload (Hour) | 157 | ||
| Total Workload / 25 (h) | 6,28 | ||
| ECTS | 6 ECTS | ||