Advanced Computer Security

Durée

30h Th, 12h Labo., 30h Proj.

Nombre de crédits

Enseignant

Benoît Donnet, Laurent Mathy

Langue(s) de l'unité d'enseignement

Langue anglaise

Organisation et évaluation

Enseignement au deuxième quadrimestre

Horaire

Horaire en ligne

Unités d'enseignement prérequises et corequises

Les unités prérequises ou corequises sont présentées au sein de chaque programme

Contenus de l'unité d'enseignement

This course is the natural follow-up of INFO0045 (Introduction to Computer Security). The objectives behind this course are to extend students' knowledge on Computer Security by discussing and practicing up-to-date Computer Security concepts.
The course is divided in two parts. In the first part, a few theoretical lessons are provided on advanced concepts based on cryptography mechanisms usage (see below for the table of content). In the second part, students practice advanced concepts in Computer Security, such as Data Protection and Penetration Testing. Students are also exposed to scientific papers on Computer Security.
Table of Content (Theoretical lessons)

• Administrative Details
• Chapter 1: Advanced Digital Signatures
• Chapter 2: Authentication Protocol
• Chapter 3: Bank Card Payment
• Chapter 4: Merkle Tree
• Chapter 5: BlockChains

Acquis d'apprentissage (objectifs d'apprentissage) de l'unité d'enseignement

Upon completing this course, students will have a better understanding on how cryptography can be used through several use cases.
Students will also be aware on how to read a scientific paper dedicated to Computer Security and, consequently, be aware of advanced topics in Computer Security.
Finally, Students will increase their practical knowledge of Computer Security

Savoirs et compétences prérequis

Good knowledge of basics in Computer Security (INFO0045 or assimilated), in Computer Networking (INFO0010 or assimilated), in Operating Systems (INFO0940 or assimilated), and in Computation Structure (INFO0012 or assimilated).
Being comfortable with programming in C is also suitable (Students must be comfortable with pointers and memory management).

Activités d'apprentissage prévues et méthodes d'enseignement

The course is organized as follows:

• Lectures (30 hours) describing in details the theoretical and practical concepts of the course
• Lab sessions.  Labs are done individually and a short report (a simple text file to fill in) must be completed by the end of the lab
• Several assignments to be done in teams of 2 students

Mode d'enseignement (présentiel ; enseignement à distance)

Face-to-face lectures, lab sessions, and seminars.
The course is entirely given in English.

Face-to-face lectures, lab sessions, and seminars.
The course is entirely given in English.

Lectures recommandées ou obligatoires et notes de cours

Slides, labs, and assignment subjects are available on the course web page.
Following books have been used for building the theoretical lessons:

• A. J. Menezes, P. C. van Oorschot, S. A. Vanstone. Handbook of Applied Cryptography. CRC Press. 5th Edition. August 2001
• K. Finkenzeller. RFID Handbook, Fundamentals and Applications in Contactless Smartcards, Radio Frequency Identification, and Near-Field Communication. Ed. Wiley (3rd Edition). 2010.

Modalités d'évaluation et critères

The evaluation will be mainly based on practical sessions (both labs and the assignment).  An oral exam will also be organized on theoretical lessons, the assignment, and possible seminars.
In more details:

• Labs will account for 30% of the final grade
• Assignment will account for 30% of the final grade (15% for the written report, 15% for the oral presentation and Q/As)
• The Oral Exam (in June) will focus on theoretical lesson (1 question) and on assignment and seminar (1 question).  It will account fro 40% of the final grade.

Stage(s)

Remarques organisationnelles

The course is organized during the Second term (from early February to mid-May), on Monday morning. All lectures are in English.

Contacts

Lecturers:

• Benoit Donnet (email -- office 1.15/B28)
• Laurent Mathy (email-- office 1.15/B37)

• Gaulthier Gain (email -- office 1.8/B37)
• Kenich Yasukata (email -- office 1.9/B37)

Adaptation des engagements pédagogiques suite à la pandémie de COVID-19 pour la session de mai-juin

Méthodes d'apprentissage mises en œuvre : enseignement à distance

Theoretical lessons and labs are provided remotely (through WebEx sessions).  As usual, students can raised questions either verbally either through WebEx chat system.
Presentations for Assignment 1 are done through WebEx.

Matière de l'évaluation

The oral exam will be about theoretical lessons and practical labs.  Additional questions may be raised on the Assignment.
Be careful, only students having done the Assignment and both labs can attend the oral exam.  Otherwise, an "Absence" grade will be provided.

Méthodes d'évaluation

The course will be graded as follows:

• Assignment: 40% of the final grade (20% for the written report, 20% for the oral presentation).  Note that students who participated to the Cyber Security Challenge may see their overall Assignment grade increased in [+0; +3], depending on their ranking at the Challenge.
• Labs: 2 labs are organized.  Both labs require to upload a (short) written report (a simple text file to fill in) on the submission platform.  Each lab accounts for 5% of the final grade (for thus a total of 10%)
• Oral Exam.  It accounts for the remaining 50%.  It is organized remotely (WebEx session).  Each student will have to answer a single question, without any preparation time (total time for the exam: max. 15min/student).  Students can answer in English or French.  Students can access their course material (slides, book, labs, ...) during the oral exam.  No headphones allowed during the oral exam (WebEx is able to manage automatically echo issues)

Contact

Lecturers:

• Benoit Donnet (email -- office 1.15/B28)
• Laurent Mathy (email-- office 1.15/B37)

• Gaulthier Gain (email -- office 1.8/B37)
• Kenich Yasukata (email -- office 1.9/B37)

Adaptation des engagements pédagogiques suite à la pandémie de COVID-19 pour la session août-sept

Matière de l'évaluation

In case of failure in June, students must improve their assignment for the resit (deadline: 1st day of the resit session) if the grade was below 10/20 (only the report will be taken into account).  This must be done individually (note that no support will be provided, either by the TA or the lecturers, during summer).  Labs cannot be redone.
If the grade of the labs is favorable to the students, the resit session is identical to the first one, with the same weighting. On the other hand, if the grade of the labs is not favorable to the student, it will not be taken into account in the weighting in September, which becomes 30% for the assignment and 70% for the exam. Oral exam must be redone.
The oral exam will be about theoretical lessons and practical labs.  Additional questions may be raised on the Assignment.

Méthodes d'évaluation (et plateforme utilisée)

The Oral Exam is organized remotely (WebEx session).  Each student will have to answer a single question, without any preparation time (total time for the exam: max. 15min/student).  Students can answer in English or French.  Students can access their course material (slides, book, labs, ...) during the oral exam.  No headphones allowed during the oral exam (WebEx is able to manage automatically echo issues)

Contact(s)

Notes en ligne