252-1414-00L  System Security

SemesterAutumn Semester 2022
LecturersS. Capkun, S. Shinde
Periodicityyearly recurring course
Language of instructionEnglish



Courses

NumberTitleHoursLecturers
252-1414-00 VSystem Security2 hrs
Mon10:15-12:00HG D 1.2 »
S. Capkun, S. Shinde
252-1414-00 USystem Security
The exercises begin in the second week of the semester.
2 hrs
Thu14:15-16:00HG D 3.2 »
16:15-18:00CAB G 11 »
S. Capkun, S. Shinde
252-1414-00 ASystem Security2 hrsS. Capkun, S. Shinde

Catalogue data

AbstractThe first part of the course covers general security concepts and hardware-based support for security.
In the second part, the focus is on system design and methodologies for building secure systems.
Learning objectiveIn this lecture, students learn about the security requirements and capabilities that are expected from modern hardware, operating systems, and other software environments. An overview of available technologies, algorithms and standards is given, with which these requirements can be met.
ContentThe first part of the lecture covers hardware-based security concepts. Topics include the concept of physical and software-based side channel attacks on hardware resources, architectural support for security (e.g., memory management and permissions, disk encryption), and trusted execution environments (Intel SGX, ARM TrustZone, AMD SEV, and RISC-​V Keystone).

In the second part, the focus is on system design and methodologies for building secure systems. Topics include: common software faults (e.g., buffer overflows, etc.), bug-​detection, writing secure software (design, architecture, QA, testing), compiler-​supported security (e.g., control-​flow integrity), and language-​supported security (e.g., memory safety).

Along the lectures, model cases will be elaborated and evaluated in the exercises.

Performance assessment

Performance assessment information (valid until the course unit is held again)
Performance assessment as a semester course
ECTS credits7 credits
ExaminersS. Capkun, S. Shinde
Typesession examination
Language of examinationEnglish
RepetitionThe performance assessment is only offered in the session after the course unit. Repetition only possible after re-enrolling.
Mode of examinationwritten 90 minutes
Additional information on mode of examinationGrading: 20% exercises and related reports (compulsory continuous performance assessments), 80% final exam.
Written aidsKeine
This information can be updated until the beginning of the semester; information on the examination timetable is binding.

Learning materials

 
Main linkCourse Webpage
Only public learning materials are listed.

Groups

No information on groups available.

Restrictions

There are no additional restrictions for the registration.

Offered in

ProgrammeSectionType
CAS in Computer ScienceFocus Courses and ElectivesWInformation
Cyber Security MasterCore CoursesWInformation
Cyber Security MasterElective CoursesWInformation
DAS in Cyber SecurityCore CoursesOInformation
Data Science MasterCore ElectivesWInformation
Electrical Engineering and Information Technology MasterCore SubjectsWInformation
Electrical Engineering and Information Technology MasterAdvanced Core CoursesWInformation
Computer Science MasterCore CoursesWInformation
Computer Science MasterElective CoursesWInformation
Computer Science MasterMinor in Information SecurityWInformation
Computer Science MasterMinor in Systems SoftwareWInformation
Science, Technology, and Policy MasterData and Computer ScienceWInformation