2019 - 2020
|0368-3065-01||Introduction to Information Security|
|FACULTY OF EXACT SCIENCES | COMPUTER SCIENCE|
The Introduction to Information Security course surveys central concepts in applied information security and cyber security, and offers a hands-on introduction to vulnerability analysis and exploitation techniques, secure programming and secure system architecture.
- Make students aware of major security risks and attack vectors
- Gain concrete hands-on experience with vulnerability analysis and exploitation
- Teach about good tools and practices for building secure systems
- Instill the state of mind and conceptual vocabulary for reasoning about systems security
High-level list of topics that will be covered:
- Cryptography (symmetric and asymmetric, hashing, signatures, etc.)
- Reverse engineering and binary patching
- Low level vulnerabilities and their exploitations (BoF, ROP, Polymorphic shellcodes, etc.)
- Networking vulnerabilities and defense mechanisms
- Logical vulnerabilities and permission models
- Secure web applications and authentication methods
The course includes weekly hands-on exercises of analysis and exploitation, which require significant time and effort.
The course grade consists of 35% homework and 65% final exam (see past exams here).
Recommended (not requisite) courses and knowledge: