Security: Advanced Topics

The course is subdivided into a dozen chapters dealing with security and linked by a common thread: How to design, develop and operate a web platform while guaranteeing its security in terms of confidentiality (including protection of personal data), integrity and availability, in particular :

  • Introduction & Stakes
  • Legal Framework, Norms and Certification
  • Cryptography
  • Message Authentication and Digital Signature
  • Blockchain
  • IAM – Identity and Access Management
  • PKI, Certificates & Directories
  • Data Protection (Storage, Computing, Exchange)
  • Secure Infrastructure
  • OWASP & Web Security
  • Pentesting and Intrusion Detection
  • Operations & Quality of Service

Details

Code 22016
Type Course
ECTS 5
Site Neuchâtel
Track(s) T2 – Security
Semester A2024

Teaching

Learning Outcomes
  • Stakes of cybersecurity in the context of the digital transformation
  • Cryptography and algorithms – symetric, public key, post quantum algorithms, digital signature
  • Authentication mechanism and access management
  • Directories – LDAP, AD, Kerberos
  • Hardening network with IPSEC, dns and ddos protection, firewall and WAF
  • Increasing availability using virtualization, hyperconvergence and Cloud
  • Securing Web applications using OWASP
  • Hacking techniques and pentesting – a few techniques exposed such as scan, enumeration, sql injection, .. and how to pentest your web applications to prevent them
  • Monitoring operations and security
Lecturer(s) Hervé Sanglard
Language english
Course Page

The course page in ILIAS can be found at https://ilias.unibe.ch/goto_ilias3_unibe_crs_3102204.html.

Schedules and Rooms

Period Weekly
Schedule Wednesday, 14:15 - 18:00
Location UniNE, Unimail
Room B104

Evaluation

Evaluation type oral exam

Additional information

Comment

First Lecture
The first lecture will take place on Wednesday, 18.09.2024 at 14:15 in UniNE, Unimail, room B104.