Information Security

General

Educational goals

This course focuses on the basic principles of information security and cryptography and how they are used in modern computer and communication systems.

  • To learn the basic concepts in information systems security,
  • Identify vulnerabilities, threats and evaluate the risks
  • Develop and implement access control models and policies and be able to develop an appropriate security policy and the necessary safeguards to support it
  • Evaluate and select and implement appropriate cryptographic algorithms
  • Analyze and evaluate the vulnerabilities of Web systems and be able to suggest appropriate protection mechanisms
  • To recognise the internet security problems, and to enforce the suitable security protocols and mechanisms
  • Τo know the web vulnerabilities and a framework to protect web servers and apps
  • To know the standards and frameworks of information systems security as well as the existing legal framework on personal data protection
General Skills
  • Develop the knowledge of topics relevant to Information and Net security
  • Develop your skills in applied scientific thinking and problem solving

Course Contents

Topics include:

  • Introduction to information security
  • security models,
  • access control policies,
  • risk analysis
  • cryptographic algorithms, public-key cryptography
  • Identification authentication (smart cards, biometrics, etc)
  • Public Key Infrastructure,
  • Introduction to Internet Security,
  • Security protocolls on internet (IPSEC, SSL etc)
  • Security mecahanisms on internet (firewalls, IDS, VPN)
  • web security (SQL injections, etc)
  • legal framework on information security

Teaching Methods - Evaluation

Teaching Method
  • lectures (4 hours/week), invited persons from academia and industry
Use of ICT means
  • moodle /zoom
Teaching Organization
Activity Semester workload
Lectures52
Writing and presenting compulsory work60
Individual study and analysis of literature68
Total 180
Students evaluation

Final exams: 65 %

Project: 35%

Recommended Bibliography

Recommended Bibliography through "Eudoxus"
  1. ΑΣΦΑΛΕΙΑ ΠΛΗΡΟΦΟΡΙΩΝ ΣΤΟ ΔΙΑΔΙΚΤΥΟ, Κωδικός Βιβλίου στον Εύδοξο: 320065 Έκδοση: 1/2016. Συγγραφείς: ΜΑΥΡΙΔΗΣ, ΙΩΑΝΝΗΣ, ISBN: 978-960-603-193-9, Τύπος: Ηλεκτρονικό Βιβλίο, Διαθέτης (Εκδότης): Ελληνικά Ακαδημαϊκά Ηλεκτρονικά Συγγράμματα και Βοηθήματα - Αποθετήριο "Κάλλιπος" (GREEK)
  2. ΑΣΦΑΛΕΙΑ ΥΠΟΛΟΓΙΣΤΩΝ: ΑΡΧΕΣ ΚΑΙ ΠΡΑΚΤΙΚΕΣ, Κωδικός Βιβλίου στον Εύδοξο: 50656354, Έκδοση: 3η Αμερικανική/2016, Συγγραφείς: WILLIAM STALLINGS, LAWRIE BROWN, ISBN: 978-960-461-668-8, Τύπος: Σύγγραμμα, Διαθέτης (Εκδότης): ΕΚΔΟΣΕΙΣ ΚΛΕΙΔΑΡΙΘΜΟΣ ΕΠΕ (GREEK)
Complementary international bibliography
  1. Matthew Bishop, Computer Security: Art and Science Addison-Wesley, 2003. ISBN 0-201-44099-7
  2. Security in Computing, 2nd Edition, Charles P. Pfleeger, Prentice Hall