Information Security (5 cr)

Code: ICI002AS2AE-3004

Basic information of implementation

Enrollment: 02.01.2025 - 10.01.2025; Enrolment for the implementation has ended.

Timing: 13.01.2025 - 14.03.2025; Implementation has ended.

ECTS Credits: 5 cr

Campus: Pasila Campus

Teaching languages: English

Seats: 15 - 30

Degree programmes: ITBBA Business Information Technology

Teachers: Tero Karvinen

Groups: BLENDED
Blended implementation; ITE2PAICI1
Business Information Technology, 2nd semester, ICT Infrastructure and Cloud Services, Pasila, group 1; EXCH
EXCH Exchange students; CONTACT
Contact implementation

Course: ICI002AS2AE

Evaluation scale

H-5

Schedule

Initial agenda:

1. Organizing. Fundamentals. Practice environments.
2. Threath modeling.
3. Cyber kill chain. (Optional: a bit of ATT&CK.)
4. Web security. OWASP 10.
5. Encryption. Asymmetric vs symmetric. GPG. SSH.
6. Passwords. Hashes. Cracking hashes.
7. Applied (e.g. cryptocurrencies or darknet).
8. Recap. Last presentations.

There will likely be updates to the contents of the classes as the course advances.

Updating agenda will be on https://terokarvinen.com/information-security/#agenda

Intro

Understand adversarial view on security. Recognize key concepts of security. Be able to safely practice hands-on with some security tools and keep extending your knowledge.

Materials

Reading material includes book chapters, white papers, frameworks and tutorials. List of reading material provided during the class.

You can check last instances reading list on https://terokarvinen.com/2024/information-security-2024-spring/#homework

Teaching methods and instruction

Classes have a mix of theory and hands-on exercises. Bring your laptop.

Each homewok has reading material and hands-on hacking.

You will give a presentation to your classmates. There is no exam.

The classes are interactive and require active participation.

Trying hacking / pententration testing tools, tactics and procedures in pracitce requires accepting course rules.

Details of the course, with links to feedback from previous instances:
https://terokarvinen.com/information-security/#agenda

Working life connections

Students are encouraged to bring their work related experience and insight into presentations when applicable.

Exam dates and re-exam possibilities

No exam.

Internationality

International mix of participants. Classes are interactive, so you can have discussions with fellow students from around the world.

Learning assignments

- Active participation in classes
- Homework each week
- Presentation

Assessment methods

- Active participation in classes
- Homework (66%)
- Presentation (33%)

No exam.

Evaluation of the course is based on totality of the work presented.