[an error occurred while processing this directive] [an error occurred while processing this directive]
[an error occurred while processing this directive]
[an error occurred while processing this directive]
Monash University

FIT2078 Introduction to security - Semester 2, 2013

This unit will provide students with a knowledge of information systems security issues, and their relevance to the management of information systems in contemporary organisations. The students will gain knowledge of the nature of information threats, risks and vulnerabilities and of the control technologies and techniques which can be applied to reduce risk. Students will be expected to demonstrate ethically sound viewpoints with respect to the protection of information resources while maintaining a secure IS framework related to a defence in depth strategy. Further students will have an understanding of the ethical, legal and criminal issues relating to the security of information systems. Additionally students will be required to analyse and assess recent developments and future trends in IS security technologies.

Mode of Delivery

  • Caulfield (Day)
  • Clayton (Day)

Contact Hours

2 hrs lectures/wk, 2 hrs tutorials/wk

Workload requirements

Students will be expected to spend a total of 12 hours per week during semester on this unit.

This will include:

  • Lectures: 2 hours per week
  • Tutorials/Lab Sessions: 2 hours per week per tutorial
  • and up to an additional 8 hours in some weeks for completing private study, revision and assessment requirements.

Unit Relationships

Prohibitions

FIT1019

Prerequisites

FIT1001 or FIT1031

Chief Examiner

Campus Lecturer

Caulfield

Abdul Malik Khan

Clayton

Nandita Bhattacharjee

Academic Overview

Learning Outcomes

At the completion of this unit students will haveA knowledge and understanding of:
  • the importance of information systems security issues to contemporary organisations;
  • information security concepts and philosophies;
  • threats, vulnerabilities and risks to an organisations information assets and the control technologies and techniques required to support this;
  • the mathematical foundation of cryptoanalysis;
  • the ethical, legal and criminal issues relating to the security of information systems;
  • how to evaluate current and future developments and trends in security control technologies and techniques;
  • the relevance of human factors to information security planning and management.
Developed attitudes that enable them to:
  • adopt a critical approach to the analysis and design of information systems security systems;
  • willingness to apply ethical standards of security issues;
  • demonstrate ethically sound viewpoints with respect to the protection of information resources while maintaining a secure IS framework; specifically related to (but not limited to) the goals of security such as confidentiality, integrity, and availability, in the professional development of information systems;
  • cooperate within groups and adopt and practise professional ethics that influence work behaviour.
Developed the skills to:
  • apply information security concepts in the analysis of information systems security issues;
  • apply risk management techniques to the planning and management of information systems security systems;
  • apply security analysis and design methods and techniques in the analysis of threats, risk and vulnerabilities to an information system;
  • apply the security concept in securing information systems by exploring the security mechanism available in the operating systems environment.
Demonstrated the communication skills necessary to:
  • work in teams to complete some of the assessment and thus develop appropriate interpersonal communication and leadership skills.

Unit Schedule

Week Activities Assessment
0   No formal assessment or activities are undertaken in week 0
1 Introduction  
2 IT risk management  
3 Authentication Discussion class. Quiz 1 during tutorial session
4 Access control  
5 Introduction to number theory Discussion class. Quiz 2 during tutorial session
6 Cryptography I  
7 Cryptography II Discussion class. Quiz 3 during tutorial session
8 Public key cryptography  
9 Digital signature Discussion class. Quiz 4 during tutorial session
10 Database security Mid-semester Test during the lecture
11 Integrity management  
12 Ethics & Privacy Discussion class. Quiz 5 during tutorial session
  SWOT VAC No formal assessment is undertaken in SWOT VAC
  Examination period LINK to Assessment Policy: http://policy.monash.edu.au/policy-bank/
academic/education/assessment/
assessment-in-coursework-policy.html

*Unit Schedule details will be maintained and communicated to you via your learning system.

Assessment Summary

Examination (3 hours): 60%; In-semester assessment: 40%

Assessment Task Value Due Date
Tutorial Quizzes 1-5 20% (4% for each quiz) Weeks 3, 5, 7, 9 and 12 during tutorial session
Mid-semester Test 20% Week 10 during the lecture
Examination 1 60% To be advised

Teaching Approach

Lecture and tutorials or problem classes
This teaching and learning approach provides facilitated learning, practical exploration and peer learning.

The lectures will cover the theoretical concepts of security. The tutorial/discussion classes will be used to explore the principles, available tools and operating system platforms. The exploration aims to demonstrate and illustrate the concepts provided in the lectures.

Assessment Requirements

Assessment Policy

Faculty Policy - Unit Assessment Hurdles (http://www.infotech.monash.edu.au/resources/staff/edgov/policies/assessment-examinations/unit-assessment-hurdles.html)

Academic Integrity - Please see the Demystifying Citing and Referencing tutorial at http://lib.monash.edu/tutorials/citing/

Assessment Tasks

Participation

  • Assessment task 1
    Title:
    Tutorial Quizzes 1-5
    Description:
    Principles and application based on previous weeks topics.
    Weighting:
    20% (4% for each quiz)
    Criteria for assessment:

    Understanding of the appropriate security principles and its applications to specific situations.

    Due date:
    Weeks 3, 5, 7, 9 and 12 during tutorial session
  • Assessment task 2
    Title:
    Mid-semester Test
    Description:
    Multiple choice questions and principles and applications based on the material covered up to Week 8.
    Weighting:
    20%
    Criteria for assessment:

    Demonstrate an understanding of the topics covered up to Week 8.

    Due date:
    Week 10 during the lecture

Examinations

  • Examination 1
    Weighting:
    60%
    Length:
    3 hours
    Type (open/closed book):
    Closed book
    Electronic devices allowed in the exam:
    None

Learning resources

Reading list

  1. Goodrich M and Tamassia R, Introduction to Computer Security, Addison-Wesley, 2011
  2. Jill Slay and Andy Koronios, Information Technology Security & Risk Management, 3rd Edition, Wiley.
  3. Gollmann, D. (2010), Computer Security, Wiley, UK

Monash Library Unit Reading List
http://readinglists.lib.monash.edu/index.html

Feedback to you

Types of feedback you can expect to receive in this unit are:
  • Informal feedback on progress in labs/tutes
  • Test results and feedback
  • Quiz results
  • Solutions to tutes, labs and assignments
  • Other: Individual student meetings

Extensions and penalties

Returning assignments

Assignment submission

It is a University requirement (http://www.policy.monash.edu/policy-bank/academic/education/conduct/plagiarism-procedures.html) for students to submit an assignment coversheet for each assessment item. Faculty Assignment coversheets can be found at http://www.infotech.monash.edu.au/resources/student/forms/. Please check with your Lecturer on the submission method for your assignment coversheet (e.g. attach a file to the online assignment submission, hand-in a hard copy, or use an online quiz). Please note that it is your responsibility to retain copies of your assessments.

Online submission

If Electronic Submission has been approved for your unit, please submit your work via the learning system for this unit, which you can access via links in the my.monash portal.

Prescribed text(s)

Limited copies of prescribed texts are available for you to borrow in the library.

William Stallings & Lawrie Brown. (2012). Computer Security: Principles and Practice. (2nd Edition) Prentice Hall.

Other Information

Policies

Graduate Attributes Policy

Student services

Monash University Library

Disability Liaison Unit

Students who have a disability or medical condition are welcome to contact the Disability Liaison Unit to discuss academic support services. Disability Liaison Officers (DLOs) visit all Victorian campuses on a regular basis.

Your feedback to Us

Previous Student Evaluations of this Unit

Lectures in this unit are delivered simultaneously to Caulfield and Clayton Campuses via video conference. It was the first time this unit was run and also the first unit to be video-conferenced. Based on the student evaluations students were satisfied with the unit overall. But by improving student engagement across the both campuses student satisfaction can be further improved.

If you wish to view how previous students rated this unit, please go to
https://emuapps.monash.edu.au/unitevaluations/index.jsp

[an error occurred while processing this directive]