Sök i programutbudet

Använd sökfunktionen för att leta efter kurser och program i Chalmers utbildningsutbud. Den programplan och utbildningsplan som avser dina studier är i allmänhet från det läsår du började dina studier.

​​​​​​​​​​​​​

Kursplan för

Läsår
TDA602 - Language-based security
 
Kursplanen fastställd 2012-02-18 av programansvarig (eller motsvarande)
Ägare: MPALG
7,5 Poäng
Betygskala: TH - Fem, Fyra, Tre, Underkänt
Utbildningsnivå: Avancerad nivå
Huvudområde: Datateknik, Informationsteknik
Institution: 37 - DATA- OCH INFORMATIONSTEKNIK


Undervisningsspråk: Engelska
Sökbar för utbytesstudenter
Blockschema: D

Modul   Poängfördelning   Tentamensdatum
Lp1 Lp2 Lp3 Lp4 Sommarkurs Ej Lp
0112 Projekt 4,5 hp Betygskala: TH   4,5 hp    
0212 Laboration 3,0 hp Betygskala: UG   3,0 hp    

I program

MPSOF SOFTWARE ENGINEERING, MSC PROGR, Årskurs 2 (valbar)
TKITE INFORMATIONSTEKNIK, CIVILINGENJÖR, Årskurs 3 (valbar)
MPALG COMPUTER SCIENCE - ALGORITHMS, LANGUAGES AND LOGIC, MSC PROGR, Årskurs 2 (valbar)
MPALG COMPUTER SCIENCE - ALGORITHMS, LANGUAGES AND LOGIC, MSC PROGR, Årskurs 1 (obligatoriskt valbar)
MPCSN COMPUTER SYSTEMS AND NETWORKS, MSC PROGR, Årskurs 1 (valbar)

Examinator:

Professor  Andrei Sabelfeld


Ersätter

TDA600   Språkbaserad datasäkerhet TDA601   Language-based security

Kursutvärdering:

http://document.chalmers.se/doc/70b303af-f339-4319-9beb-15db1274e21b


  Gå till kurshemsida

Behörighet:

För kurser inom Chalmers utbildningsprogram gäller samma behörighetskrav som till de(t) program kursen ingår i.

Kursspecifika förkunskaper

Knowledge of the material covered in the courses DAT150 Programming language technology and EDA263 Computer security or equivalent is required.

Previous knowledge of semantics, automata, and compiler construction is helpful (although not required as a prerequisite).

Syfte

Modern attacks often succeed at circumventing standard security mechanisms. While operating-system security policies are low-level (such as access control policies, protecting particular files), many attacks are high-level, or application-level (such as email worms that pass by access controls pretending to be executed on behalf of a mailer application). Because applications are typically specified and implemented in programming languages, application-level security is a part of the more general area of language-based security. A direct benefit of language-based security is the ability to naturally express security policies and enforcement mechanisms using the techniques of the well-developed area of programming languages.

Lärandemål (efter fullgjord kurs ska studenten kunna)

After the course, you should be able to apply practical knowledge of security for modern programming languages. This includes the ability to identify application- and language-level security threats, design and argue for application- and language-level security policies, and design and argue for the security, clarity, usability, and efficiency of solutions, as well as implement such solutions in expressive programming languages.

You should be able to demonstrate the critical knowledge of:
principles behind application-level attacks (such as Trojan horses, worms, buffer overrun attacks, exploit attacks, covert channels, and malicious code) and
language-based protection mechanisms (such as static security analysis, program transformation, and stack inspection).

You should gain experience in technical writing.

Innehåll

This course combines practical and cutting-edge research material. For the latter part, the course's particular emphasis is on the use of formal, or semantic, models of program behaviour for specifying and enforcing security properties.

Organisation

The course consists of lectures, group meetings and project presentations.

Litteratur

See separate literature list.See separate literature list.

Examination

In order to pass the course, the students must complete programming projects and/or produce a survey/position paper.


Sidansvarig Publicerad: on 24 jan 2018.