Module:

Latest Module Specifications

Current Academic Year 2025 - 2026

No Banner module data is available

Module Title
Module Code	(ITS: CA6002I)
Faculty		School
NFQ level		Credit Rating

Description

This module will give the students a thorough understanding of the theory and practice of computer security. It will cover the basic components of computer security, It will examine different threat vectors, and the policies and mechanisms that address these threat vectors. The module will investigate trust, and its various meanings in the context of computer security. The module will address security assurance and security-by-design.

Learning Outcomes

1. Critically evaluate the basic components of security; confidentiality, integrity and availability
2. Compare the different access control mechanisms.
3. Compare and critically evaluate the various security policies; confidentiality, integrity and hybrid policies.
4. Examine different standards and approaches to control policies and control mechanisms
5. Examine the various authentication models and mechanisms.
6. Identify and understand assurance and security-by-design in the context of computer security.
7. Examine vulnerability analysis and intrusion detection.

*Type*	*Hours*	*Description*
Workload	Full time hours per semester
Online activity	36	Lectures
Assignment Completion	24	No Description
Independent Study	120	No Description
Total Workload: 180

Type	Description	% of total	Assessment Date
Assessment Breakdown
Assignment	The assessment will involve various tasks such as the analysis of a Computer System in terms of threats and appropriate policies and mechanisms to address these threats; code analysis from the perspective of applying secure coding standards, vulnerability analysis.	40%	n/a
Formal Examination	Written exam assessing all learning outcomes of the module.	60%	End-of-Semester

Reassessment Requirement Type
Resit arrangements are explained by the following categories; RC1: A resit is available for both^* components of the module. RC2: No resit is available for a 100% coursework module. RC3: No resit is available for the coursework component where there is a coursework and summative examination element. ^* ‘Both’ is used in the context of the module having a coursework/summative examination split; where the module is 100% coursework, there will also be a resit of the assessment

Pre-requisite	None
Co-requisite	None
Compatibles	None
Incompatibles	None

All module information is indicative and subject to change. For further information,students are advised to refer to the University's Marks and Standards and Programme Specific Regulations at: http://www.dcu.ie/registry/examinations/index.shtml

Indicative Content and Learning Activities

Basic components of Computer Security
Confidentiality, Integrity and Availability. Trust. Assumptions. Foundational Results

Access Control
Types of Access Control policies. Policy languages.

Security Policies
Confidentiality, Integrity and Hybrid policies such as Bell-LaPauda, Biba, Clarke-Wilson, Chinese Walls, Role-Based Access Control.

Security Standards
Various standards used in security (e.g. ISO 29100 family), control policies and control mechanisms, assurance, security-by-design.

Vulnerability Analysis
Penetration testing. Vulnerability classifications.

Intrusion Detection
Principles. Models (Anomaly, Misuse, Specification). Architectures for intrusion detection.

Indicative Reading List

Books:

Matt Bishop: 2019, Computer Security: Art and Science, 2nd, 978-032171233

Articles:
None

Other Resources

None