IY2S521 - Computer Systems Security 01 Jul 2022 - 31 Aug 2028 | Version 5

Associated Module Information

Module Code: IY2S521
Module Title: Computer Systems Security
Faculty: Faculty of Computing, Engineering and Science
Faculty Group: Cyber Security
Faculty Sub Group: Cyber Security
Module Leader: Ahmed Elmesiry, Gaylor Boobyer
Module Team: Nigel Richards, Iain Shewring, Craig Griffiths
First Intended Intake: NOV 2015 Final Year of Intake:
Date Closed:
Credit Value: 20 Credit Level: 5
Language: English
Percentage of Module Taught in Welsh: 0
Equivalent Module:
HECOS codes: 100376 - computer and information security
HECOS Code Weighting: 100

Document Version Information

Version 5
Valid From 01 Jul 2022
Valid To 31 Aug 2028

Module Aims

To develop a detailed technical knowledge of the processes, applications and protocols from which they can learn to understand, implement and validate a computer system’s security.

Content Summary

Operating Systems Security (e.g., Windows, Unix, MacOS, etc.)

  • Process and Memory Management.

Network Security:

  • Wireless Security
  • Operating System enumeration
  • System profile and service enumeration
  • LDAP and Active Directories
  • RPC enumeration
  • SAMBA and NFS
  • RDP & VPN secure communications
  • TCP/IP security: IPSEC and Kerberos

Scripting for Security Log Analysis and Post-mortem Network Forensics:

Python scripting

Web Application Security:

  • Information gathering and configuration management
  • Session and Authorisation management
  • Data verification and validation
  • Client and server security
  • Web services

Learning and Teaching Methods

Activity Type Hours
Lecture 24
Practical classes and workshops 24
Independent Study 80
Directed Study 72
Total Hours Selected 200

Learning Outcomes

# Learning Outcome
LO1 To identify and validate security issues associated with networks, services and operating systems.
LO2 To construct and execute tests to identify and validate security issues.

Module Requisites

Code Title Requisite Type
MOD009867 Computer Programming 1 pre-requisite
}

Assessment Criteria

Assessment Category Assessment Type Description Duration Word Count Weight (%) Best of? Pass Mark
Asynchronous Assessment Practical Written Work 2 Using Python Scripts for Log Analysis 0 N/A 50 No 40
Asynchronous Assessment Practical Written Work 1 A written report that draws on knowledge and material from across a whole program. 0 2000 50 No 40

Assessment Matrix

Assessment Type Learning Outcomes
LO1 LO2
Practical Written Work 2
Practical Written Work 1

Reading List

McNab, C., (latest edition) Network Security Assessment Know Your Network.

Mitnick, K (latest edition) The Art of Invisibility: The World's Most Famous Hacker Teaches You How to Be Safe in the Age of Big Brother and Big Data. Back Bay Books

Stuttard D., and Pinto M., (latest edition), The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws, John Wiley & Sons

Microsoft, (latest edition) Windows (current) Resource Kit, Microsoft Press

Davis, M., Bodmer, S., and LeMasters A., (latest edition Hacking Exposed: Malware & Rootkits Secrets & Solutions. McGraw-Hill Osborne Media

IEEE Security and Privacy

Computer Networks, Elsevier B.V.

Computers & Security, Elsevier Ltd.