|
Introduction
The
purpose of this module is to provide students with the skills required to avoid
security breaches and develop strategies for both secure systems and secure
electronic transactions.
Syllabus
and Weighting
|
|
Weighting
|
| A |
Considerations
for security on web servers
|
10%
|
| B |
Security
breaches – suspicious activities, hacking, viruses, crime, anti-virus
software
|
15%
|
| C |
Access
control – access control lists, firewalls, packet filters, proxy
|
15%
|
| D |
Auditing
– intrusion detection utilities, log files, auditing logs
|
10%
|
| E |
CGI
security – risks from poor programming, tainted CGI variables and other
CGI risks.
|
15%
|
| F |
Secure
electronic transactions – authentication (certificates, digital
signatures, non-repudiation), encryption (public & private keys,
secure socket layers, S/MIME)
|
20%
|
| G |
Web
client security – Java Applets, risks from ActiveX, risks from
JavaScript, and Cookies
|
15%
|
|
