This is an introductory course on information security.
The module is part of the Open Security Education project and the maintainer is Daniel Bosk. The latest release can be found under releases. You can safely link directly to the PDFs found there.
This course consists of several learning modules that are linked in this repo.
However, all required PDFs can be found under releases
It originally comes from two courses with the same name, one aimed at first cycle students (systems administrators to be exact) and one aimed at second cycle (master level) engineering students. They differ in the level of technical detail and depth of coverage of the research in the area. They are each maintained in a branch of this repository:
The main document is the study guide, found in the studyguide/
directory.
This guide covers the entire course: intended learning outcomes, reading
instructions with a suggested schedule, assignments and abstracts for the
material, among other things.
The study guide ties together a set of learning modules. Each learning module contains lectures, assignments etc. Currently the course comprises the following topics:
- Foundations of Security (
foundations
) - Security Usability (
usability
) - Framework for Information Security Management (
ism
) - Information Theory (
infotheory
) - Cryptography (
appliedcrypto
) - Identification and Authentication (
auth
) - Access Control (
ac
) - Secure Protocols (
fverif
) - Accountability and Non-Repudiation (
accountability
) - Trusted Computing (
trustcomp
) - Side-Channels (
sidechannels
) - Software Security (
software
)
These topics are examined using the following assignments. The assignments prefixed with L are laboratory assignments, prefixed with M are memos, S for seminars, and prefixed with P are project assignments.
M1: Information Security Management Systems (ism/ismsmemo
)
S2: Risk Analysis (ism/risksem
)
L3: Password Cracking and Social Engineering (passwd/pwdguess
)
S4: Password Policies (passwd/pwdpolicies
)
L5: Privacy of Communication (pricomlab
)
P6: A Short Gap Analysis (ism/gapproject
)
The main document is the study guide, found in the studyguide/
directory.
This guide covers the entire course: intended learning outcomes, reading
instructions with a suggested schedule, assignments and abstracts for the
material, among other things.
The study guide ties together a set of learning modules. Each learning module contains lectures, assignments etc. Currently the course comprises the following topics:
- Foundations of Security (
foundations
) - Framework for Information Security Management (
ism
) - Information Theory (
infotheory
) - Cryptography (
appliedcrypto
) - Secure Protocols (
fverif
) - Identification and Authentication (
auth
) - Security Usability (
usability
) - Access Control (
ac
) - Accountability and Non-Repudiation (
accountability
) - Software Security (
software
) - Trusted Computing (
trustcomp
) - Side-Channels (
sidechannels
)
These topics are examined using the following assignments. The assignments prefixed with L are laboratory assignments, prefixed with M are memos, S for seminars, and prefixed with P are project assignments.
M1: Information Security Management Systems (ism/ismsmemo
)
S2: Risk Analysis (ism/risksem
)
L3: Password Cracking and Social Engineering (passwd/pwdguess
)
S4: Password Policies (passwd/pwdpolicies
)
L5: Private Communication (pricomlab
)
S6: Review of Research Literature (research/review
)
P6: A Short Study in Security (research/prestudy
)
The main document of this repo is the study guide, for which the source code
can be found in studyguide
. The other directories are submodules needed to
build the study guide.
To build the PDFs, after cloning the repository you must clone its required submodules:
$ git submodule update --recursive --init
Then you can go into the directory of the desired document and run make
.
If you run make
in the root directory you will recursively transcend the
directory hierarchy and build everything included in the course.
To contribute, please fork the repository, make your changes, commit them and then create a pull request in the original repository.