Credits: 5

Schedule: 08.01.2019 - 26.03.2019

Contact information for the course (applies in this implementation): mss-staff@list.aalto.fi

Teaching Period (valid 01.08.2018-31.07.2020): 

III-IV (Spring)

Learning Outcomes (valid 01.08.2018-31.07.2020): 

You will learn the principles behind software and hardware system security architectures, with a particular focus on mobile devices. You will learn selected example platform security architectures in detail and be able to identify similarities and differences between different architectures. You will be able to recognize usability challenges in designing security mechanisms for mobile devices. You will learn about advanced topics like Internet-of-Things (IoT) security and use of machine learning in security. You will gain an overview of current research issues in the area.

Content (valid 01.08.2018-31.07.2020): 

Basics of access control, Android platform security architecture, General model of platform security and design space for different instantiations, Trusted execution environments, Case studies of usable security challenges, IoT security, Machine learning & security, Current research issues in system security. Students interested in doing practical system security will be offered implementation project topics that they can work on for additional credit as part of a special course in information security (CS-E4330). More information on course wiki at https://wiki.aalto.fi/display/mss

Details on the course content (applies in this implementation): 

Course overview is found on the MyCourses page https://mycourses.aalto.fi/course/view.php?id=20584


Course Content

  • Basics of access control
  • Android platform security architecture
  • General model of platform security and design space for different instantiations
  • Hardware security enablers
  • Case studies of usable security challenges
  • Current research issues in mobile system security
  • Optional material: IoT security, Machine learning and security, SE Linux for Android

Assessment Methods and Criteria (valid 01.08.2018-31.07.2020): 

Weekly written exercises, course assignment, course feedback. (No exam)

Elaboration of the evaluation criteria and methods, and acquainting students with the evaluation (applies in this implementation): 


Weekly written exercises, course assignment, course feedback. (No exam)


There will be five exercise sets corresponding to the first five lectures. Each set contains three questions. Students will be evaluated based on their submitted written answers to these questions. Each set carries a weight of 30 points (the distribution of points among individual questions will be indicated in the exercise set itself). Answers are always due on a Tuesday. On the following Thursday, answers will be discussed during the exercise session. Students are expected to be present during these exercise sessions. Students will be called upon to present and explain their answers.

In addition to the exercises, students have to conduct a survey on an assigned topic and present their findings. Surveys will be done in groups of two. At the beginning of the course students can indicate preferences for survey topics and who they want to partner with (if known). Presentations will take place during March. More details at https://mycourses.aalto.fi/course/view.php?id=20584&section=3

Workload (valid 01.08.2018-31.07.2020): 

32 h (16 2h-contact sessions) Weekly written exercises and a course assignment (e.g., survey or project): 63 h; Independent study: 20 h

Details on calculating the workload (applies in this implementation): 

32 h (16 2h-contact sessions) Weekly written exercises and a course assignment (e.g., survey or project): 63 h; Independent study: 20 h

Study Material (valid 01.08.2018-31.07.2020): 

Supplementary reading - “Mobile Platform Security” by N.Asokan et al, Morgan & Claypool, December 2013

Details on the course materials (applies in this implementation): 

Supplementary reading - “Mobile Platform Security” by N.Asokan et al, Morgan & Claypool, December 2013

There is a supplementary course book: Mobile Platform Security by Asokan, Davi, Dmitrienko, Heuser, Kostiainen, Reshetova and Sadeghi (2013). Aalto students have free access to the book online (PDF).

Prerequisites (valid 01.08.2018-31.07.2020): 

CS-C3130 / CSE-C3400 Information Security or equivalent skills.

Grading Scale (valid 01.08.2018-31.07.2020): 

0-5

Additional information for the course (applies in this implementation): 

Students will be asked to send an e-mail pledge indicating commitment for completing the course. This is because course capacity is limited and if someone leaves the course half-way through, it deprives someone on the waiting list the opportunity to take the course.

Description

Registration and further information