Foundations of Information Security
2011-2012 - IMT4541 - 5sp

Forventet læringsutbytte

Having completed the course, the student should have

  • understood the key modelling techniques used for secure computer systems and reasoning about them
  • good understanding of models and mechanisms for identification and authentication and access control
  • obtained a solid understanding of security analysis and developmental assurance techniques and issues

Emnets temaer

  • Identification and authentication mechanisms including biometrics
  • Access control models and formalisms
  • Decidability results and limitations of access control and security models
  • Security models including the Bell-LaPadula, RBAC, and Chinese Wall models
  • Information-theoretic models of information flow and covert channels
  • Developmental assurance and evaluation criteria

Pedagogiske metoder


Pedagogiske metoder (fritekst)

  • Lectures
  • Term paper




  • Written exam, 3 hours, (alternatively oral exam): 67%
  • Term paper: 33%
  • Pass decision is on the cumulative grade.


Bokstavkarakterer, A (best) - F (ikke bestått)


Evaluated by external and internal examiner.

Utsatt eksamen (tidl. kontinuasjon)

A new term paper must be provided next autumn. For the exam: Ordinary re-sit examnination.

Tillatte hjelpemidler (gjelder kun skriftlig eksamen)

Dictionary, simple calculator

Obligatoriske arbeidskrav



The following textbooks are the primary references; further recommended reading is provided in the course syllabus.

  • M. Bishop: Computer Security: Art and Science. Addison-Wesley, 2003.
  • D. Gollmann: Computer Security, 2nd edition Wiley, 2006


IMT4162 Information Security and Security Architecture

Supplerende opplysninger

Capacity of the course is limited to 50 students unless explicitly arranged by lecturer.