MSE Master of Science in Engineering

The Swiss engineering master's degree

Ogni modulo equivale a 3 crediti ECTS. È possibile scegliere un totale di 10 moduli/30 ECTS nelle seguenti categorie: 

  • 12-15 crediti ECTS in moduli tecnico-scientifici (TSM)
    I moduli TSM trasmettono competenze tecniche specifiche del profilo e si integrano ai moduli di approfondimento decentralizzati.
  • 9-12 crediti ECTS in basi teoriche ampliate (FTP)
    I moduli FTP trattano principalmente basi teoriche come la matematica, la fisica, la teoria dell’informazione, la chimica ecc. I moduli ampliano la competenza scientifica dello studente e contribuiscono a creare un importante sinergia tra i concetti astratti e l’applicazione fondamentale per l’innovazione 
  • 6-9 crediti ECTS in moduli di contesto (CM)
    I moduli CM trasmettono competenze supplementari in settori quali gestione delle tecnologie, economia aziendale, comunicazione, gestione dei progetti, diritto dei brevetti, diritto contrattuale ecc.

La descrizione del modulo (scarica il pdf) riporta le informazioni linguistiche per ogni modulo, suddivise nelle seguenti categorie:

  • Insegnamento
  • Documentazione
  • Esame
Cyber Security (TSM_CyberSec)

The course will first cover the basic knowledge required in the field of computer security, such as the CIA principles (confidentiality, integrity, availability), as well as data security and safety.

The module will build on this foundation to provide students with a comprehensive overview of how to identify and assess threats and risks. Students will then be able to propose and implement a set of mitigation measures. This course will be applied to three areas of security: secure software development, software security, and tool-based web security.

The course covers the following main topics:

  • Review of basic security concepts. 
  • Secure development (DevSecOps) 
  • Software security 
  • Web security 
  • Cyber Threat Intelligence 
  • Deception techniques 
  • Social engineering

Requisiti

 

  • Basic concepts of cryptography
  • Knowledge of at least one programming language, such as Python

Obiettivi di apprendimento

 

  • Understand and be able to select the appropriate cryptographic primitives.
  • Identify and document the threats and risks to a system and propose various types of mitigation mechanisms.
  • Understand, apply, and use processes and tools for secure development.
  • Understand and identify vulnerabilities in software and web applications, and propose mitigation measures.

Contenuti del modulo

Basics (20%) : 

  • Confidentiality, integrity, availability, authenticity, authorization, accountability.
  • Threat models, malware, etc.
  • Data protection under the GDPR/nLPD
  • Data protection and data obfuscation techniques (pseudonymization, anonymization) in relation to the GDPR/nLPD
  • Intrusion Detection and SIEM (Security Information & Event Management)
  • Risk and threat analysis and standards

Secure development (40 %) :

  • SDLC: DevOps fundamentals and how DevOps teams can build and deliver secure software.
  • DevSecOps: how to integrate security into continuous delivery and deployment.
  • Security automation tools, patterns, and techniques in DevOps.

 

Software Security (20 %) :

  • Identifying software vulnerabilities (SANS Top 25)
  • Software exploitation techniques and tools
  • Software protections and mitigations

 

Web Application Security (20%) :

  • Web Vulnerabilities (OWASP Top 10)
  • Web Exploitation Techniques and Tools
  • Web Security Measures and Mitigation Strategies

Metodologie di insegnamento e apprendimento

This course includes theoretical presentations and practical exercises (labs).

Bibliografia

Course slides, references to online resources, and book references are mentioned in the module introduction and throughout the semester.

Scarica il descrittivo completo del modulo

Indietro