VVZ API is not affiliated with ETH Zurich. Data might be outdated or incorrect. Please view the official ETHZ Vorlesungsverzeichnis for binding information.

251-0811-00L 5 Credits

You're viewing possible stale or outdated data. Please check the latest semester for more up-to-date information.

Applied Security Laboratory (in English)

Lecturers & Examiners: Prof. Dr. David Basin, Michael Näf

VVZ CR n/a

Last Updated: 2026-02-05 14:53:04

Content

This course emphasizes applied aspects of information security. The students will study various topics in a hands-on fashion and carry out experiments with different offensive techniques in order to better understand the need of corresponding countermeasures, their effectivity, and impact. The Applied Security Lab addresses two major topics: Operating system security (hardening, vulnerability scanning, access control, logging) and application security with an emphasis on web applications (web server setup, common web exploits, authentication, session handling, code security).

Resources

Literature

- Garfinkel, Schwartz, Spafford: Practical Unix & Internet Security, O'Reilly & Associates. - Various: OWASP Guide to Building Secure Web Applications, avaliable online.

General Information

Language: English
Frequency: Yearly recurring

Examination

Type: session examination
Mode: oral 30 minutes

Course Components

Type	Title	Time & Place	Hours
lecture with exercise	Applied Security Laboratory (in English) Permission from lecturers required for all students. Beschränkte Platzzahl, für WS 03/04 ausgebucht.	Tue 09:15-12:00 (IFW D 42)	3 h weekly

Offered In

Studiengang Informatik
- 5. und höhere Semester
  - Informatik und Anwendung (K nur im Zusammenhang mit Leistungskontrollen)