VVZ API is not affiliated with ETH Zurich. Data might be outdated or incorrect. Please view the official ETHZ Vorlesungsverzeichnis for binding information.
Security Engineering
Last Updated: 2026-02-05 14:55:12
Abstract
Subject of the class are engineering techniques for developing secure systems. We examine concepts, methods and tools, applied within the different activities of the SW development process to improve security of the system. Topics: security requirements&risk analysis, system modeling&model-based development methods, implementation-level security, and evaluation criteria for secure systems
Content
The course will present engineering techniques for developing secure systems. We will discuss concepts, methods, and tools that can be applied during the software development process in order to achieve that the resulting systems are secure, covering topics such as: - security requirements & risk analysis - UML for developing secure systems - tools for validating security requirements - evaluation criteria for the development of secure systems
Resources
Literature
- Ross Anderson: Security Engineering, Wiley, 2001. - Matt Bishop: Computer Security, Pearson Education, 2003. - Ian Sommerville: Software Engineering, 6th ed., Addison-Wesley, 2001. - John Viega, Gary McGraw: Building Secure Software, Addison-Wesley, 2002. - Further relevant books and journal/conference articles will be announced in the lecture.
General Information
- Language
- English
- Frequency
- Yearly recurring
Examination
- Type
- session examination
- Mode
- oral 30 minutes
Course Components
| Type | Title | Time & Place | Hours |
|---|---|---|---|
| lecture | Security Engineering |
|
2 h weekly |
| exercise | Security Engineering |
|
2 h weekly |