• Student home
• Things to know this week
• Student news
• Student events
• New students' welcome
• Studying at York
  • Semesters
  • Teaching hours
  • Enrolment
  • Manage your studies
    • Enrol or re-enrol
    • Your student record
    • Your timetable
    • Change your plan
    • Programmes and modules
      • Programme specifications
      • Studying beyond your department
      • Module catalogue
    • University study spaces
  • Student Visa holders
  • Study skills
  • Assessment and examination
  • Academic progress issues
  • Graduation
• York Online students
• Support and advice
• Health and wellbeing
• Work, volunteering and career planning
• Study and work abroad
• Accommodation
• IT and online services
• Finance
• Student life in York
• If things go wrong

Security Engineering - COM00155M

« Back to module search

• Department: Computer Science
• Module co-ordinator: Dr. Angus Marshall
• Credit value: 15 credits
• Credit level: M
• Academic year of delivery: 2023-24
  • See module specification for other years: 2022-23 2024-25

Module summary

This module teaches fundamental concepts methods, techniques and tools involved in the development of secure application systems, from security requirement analysis and specification to design of secure application systems, secure programming and security testing.

Related modules

Module will run

Occurrence	Teaching period
A	Online Teaching Window 3 2023-24

Module aims

The module will provide methods, techniques and tools for the development of secure application systems, from the stage of security requirement analysis and specification to the stage of design of secure application systems, and then to the stage of secure programming and security testing. 

Module learning outcomes

Be able to

1.    Critically analyse the concept of security and security threats in the context of dependable systems, 

2.    Formulate different types of security requirements that may be required in a complex system,

3.  Critically evaluate and apply security design and secure coding  principles, technologies and tools 

4. Communicate design decisions for security problems.

 

Module content

Topics:

1. Identity, Authentication and Authorisation

2. Security models

3. Origins of vulnerabilities - architectural and operating system concepts

4. Vulnerability reduction and avoidance techniques

5. Programming security mechanisms

6. Incident investigation readiness assessment

Assessment

Task	Length	% of module mark
Essay/coursework Report	N/A	100

Special assessment rules

None

Reassessment

Task	Length	% of module mark
Essay/coursework Report	N/A	100

Module feedback

Feedback will be provided in line with university policy.

Indicative reading

Freely available online texts will be introduced in the learning materials.

Elements of Pfleeger, Pfleeger,and Margulies - "Security in Computing",5th ed. Prentice-Hall 2015 may be useful.