Close Menu

INFO3155

Course Title: 
Information Assurance and Security
Credits: 
3
Educational Level: 
III
Semester offered: 
I
Associated Programme: 
B.Sc. IT
Core Course: 
yes
Course Aims: 

This course explores the security issues that every IT professional must be aware of. The course will inform the student on the various attack surfaces and defensive approaches that must be considered during all phases of life of an organisation's information technology assets. The course will also provide an opportunity for students to gain hands-on experience with the tools needed to protect an organisation from the various forms of attack it can be subjected to.

Syllabus: 
  1. Review and discuss the offences and penalties detailed in the Jamaica Cybersecurity Act.
  2. Fundamental concepts of assurance and security: Need for Information Assurance, Threats, Attacks, Access control policies, Authentication mechanisms.
  3. Risk Management: What is risk analysis, What is involved in determining risk, Approaches to managing risk.
  4. Security Policy and Governance: Strategies and plans for creating security policies.
  5. Cryptography: Cryptographic primitives, Common protocols, Cryptanalysis.
  6. Malware: Taxonomy of various types based on how they propagate and their level of autonomy, Malware payloads, Signature and behaviour-based detection, Polymorphic and metamorphic malware.
  7. Prevention and detection: Intrusion detection systems, Firewalls, creating rule sets for use in automated prevention and detection systems.
Course Assessment: 
  • Final exam (2 hours long)     40%
  • Coursework       60%

Students will be required to pass both the coursework and the final examination to pass the course.

Course Prerequisites: 

COMP2190 AND (INFO2101 OR COMP2201)

Top of Page