Secure Systems

1 Overview

Introduction and course organization

1.1 Who am I

• Short CV
  • Bachelor Medieninformatik @ HdM
  • Master Computer Science and Media @ HdM
  • PhD @ University of the West of Scotland
  • "Systemlandschaftsgärtner" @ Ernst Klett Verlag GmbH
  • Now: Professor "Methodik der Softwareentwicklung" @ HdM
• Lectures
  • 113217: Software Development 2 (Bachelor)
  • 113330: Software Development 3 (Bachelor)
  • 113423a: Aktuelle Themen der Internet-Technologien (Bachelor)
  • 113486a: Design Patterns (Bachelor)
  • 143307a: Sichere Systeme (Master)
  • 113408a: Verteilte Systeme (Bachelor)
  • 143102a: Ultra Large Scale Systems (Master)
• Topics
  • Methodology: The human factors of software development
  • Software Development
  • Software Architecture
  • Distrubted Systems
  • Security

1.2 Prerequisites

• Basic knowledge of
  • Protocols
  • Firewalls
  • Authentication
  • Authorization
  • Single-sign-on

1.3 Objectives

Main goal: Setting security in a broader context

• Awareness: Identifying risks and weaknesses
• Addressing risks and weaknesses with countermeasures
• Applying security in different contexts
  • Hardware
  • Software
  • Processes
  • Organizational
  • Society
  • Politics
• Making security explainable for non-experts
• Strengthen ability in asking critical questions

1.4 Methodology

You are responsible for a lecture (90 minutes)!

• You present a topic you chose in advance to your fellow students
• We discuss the impacts in class
• You submit two elaborations:
  • A paper (8 - 10 pages) about your topic. Target group: experts.
  • A blog post/news article (1 page), podcast episode (3 - 5 minutes). Target group: non-experts.

1.5 Presentation

Things you can consider for your presentation

• Duration: ca. 45 - 60 minutes
• Target group: IT professionals
• Introduction of the topic
• What are the impacts?
• What is the history?
• What are relevant publications?
• What are the related technical topics?
• Why is it relevant?
• What are related topics?
• (Practical) examples
• Who is affected?
• Outlook: What will be future developments for this topic?
• (...)

Please send the slides after your presentation to me

1.6 Discussion

Things you can consider for the discussion

• Duration: ca. 30 - 45 minutes
• Active discussion by all participants of this course is mandatory!
• Prepare yourself carfully in advance of each presentation
  • Gather information about this topic e.g. in journal papers/public media/tech press
  • What are the different opinions about the topic? What are the interests behind the opinions?
  • What is your opinion?

1.7 Elaboration

The eleboration consists of two parts:

1. A scientific paper about your topic
   • 8 - 10 pages
   • Covers your topic in detail
   • Target group: experts
   • Font size: 12pt
   • Line height: 1.5pt
2. A blog post/news article, podcast episode
   • One pager
   • Font size: 12pt
   • Line height: 1.5pt
   • 3 - 5 minutes
   • Target group: non-experts

Submission deadline by 23/02/2024 via e-mail to me

1.8 Grading

Presentation

• 50% of your grade

Elaboration

• 50% of your grade

After grading, you will get a detailed description of how your note is compiled.

1.9 Grading: Presentation

Things I will consider:

• Structure
• Coverage of the topic
• Coverage of the impacts
• Clarity
• Examples
• Technical foundation of the topic
• Initial questions for discussion
• Use of sources

1.10 Grading: Elaboration

Things I will consider:

• Structure
• Coverage of the topic
• Coverage of the impacts
• Clarity
• Examples
• Technical foundation of the topic
• Use of sources

1.11 Schedule

2 Topics

These topics are starting points. You can either go deeper into an exisiting topic or you can find a new one. In this case, please contact me in advance.

2.1 Topic suggestions

1. History of (IT) security
2. Cybersecurity Frameworks and standards
3. EU Cyber Resilience Act
4. Ethics and moral in (IT) security
5. Implications of AI on IT security
6. Educating the society in (IT) security
7. Economical factors of (IT) security
8. Security and cloud systems
9. Zero Trust Architectures
10. Security Awareness and Training
11. Blockchain and cryptography
12. Future developments and trends in IT security
13. Securing applications and coding practices
14. Vulnerability management
15. DevSecOps
16. Cyber insurances
17. Biometrics
18. Security of critical infrastructure
19. Hardware security
20. Quantum computing and security
21. Security in embedded systems
22. ...

3 Things to consider

The more we mange to discuss the topics, the more interessting the course will be!

• Your presentation and your elaboration can either be in English or German
• You can send your basic presentation structure in advance.
• Please prepare yourself in advance of each presented topic.
• Have an eye on news. It's more interessting when we are able to link current discussions.
• What do we do when there are more sessions than participants?
  • There are a lot of topics in the security field to discuss about!
  • Each week we will choose two topics for the next session
• Your eleboration will be published on the MI Blog

4 What's next?

• Search for a suitable topic
• Do an initial research about this topic
• Discuss the topic with me
  • Remember the deadline: 19/10/2023
• Add your topic to the schedule
  • Schedule and Topics: Secure Systems (143307a)
• Our first session will be at 26/10/2023

5 Questions?

If you have any questions about your topic, grading, presentation, elaboration etc., ask me anytime

Prof. Dr. Tobias Jordine

Room 322

jordine@hdm-stuttgart.de