At the end of this course, the student should be able to discover and analyze the weaknesses and the vulnerabilities of a system to evaluate in a quantitative and formal way the risk it poses. The student should be able to select and deploy a cost-effective set of countermeasures at the various implementation levels to improve the overall ability of the system to withstand its attackers. Focus of the course is on a predictive approach where risk assessment and management is a step in the system design. The student should also be able to know the various tools that can support the assessment and simplify both the assessment and the selection of countermeasures. In this framework, the focus on cloud computing makes it possible to cover the most complex assessment.
• Risk Assessment and Management of ICT Systems 3 CFU
o Vulnerabilities/Attacks 1 CFU
o Countermeasures 1 CFU
o Tools for Automating Assessment & Management 1 CFU
• Security of Cloud Computing 6 CFU
o Economic Reasons/Deployment Models/ Service Models 1 CFU
o Virtualization and TCM 1 CFU
o New Vulnerabilities 1 CFU
o New Attacks 1 CFU
o New Countermeasures 1 CFU
o Certification of Cloud Provider 1 CFU