You need to activate javascript for this site.
Menu Conteúdo Rodapé
  1. Home
  2. Courses
  3. Computer Science and Engineering
  4. Information Assurance and Security in the Cloud

Information Assurance and Security in the Cloud

Code 11518
Year 1
Semester S1
ECTS Credits 6
Workload OT(15H)
Scientific area Informatics
Mode of delivery Face-to-face instruction (mentoring) and self-learning.
Work placements --
Objectives and Learning outcomes of the Course Unit The objectives of this course unit are as follows:
a) In terms of knowledge, at the end of the semester, it is expected that the student knows and understands the origin of security problems in clouds and datacenters, as well as the technology, mechanisms and systems that are used to solve some of those problems or to assure the availability, confidentiality and integrity of the information therein stored or processed.
b) in terms of skills, to motivate the development of a critical reasoning towards security problems in clouds, as well as the ability to conduct research in this area of knowledge autonomously, namely through the proposal, implementation and validation of security mechanisms.
c) In terms of competences, it is expected that the student develops the ability to handle security related tools and algorithms, and configure information assurance and security systems. The contribution to train a specialist in technologies related with cloud is also an objetive.
Course unit contents/Syllabus 1 Introduction and definition of important concepts :
1.1 Fundamental concepts
1.2 Service delivery models and types of clouds
1.3 International Standards

2 Revision of the Specialized Literature
2.1 Security requirements as a function of the service delivery models
2.1 Threats and security mechanisms in datacenters
2.2 Cloud specific security Issues
2.3 Threats and security mechanisms for the telecommunications infrastructure
2.4 Security issues inherited from other technologies
2.5 Reference model for cloud security and risk analysis
2.6 Open research problems

3 Security problems and mechanisms specific to the cloud:
3.1 Security of the physical infrastructure and supporting technologies
3.2 Confidentiality, integrity and availability assurance
3.3 Access control, authentication and identity management
3.4 Regulations , compliance and legal issues in cloud
3.5 Trust and privacy
Recommended or required reading Diogo A. B. Fernandes, Liliana F. B. Soares, João V. Gomes, Mário M. Freire, and Pedro R. M. Inácio, Security Issues in Cloud Environments - A Survey, International Journal of Information Security (IJIS), (in press) 62 pages, 2014.

Liliana F. B. Soares, Diogo A. B. Fernandes, João V. Gomes, Mário M. Freire, and Pedro R. M. Inácio, Cloud Security: State of the Art, in Security, Privacy and Trust in Cloud Systems, Surya Nepal, Mukaddim Pathan (Eds.) Springer, 2014.

Diogo A. B. Fernandes, Liliana F. B. Soares, Mário M. Freire and Pedro R. M. Inácio, Randomness in Virtual Machines, in Proceedings of the 6th IEEE/ACM Utility and Cloud Computing Conference, Dresden, Germany, December 9-12, 2013.

P. Mell, and T. Grance, The NIST Definition of Cloud Computing, National Institute of Standards and Technology, Information Technology Laboratory, 2009.

B. Chee, and C. Franklin, Cloud Computing: Technologies and Strategies of the Ubiquitous Data Center, Hoboken: CRC Press, 2010.
Planned learning activities and teaching methods The subjects of this course unit are discussed in tutoring classes with 1 hour of weekly contact, being the study and research effort placed on the student, who should prepare for the discussion of the next class via the reading and analysis of scientific books or papers proposed by the lecturer.
Two practical works will be proposed along the semester: the first one consists in the detailed study of a security problem discovered in the school year in which the course unit is taken; the second one consists in the proposal, implementation and analysis of a solution for the previously studied problem. Both works are worth 40% of the final grade. A written test for knowledge evaluation will be scheduled for the end of the semester, which is worth 20% of the final grade.
Assessment methods and criteria A avaliação a esta unidade curricular é feita recorrendo a 3 elementos: um teste escrito de aferição de conhecimentos (T) e dois trabalhos individuais (T1 e T2). A nota final (N) resulta da média ponderada das classificações nos vários elementos:
N = 0.20 x T + 0.40 x T1 + 0.40 x T2

Os trabalhos individuais consistem no desenvolvimento de propostas discutidas ao longo do semestre, com recurso a algumas das referências bibliográficas sugeridas e que contemplam o estudo aprofundado do estado da arte e de um tema específico na área, e a proposta, implementação e análise de uma forma de resolver o problema antes estudado. Estes trabalhos serão acompanhados de relatórios. O(a) aluno(a) é aprovado por ensino-aprendizagem caso obtenha nota final igual ou superior a 9,5 valores.

A admissão a exame depende da nota final ser igual ou superior a 6 valores. O exame substitui apenas o teste escrito (os trabalhos continuam a contar para a nota após exame), e a aprovação do(a) aluno(a) após exame rege-se novamente de acordo com o que foi estipulado acima para a aprovação durante o período ensino-aprendizagem. Para obter aprovação, o(a) aluno(a) deve ter nota final superior ou igual a 9,5 valores, em que N é dada por
N = 0.20 x E + 0.40 x T1 + 0.40 x T2,
sendo que E denota a classificação obtida em exame.

Momentos de Avaliação
Teste Escrito - 04/11/2019
Data limite de entrega do trabalho 1 - 08/11/2018
Data limite de entrega do trabalho 2 - 17/12/2018
Language Portuguese. Tutorial support is available in English.
Last updated on: 2014-08-07

The cookies used in this website do not collect personal information that helps to identify you. By continuing you agree to the cookie policy.