Formal Methods for Information Security (Lecture, Summer Term 2007)

Lecturer: Prof. Heiko Mantel

Format: V4 + Ü2

Content: 

The course gives an overview on formal approaches to:

• formal modeling of security-critical systems
• formal specification of security requirements
• formal security analysis of systems 
  
• theoretical foundations for developing secure software by stepwise refinement and composition.

The topics covered include:

• introduction to formal methods for information security
• formal modeling and analysis of access control mechanisms
  
• formal modeling and analysis of information flow control
  
• formal modeling and analysis of security protocols
  
• formal modeling of trust relationships in distributed systems
  

 

Place and Time:

• Tuesday, 11:40 - 13:20, in S2/02-C110
• Wednesday, 8:00 - 9:40, in S2/02-C110
• Thursday, 8:00 - 9:40, in S2/02-C110

The lectures start on Thursday, 19.4.2007.

Language: English

Prerequisites:

Knowledge of Computer Science and Mathematics, equivalent to the first four Semesters in the Computer Science Bachelor program, in particular

• formal languages and calculi
• logic
  

Literature:

Scientific articles (to be announced in the lecture) and slides of the lectures (will be available online after the lecture). Additionally, e.g., one of the following books:

• M. Bishop: "Computer Security", Pearson Education, 2003.
• C. P. Pfleeger und S. L. Pfleeger: "Security in Computing", 4th edition. 
• D. Gollmann: "Computer Security", Wiley, 2000.