Introduction to IT Security (INFO2315)


This unit provides a broad introduction to the field of IT security. We examine secure and insecure programs, secure and insecure information, secure and insecure computers, and secure and insecure network infrastructure. Key content includes the main threats to security; how to analyse risks; the role in reducing risk that can be played by technical tools (such as encryption, signatures, access control, firewalls, etc); the limitations of technical defences; and the simple process and behavioural changes that can reduce risk.

Our courses that offer this unit of study

Further unit of study information


Lecture 2 hrs/week; Laboratory 1 hr/week.


Through semester assessment (40%) and Final Exam (60%)


Pfleeger, C. & Pfleeger, S./Security in Computing/4th/2006//

Faculty/department permission required?


Unit of study rules

Assumed knowledge

In order to enter this unit, students should have at least one semester of tertiary study of IT. In particular, we assume familiarity with the value of information, and with the varied uses of IT in business and personal activities. We also assume an introductory level of skill in using a computer (for example, creating and moving files and folders, downloading and installing files, etc). The assumed background would be achieved by completing INFO1003 Foundations of IT. We also assume previous instruction in verbal presentations and teamwork.

Study this unit outside a degree

Non-award/non-degree study

If you wish to undertake one or more units of study (subjects) for your own interest but not towards a degree, you may enrol in single units as a non-award student.

Cross-institutional study

If you are from another Australian tertiary institution you may be permitted to underake cross-institutional study in one or more units of study at the University of Sydney.