 | Study programme 2025-2026 | Français | |
 | Applications security | ||
Programme component of Master's in Computer Engineering and Management : Specialist Focus on Cybersecurity and Forensics for the Internet of Everything (MONS) (day schedule) à la Faculty of Engineering |
| Code | Type | Head of UE | Department’s contact details | Teacher(s) |
|---|---|---|---|---|
| UI-M1-IRIGCF-003-M | Compulsory UE | DE CONINCK Quentin | F115 - Service de Cybersécurité et Systèmes Informatiques |
|
| Language of instruction | Language of assessment | HT(*) | HTPE(*) | HTPS(*) | HR(*) | HD(*) | Credits | Weighting | Term |
|---|---|---|---|---|---|---|---|---|---|
| Anglais | 24 | 36 | 0 | 0 | 0 | 5 | 5.00 | 2nd term |
| AA Code | Teaching Activity (AA) | HT(*) | HTPE(*) | HTPS(*) | HR(*) | HD(*) | Term | Weighting |
|---|---|---|---|---|---|---|---|---|
| S-INFO-044 | Cybersecurity | 24 | 24 | 0 | 0 | 0 | Q2 | 80.00% |
| I-CYSI-001 | Ethical Hacking Project | 0 | 12 | 0 | 0 | 0 | Q2 | 20.00% |
| Programme component |
|---|
Objectives of Programme's Learning Outcomes
- Mobilize a structured body of specialized scientific and technical knowledge and skills, enabling you to respond with expertise and adaptability to the missions of the civil engineer in IT and Management with a focus on Cybersecurity and Forensics for the Internet of Everything.
- Master and mobilize knowledge, models, methods and techniques related to cybersecurity, the Internet of Things (IoT) and ubiquitous computing (IoE), depending on the problem to be solved.
- Imagine, design, develop and implement conceptual models and IT solutions to respond to complex decision-making, optimization, management and production problems, as part of a corporate innovation process that takes into account changing needs, contexts and issues (technical, economic, societal, ethical and environmental).
- Identify complex problems to be solved and develop the specifications with the client by integrating needs, contexts and issues (technical, economic, societal, ethical and environmental).
- Deliver a solution selected in the form of diagrams, graphs, prototypes, software and/or digital models.
- Evaluate the approach and results for their adaptation (modularity, optimisation, quality, robustness, reliability, upgradeability, etc.).
- Integrate technological innovation and intelligence within engineering teams.
- Communicate and exchange information in a structured way - orally, graphically and in writing, in French and in one or more other languages - scientifically, culturally, technically and interpersonally, by adapting to the intended purpose and the relevant public.
- Argue to and persuade customers, teachers and boards, both orally and in writing.
- Select and use the written and oral communication methods and materials adapted to the intended purpose and the relevant public.
- Use and produce scientific and technical documents (reports, plans, specifications) adapted to the intended purpose and the relevant public.
- Adopt a professional and responsible approach, showing an open and critical mind in an independent professional development process.
- Analyse their personal functioning and adapt their professional attitudes.
- Show an open and critical mind by bringing to light technical and non-technical issues of analysed problems and proposed solutions.
- Exploit the different means available in order to inform and train independently.
Learning Outcomes of UE
- Basic theoretical and practical skills in secure software development (knowing what to secure, how to do it, when, and at what cost, conscience of user culture of cybersecurity,...)
- C language vulnerabilities and binary exploitation
- Applying ethical hacking (discovery of vulnerabilities without compromising the system) and communication of the results
UE Content: description and pedagogical relevance
This course covers the following topics:
- Cryptography
- Access Control
- Web Security
- Network Security
- Side-Channel Attacks
- SetUID and Integer Overflows
- Race Condition Attacks
- Memory Safety
- Assembly & Debugging
- Buffer Overflow
- Shellcode
- Stack Protections
Prior Experience
Basic knowledge of computer systems and computer networks is a plus
Type of Teaching Activity/Activities
| AA | Type of Teaching Activity/Activities |
|---|---|
| S-INFO-044 |
|
| I-CYSI-001 |
|
Mode of delivery
| AA | Mode of delivery |
|---|---|
| S-INFO-044 |
|
| I-CYSI-001 |
|
Required Learning Resources/Tools
| AA | Required Learning Resources/Tools |
|---|---|
| S-INFO-044 | Slides available on Moodle Depending on its progress, an online syllabus will also be available. |
| I-CYSI-001 | Same as S-INFO-044 |
Recommended Learning Resources/Tools
| AA | Recommended Learning Resources/Tools |
|---|---|
| S-INFO-044 | Not applicable |
| I-CYSI-001 | Same as S-INFO-044 |
Other Recommended Reading
| AA | Other Recommended Reading |
|---|---|
| S-INFO-044 | Wenliang Du, Computer security : a hands-on approach, CreateSpace Independent Publishing Platform; 1st edition (October 12, 2017) Paar et Pelzl, Understanding Cryptography, Springer (2011) Jon Erickson. Hacking: the art of exploitation. No starch press (2008) Some additional references to understand all the elements discussed during the course: Bonaventure Olivier. Computer Networking: Principles, Protocols and Practice - Accessible via https://beta.computer-networking.info Bonaventure Olivier, Rivière Étienne. Langage C et Systèmes Informatiques - Accessible via https://sites.uclouvain.be/SystInfo/ |
| I-CYSI-001 | Same as S-INFO-044 |
Grade Deferrals of AAs from one year to the next
| AA | Grade Deferrals of AAs from one year to the next |
|---|---|
| S-INFO-044 | Unauthorized |
| I-CYSI-001 | Authorized |
Term 2 Assessment - type
| AA | Type(s) and mode(s) of Q2 assessment |
|---|---|
| S-INFO-044 |
|
| I-CYSI-001 |
|
Term 2 Assessment - comments
| AA | Term 2 Assessment - comments |
|---|---|
| S-INFO-044 | Exam + works during the year The exact grade ponderation is specified during the first lecture. Note that any intellectual infringement (such as plagiarism or AI usage infringing the UMONS charter), even for a part of the works, will lead to a final grade of 0 for the course. |
| I-CYSI-001 | - Ethical hacking report writing - Peer-reviewing of other students' reports |
Term 3 Assessment - type
| AA | Type(s) and mode(s) of Q3 assessment |
|---|---|
| S-INFO-044 |
|
| I-CYSI-001 |
|
Term 3 Assessment - comments
| AA | Term 3 Assessment - comments |
|---|---|
| S-INFO-044 | As Q2, works/homeworks may potentially be redone, unless a fraud was previously observed (AI-generated work, plagiarism,...). |
| I-CYSI-001 | By default, the project cannot be redone in second session. The possibility to organise a second project is left to the teacher's discretion on a case-by-case basis. |
(*) HT : Hours of theory - HTPE : Hours of in-class exercices - HTPS : hours of practical work - HD : HMiscellaneous time - HR : Hours of remedial classes. - Per. (Period), Y=Year, Q1=1st term et Q2=2nd term