Legal Aspects of IT Security
- Code de l'UE DCYBM101
-
Horaire
30Quadri 1
- Crédits ECTS 5
- Langue
- Professeur Lachapelle Amélie
Hard skills
Soft skills
The course examines the legal rules that govern the security of networks and information systems. In this context, the course focuses on 4 topics : data protection, cybersecurity, whistleblowing and cybercriminality.
PART 1. PRIVACY & DATA PROTECTION LAW
SUB PART I. GENERAL PRINCIPLES
1. Legal Basis of Privacy
2. Legal Basis of Data Protection Law
3. Introduction to the GDPR: scope and definitions
SUB PART II. DATA PROTECTION LAW (GDPR)
1. Data Protection Principles
2. Duty of security of personal data
3. Appropriates measures in cybersecurity matters
PART 2. INFORMATION AND NETWORKS SECURITY LAW
1. NIS Directive
2. Coordinated vulnerability disclosure policies (CVDP)
PART 3. WHISTLEBLOWING LAW
1. Scope of the DWB
2. Procedure for internal and external reporting
3. Protection measures
PART 4. CYBERCRIMINALITY LAW
1. Intrusion into an IT system
2. Manipulation of IT data
3. IT forgery and IT fraud
4. Crimes concerning the secrecy of communications
No exercises.
- Slides projected during the course.
- Additional resources published on the course's WebCampus page
The evaluation consists of two parts:
1) Concrete practical case (20 % of the final grade)
Various practical cases are exposed during the last lesson. Each student must resolve one case by group of 3-4 students.
For each case, there are 5 subquestions.
The oral evaluation consists of two parts :
I. Discussion about the case resolved before in group
II. Two questions :
Formation | Programme d’études | Bloc | Crédits | Obligatoire |
---|---|---|---|---|
Master 120 en cybersécurité, à finalité spécialisée | Standard | 0 | 5 | |
Master 120 en cybersécurité, à finalité spécialisée | Standard | 1 | 5 |