Computer Security

Computer Security is a Level 9 course given in Semester 2. See the Course Catalogue entry.
Lectures are held on Mondays and Thursdays at 16:10, in Lecture Theatre 1, Appleton Tower, Central.
The course lecturer is Myrto Arapinis
The first lecture is on Mon 12th January 2015.

Lecture Slides

Slides will be added below as we go along. The slides from last year will give a good idea about what's coming up.

1.    12 Jan.    Introduction to the course       view    print           
2. 15 Jan. Introduction to secure communications   view print
3. 19 Jan. Stream ciphers view print
4. 22 Jan. Block ciphers view print
5. 26 Jan. Hash functions and MACs view print
6. 29 Jan. Asymmetric ciphers view print
7. 2 Feb. Asymmetric ciphers view print
8. 5 Feb. Cryptographic protocols (I) view print
9. 09 Feb. Cryptographic protocols (II) view print
10. 12 Feb. Protocols for anonymity view print
11. 2 Mar. Access control view
12. 9 Mar. Buffer overflow attacks view print
13. 12 Mar. Buffer overflow attacks view print
14. 19 Mar. Web security: injection attacks view print
15. 30 Mar. Web security: session hijacking, XSS, CSRF view print
16. 2 Apr. Web security: session hijacking, XSS, CSRF view print

These are lecture slides, not comprehensive notes. You should supplement the slides with notes taken in lectures, and from your own reading. References and specific reading recommendations are given in slides, further guidance is given in lectures. The examinable material consists of what is covered in lectures, tutorials and practicals (unless specifically excluded) and the reading recommended in lectures.

Course resources


There are four tutorials. Tutorial groups are managed by the ITO, and will be announced soon.
There are worksheets for the first three tutorials which will be issued beforehand. You should try each worksheet before the tutorial meeting.

Tutorials are based on question sheets which you should use to help guide your own study for the course. Solutions will be issued a while after the question sheets so you can measure your progress. There is not enough time to cover all topics; you should aim to cover remaining topics to a similar depth of knowledge.

Coursework Exercises

There are two assessed coursework exercises, each worth 12.5% of the final mark.


  • Past papers are on the ITO pages.
    The only solutions available are those already published.
    Older exams include questions on "BAN logic" which has since been removed from the syllabus.

Documents above are in PDF format. Comments, suggestions, corrections are welcomed.
To print course materials, make sure your PDF reader has the correct page size and orientation.

Copyright: except where stated, lecture notes and other course materials are Copyright (C) School of Informatics, University of Edinburgh, and respective authors. Lecture slides prepared by David Aspinall and Myrto Arapinis with additions by Mike Just and Julian Bradfield.
Please respect our rights over this material and contact us if you want to use it in another context.

Home : Teaching : Courses 

Informatics Forum, 10 Crichton Street, Edinburgh, EH8 9AB, Scotland, UK
Tel: +44 131 651 5661, Fax: +44 131 651 1426, E-mail:
Please contact our webadmin with any comments or corrections. Logging and Cookies
Unless explicitly stated otherwise, all material is copyright © The University of Edinburgh