Cybersecurity and privacy preservation techniques and digital security and privacy

A.A. 2019/2020
6
Crediti massimi
40
Ore totali
SSD
IUS/01 IUS/09 IUS/14
Lingua
Inglese
Obiettivi formativi
The objective of this course is to introduce the essential elements of data protection law, as well as the principles, rights and duties set by the General Data Protection Regulation (GDPR). The course will also study privacy risks arising in public and semi-public data release and in emerging scenarios, illustrating solutions aimed at mitigating these risks.
Risultati apprendimento attesi
The student will have knowledge and understanding of the fundamental legal concepts of data protection; autonomous ability to read the new European regulatory standards; ability to understand the goals and technological motivations that led to their adoption; ability to understand the implementation logic of the new regulatory framework. The student will also be able to identify privacy risks in data publication and in outsourcing scenarios, and to propose and evaluate solutions able to mitigate such risks.
Programma e organizzazione didattica

Edizione unica

Responsabile
Periodo
Primo trimestre
Programma
Unit I: Data Protection Law
- Introduction
- The European concept of privacy between EU and ECHR
- The relevant data subjects
- Territorial and material scope
- Principles and conditions relating to processing of personal data
- Rights of the data subject
- The Member States' Independent Supervisory Authorities and the European Data Protection Board
- Competence, tasks and powers, Remedies and penalties
- Transfers of personal data to third countries (non-EU countries)
- IA and Data protection

Unit II: Cybersecurity and Privacy Preservation Techniques
- Introduction
- Macrodata and microdata protection
- Privacy in data publication
- Authentication and access control
- Data protection in the cloud
Prerequisiti
None
Metodi didattici
Frontal lessons
Materiale di riferimento
Web site:
http://sforesticpptdsp.ariel.ctu.unimi.it

Slides and reading lists made available on the course web site.
Modalità di verifica dell’apprendimento e criteri di valutazione
The exam consists of two tests, one for each unit.
For the "Data Protection Law" Unit, attending students can sustain intermediate verifications, which will be held at the end of each module. The verifications are composed of multiple choice questions and an open-ended question. For students not attending intermediate verifications, the exam is oral. The oral exam consists of an interview on program topics. The exam is aimed at ascertaining the preparation and argumentative capacity of the student.
For the "Cybersecurity and Privacy Preservation Techniques" Unit, the exam consists of a written test (1 hour and 30 minutes), including both questions and exercises covering the topics of the course. Questions and exercises are aimed at evaluating the knowledge and understanding of the student of the course.
The evaluation is expressed on a 1-30 scale and is computed considering the evaluation obtained in each of the two tests.
The results of the exams are available on the Ariel web page of the course.
Moduli o unità didattiche
Unit Cybersecurity and Privacy Preservation Techniques
IUS/01 - DIRITTO PRIVATO - CFU: 0
IUS/09 - ISTITUZIONI DI DIRITTO PUBBLICO - CFU: 0
IUS/14 - DIRITTO DELL'UNIONE EUROPEA - CFU: 0
Lezioni: 20 ore
Docente: Foresti Sara

Unit Digital Security and Privacy
IUS/01 - DIRITTO PRIVATO - CFU: 0
IUS/09 - ISTITUZIONI DI DIRITTO PUBBLICO - CFU: 0
IUS/14 - DIRITTO DELL'UNIONE EUROPEA - CFU: 0
Lezioni: 20 ore

Docente/i
Ricevimento:
su appuntamento
via Celoria, 18 - Milano (MI)