Large amount of data containing sensitive personal information are being constantly collected in today’s digitised world. Examples include e-health records in medical systems and location data in ubiquitous mobile applications. How can we guarantee that the collected user data are not misused and privacy policies not violated? How can we protect user privacy while simultaneously allowing effective data sharing and utilization? When the servers are not fully trusted, how can we still provide desirable services to users and respect their privacy?

This course aims at providing students with a solid understanding of a set of core and emerging techniques for information security and privacy. Topics include cloud security, cryptocurrency such as bitcoin, machine learning security, data anonymization, oblivious RAM, and encrypted databases. Learning activities include lectures, group projects, case studies, and tutorial sessions.