Course Objectives and Expected Outcomes:
The course has the main goal of illustrating the models, languages, and tools for the management of access control and privacy policies within a data management system. A part of the course will also be devoted to access control and privacy issues in innovative contexts (such as for instance social networks and data outsourcing).

Knowledge and understanding:
The course is intended to provide the basic knowledge for access control management and privacy preservation within a data management system, with particular focus on relational DBMSs. At the end of the course, the students have the necessary knowledge and skills to understand and use the main existing access control models for DBMSs, and to customize them according to the specific protection needs of the target application domains. Additionally, the students are able to understand the main issues underlying privacy protection and have the knowledge of the main privacy-preserving technologies to be used within a data management system.

Applying knowledge and understanding:
The course is greatly application-oriented, with a considerable part of the course devoted to the access control support provided by the SQL language. The course has also a focus on the access control services provided by the Oracle DBMS. At the end of the course, students are able to enforce, through the models, languages and tools learned during the lectures, the access control/privacy requirements of a target domain.

Judgment autonomy:
At the end of the course, students are able to autonomously model and enforce access control/privacy requirements of a target domain, by making use of the models, languages, and tools learned during the lectures. They are also able to select, when more than one option is possible, the one that better fits the considered scenario. In addition, students are able to detect security/privacy vulnerabilities due to design errors.

Communication Skills:
At the end of the course, the students have developed the ability of autonomously expand their competences in the data security and privacy area. For instance, they can autonomously learn a new access control model or a new privacy preserving technology. This skill is facilitated by the last part of the course, which is devoted to an overview of the main research trends in the area.

Evaluation Procedure:
The students learning extent is assessed through a written exam and a project. The written exam lasts approx. 2 hours. Students are not allowed to consult any text book or other learning material during the test. The test is divided into two parts. The first part consists of 4/5 open questions on the conceptual aspects of the course, whereas the second part consists of 3/4 exercises whose goal is to assess the ability of specifying access control/privacy policies with the models, languages, and tools learned during the course. The grade of each part of the written exam is given in thirtieths. The overall grade of the written exam is determined by the following formula: 1/3 * grade of the first part + 2/3 * grade of the second part. The written exam is passed if the student obtains a grade greater than or equal to 18 in both the parts. The project has the goal of assessing what has been learned during the exercise classes. The grade of the project is given in thirtieths and the project is successful with a grade greater than or equal to 18. The final score of the course will be determined by the following formula: 1/3 * grade of the project + 2/3 * grade of the written exam.