Master's Programme in Cybersecurity, 120 credits

Masterprogram i cybersäkerhet, 120 hp

6MCYS

Teaching language

English

Campus

Linköping

Degree

Degree of Master of Science (120 credits) with a major in Computer Science

Pace of study

Full-time

Possible deviation from course syllabus/programme syllabus

Purpose

The purpose of the program is to offer an education with specialist competence in cybersecurity with the breadth and depth that corresponds to internationally agreed knowledge goals in the subject.

After completing the education, the graduate student from the Master's Programme in Cybersecurity is well equipped to meet society's security challenges where the pace of development of new systems and services is very high and has a constantly changing threat picture. The graduate becomes a security expert who has a deep technical understanding, and at the same time can see the holistic perspective on security issues that include organizations, people, and society. The specialist competence means that the graduate can work to maintain and protect existing services and develop new secure solutions. The graduate must be able to work at all levels with cyber security, from technical security solutions up to cybersecurity at management level.

The program is given in English and is aimed at students with at least a bachelor's degree who want to specialize in cybersecurity. The graduate is suitable for employment with companies that offer and develop security solutions, in organizations with high demands on cybersecurity, in the software industry, as well as at academic institutions and major research and development institutes.

Aim

Disciplinary knowledge and reasoning

The graduate student from the Master's programme in Cybersecurity must:

have a broad foundation in Computer Science, including programming and networking
be able to use engineering methods to map and analyze change processes and lead development processes
have specialized knowledge of cybersecurity which includes information security, software security, component security, network security, system security, human aspects of security, organizational security and societal aspects of security.

Personal and professional skills and attributes

The graduate student from the Master's programme in Cybersecurity must:

with their subject knowledge be able to contribute to the management of research, engineering work and change work
be able to independently acquire competence in new areas of technology and uses
be able to participate in multidisciplinary development and change teams; as a team leader, generalist or in a specialist role

Interpersonal skills: Teamwork and communication

The graduate student from the Master's programme in Cybersecurity must:

be able to work actively in groups by sharing tasks and responsibilities
be able to initiate, plan, implement and evaluate scientific, technical and interdisciplinary projects
be able to communicate and convey analyzes and results both orally and in writing

Planning, execution, and presentation of research or development projects with respect to scientific and societal needs and requirements

The graduate student from the Master's programme in Cybersecurity must:

have knowledge of appropriate development processes for different types of research or development projects.
be able to participate and actively contribute to all phases of research or development projects, including identification of needs, structuring, planning, implementation and presentation of projects taking into account the importance of technology in society, including economic, social and sustainable development.

Content

The program plan contains basic courses in programming, computer networks, and professionalism which, together with the prerequisites, enable in-depth study of the cyber security area. This is done through a number of compulsory courses at the advanced level with a focus on cyber security. The content of the courses includes information security, software security, component security, network security, system security, human aspects of security, organizational security and societal aspects of security. The program ends with a degree project in a semester that can be performed in industry or at the university.

Teaching and working methods

The programme is campus-based.

Entry requirements

A bachelor's degree equivalent to a Swedish Kandidatexamen with a major in one of the following or equivalent subject areas:
-computer science
-information technology
-software engineering
-computer engineering
Or
A bachelor's degree equivalent to a Swedish Kandidatexamen with a minor in computer science or related subject area, with a minimum of 60 ECTS credits in computer-related subjects equivalent to:
-programming
-data structures
-databases
-software engineering
-computer hardware
-computer networks
At least 22 ECTS credits in mathematics/applied mathematics and/or application of mathematics relevant for the programme including courses in discrete mathematics, linear algebra and calculus.
English corresponding to the level of English in Swedish upper secondary education (Engelska 6 or Engelska nivå 2).
Exemption from Swedish.

Degree thesis

The degree project must be based on high-quality scientific content and carried out in close contact with the research groups involved in the program and, where appropriate, with companies and organizations working with cyber security. The main area for the degree project will be Computer Science.

Degree requirements

a Bachelor's degree as specified in the entrance requirements.
course requirements for a total of 120 ECTS credits from courses from the curriculum of the programme, or after special decision from the programme board, and thesis work.
passed the requirements for all compulsory courses.
courses on advancement level A (advanced) 90 ECTS credits including:
- at least 30 ECTS credits courses from the main field of study of Computer Science.
- a 30 ECTS credits Master's Thesis in the main field of study of Computer Science.
a Master's thesis within Computer Science and the subject of the programme presented and passed as per Linköping Institute of Technology degree regulations.
One of the following courses must be completed and approved:
- TDDE79 Imperative Programming in C++
- TDDE18 Programming C++
- TDDD38 Advanced C++

Courses overlapping each other regarding contents are not allowed to be included in the degree. Courses used for the Bachelor's degree can never be included in the Master's degree but can, after admitted application to the Programme board, fulfill a course requirement for the programme.

Degree in Swedish

Teknologie masterexamen med huvudområde Datavetenskap

Degree in English

Degree of Master of Science (120 credits) with a major in Computer Science

Specific information

Entrance requirements

See general rules and regulations for master programmes at LiTH.

Common rules

See the Common rules tab regarding eligibility, admission, leave, postponement, study breaks or admission to later part of the education program.

Deviations from programme syllabus

If special circumstances prevail, the vice-chancellor may in a special decision specify the preconditions for temporary deviations from this programme syllabus, and delegate the right to take such decisions.

Specialisation

Main field of study

Show only specialisation courses

Elective (e) Compulsory (c) Voluntary (v)

Semester 1 Autumn 2026


Course code	Course name	Credits	Level	Timetable module	ECV
Period 1
TDDE81	Professionalism in Cybersecurity	6*	A1N	4	C
*The course is divided into several semesters and/or periods
TDTS06	Computer Networks	6	G2F	1	C

TDDD38	Advanced Programming in C++	6*	A1N	2	C/E
*The course is divided into several semesters and/or periods For the Master's Programme in Cybersecurity one of TDDE18, TDDD38 or TDDE79 shall be completed or have been included in a previous bachelor's degree..
TDDE18	Programming C++	6*	G2F	2	C/E
*The course is divided into several semesters and/or periods For the Master's Programme in Cybersecurity one of TDDE18, TDDD38 or TDDE79 shall be completed or have been included in a previous bachelor's degree.
TDDE79	Imperative programming in C++	6*	G2F	2	C/E
*The course is divided into several semesters and/or periods For the Master's Programme in Cybersecurity one of TDDE18, TDDD38 or TDDE79 shall be completed.
Period 2
TDDE74	Humans in Cybersecurity	6	A1N	4	C

TDDE81	Professionalism in Cybersecurity	6*	A1N	3	C
*The course is divided into several semesters and/or periods
TSIT02	Computer Security	6	G2F	2	C

TDDD38	Advanced Programming in C++	6*	A1N	1	C/E
*The course is divided into several semesters and/or periods For the Master's Programme in Cybersecurity one of TDDE18, TDDD38 or TDDE79 shall be completed or have been included in a previous bachelor's degree..
TDDE18	Programming C++	6*	G2F	1	C/E
*The course is divided into several semesters and/or periods For the Master's Programme in Cybersecurity one of TDDE18, TDDD38 or TDDE79 shall be completed or have been included in a previous bachelor's degree.
TDDE79	Imperative programming in C++	6*	G2F	1	C/E
*The course is divided into several semesters and/or periods For the Master's Programme in Cybersecurity one of TDDE18, TDDD38 or TDDE79 shall be completed.

Specialisation: Elective courses for students with replaced compulsory courses
Course code	Course name	Credits	Level	Timetable module	ECV
Period 1
TDDC17	Artificial Intelligence	6	G2F	3	E

TDTS08	Advanced Computer Architecture	6	A1N	2	E

Period 2
TDDD07	Real Time Systems	6	A1N	4	E

TDDD37	Database Technology	6	G2F	1	E

TDDE01	Machine Learning	6	A1N	1	E

Semester 2 Spring 2027

Preliminary courses
Course code	Course name	Credits	Level	Timetable module	ECV
Period 1
TDDE61	Ethical hacking	6*	A1N	1	C
*The course is divided into several semesters and/or periods
TDDE62	Information Security: Privacy, System and Network Security	6	A1N	4	C

TDDD25	Distributed Systems	6	A1N	2	E

TDDD41	Data Mining - Clustering and Association Analysis	6	A1N	3	E

TDDD97	Web Programming	6	G2F	3	E

TEAE21	Cybersecurity Law	6	G1F	3	E

Period 2
TDDE61	Ethical hacking	6*	A1N	2	C
*The course is divided into several semesters and/or periods
TEIG01	Organizing for Cybersecurity	6	A1N	4	C

TDDD27	Advanced Web Programming	6	A1N	3	E

TDDE31	Big Data Analytics	6	A1F	3	E

TDDE34	Software Verification	6	A1N	1	E

TDDE41	Software Architectures	6	A1N	1	E

Semester 3 Autumn 2027

Preliminary courses
Course code	Course name	Credits	Level	Timetable module	ECV
Period 1
TDDE63	Advanced Project Course: Information Security	6*	A1F	4	C
*The course is divided into several semesters and/or periods
TSIT03	Cryptology	6	A1N	2	C

TSIT14	Digital Forensics and Incident Response	6	A1F	3	C

Period 2
TDDC90	Software Security	6	A1N	1	C

TDDD89	Scientific Method	6	A1F	3	C

TDDE63	Advanced Project Course: Information Security	6*	A1F	4	C
*The course is divided into several semesters and/or periods

Course syllabus

A syllabus must be established for each course. The syllabus specifies the aim and contents of the course, and the prior knowledge that a student must have in order to be able to benefit from the course.

Timetabling

Program courses are timetabled after a decision has been made for this course concerning its assignment to a timetable module. Single subject courses can be timetabled at other times.

Interruption in and deregistration from a course

The LiU decision, Guidelines concerning confirmation of participation in education, Dnr LiU-2020-02256 (https://styrdokument.liu.se/Regelsamling/VisaBeslut/764582), states that interruptions in study are to be recorded in Ladok. Thus, all students who do not participate in a course for which they have registered are therefore obliged to report the interruption so that this can be noted in Ladok. Deregistration from or interrupting a course is carried out using a Web-based form.

Cancelled courses and changes to the course syllabus

Courses with few participants (fewer than 10) may be cancelled or organised in a manner that differs from that stated in the course syllabus. The Dean is to deliberate and decide whether a course is to be cancelled or changed from the course syllabus. For single subject courses, the cancellation must be done before students are admitted to the course (in accordance with LiUs regulation Dnr LiU-2022-01200, https://styrdokument.liu.se/Regelsamling/VisaBeslut/622645).

Guidelines relating to examinations and examiners

For details, see Guidelines for education and examination for first-cycle and second-cycle education at Linköping University, Dnr LiU-2023-00379 (http://styrdokument.liu.se/Regelsamling/VisaBeslut/917592).

An examiner must be employed as a teacher at LiU according to the LiU Regulations for Appointments, Dnr LiU-2022-04445 (https://styrdokument.liu.se/Regelsamling/VisaBeslut/622784). For courses in second-cycle, the following teachers can be appointed as examiner: Professor (including Adjunct and Visiting Professor), Associate Professor (including Adjunct), Senior Lecturer (including Adjunct and Visiting Senior Lecturer), Research Fellow, or Postdoc. For courses in first-cycle, Assistant Lecturer (including Adjunct and Visiting Assistant Lecturer) can also be appointed as examiner in addition to those listed for second-cycle courses. In exceptional cases, a Part-time Lecturer can also be appointed as an examiner at both first- and second cycle, see Delegation of authority for the Board of Faculty of Science and Engineering.

Forms of examination

Principles for examination

Written and oral examinations and digital and computer-based examinations are held at least three times a year: once immediately after the end of the course, once in August, and once (usually) in one of the re-examination periods. Examinations held at other times are to follow a decision of the faculty programme board.

Principles for examination scheduling for courses that follow the study periods:

courses given in VT1 are examined for the first time in March, with re-examination in June and August
courses given in VT2 are examined for the first time in May, with re-examination in August and January
courses given in HT1 are examined for the first time in October, with re-examination in January and August
courses given in HT2 are examined for the first time in January, with re-examination in March and in August.

The examination schedule is based on the structure of timetable modules, but there may be deviations from this, mainly in the case of courses that are studied and examined for several programmes and in lower grades (i.e. 1 and 2).

Examinations for courses that the faculty programme board has decided are to be held in alternate years are held three times during the school year in which the course is given according to the principles stated above.

Examinations for courses that are cancelled or rescheduled such that they are not given in one or several years are held three times during the year that immediately follows the course, with examination scheduling that corresponds to the scheduling that was in force before the course was cancelled or rescheduled.

When a course, or a written or oral examination (TEN, DIT, DAT, MUN), is given for the last time, the regular examination and two re-examinations will be offered. Thereafter, examinations are phased out by offering three examinations during the following academic year at the same times as the examinations in any substitute course. The exception is courses given in the period HT1, where the three examination occasions are January, March and August. If there is no substitute course, three examinations will be offered during re-examination periods during the following academic year. Other examination times are decided by the faculty programme board. In all cases above, the examination is also offered one more time during the academic year after the following, unless the faculty programme board decides otherwise. In total, 6 re-examinations are offered, of which 2 are regular re-examinations. In the examination registration system, the examinations given for the penultimate time and the last time are denoted.

If a course is given during several periods of the year (for programmes, or on different occasions for different programmes) the faculty programme board or boards determine together the scheduling and frequency of re-examination occasions.

For single subject courses, written and oral examinations can be held at other times.

Retakes of other forms of examination

Regulations concerning retakes of other forms of examination than written examinations and digital and computer-based examinations are given in the LiU guidelines for examinations and examiners, Dnr LiU-2023-00379 (http://styrdokument.liu.se/Regelsamling/VisaBeslut/917592).

In principle, other examination forms should be handled in the same way as a written examination when they are given for the last time. However, the times for the examination may vary based on the nature of the element compared to the times for the written examinations.

Course closure

For Decision on Routines for Administration of the Discontinuation of Educational Programs, Freestanding Courses and Courses in Programs, see Dnr LiU-2021-04782 (https://styrdokument.liu.se/Regelsamling/VisaBeslut/1156410). After a decision on closure and after the end of the discontinuation period, the students are referred to a replacement course (or similar) according to information in the course syllabus or programme syllabus. If a student has passed some part/parts of a closed program course but not all, and there is an at least partially replacing course, an assessment of crediting can be made. For questions about the crediting of course components, contact the Study councellors.

Registration for examination

In order to take an written, digital or computer-based examination, registration in advance is mandatory, see decision in the university’s rule book Dnr LiU-2020-04559 (https://styrdokument.liu.se/Regelsamling/VisaBeslut/622682). An unregistered student can thus not be offered a place. The registration is done by the student at the Student Portal or in the LiU-app during the registration period. The registration period opens 30 days before the date of the examination and closes 10 days before the date of the examination. Candidates are informed of the location of the examination by email, four days in advance.

Code of conduct for students during examinations

Details are given in a decision in the university’s rule book, Dnr LiU-2020-04559 (http://styrdokument.liu.se/Regelsamling/VisaBeslut/622682).

Retakes for higher grade

Students at the Faculty of Science and Engineering at LiU have the right to retake written examinations and digital and computer-based examinations in an attempt to achieve a higher grade. This is valid for all examination components with code “TEN”, “DIT” and "DAT". The same right may not be exercised for other examination components, unless otherwise specified in the course syllabus.

A retake is not possible on courses that are included in an issued degree diploma.

Grades

The grades that are preferably to be used are Fail (U), Pass (3), Pass not without distinction (4) and Pass with distinction (5).

Grades U, 3, 4, 5 are to be awarded for courses that have written or digital examinations.
Grades Fail (U) and Pass (G) may be awarded for courses with a large degree of practical components such as laboratory work, project work and group work.
Grades Fail (U) and Pass (G) are to be used for degree projects and other independent work.

Examination components

The following examination components and associated module codes are used at the Faculty of Science and Engineering:

Grades U, 3, 4, 5 are to be awarded for written examinations (TEN) and digital examinations (DIT).
Examination components for which the grades Fail (U) and Pass (G) may be awarded are laboratory work (LAB), project work (PRA), preparatory written examination (KTR), digital preparatory written examination (DIK), oral examination (MUN), computer-based examination in a computer lab (DAT), digital preparatory written examination in a computer lab (DAK), home assignment (HEM), and assignment (UPG).
Students receive grades either Fail (U) or Pass (G) for other examination components in which the examination criteria are satisfied principally through active attendance such as tutorial group (BAS) or examination item (MOM).
Grades Fail (U) and Pass (G) are to be used for the examination components Opposition (OPPO) and Attendance at thesis presentation (AUSK) (i.e. part of the degree project).

In general, the following applies:

Mandatory course components must be scored and given a module code.
Examination components that are not scored, cannot be mandatory. Hence, it is voluntary to participate in these examinations, and the voluntariness must be clearly stated. Additionally, if there are any associated conditions to the examination component, these must be clearly stated as well.
For courses with more than one examination component with grades U,3,4,5, it shall be clearly stated how the final grade is weighted.

For mandatory components, the following applies (in accordance with the LiU Guidelines for education and examination for first-cycle and second-cycle education at Linköping University, Dnr LiU-2023-00379 http://styrdokument.liu.se/Regelsamling/VisaBeslut/917592):

If special circumstances prevail, and if it is possible with consideration of the nature of the compulsory component, the examiner may decide to replace the compulsory component with another equivalent component.

For possibilities to alternative forms of examinations, the following applies (in accordance with the LiU Guidelines for education and examination for first-cycle and second-cycle education at Linköping University, Dnr LiU-2023-00379 http://styrdokument.liu.se/Regelsamling/VisaBeslut/917592):

If the LiU coordinator for students with disabilities has granted a student the right to an adapted examination for a written examination in an examination hall, the student has the right to it.
If the coordinator has recommended for the student an adapted examination or alternative form of examination, the examiner may grant this if the examiner assesses that it is possible, based on consideration of the course objectives.
An examiner may also decide that an adapted examination or alternative form of examination if the examiner assessed that special circumstances prevail, and the examiner assesses that it is possible while maintaing the objectives of the course.

Reporting of examination results

The examination results for a student are reported at the relevant department.

Plagiarism

For examinations that involve the writing of reports, in cases in which it can be assumed that the student has had access to other sources (such as during project work, writing essays, etc.), the material submitted must be prepared in accordance with principles for acceptable practice when referring to sources when the text, images, ideas, data, etc. of other people are used. This is done by using references or quotations for which the source is specified. It is also to be made clear whether the author has reused his or her own text, images, ideas, data, etc. from previous examinations, such as degree projects, project reports, etc. (this is sometimes known as “self-plagiarism”).

A failure to specify such sources may be regarded as attempted deception during examination.

Attempts to cheat

In the event of a suspected attempt by a student to cheat during an examination, or when study performance is to be assessed as specified in Chapter 10 of the Higher Education Ordinance, the examiner is to report this to the disciplinary board of the university. Possible consequences for the student are suspension from study and a formal warning. More information is available at Cheating, deception and plagiarism.

Linköping University has also produced a guide for teachers and students' use of generative AI in education (Dnr LiU-2023-02660). As a student, you are always expected to gain knowledge of what applies to each course (including the degree project). In general, clarity to where and how generative AI has been used is important.

Regulations (apply to LiU in its entirety)

The university is a government agency whose operations are regulated by legislation and ordinances, which include the Higher Education Act and the Higher Education Ordinance. In addition to legislation and ordinances, operations are subject to several policy documents. The Linköping University rule book collects currently valid decisions of a regulatory nature taken by the university board, the vice-chancellor and faculty/department boards.

LiU’s rule book for education at first-cycle and second-cycle levels is available at https://styrdokument.liu.se/Regelsamling/Innehall.

Student rights and obligations (login required)
Linköping University common rules and regulations (in Swedish)