Information Security Technology
Course Details

KTO KARATAY UNIVERSITY
Trade and Industry Vocational School
Programme of Information Security Technology
Course Details
Trade and Industry Vocational School
Programme of Information Security Technology
Course Details

| Course Code | Course Name | Year | Period | Semester | T+A+L | Credit | ECTS |
|---|---|---|---|---|---|---|---|
| 08140105 | Blockchain Security | 2025 | Spring | 4 | 2+2+0 | 6 | 6 |
| Course Type | Elective |
| Course Cycle | Associate (Short Cycle) (TQF-HE: Level 5 / QF-EHEA: Short Cycle / EQF-LLL: Level 5) |
| Course Language | Turkish |
| Methods and Techniques | - |
| Mode of Delivery | Face to Face |
| Prerequisites | - |
| Coordinator | - |
| Instructor(s) | Lect. Merve AKIN |
| Instructor Assistant(s) | - |
Course Instructor(s)
| Name and Surname | Room | E-Mail Address | Internal | Meeting Hours |
|---|---|---|---|---|
| Lect. Merve AKIN | C-129 | [email protected] | 7869 | Wednesday 14:00-16:00 |
Course Content
Core concepts and historical evolution of blockchain technology; cryptographic hash functions (SHA-256) and asymmetric cryptography (ECC, digital signatures); wallet security and private key management; consensus mechanisms (PoW, PoS) and related cyber threats (51% and Sybil attacks); P2P distributed network architecture, Eclipse, and routing attacks; smart contract architecture, EVM, and introduction to Solidity programming language; smart contract vulnerabilities (Reentrancy, integer overflows, access control flaws); utilization of source code analysis and security auditing tools; Web3 and DApp interaction layer security; private and permissioned blockchain architectures (Hyperledger Fabric, Corda); privacy-preserving technologies such as Zero-Knowledge Proofs (ZKP); legal/regulatory compliance (GDPR/KVKK) in the blockchain ecosystem and cyber hack case studies.
Objectives of the Course
The objective of this course is to provide students with a comprehensive understanding of the core architecture, distributed network structures, and cryptographic foundations of blockchain technology. The course aims to equip students with the skills to analyze common cyber security vulnerabilities within smart contracts and decentralized applications (DApps), as well as the attack methodologies utilized by threat actors. Additionally, the course focuses on the hands-on deployment of source code analysis and security auditing tools, alongside the evaluation of privacy-preserving technologies and legal/ethical regulations (such as GDPR/KVKK) within the blockchain ecosystem.
Contribution of the Course to Field Teaching
| Basic Vocational Courses | X |
| Specialization / Field Courses | X |
| Support Courses | |
| Transferable Skills Courses | |
| Humanities, Communication and Management Skills Courses |
Relationships between Course Learning Outcomes and Program Outcomes
| Relationship Levels | ||||
| Lowest | Low | Medium | High | Highest |
| 1 | 2 | 3 | 4 | 5 |
| # | Program Learning Outcomes | Level |
|---|---|---|
| P1 | He/she has basic, current and practical knowledge about his/her profession. | 4 |
| P3 | Follows current developments and practices for his/her profession and uses them effectively. | 4 |
| P9 | It has social, scientific, cultural and ethical values in the stages of collecting data related to its field, its application and the announcement of its results. | 3 |
| P11 | Explains and applies data security and encryption methods. | 5 |
| P12 | Explains and applies techniques for network and internet security and protection against cyber threats. | 4 |
| P13 | Identifies and fixes security vulnerabilities in computer and software systems. | 5 |
Course Learning Outcomes
| Upon the successful completion of this course, students will be able to: | |||
|---|---|---|---|
| No | Learning Outcomes | Outcome Relationship | Measurement Method ** |
| O1 | Defines the fundamental concepts of information security. | P.1.1 | 1 |
| O2 | Defines the fundamental principles and purpose of data security. | P.11.1 | 1 |
| O3 | Explains the working principles of encryption algorithms. | P.11.2 | 1 |
| O4 | Comprehends the critical importance of encryption key management and protection in data security. | P.11.5 | 1 |
| O5 | Has knowledge about current cyber threats. | P.3.4 | 1 |
| O6 | Defines the fundamental concepts of network and internet security and explains their functions. | P.12.1 | 1 |
| O7 | Distinguishes current and common types of cyber threats and explains how these threats harm systems. | P.12.2 | 1 |
| O8 | Explains common security vulnerabilities in software and systems, and the causes of these vulnerabilities. | P.13.1 | 1 |
| O9 | Can use basic analysis and scanning tools employed to find security vulnerabilities. | P.13.2 | 1 |
| O10 | Complies with legal and ethical responsibilities regarding data privacy, data security, and intellectual property rights during professional activities. | P.9.6 | 1 |
| ** Written Exam: 1, Oral Exam: 2, Homework: 3, Lab./Exam: 4, Seminar/Presentation: 5, Term Paper: 6, Application: 7 | |||
Weekly Detailed Course Contents
| Week | Topics |
|---|---|
| 1 | Introduction to Blockchain Technology and Security |
| 2 | Blockchain Cryptography and Key Management |
| 3 | Consensus Algorithms and Security Mechanisms |
| 4 | Network Layer Vulnerabilities and Threats |
| 5 | Introduction to Smart Contracts |
| 6 | Smart Contract Vulnerabilities |
| 7 | Quiz 1 |
| 9 | Smart Contract Security Auditing and Tools |
| 10 | Web3 and DApp (Decentralized Application) Security |
| 11 | Private and Permissioned Blockchains |
| 12 | Privacy Technologies in Blockchain |
| 13 | Regulations, Compliance, and KVKK/GDPR |
| 14 | Case Studies and End-of-Term Review |
| 15 | Quiz 2 |
Textbook or Material
| Resources | Mastering Blockchain: Unlocking the Power of Cryptocurrencies, Smart Contracts, and Decentralized Applications |
| Blockchain Security and Privacy |
Evaluation Method and Passing Criteria
| In-Term Studies | Quantity | Percentage |
|---|---|---|
| Attendance | - | - |
| Laboratory | - | - |
| Practice | - | - |
| Field Study | - | - |
| Course Specific Internship (If Any) | - | - |
| Homework | - | - |
| Presentation | - | - |
| Projects | - | - |
| Seminar | - | - |
| Quiz | 2 | 20 (%) |
| Listening | - | - |
| Midterms | 1 | 35 (%) |
| Final Exam | 1 | 45 (%) |
| Total | 100 (%) | |
ECTS / Working Load Table
| Quantity | Duration | Total Work Load | |
|---|---|---|---|
| Course Week Number and Time | 4 | 14 | 56 |
| Out-of-Class Study Time (Pre-study, Library, Reinforcement) | 2 | 9 | 18 |
| Midterms | 1 | 16 | 16 |
| Quiz | 2 | 30 | 60 |
| Homework | 0 | 0 | 0 |
| Practice | 0 | 0 | 0 |
| Laboratory | 0 | 0 | 0 |
| Project | 0 | 0 | 0 |
| Workshop | 0 | 0 | 0 |
| Presentation/Seminar Preparation | 0 | 0 | 0 |
| Fieldwork | 0 | 0 | 0 |
| Final Exam | 1 | 30 | 30 |
| Other | 0 | 0 | 0 |
| Total Work Load: | 180 | ||
| Total Work Load / 30 | 6 | ||
| Course ECTS Credits: | 6 | ||
Course - Learning Outcomes Matrix
| Relationship Levels | ||||
| Lowest | Low | Medium | High | Highest |
| 1 | 2 | 3 | 4 | 5 |
| # | Learning Outcomes | P1 | P3 | P9 | P11 | P12 | P13 |
|---|---|---|---|---|---|---|---|
| O1 | Defines the fundamental concepts of information security. | 4 | - | - | 4 | - | - |
| O2 | Has knowledge about current cyber threats. | 4 | 4 | - | - | 4 | - |
| O3 | Complies with legal and ethical responsibilities regarding data privacy, data security, and intellectual property rights during professional activities. | - | - | 3 | 4 | - | - |
| O4 | Defines the fundamental principles and purpose of data security. | 4 | - | - | 5 | - | - |
| O5 | Explains the working principles of encryption algorithms. | - | - | - | 5 | - | - |
| O6 | Comprehends the critical importance of encryption key management and protection in data security. | - | - | - | 5 | - | - |
| O7 | Defines the fundamental concepts of network and internet security and explains their functions. | - | - | - | - | 4 | - |
| O8 | Distinguishes current and common types of cyber threats and explains how these threats harm systems. | - | 4 | - | - | 4 | 4 |
| O9 | Explains common security vulnerabilities in software and systems, and the causes of these vulnerabilities. | - | - | - | - | - | 5 |
| O10 | Can use basic analysis and scanning tools employed to find security vulnerabilities. | 4 | 4 | - | - | - | 5 |
