ENKÄTER

Utvärderingar

Aktuella utvärderingar
Administrera
Hjälpsida

Visa resultat

Här kan se resultatet från utvärderingen och exportera statistiken till ett annat program. Det går också att göra en enkel filtrering genom att klicka på svarsalternativen och kommentarerna eller en avancerad filtrering genom att använda knappen längst ned.

Language-based security, Lp4 Vt09, TDA601/DIT101

Status: Avslutad
Öppen för svar: 2009-05-18 - 2009-06-03
Antal svar: 22
Procent av deltagarna som svarat: 8%
Kontaktperson: Åsa Lundgren»

Your own effort

1. How many hours per week did you spend on this course?

We mean total time, that is, it comprises the time you spent in class and the time you spent on your own work. Try to estimate the average time over the entire study period.

22 svarande

At most 15 hours/week» 5 22%

Around 20 hours/week» 8 36%

Around 25 hours/week» 5 22%

Around 30 hours/week» 2 9%

At least 35 hours/week» 2 9%

Genomsnitt: 2.45

- The time is a direct result of the amount of interest the course generated.» (Around 20 hours/week)
- Good tempo» (Around 25 hours/week)
- I spent a lot of time practicing the material live on wargame web pages etc. to get a deeper understanding of how severe different vulnerabilities really are.» (At least 35 hours/week)

2. How large part of the teaching offered did you attend?

22 svarande

0%» 0 0%

25%» 2 9%

50%» 2 9%

75%» 11 50%

100%» 7 31%

Genomsnitt: 4.04

- Excelent contetnt but it was hard to concentrate, just saying» (100%)
- Andrei"s lectures are always informative. So, I made it a point to attend all of them.» (100%)

Goals and goal fulfilment

The course syllabus states the course goals in terms of learning outcomes, i.e., knowledge, skills and attitudes to be acquired by the student during the course.

3. How understandable are the course goals?

22 svarande

I have not seen/read the goals» 2 9%

The goals are difficult to understand» 0 0%

The goals give some guidance, but could be clearer» 8 36%

The goals clearly describe what I am supposed to learn» 12 54%

Genomsnitt: 3.36

- Was never shur if ther was going to be a writen exame» (The goals give some guidance, but could be clearer)
- The topic of the project should be more specific.» (The goals give some guidance, but could be clearer)
- But sometimes it is unclear what exactly is in the scope of the course and what is not.» (The goals clearly describe what I am supposed to learn)

4. Are the goals reasonable considering your background and the number of credits?

Answer this this question and the succeeding one, only if you do know the course goals.

21 svarande

No, the goals are set too low» 1 4%

Yes, the goals seem reasonable» 19 90%

No, the goals are set too high» 1 4%

Genomsnitt: 2

- I would appreciate a more intense course since the topic really hooked my interest.» (Yes, the goals seem reasonable)

5. Did the examination assess whether you have reached the goals?

20 svarande

No, not at all» 1 5%

To some extent» 5 25%

Yes, definitely» 11 55%

I don"t know/have not been examined yet» 3 15%

Genomsnitt: 2.8

- In my opinion the buffer overflow lab was the only challenging. So since no written exam is given one might pass the course with only wage knowledge in the other topics.» (No, not at all)
- As a student, working on a group project is a good thing. However, I would probably have focused more on lectures if there was some final examination. A short oral examination would be an idea, giving some extra points for a better grade for instance.» (To some extent)
- Ther for was no exam this course. However, the project work and the labs were quite testing.» (Yes, definitely)
- I really enjoyed the assignments. They where good to get a deeper understanding.» (Yes, definitely)

Teaching and course administration

6. To what extent has the teaching been of help for your learning?

22 svarande

Small extent» 2 9%

Some extent» 3 13%

Large extent» 14 63%

Great extent» 3 13%

Genomsnitt: 2.81

7. To what extent has the course literature and other material been of help for your learning?

22 svarande

Small extent» 2 9%

Some extent» 5 22%

Large extent» 11 50%

Great extent» 4 18%

Genomsnitt: 2.77

- The labs plus the material recomende on the lecture» (Great extent)
- simply the best» (Great extent)
- The slides and primarily the papers where good but I got most information from tutorials on wargame web pages and security web pages.» (Great extent)

8. How were the lectures?

22 svarande

Poor» 0 0%

Fair» 1 4%

Adequate» 5 22%

Good» 11 50%

Excellent» 5 22%

Genomsnitt: 3.9

9. What"s the best about the lecture part of the course?

- Excelent inforamtion value»
- Website and resources are really good»
- SQL Injection Attacks»
- new and hot topics and adequate depth»
- Lectures were clear and progressive.»
- illustrative examples.»
- its up to date»
- The interest the lecture generates.»
- teacher»
- Good discussion. »

10. What can be improved about the lecture part of the course?

- make itne more exciting whit live demonstarions»
- Made slides a bit clearer»
- I think, nothing»
- introduce more topics if possible»
- there can be separate lectures on stack inspection, TAL and PCC, I mean a bit more advanced.»
- some lectures were quite compressed, I would like to go deeper with lower speed»
- Perhaps, closing the window between the subject and the relevant labs would be good.»
- the slides sucks. if you miss a lecture there is no way you can look at the slides and catch up. »
- Possibly hand-outs during the lecture. In lecture 2, the Compositional rules was very confusing.»

11. How was the Eraser lab?

22 svarande

Poor» 0 0%

Fair» 2 9%

Adquate» 6 27%

Good» 10 45%

Excellent» 4 18%

Genomsnitt: 3.72

- Realy just showd that you shuldn"t use inferior data structure, dinte feel that it would be a comon problem.» (Adquate)
- Alternative implementation languages should be allowed» (Adquate)
- Kinda a hard to really know what the task was. What was demanded of me. But it gave god understanding in data races.» (Adquate)
- The description was a little tricky but the actual lab was not that hard.» (Adquate)

12. How was the r00tshell lab?

22 svarande

Poor» 0 0%

Fair» 1 4%

Adequate» 4 18%

Good» 9 40%

Excellent» 8 36%

Genomsnitt: 4.09

- Please include more details / steps in the lab description. It was not obvious.» (Adequate)
- its good to see how attack works but lab works on a very old linux distribution which makes it less interesting. » (Adequate)
- This wass a fun lab, got to se that choosing the wring function can be dissaterous in c/c++» (Good)
- Kinda a hard to reaaly understand all of it (assembler among others). But it gave some deeper understanding.» (Good)
- A great challenge, fantastic!» (Excellent)

13. How was the WebAppSec lab?

22 svarande

Poor» 0 0%

Fair» 0 0%

Adequate» 2 9%

Good» 12 54%

Excellent» 8 36%

Genomsnitt: 4.27

- The XSS part was too easy, it took us less than 5min to complete.» (Adequate)
- Make it harder or longer next year.» (Good)
- could be little more advanced» (Good)
- A real fun lab that was easy to se the relevance of» (Excellent)
- Very funny and gave a deep understanding especially the SQL part.» (Excellent)

14. What"s the best about the lab part of the course?

- This is what makes us remember the inforamtion»
- Keeping both attack but also protection part.»
- WebAppSec lab»
- the lab is very related to lecture topics»
- The last lab. Also, the teaching assistant was always here to help.»
- every lab has a very nice paper that explains whatever is required to do the lab.»
- extra practical, reports not very theoretical»
- In that, it checks how much you know the subject»
- knowing the pittfall of web security»
- about the best topics like buffer overflow»
- The deeper understanding thay gave.»
- Many topics.»
- gives "hands on" experience. Shows the vulnerable points...»

15. What can be improved about the lab part of the course?

- More relevance to reality, way is it a problem?»
- /»
- Maybe you can provide some additional, more advanced but not compulsary part to each lab.»
- give more freedom to student"s ideas»
- As stated above, description of lab 2.»
- rOOtshell lab could be improved to include heap based or a bit advanced buffer overrun attacks.»
- more chances to get support from the assistant»
- Nothing much!»
- more advanced and larger»
- Lab Description can be made cleared to be understandable»
- Some more speifics about the earaser lab telling more what to do. So you got some where to start the work.»
- Make the XSS part harder or add something on database interference, anti-debugging or other.»

16. How was the the project part of the course?

22 svarande

Poor» 0 0%

Fair» 0 0%

Adequate» 2 9%

Good» 14 63%

Excellent» 6 27%

Genomsnitt: 4.18

- It is good that we could select our topic. We did not cover it as we intended to, but we were pretty happy of our work.» (Excellent)
- the labs were excellent but didn t leave much room to do the project in parallel. Might be a good idea to make the third lab elective» (Excellent)
- It really encouraged us to work harder when it was a topic we where interested in.» (Excellent)

17. What"s the best about the project part of the course?

- You realy get to study a part of the cours that intrests you»
- Learn deeper about one LBS mechanism»
- It is a good extension of the labs. The attacks tests were the most interesting.»
- the process of group work»
- Discovering interesting information by ourselves, trying things, and synthesize everything in the report.»
- the freedom to choose subject, that it can be very practical»
- In that we had to think "outside the box" to make group different from the others.»
- give the freedom to get knowledge in the area that the students are intressted in»
- plenty of options are available especially reviewing research papers will let u learn a lot»
- That I couls choose an area of my own interesst.»
- The presentations.»

18. What can be improved about the project part of the course?

- More guidance»
- It was a little unclear what was expected from the projects to get a certain grade. Better supervision and guidance, because a lot of these projects are quite advanced (more than the lectures and labs at least) and the students not experienced enough.»
- give more freedom on the number of group member»
- Adding a "mid-quarter" status presentation or talk so we are forced to start it sooner.»
- there should be some well defined project and every one should work on it like labs. since we have to waste time to select one proposal that may turn out to be unrealistic.»
- more groups could present, different topics should be encouraged»
- Nothing much»
- clearer description of what is required and what needs to be done. »
- more practical options can be added like voip security mpls security etc»

19. How was the balance between the lab and the project parts of the course?

- the project take much more tim»
- Good, everything is well balance and feasible with no stress if the group of student is well organized.»
- Adapted, labs were a good introduction to our work during the project»
- good»
- Honestly the project work was concentrated at the end of the quarter, whereas the labs were spread throughout the period.»
- good.»
- see above»
- Good.»
- little more weight on the labs»
- Very good!»
- good»
- ok»

20. Was there need for tighter supervision of projects?

22 svarande

No, I got all information I needed» 11 50%

Yes, scheduled office hours are needed» 7 31%

Ys, scheduled supervisions sessions are needed» 4 18%

Genomsnitt: 1.68

- Got all information from searching databases, library and security web pages.» (No, I got all information I needed)
- Were there any supervision of projects? I thought the supervision was for Labs only.» (Ys, scheduled supervisions sessions are needed)

21. How well did the course administration, web page, handouts etc work?

22 svarande

Very badly» 0 0%

Rather badly» 1 4%

Rather well» 10 45%

Very well» 11 50%

Genomsnitt: 3.45

- lab supervision should be moved a week earlier than the deadline. » (Rather well)
- Allways found what I needed» (Very well)
- It contains all the information we need and it is clear. Polar bear gives extra point. ,)» (Very well)
- I found it really efficient ( in contrast to the "ping-pong"system that is used by other courses which is ridiculously tiring )» (Very well)

Study climate

22. How were the opportunities for asking questions and getting help?

22 svarande

Very poor» 0 0%

Rather poor» 0 0%

Rather good» 6 27%

Very good» 15 68%

I did not seek help» 1 4%

Genomsnitt: 3.77

- Andrei and Jonas are available at most of the time which is really perfect.» (Very good)
- Fast answers when mailing» (Very good)

23. How well has cooperation between you and your fellow students worked?

22 svarande

Very poorly» 0 0%

Rather poorly» 1 4%

Rather well» 6 27%

Very well» 14 63%

I did not seek cooperation» 1 4%

Genomsnitt: 3.68

- As I already asked in other courses: For next year, please consider doing random groups so students mix more than we do now...» (Very well)

24. How was the course workload?

22 svarande

Too low» 1 4%

Low» 0 0%

Adequate» 19 86%

High» 2 9%

Too high» 0 0%

Genomsnitt: 3

- Too low, which is why I spent so much time looking at additional challenges and reading on wargame web pages and so on.» (Too low)
- project needed some time and work» (High)

25. How was the total workload this study period?

22 svarande

Too low» 0 0%

Low» 1 4%

Adequate» 12 54%

High» 8 36%

Too high» 1 4%

Genomsnitt: 3.4

- 3 courses though» (High)

Summarizing questions

26. What is your general impression of the course?

22 svarande

Poor» 0 0%

Fair» 0 0%

Adequate» 2 9%

Good» 10 45%

Excellent» 10 45%

Genomsnitt: 4.36

27. What should definitely be preserved to next year?

- Labs / project and lectures way Website and teachers should really be kept for this course.»
- The labs, they"re great and I"ve learned alot from them.»
- web application security»
- The project, the clarity of lectures.»
- everything»
- the flexibility in the project»
- Everything.»
- labs»
- Lab part is good.»
- The third lab»
- r00tshell»

28. What should definitely be changed to next year?

- /»
- nothing special»
- supervision slot should be moved 1 week prior to deadline.»
- maybe more flexible deadlines ( it would be nice if there was also the possibility to submit every lab in the end of the course)»
- Mix up the labs a bit.»
- project description»
- Contents of lecture, more about attacks and prevention instead of making programs secure.»
- I felt some topics where left out, like database interference and anti-debugging.»

29. Additional comments

- /»
- it"s good course, thank you.»
- bravo»
- I would appreciate if many lectures was in the beginning of the study period, so we get more time with the project at the end. Subject of report was also difficult to choose so early.»
- Andrei, you ROCK! =)»
- This course looks more for software engineer, but network engineers are also studying this course, so there should be some balance»

Kursutvärderingssystem från