Security and Privacy: an Economic Approach (VIHIAV34)

This course is delivered in the Computer Science and Electrical Engineering BSc/MSc as an elective. The official syllabus is available on the faculty's web site. On this page, you will find the most recent administrative information related to the course, as well as the lecture slides, the homework description, and links to some recommended further readings. This site is continuously updated!


Teaching of the course Security and Privacy: An Economics Approach (VIHIAV34) will be continued using on-line methods from the week of March 23, 2020 as follows:

We will pre-record the lectures and make the recording available in video form. The slides and additional resources (papers) in PDF format will be available in the Moodle system of the department as before. In addition, there will be an URL pointing to the video of the lecture. The video will be made available via YouTube. Youtube access will require you to be online obviously.
At the regular scheduled time intervals of the lecture, we will hold an on-line consultation using MS Teams. Those who want to participate at this consultation should get familiar with the course material (see above) before the consultation, and use the consultation to ask questions. Questions can also be sent to the lecturers before the consultation by sending an e-mail to The lecturer will prepare for answering the received questions and begin the consultation with discussing those questions. Then he will respond to any further questions received during the consultation via the chat panel of the Teams meeting. The consultations will be held in the second 45 mins of the scheduled time interval of the course, i.e., 1.15pm-2pm every Wednesday. The first 45 mins can be used to study the parts of the video lecture you have not watched before: keep in mind that video lectures will vary in duration in the 50-90 minute range. It is NOT mandatory to participate in these consultations.

Mid-term test:
The test will be conducted on Moodle at the scheduled time (May 20). It will a mix of quiz and essay questions with time restrictions, and we will grade it manually. Naturally, to complete the test, you should not come to the university, but you will complete the test from home. More information on the test will be distributed in due time. It is clear that we will not be able to detect cheating perfectly (a set of technical measures will be in place of course), so I remind you that ethics in engineering is supremely important. Cheating is unfair to those who do not cheat and morally unacceptable; cheating should be avoided, even if it might be a Nash equilibrium :)

We will continue to use broadcast Neptun messages as an official form of communication with you, however we advise you to watch the VIHIAV34 Moodle and also this website. There will surely be glitches, we ask you to be patient and cooperative. We give our all to ensure that you keep receiving quality education.

CrySyS Team





Information security is as much an economic problem as it is technical. Even given flawless cryptographic protocols and the availability of perfectly secure software, misaligned economic incentives of different stakeholders in a system often result in a (very) sub-optimal security level. By guiding you through the jungle of asymmetric information, interdependent security, correlated risk and other concepts characteristic for system security, this elective course will enable you to make better decisions in risk management, security investment and policy design on a system level. Furthermore, the course touches upon the economic aspects of data privacy, an emerging area of interest for users and companies in the big data era.



During the semester

1 mid-term test at the end of the semester

Órák ideje és helye

Time and location of classes



  • Wednesday, 12:15-14:00, QBF10


Megbeszélés szerint, az előadóval előre egyeztetett időpontban.

Office hours

Please contact the lecturer to schedule an appointment.



Date Topic Lecturer
2020.02.12. Introduction Biczók G.
2020.02.19. Microeconomics/Information economics Biczók G.
2020.02.26. Game theory Biczók G.
2020.03.04. Risk management and security investments Biczók G.
2020.03.11. Interdependent security Biczók G.
2020.03.18. Information sharing Biczók G.
2020.03.25. Cyber-insurance Biczók G.
2020.04.01. Vulnerabilities Biczók G..
2020.04.08. Cyber-warfare Biczók G.
2020.04.15. Cancelled (Spring break)
2020.04.22. Privacy Ács G.
2020.04.29. Interdependent privacy 1. Biczók G.
2020.05.06. Interdependent privacy 2. Biczók G.
2020.05.13. Advanced topics seminar Pejó B.
2020.05.20. Mid-term test (room information TBA)

Korábbi évek

Previous Years