System and Network Security
| Kód | Zakončení | Kredity | Rozsah | Jazyk výuky |
|---|---|---|---|---|
| BIE-SSB | Z,ZK | 5 | 2P+2C | anglicky |
- Garant předmětu:
- Jiří Dostál
- Přednášející:
- Jiří Dostál
- Cvičící:
- Jiří Dostál
- Předmět zajišťuje:
- katedra informační bezpečnosti
- Anotace:
-
The students will understand the public key infrastructure (PKI), its strengths and weaknesses, its vulnerabilities againstattacks. The students will also understand the analysis of network protocols from the perspectives of: authentication and authorisation,key exchange, and encryption. They get an overview of the security mechanisms of operating systems (OSs), of the ways virtualization canbe used to protect OSs, and of the security mechanisms for the OS memory. The students will learn basic methods of forensic analysisof storage media and networks. The students will also understand security of the networking infrastructure and its protocols andwill be able to design and implement a secured and survivable network. Students will also get an overview of securing data in clouds,database systems, and servers.
- Požadavky:
- Osnova přednášek:
-
1. 1.Weaknesses of the PKI and attacks on the PKI.
2. Analysis of the networks protocols (authentication, authorization, key exchange and network data flow encryption).
3. OS ? security levels, virtualization (as a OS security mechanism).
4. OS memory security.
5. Forensic analysis of storage media.
6. Communication infrastructure security.
7. Network protocols security.
8. Secure and survivable planning, design, and implementation of switched network infrastructure.
9. Secure and survivable planning, design, and implementation of a routed network infrastructure.
10. Securing data in a cloud. 1Database and web servers security.
11. Monitoring of vulnerabilities in an IT infrastructure and fast reactions upon them.
- Osnova cvičení:
- Cíle studia:
-
The students will understand the public key infrastructure (PKI), its strengths and weaknesses, its vulnerabilities againstattacks. The students will also understand the analysis of network protocols from the perspectives of: authentication and authorisation,key exchange, and encryption. They get an overview of the security mechanisms of operating systems (OSs), of the ways virtualization canbe used to protect OSs, and of the security mechanisms for the OS memory. The students will learn basic methods of forensic analysisof storage media and networks. The students will also understand security of the networking infrastructure and its protocols andwill be able to design and implement a secured and survivable network. Students will also get an overview of securing data in clouds,database systems, and servers.
- Studijní materiály:
-
[1] Xiao, Y. - Li, F.H. - Chen, H., eds.: Handbook of Security and Networks, World Scientific Publishing Company, 2011, 978-9814273039,
[2] Sammons, J.: The Basics of Digital Forensics, Elsevier, 2012, 978-1-59749-661-2,
[3] Harris, S.: CISSP All-in-One Exam Guide, 6th Edition, International Information Systems Security Certification Consortium, 2013, 978-0071781749,
[4] Odom, W.: CCNA Routing and Switching ICND2 200-101 Official Cert Guide, Cisco Press, 2013, 978-1-58714-373-1,
- Poznámka:
-
Information about the course and courseware are available at https://courses.fit.cvut.cz/BI-SSB/
Students who repeat their study and the subject BIE-ADS was recognized, could ask the vicedean to recognize an assessment of BIE-SSB.
- Další informace:
- https://courses.fit.cvut.cz/BI-SSB/
- Pro tento předmět se rozvrh nepřipravuje
- Předmět je součástí následujících studijních plánů:
-
- Bachelor branch Security and Information Technology, in English, 2015-2020 (povinný předmět oboru)
- Bachelor branch Web and Software Engineering, spec. Software Engineering, in English, 2015-2020 (volitelný předmět)
- Bachelor branch Computer Science, in English, 2015-2020 (volitelný předmět)
- Bachelor branch Computer Science, in English, 2015-2020 original version (volitelný předmět)
Předmět BIE-SSB může při kontrole studijních plánů nahradit předmět BIE-ADS