- Jiří Buček (guarantor), Róbert Lórencz (guarantor)
- Jiří Buček (guarantor), Róbert Lórencz (guarantor), Filip Kodýtek
- Department of Information Security
The course deals with hardware resources used to ensure security of computer systems including embedded ones. The students become familiar with the operating principles of cryptographic modules, the security features of modern processors, and storage media protection through encryption. They will gain knowledge about vulnerabilities of HW resources, including side-channel attacks and tampering with hardware during manufacture. Students will have an overview of contact and contactless smart card technology including applications and related topics for multi-factor authentication (biometrics). Students will understand the problems of effective implementation of ciphers.
Fundamentals of computer security and cryptography, programming
- Syllabus of lectures:
1. Hardware cryptographic modules, key storage.
2. Security features of processor architectures.
3. Encryption of storage media.
4. Side-channel attacks (power analysis, timing attack, electromagnetic analysis).
5. Smart cards (applications: digital signature, authentication).
6. Contactless cards, RFID, NFC.
7. Trusted HW design, forgery.
8. Hardware Trojans.
9. Physically unclonable functions (PUF) and true random number generators (TRNG).
11. Effective implementation of ciphers.
12. Security of embedded systems (e.g., automobiles).
- Syllabus of tutorials:
1. Introduction to Java Card programming
2. Loading applets into cards, PIN excercise
3. Hashing operations, communication with PC
4. Digital signature on smart card
5. Basics of differential power analysis
6. Polynomial arithmetic (seminar)
7. Simple AES-128 implementation
8. Optimizing AES for 32bit platforms
9. AES acceleration using dedicated instructions (AES-NI)
10. Testing AES on an ARM microcontroller
11. Finishing AES tasks
12. PUF circuit response analysis
- Study Objective:
Students will understand hardware tools to ensure the security of computer systems including smart card technologies and efficient implementation of ciphers. They also get an overview of vulnerabilities of HW resources.
- Study materials:
 Mangard, S. - Oswald, E. - Popp, T.: Power Analysis Attacks: Revealing the Secrets of Smart Cards (Advances in Information Security), Springer-Verlag New York, 2007, 0387308571,
 Rankl, W. - Effing, W.: Smart Card Handbook, 4th Edition, John Wiley &; Sons, Inc., New York, 1997, 978-0-470-74367-6,
 Tuyls, P. - Skoric, B. - Kevenaar, T.: Security with Noisy Data: Private Biometrics, Secure Key Storage and Anti-Counterfeiting, Springer-Verlag New York, 2007, 1846289831,
- Further information:
- Time-table for winter semester 2022/2023:
Mon Tue Wed ThuroomT9:111
Thákurova 7 (FSv-budova A)
Thákurova 7 (FSv-budova A)
- Time-table for summer semester 2022/2023:
- Time-table is not available yet
- The course is a part of the following study plans:
- Bachelor program Informatics, unspecified branch, in Czech, 2015-2020 (VO)
- Bachelor branch Security and Information Technology, in Czech, 2015-2020 (compulsory course of the specialization, elective course)
- Bachelor branch Computer Science, in Czech, 2015-2020 (elective course)
- Bachelor branch Computer Engineering, in Czech, 2015-2020 (elective course)
- Bachelor branch Information Systems and Management, in Czech, 2015-2020 (elective course)
- Bachelor branch Knowledge Engineering, in Czech, 2015-2017 (elective course)
- Bachelor branch Web and Software Engineering, spec. Software Engineering, in Czech, 2015-2020 (elective course)
- Bachelor branch Web and Software Engineering, spec. Web Engineering, in Czech, 2015-2020 (elective course)
- Bachelor branch Web and Software Engineering, spec. Computer Graphics, in Czech, 2015-2020 (elective course)
- Bachelor branch Knowledge Engineering, in Czech, 2018-2020 (elective course)
- Bachelor branch Web and Software Engineering, spec. Computer Graphics, in Czech, Dubin (elective course)