System Security and Forensics
- Garant předmětu:
- Simona Fornůsek, Marián Svetlík
- Simona Fornůsek, Marián Svetlík
- Department of Information Security
Students will get familiar with aspects of system security (principles of end station security, principles of security policies, security models, authentication concepts). Furthermore, students will get familiar with forensic analysis as a tool for investigating security incidents (techniques used by malicious software/attackers and forensic analysis techniques and the importance of operating system/operating system artifacts or file system for attack analysis and detection).
Completing and submitting homework assignments - with combined total of up to 30 points. In the discussion sessions, students must receive at least 15 points for the assessment. The final exam is a written exam with a maximum of 70 points.
Final grade is calculated as the sum of the points from tutorials and the exam.
- Syllabus of lectures:
1. Security of information systems, security policies.
2. Security models and modeling.
3. Authentication: Management of encryption keys and certificates, secure local and remote authentication.
4. Authentication: Authentication protocols, Kerberos.
5. Security of distributed services and cloud.
6. Forensics: Introduction.
7. Forensics: Forensic imaging.
8. Forensics: File systems analysis, Data Carving.
9. Forensics: Volatile memory.
10. Forensics: Information and residual data, activities of OS, applications and users.
11. Security of terminal stations.
12. Cyber attacks, methods and classification.
13. Security of Distributed Services - Internet of Things (IoT)
- Syllabus of tutorials:
1. Malware Analysis - basics
2. File System Artifacts
3. Memory Analysis
4. Windows Registry
5. Residual user data & artefacts in Windows OS
- Study Objective:
- Study materials:
1. Carvey, H. : Investigating Windows Systems. Academic Press, 2018. ISBN 978-0128114155.
2. Vacca, J. R. : Network and System Security (2nd Edition). Syngress, 2013. ISBN 978-0124166899.
3. Kim, D. - Solomon, M. : Fundamentals of Information Systems Security. Jones & Bartlett Learning, 2012. ISBN 987-0-7637-9025-7.
4. Stallings, W. : Cryptography and Network Security: Principles and Practice (5th Edition). Prentice Hall, 2010. ISBN 0-13-869017-0.
5. Anderson, R. : Security Engineering: A Guide to Building Dependable Distributed Systems. Wiley, 2008. ISBN 0470068523.
- Further information:
- Time-table for winter semester 2023/2024:
Thákurova 7 (budova FSv)
NBFIT síťová učebna
- Time-table for summer semester 2023/2024:
- Time-table is not available yet
- The course is a part of the following study plans:
- Master specialization Computer Science, in Czech, 2018-2019 (elective course)
- Master specialization Computer Security, in Czech, 2020 (PS)
- Master specialization Design and Programming of Embedded Systems, in Czech, 2020 (elective course)
- Master specialization Computer Systems and Networks, in Czech, 202 (elective course)
- Master specialization Management Informatics, in Czech, 2020 (elective course)
- Master specialization Software Engineering, in Czech, 2020 (elective course)
- Master specialization System Programming, in Czech, version from 2020 (elective course)
- Master specialization Web Engineering, in Czech, 2020 (elective course)
- Master specialization Knowledge Engineering, in Czech, 2020 (elective course)
- Master specialization Computer Science, in Czech, 2020 (elective course)
- Mgr. programme, for the phase of study without specialisation, ver. for 2020 and higher (VO)
- Master Specialization Digital Business Engineering, 2023 (VO)
- Master specialization System Programming, in Czech, version from 2023 (elective course)
- Master specialization Computer Science, in Czech, 2023 (elective course)