440-2320/01 – Fundamentals of the Security in Communications (ZBK)
Gurantor department | Department of Telecommunications | Credits | 4 |
Subject guarantor | Ing. Filip Řezáč, Ph.D. | Subject version guarantor | Ing. Filip Řezáč, Ph.D. |
Study level | undergraduate or graduate | Requirement | Compulsory |
Year | 3 | Semester | winter |
| | Study language | Czech |
Year of introduction | 2019/2020 | Year of cancellation | |
Intended for the faculties | FEI | Intended for study types | Bachelor |
Subject aims expressed by acquired skills and competences
The graduate will understand security risks and measures in communication technologies and be able to apply basic security countermeasures.
Learning outcomes are designed so that students are able to identify, apply and solve problems in the field of safety in communications and understand the basic cryptographic methods.
Teaching methods
Lectures
Tutorials
Experimental work in labs
Project work
Teaching by an expert (lecture or tutorial)
Summary
Course contents (annotation): The course provides an explanation of basic security mechanisms of communication in computer networks, solution and analysis of secure communication in modern computer systems, knowledge of basic cryptographic algorithms and application of applications for minimization of security risks. Students will gain practical skills and will be able to design and implement simple security solutions in ICT environments such as network monitoring, certificate usage and functionality, configuration and management of a simple VPN network, configuration of firewall and basic network trapping tools.
Compulsory literature:
VIEGA, J., MESSIER M., CHANDRA P. - Network Security with OpenSSL, 2002, 978-0596002701.
COLLIER,M.,ENDLER,D. - Hacking Exposed Unified Communications & VoIP Security Secrets & Solutions, Second Edition, 2013, 978-0071798761.
RASH, M.- Linux Firewalls: Attack Detection and Response with iptables, 2007, 978-1593271411.
Recommended literature:
Additional study materials
Way of continuous check of knowledge in the course of semester
Each student can receive up to 100 points during the semester, including:
• project solution 40 points,
• Realization of a essay 20 points,
• laboratory work, 2x13, 1x14 points,
E-learning
https://lms.vsb.cz/?lang=en
Other requirements
The course assigns to the student requirements in the form of basic knowledge of OS Linux and knowledge of common network protocols.
The course assigns to the student requirements in the form of basic knowledge of OS Linux and knowledge of common network protocols.
Prerequisities
Subject has no prerequisities.
Co-requisities
Subject has no co-requisities.
Subject syllabus:
1. Introduction to security, network security history, development and modern security trends.
2. Monitor, scan and analyze network traffic from a security point of view. Google hacking and traffic scans.
3. Key management and distribution, purpose of certificates, digital signature, one-way functions, types of ciphers.
4. Family of SSL / TLS security protocols, certificate and key generation tools, certification authority, certificate revocation.
5. Secure remote access management, remote access protocols, security mechanisms, secure file transfer.
6. Network and transport layer security, virtual private networks.
7. Communications security at local, national and international level, personal data protection - GDPR.
8. Security of mobile and radio networks, security of the internet concept of things.
9. Systems for autonomous monitoring in computer networks - deployment, rules, options, demilitarized zones, traffic monitoring.
10. Firewalls - distribution, functions, examples, configurations, options.
11. Systems for Penetration and Power Sieving Testing.
12. Multimedia Security - audio, image, IM monitoring, eavesdropping, steganography.
13. Honeypots and Honeynets - Description, Features and Usage, Configuration, Deployment Methods, information on the course of the test.
Exercises
Prerequisites and co-requisites for the course content, history in the security in communication.T1
Basics applications with the certificates. Security suffixes, certificate containers, digital signature.T3
Options and applications for secure connection to remote servers, secure data transfer with SCP, generation of SSH certificates, Putty, Samba protocol.T5
Wireless security, traffic simulation, promiscuity mode analysis (Assigment of the essay) .T8
Presentation of the essays - evaluated 20 points.T12
Presentation of semestral projects and credit - evaluated 40 points.T13
Labs
Scanning and monitoring the security threats, finding potential security vulnerabilities using specific tools.T2
Practical work with security libraries, creating a certification authority, generating a signing keys, revoking the certificate, realization of self-sign CA according to assignment - evaluated 10 points. T4
Creating a virtual private network and connecting, designing and implementing a simple VPN.T6
Implementation of VPN tunnel according to assignment - evaluated 10 points.T7
Introduction to intrusion detection and protection systems- installation, configuration, rules setting, logging, realization of IDS / IPS rules according to assignment - evaluated 10 points. T9
Firewall Configuration Basics - Basic Rules, Advanced Configuration, Address Translation Options. (Tutorial Project Specification).T10
Configure simple firewall and watch-dog agent using rules and detection system - rated 10 points.T11
Conditions for subject completion
Occurrence in study plans
Occurrence in special blocks
Assessment of instruction