440-2320/01 – Fundamentals of the Security in Communications (ZBK)

Gurantor departmentDepartment of TelecommunicationsCredits4
Subject guarantorIng. Filip Řezáč, Ph.D.Subject version guarantorIng. Filip Řezáč, Ph.D.
Study levelundergraduate or graduateRequirementCompulsory
Year3Semesterwinter
Study languageCzech
Year of introduction2019/2020Year of cancellation
Intended for the facultiesFEIIntended for study typesBachelor
Instruction secured by
LoginNameTuitorTeacher giving lectures
GRE0071 Ing. Erik Grešák
REZ106 Ing. Filip Řezáč, Ph.D.
VAS0038 Ing. David Vašíček
VOZ29 prof. Ing. Miroslav Vozňák, Ph.D.
Extent of instruction for forms of study
Form of studyWay of compl.Extent
Full-time Graded credit 2+2
Part-time Graded credit 2+16

Subject aims expressed by acquired skills and competences

The graduate will understand security risks and measures in communication technologies and be able to apply basic security countermeasures. Learning outcomes are designed so that students are able to identify, apply and solve problems in the field of safety in communications and understand the basic cryptographic methods.

Teaching methods

Lectures
Tutorials
Experimental work in labs
Project work

Summary

Course contents (annotation): The course provides an explanation of basic security mechanisms of communication in computer networks, solution and analysis of secure communication in modern computer systems, knowledge of basic cryptographic algorithms and application of applications for minimization of security risks. Students will gain practical skills and will be able to design and implement simple security solutions in ICT environments such as network monitoring, certificate usage and functionality, configuration and management of a simple VPN network, configuration of firewall and basic network trapping tools.

Compulsory literature:

VIEGA, J., MESSIER M., CHANDRA P. - Network Security with OpenSSL, 2002, 978-0596002701. COLLIER,M.,ENDLER,D. - Hacking Exposed Unified Communications & VoIP Security Secrets & Solutions, Second Edition, 2013, 978-0071798761. RASH, M.- Linux Firewalls: Attack Detection and Response with iptables, 2007, 978-1593271411.

Recommended literature:

FEILNER,M. OpenVPN. Birmingham: Packt Publishing,Ltd., 258p. 2006. ISBN 1-904811-85-X KONHEIM,A. Computer Security and cryptography. New Jersey: JWS, Inc. 521p. 2007. ISBN: 978-0-471-94783-7

Way of continuous check of knowledge in the course of semester

Each student can receive up to 100 points during the semester, including: • project solution 40 points, • Realization of a essay 20 points, • laboratory work, 4x10 points,

E-learning

https://lms.vsb.cz/?lang=en

Other requirements

The course assigns to the student requirements in the form of basic knowledge of OS Linux and knowledge of common network protocols. The course assigns to the student requirements in the form of basic knowledge of OS Linux and knowledge of common network protocols.

Prerequisities

Subject has no prerequisities.

Co-requisities

Subject has no co-requisities.

Subject syllabus:

1. Introduction to security, network security history, development and modern security trends. 2. Monitor, scan and analyze network traffic from a security point of view. Google hacking and traffic scans. 3. Key management and distribution, purpose of certificates, digital signature, one-way functions, types of ciphers. 4. Family of SSL / TLS security protocols, certificate and key generation tools, certification authority, certificate revocation. 5. Secure remote access management, remote access protocols, security mechanisms, secure file transfer. 6. Network and transport layer security, virtual private networks. 7. Communications security at local, national and international level, personal data protection - GDPR. 8. Security of mobile and radio networks, security of the internet concept of things. 9. Systems for autonomous monitoring in computer networks - deployment, rules, options, demilitarized zones, traffic monitoring. 10. Firewalls - distribution, functions, examples, configurations, options. 11. Systems for Penetration and Power Sieving Testing. 12. Multimedia Security - audio, image, IM monitoring, eavesdropping, steganography. 13. Honeypots and Honeynets - Description, Features and Usage, Configuration, Deployment Methods. 14. Trends and future of communications security, introduction to quantum cryptography, open discussion, and information on the course of the test. Exercises Prerequisites and co-requisites for the course content, history in the security in communication.T1 Basics applications with the certificates. Security suffixes, certificate containers, digital signature.T3 Options and applications for secure connection to remote servers, secure data transfer with SCP, generation of SSH certificates, Putty, Samba protocol.T5 Wireless security, traffic simulation, promiscuity mode analysis (Assigment of the essay) .T8 Examples of data capture capabilities with MiTM attack, audio, image and IM security. Example of steganography.T12 Presentation of the essays - evaluated 20 points.T13 Presentation of semestral projects and credit - evaluated 40 points.T14 Labs Scanning and monitoring the security threats, finding potential security vulnerabilities using specific tools.T2 Practical work with security libraries, creating a certification authority, generating a signing keys, revoking the certificate, realization of self-sign CA according to assignment - evaluated 10 points. T4 Creating a virtual private network and connecting, designing and implementing a simple VPN.T6 Implementation of VPN tunnel according to assignment - evaluated 10 points.T7 Introduction to intrusion detection and protection systems- installation, configuration, rules setting, logging, realization of IDS / IPS rules according to assignment - evaluated 10 points. T9 Firewall Configuration Basics - Basic Rules, Advanced Configuration, Address Translation Options. (Tutorial Project Specification).T10 Configure simple firewall and watch-dog agent using rules and detection system - rated 10 points.T11

Conditions for subject completion

Part-time form (validity from: 2019/2020 Winter semester)
Task nameType of taskMax. number of points
(act. for subtasks)
Min. number of points
Graded credit Graded credit 100 (100) 51
        Semestrální projekt Semestral project 40  20
        Realizace referátu Other task type 20  0
        Laboratorní cvičení Laboratory work 40  0
Mandatory attendence parzicipation: There is no compulsory participation in the course.

Show history

Occurrence in study plans

Academic yearProgrammeField of studySpec.ZaměřeníFormStudy language Tut. centreYearWSType of duty
2020/2021 (B0714A060018) Biomedical Assistive Technology EaI K Czech Ostrava 3 Compulsory study plan
2020/2021 (B0714A060018) Biomedical Assistive Technology EaI P Czech Ostrava 3 Compulsory study plan
2020/2021 (B0714A060008) Mobile Technology ZKT P Czech Ostrava 3 Compulsory study plan
2020/2021 (B0714A060008) Mobile Technology ZKT K Czech Ostrava 3 Compulsory study plan
2020/2021 (B0714A060010) Telecommunication Technology KB P Czech Ostrava 3 Choice-compulsory type A study plan
2020/2021 (B0714A060010) Telecommunication Technology KB K Czech Ostrava 3 Choice-compulsory type A study plan
2019/2020 (B0714A060010) Telecommunication Technology KB P Czech Ostrava 3 Choice-compulsory type A study plan
2019/2020 (B0714A060008) Mobile Technology ZKT P Czech Ostrava 3 Compulsory study plan
2019/2020 (B0714A060010) Telecommunication Technology KB K Czech Ostrava 3 Choice-compulsory type A study plan
2019/2020 (B0714A060008) Mobile Technology ZKT K Czech Ostrava 3 Compulsory study plan

Occurrence in special blocks

Block nameAcademic yearForm of studyStudy language YearWSType of blockBlock owner