440-4113/02 – Security in Communications (BvK)

Gurantor departmentDepartment of TelecommunicationsCredits4
Subject guarantorprof. Ing. Miroslav Vozňák, Ph.D.Subject version guarantorprof. Ing. Miroslav Vozňák, Ph.D.
Study levelundergraduate or graduateRequirementOptional
Study languageEnglish
Year of introduction2015/2016Year of cancellation
Intended for the facultiesFEIIntended for study typesFollow-up Master
Instruction secured by
LoginNameTuitorTeacher giving lectures
FRN020 Ing. Jaroslav Frnda
REZ106 Ing. Filip Řezáč, Ph.D.
SEV0097 Ing. Lukáš Ševčík
VOZ29 prof. Ing. Miroslav Vozňák, Ph.D.
Extent of instruction for forms of study
Form of studyWay of compl.Extent
Full-time Credit and Examination 2+2
Combined Credit and Examination 2+8

Subject aims expressed by acquired skills and competences

Understand the security risks and measures in ecommunication technologies and can apply the individual solutions. Learning outcomes are set so that the students are able to identify and apply to tasks related to the security in communications.

Teaching methods

Lectures
Tutorials
Experimental work in labs
Project work

Summary

This course provides an explanation of security mechanisms of communication in computer networks, solutions of communication in IMS systems, networks with VoIP technology and mobile networks. Students will acquire practical skills and they will be able to design and implement the particular security measures in open-source environment such as Nessus, openSSL, openVPN, IPtables, SNORT, etc.

Compulsory literature:

SISALEM,D.,FLOROIU,J. SIP Security. New Jersey: JWS, Inc. 350p. 2009. ISBN: 978-0-470-51636-2 COLLIER,M.,ENDLER,D. Hacking VoIP exposed. New York: McGraww-Hill, 539p. 2007. ISBN 978-0-07-226364-0 RANSOME,J.,RITTINGHOUSE,J. VoIP Security. Oxford: Elsevier, 402p. 2005. ISBN 1-55558-332-6.

Recommended literature:

PORTER,T. Practical VoIP Security. Rockland: Syngress Publishing, Inc., 563p. 2006. ISBN 1-59749-060-1 WALLINFORD,T. VoIP Hacks. OReilly Media,Inc., 306p. 2006. ISBN 0-596-10133-3. FEILNER,M. OpenVPN. Birmingham: Packt Publishing,Ltd., 258p. 2006. ISBN 1-904811-85-X KONHEIM,A. Computer Security and cryptography. New Jersey: JWS, Inc. 521p. 2007. ISBN: 978-0-471-94783-7

Way of continuous check of knowledge in the course of semester

Every student has possibility to obtain max. 30 points during semester involving: • solution of project 15 points, • presentation of the essay 5 points, • laboratory practice, 2x5 points.

E-learning

http://kat440.vsb.cz/

Další požadavky na studenta

No additional requirements are placed on the student.

Prerequisities

Subject has no prerequisities.

Co-requisities

Subject has no co-requisities.

Subject syllabus:

1. Introduction to security, network security, scheme for network attack, classification and techniques of attacks. 2. Networks security elements - Juniper, Junos system, emulation of networks elements, system GNS3 3. PKI - Public-Key Infrastructure, Symetric, Asymetric encryption, Hash function, Diffie-Helmann, X.509 4. Secure Sockets Layer, setting up SSL connection, Open SSL library and the using OpenSSL. 5. Security on transport layer and authentication protocol SSH, SSH tunels. Authentication in nettwork, Kerberos system. 6. Secuirty on network layer - IPsec (AH,ESP,IKE, ISAKMP) a transport layer (TLS, WTLS, DTLS) 7. Network security in VSB, national security teams CSIRT and CERT, cyber criminality 8. Security of wireless networks - WiFi, GSM, Bluetooth, Zigbee, UMTS 9. Advances computational methods in cryptography based on GPU and their impact on current used security meaures in communications 10. Firewall - basic classification, methods of filtering on network and transport layers, state inspections and pracitcal solutions with IPtables. Introduction into IPS/IDS 11. Snort - possibility of application in network, components, rules IPS with SnortSam 12. Security in IPtelephony - H.323 and SIp signalling, media security SRTP and ZRTP. Spam in IP telephony and measures of defense 13. Well-known attacks in IPtelephony, penetration testing, DoS on VoIP and IMS Services 14. Fight against criminality on Internet, CERT/CSIRT teams, project INDECT (EU FP 7), CALEA and law framework in EU and information on exam Exercises Introduction into course, history and future of cryptography. W1 Network scanning using Nmap and vulnerability tests with Nessus – remote security scanner. W3 Security in 802.11 networks, NetStumbler and Kismet + Essay assignment. W8 Advanced computational methods (CUDA) used in cryptography. W9 Presentation of the essay, work on the project - 5 points. W13 Presentation of the project – 15 points. W14 Labs Introduction into Juniper security solutions, GNS3 and introduction into JUNOS configuration. W2 Introduction into OpenSSL library, generating a certification authority, public and private keys, signing certificates. W4 Implementation of OpenVPN, design of the network topology. W5 Configuration of the VPN using Juniper emulation in GNS3. W6 VPN tunnel using OpenVPN - 5 points. W7 Introduction into IDS and IPS open-source systems – Snort, Suricata +project assignment. W10 Security rules configuration using Juniper emulation in GNS3. W11 Configuration of the working IDS with Juniper or SNORT, Suricata - 5 points. W12

Conditions for subject completion

Full-time form (validity from: 2015/2016 Winter semester)
Task nameType of taskMax. number of points
(act. for subtasks)
Min. number of points
Credit and Examination Credit and Examination 100 (100) 51
        Credit Credit 30  15
        Examination Examination 70  20
Mandatory attendence parzicipation:

Show history
Combined form (validity from: 2015/2016 Winter semester)
Task nameType of taskMax. number of points
(act. for subtasks)
Min. number of points
Credit and Examination Credit and Examination 100 (100) 51
        Credit Credit 30  15
        Examination Examination 70  20
Mandatory attendence parzicipation:

Show history

Occurrence in study plans

Academic yearProgrammeField of studySpec.FormStudy language Tut. centreYearWSType of duty
2018/2019 (N2647) Information and Communication Technology (1801T064) Information and Communication Security P English Ostrava 1 Compulsory study plan
2018/2019 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology P English Ostrava 1 Choice-compulsory study plan
2018/2019 (N2647) Information and Communication Technology (2612T059) Mobile Technology P English Ostrava 1 Compulsory study plan
2018/2019 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology K English Ostrava 1 Choice-compulsory study plan
2018/2019 (N2647) Information and Communication Technology (2612T059) Mobile Technology K English Ostrava 1 Compulsory study plan
2017/2018 (N2647) Information and Communication Technology (1801T064) Information and Communication Security P English Ostrava 1 Compulsory study plan
2017/2018 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology P English Ostrava 1 Choice-compulsory study plan
2017/2018 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology K English Ostrava 1 Choice-compulsory study plan
2017/2018 (N2647) Information and Communication Technology (2612T059) Mobile Technology P English Ostrava 1 Compulsory study plan
2017/2018 (N2647) Information and Communication Technology (2612T059) Mobile Technology K English Ostrava 1 Compulsory study plan
2016/2017 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology P English Ostrava 1 Choice-compulsory study plan
2016/2017 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology K English Ostrava 1 Choice-compulsory study plan
2016/2017 (N2647) Information and Communication Technology (2612T059) Mobile Technology P English Ostrava 1 Compulsory study plan
2016/2017 (N2647) Information and Communication Technology (2612T059) Mobile Technology K English Ostrava 1 Compulsory study plan
2016/2017 (N2647) Information and Communication Technology (1801T064) Information and Communication Security P English Ostrava 1 Compulsory study plan
2015/2016 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology P English Ostrava 1 Choice-compulsory study plan
2015/2016 (N2647) Information and Communication Technology (2601T013) Telecommunication Technology K English Ostrava 1 Choice-compulsory study plan
2015/2016 (N2647) Information and Communication Technology (2612T059) Mobile Technology P English Ostrava 1 Compulsory study plan
2015/2016 (N2647) Information and Communication Technology (2612T059) Mobile Technology K English Ostrava 1 Compulsory study plan

Occurrence in special blocks

Block nameAcademic yearForm of studyStudy language YearWSType of blockBlock owner
V - ECTS - mgr. 2019/2020 Full-time English Optional 401 - Faculty of Electrical Engineering and Computer Science - Department for Study Affairs stu. block
V - ECTS - mgr. 2018/2019 Full-time English Optional 401 - Faculty of Electrical Engineering and Computer Science - Department for Study Affairs stu. block
V - ECTS - mgr. 2017/2018 Full-time English Optional 401 - Faculty of Electrical Engineering and Computer Science - Department for Study Affairs stu. block
V - ECTS - mgr. 2016/2017 Full-time English Optional 401 - Faculty of Electrical Engineering and Computer Science - Department for Study Affairs stu. block
V - ECTS - mgr. 2015/2016 Full-time English Optional 401 - Faculty of Electrical Engineering and Computer Science - Department for Study Affairs stu. block