440-4117/01 – Cyber Security I (KB I)
Gurantor department | Department of Telecommunications | Credits | 5 |
Subject guarantor | prof. Ing. Miroslav Vozňák, Ph.D. | Subject version guarantor | prof. Ing. Miroslav Vozňák, Ph.D. |
Study level | undergraduate or graduate | Requirement | Compulsory |
Year | 1 | Semester | winter |
| | Study language | Czech |
Year of introduction | 2021/2022 | Year of cancellation | 2023/2024 |
Intended for the faculties | FEI | Intended for study types | Follow-up Master |
Subject aims expressed by acquired skills and competences
Learning outcomes are set so that students are able to identify, apply and solve problems in the field of advanced cyber security and understand in detail modern methods of securing metallic, wireless and optical communications.
Teaching methods
Lectures
Tutorials
Experimental work in labs
Project work
Summary
The course will provide an explanation of advanced mechanisms for securing communication networks regardless of the transmission medium. The student will get acquainted with modern cryptographic tools and protocols, which they will learn to apply mainly in the practical level to new or existing network infrastructures.
Compulsory literature:
1. Yuri Diogenes, Erdal Ozkaya, Cybersecurity: Attack and Defense Strategies: Counter modern threats and employ state-of-the-art tools and techniques to protect your organization against cybercriminals, 2nd Edition, 2019, ASIN: B081SSGKF5.
Recommended literature:
1. Steve Suehring, Linux Firewalls: Enhancing Security with nftables and Beyond, 2015, ASIN: B00SN5JYTW
2. Ivan Ristic, Bulletproof SSL and TLS: Understanding and Deploying SSL/TLS and PKI to Secure Servers and Web Applications, 2014, ISBN-13: 978-1907117046
Way of continuous check of knowledge in the course of semester
Each student can get a maximum of 40 points during the semester, including:
• semestral project 15 points,
• realization of the essay 10 points,
• laboratory exercises, 3x5 points.
E-learning
https://lms.vsb.cz
Other requirements
The course places requirements on the student in the form of basic knowledge of working in Linux, knowledge of the basic principles of cyber security and advanced knowledge of network protocols.
Prerequisities
Subject has no prerequisities.
Co-requisities
Subject has no co-requisities.
Subject syllabus:
1. Introduction to security, history of network security, development and modern trends in security.
2. Distribution of modern ciphers - symmetric / asymmetric, block / stream, cipher modes, key distribution options - DH.
3. Hash functions and one-way modern ciphers - MD5 and SHA1 vs. SHA2, SHA3, BLAKE2 - principle of function, vulnerabilities, implementation, use.
4. PKI - certificates, PGP, X.509, elliptic curves, digital signature.
5. SSL / TLS libraries - configurations and designs over the CA domain - self-sign, revocation, root and intermediate certificates, wildcard certificates.
6. SSH - version, description, advanced configuration - file exchange, traffic tunneling.
7. VPN - principle, TUN / TAP modes, IPsec vs. TLS. Modern approaches - OVPN vs. Wireguard.
8. Tools for analysis of network elements and network traffic - IOS Diagnostic Tools, Packet Capturing, SNMP and NetFlow, signature-based traffic analysis, advanced behavioral analysis from NetFlow.
9. Security in wireless networks - security protocols WPA2, WPA3 and their modes - PSK, EAP, IoT security and security of mobile networks - A3, A5, A8, MILENAGE.
10. Authentication, multifactor authentication (RADIUS, DIAMETER, KERBEROS), single sign-on (SSO) systems.
11. Selected parts of biometric authentication.
12. Interferometry, Raman, Brillouin and Rayleigh scattering and the use of fiber optic sensors in security applications.
13. Principles of key distribution using physical principles of quantum mechanics (QKD), protocols QKD - BB84, SARG04 and E91, QKD in quantum networks.
14. Introduction to penetration and performance testing - security auditing, testing methodologies and security analysis and certification - Common Criteria, JISE, FIPS, EAL.
Conditions for subject completion
Occurrence in study plans
Occurrence in special blocks
Assessment of instruction