440-4131/01 – Cyber security (KB)

Gurantor departmentDepartment of TelecommunicationsCredits4
Subject guarantorIng. Filip Řezáč, Ph.D.Subject version guarantorIng. Filip Řezáč, Ph.D.
Study levelundergraduate or graduateRequirementCompulsory
Year1Semesterwinter
Study languageCzech
Year of introduction2023/2024Year of cancellation
Intended for the facultiesFEIIntended for study typesFollow-up Master
Instruction secured by
LoginNameTuitorTeacher giving lectures
BUR0193 Ing. Patrik Burdiak
REZ106 Ing. Filip Řezáč, Ph.D.
VOZ29 prof. Ing. Miroslav Vozňák, Ph.D.
Extent of instruction for forms of study
Form of studyWay of compl.Extent
Full-time Credit and Examination 2+2
Part-time Credit and Examination 8+8

Subject aims expressed by acquired skills and competences

The learning outcomes are determined so that students are able to identify, apply and solve tasks in the field of advanced cyber security and have a detailed understanding of modern methods of securing metallic, wireless and optical communication.

Teaching methods

Lectures
Tutorials
Experimental work in labs
Project work

Summary

The subject will provide an explanation of advanced mechanisms for securing communication networks regardless of the transmission medium. The student will get to know modern cryptographic tools and protocols, which they will mainly learn to apply to new or existing network infrastructures on a practical level.

Compulsory literature:

1. Yuri Diogenes, Erdal Ozkaya, Cybersecurity: Attack and Defense Strategies: Counter modern threats and employ state-of-the-art tools and techniques to protect your organization against cybercriminals, 2nd Edition, 2019, ASIN: B081SSGKF5

Recommended literature:

1. Steve Suehring, Linux Firewalls: Enhancing Security with nftables and Beyond, 2015, ASIN: B00SN5JYTW

Way of continuous check of knowledge in the course of semester

Each student can earn a maximum of 40 points during the semester, including: • project solution 15 points, • realization of the paper 10 points, • laboratory exercise, 3x5 points. The exam will take place in both oral and written form

E-learning

https://lms.vsb.cz

Other requirements

The subject requires the student to have basic knowledge of working in the Linux OS, as well as knowledge of the basic principles of cyber security and advanced knowledge of network protocols.

Prerequisities

Subject has no prerequisities.

Co-requisities

Subject has no co-requisities.

Subject syllabus:

Subject content: 1. Introduction to security, history of network security, development and modern trends in security. 2. Division of modern ciphers - symmetric/asymmetric, block/stream, cipher modes, key distribution options - DH. 3. Hash functions and one-way modern ciphers - MD5 and SHA1 vs. SHA2, SHA3, BLAKE2 - principle of function, vulnerability, implementation, use. 4. PKI - certificates, PGP, X.509, elliptic curves, digital signature. 5. SSL/TLS libraries - configuration and proposals over the CA domain - self-sign, revocation, root and intermediate certificates, wildcard certificates. 6. SSH - version, description, advanced configuration - file exchange, traffic tunneling. 7. VPN - principle, TUN/TAP modes, IPsec vs. TLS. Modern approaches - OVPN vs. Wireguard. 8. Tools for analyzing network elements and network traffic - IOS Diagnostic Tools, Packet Capturing, SNMP and NetFlow, traffic analysis based on signatures, advanced behavioral analysis from NetFlow. 9. Redundancy of elements, high availability, authentication, role management, password policy, perimeter security, monitoring. 10. Passive and active monitoring systems IDS/IPS - possibilities of deployment in topology, principles of detection, creation of rules, possibilities of connection to security elements, practical examples - Suricata. 11. Honeypots and Honeynets - division, principle of function, deployment options, interaction modes - Tpot, Dianoea, Kippo, cowrie. 12. Authentication, multi-factor authentication (RADIUS, DIAMETER, KERBEROS), single sign-on systems (SSO). 13. Principles of key distribution using physical principles of quantum mechanics (QKD), QKD protocols - BB84, SARG04 and E91, QKD in quantum networks. 14. Introduction to penetration and performance testing - security auditing, testing methodologies and security analysis and certification - Common Criteria, JISE, FIPS, EAL.

Conditions for subject completion

Full-time form (validity from: 2024/2025 Winter semester)
Task nameType of taskMax. number of points
(act. for subtasks)		Min. number of pointsMax. počet pokusů
Credit and Examination Credit and Examination 100 (100) 51
        Credit Credit 40 (40) 25
                Projekt Project 15  0 1
                Referát/esej Other task type 10  0 1
                Laboratorní úloha 1 Laboratory work 5  0 1
                Laboratorní úloha 2 Laboratory work 5  0 1
                Laboratorní úloha 3 Laboratory work 5  0 1
        Examination Examination 60  26 3
Mandatory attendence participation: Participation in the course is not compulsory.

Show history

Conditions for subject completion and attendance at the exercises within ISP: Completion of all mandatory tasks within individually agreed deadlines.

Show history

Occurrence in study plans

Academic yearProgrammeBranch/spec.Spec.ZaměřeníFormStudy language Tut. centreYearWSType of duty
2024/2025 (N0714A060020) Communication and Information Technology KIT P Czech Ostrava 1 Compulsory study plan
2024/2025 (N0714A060020) Communication and Information Technology KIT K Czech Ostrava 1 Compulsory study plan

Occurrence in special blocks

Block nameAcademic yearForm of studyStudy language YearWSType of blockBlock owner

Assessment of instruction

Předmět neobsahuje žádné hodnocení.