440-4131/01 – Cyber security (KB)
Gurantor department | Department of Telecommunications | Credits | 4 |
Subject guarantor | Ing. Filip Řezáč, Ph.D. | Subject version guarantor | Ing. Filip Řezáč, Ph.D. |
Study level | undergraduate or graduate | Requirement | Compulsory |
Year | 1 | Semester | winter |
| | Study language | Czech |
Year of introduction | 2023/2024 | Year of cancellation | |
Intended for the faculties | FEI | Intended for study types | Follow-up Master |
Subject aims expressed by acquired skills and competences
The learning outcomes are determined so that students are able to identify, apply and solve tasks in the field of advanced cyber security and have a detailed understanding of modern methods of securing metallic, wireless and optical communication.
Teaching methods
Lectures
Tutorials
Experimental work in labs
Project work
Summary
The subject will provide an explanation of advanced mechanisms for securing communication networks regardless of the transmission medium. The student will get to know modern cryptographic tools and protocols, which they will mainly learn to apply to new or existing network infrastructures on a practical level.
Compulsory literature:
1. Yuri Diogenes, Erdal Ozkaya, Cybersecurity: Attack and Defense Strategies: Counter modern threats and employ state-of-the-art tools and techniques to protect your organization against cybercriminals, 2nd Edition, 2019, ASIN: B081SSGKF5
Recommended literature:
1. Steve Suehring, Linux Firewalls: Enhancing Security with nftables and Beyond, 2015, ASIN: B00SN5JYTW
Way of continuous check of knowledge in the course of semester
Each student can earn a maximum of 40 points during the semester, including:
• project solution 15 points,
• realization of the paper 10 points,
• laboratory exercise, 3x5 points.
The exam will take place in both oral and written form
E-learning
https://lms.vsb.cz
Other requirements
The subject requires the student to have basic knowledge of working in the Linux OS, as well as knowledge of the basic principles of cyber security and advanced knowledge of network protocols.
Prerequisities
Subject has no prerequisities.
Co-requisities
Subject has no co-requisities.
Subject syllabus:
Subject content:
1. Introduction to security, history of network security, development and modern trends in security.
2. Division of modern ciphers - symmetric/asymmetric, block/stream, cipher modes, key distribution options - DH.
3. Hash functions and one-way modern ciphers - MD5 and SHA1 vs. SHA2, SHA3, BLAKE2 - principle of function, vulnerability, implementation, use.
4. PKI - certificates, PGP, X.509, elliptic curves, digital signature.
5. SSL/TLS libraries - configuration and proposals over the CA domain - self-sign, revocation, root and intermediate certificates, wildcard certificates.
6. SSH - version, description, advanced configuration - file exchange, traffic tunneling.
7. VPN - principle, TUN/TAP modes, IPsec vs. TLS. Modern approaches - OVPN vs. Wireguard.
8. Tools for analyzing network elements and network traffic - IOS Diagnostic Tools, Packet Capturing, SNMP and NetFlow, traffic analysis based on signatures, advanced behavioral analysis from NetFlow.
9. Redundancy of elements, high availability, authentication, role management, password policy, perimeter security, monitoring.
10. Passive and active monitoring systems IDS/IPS - possibilities of deployment in topology, principles of detection, creation of rules, possibilities of connection to security elements, practical examples - Suricata.
11. Honeypots and Honeynets - division, principle of function, deployment options, interaction modes - Tpot, Dianoea, Kippo, cowrie.
12. Authentication, multi-factor authentication (RADIUS, DIAMETER, KERBEROS), single sign-on systems (SSO).
13. Principles of key distribution using physical principles of quantum mechanics (QKD), QKD protocols - BB84, SARG04 and E91, QKD in quantum networks.
14. Introduction to penetration and performance testing - security auditing, testing methodologies and security analysis and certification - Common Criteria, JISE, FIPS, EAL.
Conditions for subject completion
Occurrence in study plans
Occurrence in special blocks
Assessment of instruction
Předmět neobsahuje žádné hodnocení.