Objectives and competences
The objective of this course is for students to be able to understand the concepts of protecting information systems and communications, be able to identify problems and develop and implement security mechanisms on selected information systems or services.
Content (Syllabus outline)
• Principles and goals of cybersecurity.
• Cryptography basics: the concepts of cryptography, the role of cryptography in information security; technologies, building blocks and approaches of protection.
• The public key infrastructure: concepts, building blocks, digital certificates and digital signatures.
• Malware and internet scams.
• Network security: risks and attacks, security protocols, other means of protection.
• Web security: web security model, web applications and web session security.
• Secure architectures: security of operating systems, frameworks and other architectural components.
• Planning of security requirements and measures, and user aspects of security: privacy; standards; security policies; analysis of security risks.
• Security in other environments: mobile device security; introductions to the internet of things security; the security of ubiquitous information systems.
Learning and teaching methods
• lectures,
• computer exercises,
• project work,
• individual work.
Intended learning outcomes - knowledge and understanding
• identify and understand ICT security risks,
• deploy security mechanisms and measures,
• implement security mechanisms and measures,
• analyse security requirements,
• analyse ICT security risks,
• explain principles of the operation of protection mechanisms
Intended learning outcomes - transferable/key skills and other attributes
• Communication skills: writing a professional report on a project, oral defence of laboratory exercises, written expression in a written examination.
• Use of information technology: searching for information on the Internet, use and development of software solutions to protect information systems.
• Problem-solving: solving a specific problem using a software solution and designing and implementing a security solution.
Readings
• W. Stallings, L. Brown: Computer Security – Principles and Practice, 5th Edition, Pearson, Boston, 2022.
• C. Easttom: Computer Security Fundamentals, 4th Edition, Pearson, Boston, 2020.
Prerequisits
Recommended knowledge/understanding of informatics and programming.
Additional information on implementation and assessment The exam may be replaced by written midterm examinations in the same proportion of 50%.