Course details

Security and Computer Networks

IBS Acad. year 2021/2022 Summer semester 4 credits

Current academic year

Secure Communication on the L2 Layer. Certificates and Digital Signature. Attacks in Computer Networks. Security Protocols, their Analysis, Verification and Design. Application of Security Protocols. Security on the L3 Layer. IPsec and VPN. Security of Network Services. IDS and IPS Systems. Security of Wireless Networks. Security of Sensor Networks.

Guarantor

Course coordinator

Language of instruction

Czech, English

Completion

Credit+Examination (written)

Time span

  • 26 hrs lectures
  • 6 hrs laboratories
  • 7 hrs projects

Assessment points

  • 60 pts final exam
  • 20 pts mid-term test
  • 20 pts projects

Department

Lecturer

Instructor

Subject specific learning outcomes and competences

Student is able to configure secure communication between computers. They have an overview of authentication principles and secure network services and they are able to manage them: SSH, VPN, email services, etc. They have an overview of security technologies used in wireless and sensor networks. Students are able to design and implement secure communication. Students are able to read standards and use them for project implementation.

Learning objectives

The goal of this course is to inform students about the basic principles of network and systems security and relevant protocols and standards. Students are learned to design and manage security technologies.

Why is the course taught

Complementing for IT graduates to understand the principles of computer network security, i.e. how the security mechanisms in computer networks work, how they are configured.

Recommended prerequisites

Prerequisite knowledge and skills

  • Basic skills of operation systems Unix, Windows
  • Ability to read study texts in English (standards, RFC documents).
  • The architecture of computer networks (ISO/OSI, TCP/IP).
  • Overview of link layer protocols and network layer protocols.

Study literature

  • Texty přednášek v elektronické podobě.
  • Kurose, James F.: Computer networking : a top-down approach. 7th ed., Pearson, Essex, 2017, ISBN 978-1-292-15359-9
  • Schneider, S.A., Ryan, P.Y.A.: Modelling and Analysis of Security Protocols. Addison Wesley, Boston, 2000, ISBN 0-201-67471-8.
  • Bishop, M.: Computer security: Art & Science. Addison-Wesley, Boston, 2003, ISBN 0-201-44099-7.
  • Kurose, James F.: Computer networking : a top-down approach. 7th ed., Pearson, Essex, 2017, ISBN 978-1-292-15359-9
  • Anderson, Ross J.: Security Engineering: A Guide to Building Dependable Distributed Systems. John Wiley & Sons Inc, 2001, ISBN 0-471-38922-6.
  • Stallings, W.: Network security essentials : applications and standards. Hoboken, 2016, 978-0-13-452733-8.
  • Menezes, A. J., Oorschot, P.C. van, Vanstone, S.A.: Handbook of Applied Cryptography. CRC Press, 1996, ISBN 0-8493-8523-7, http://www.cacr.math.uwaterloo.ca/hac/
  • Tanenbaum, A.S.: Computer Networks. Fourth Edition, Prentice Hall, 2003, ISBN 0-13-066102-3.
  • Standardy IETF RFC.

Syllabus of lectures

  1. Introduction. Overview of computer security.
  2. Security of the L2 layer (802.1x, PAP, CHAP).
  3. Certificates. Digital signature (PKI, TKPI). Certification authority. Authentication and authorization in computer networks AAA.
  4. Attacks in computer networks.
  5. Security protocols, their analysis and verification.
  6. Design of security protocols and their application. Payment protocols.
  7. Security of L3 layer. IPsec and VPN.
  8. Security of network services. Secure transport (SSL, TLS). Security on the application layer.
  9. Firewalls. IDS and IPS systems.
  10. Security of wireless and mobile networks. WEP, WPA.
  11. Security of sensor networks. ZigBee.
  12. Security in practice.
  13. Modern trends of networks security. Course summary.

Syllabus of laboratory exercises

  1. Practical analysis of security protocol.
  2. Practical implementation of secure communication.
  3. Administration of secure communication (SSH, stunel, pgp). Creation of VPN connections. Secure connections testing.

Syllabus - others, projects and individual work of students

Practical analysis of security protocol. Analysis of a selected security topic.

Progress assessment

Mid-term exam and project realization.

Controlled instruction

Mid-term exam and project realization.

Exam prerequisites

Students need to earn at least a half of all points during the semester and at least one point from each project.

Course inclusion in study plans

  • Programme BIT, 2nd year of study, Elective
  • Programme IT-BC-3, field BIT, 2nd year of study, Elective
Back to top