Course details

Information System Security

BIS Acad. year 2008/2009 Winter semester 5 credits

Current academic year

The course aims to the security goals, security functions, and security mechanisms. The content is: Introduction into information security, basic terms, threats, weak points, security measures, criteria for system security assessment, Common Criteria, data transmission security, operating system and database security, malicious software,  role of cryptography.


Language of instruction

Czech, English


Examination (written)

Time span

39 hrs lectures, 13 hrs projects

Assessment points

70 exam, 15 mid-term test, 15 projects




Kumpošt Marek, RNDr., Ph.D. (DITS FIT BUT)
Schäfer Jiří, Ing. (DITS FIT BUT)

Subject specific learning outcomes and competences

Students will learn basic principles of information systems security. They will learn also terminology, basic security goals, functions, and mechanisms.

Learning objectives

The goal is to make students familiar with the basic concepts of information systems security.

Study literature

  • Savard, J. J. G.: A Cryptographic Compendium, 2000, available on WWW

Fundamental literature

  • Stallings, W.: Cryptography and Network Security, Prentice Hall, 1999, ISBN 0-13-869017-0

Syllabus of lectures

  • Introduction
  • Threats, vulnerabilities
  • Security measures
  • Criteria for system security assessment
  • Common criteria (CC)
  • Security functions
  • Risk analysis
  • Data transmission security
  • Operating system security
  • Database security
  • Web security
  • Smart card applications
  • Role of cryptography

Syllabus - others, projects and individual work of students

  1. A homework on security mechanisms.
  2. A homework on applied cryptography.

Progress assessment

A mid-term exam evaluation and an evaluation of projects.

Back to top