|
Lecturer(s)
|
-
Remeš Radim, Mgr. Ph.D.
-
Beránek Ladislav, prof. Ing. CSc., MBA
|
|
Course content
|
Lectures: Thematic units: 1. Principles of IS / IT security; 2. The principles of IS security management, ISO 27001 standards and others. 3. Basic concepts. Authorization and authentication; 4. Types of attacks and their goals; 5. Enterprise IS / IT security methods; 6. Risk analysis, disaster recovery plan, security audit; 7. Principles of IS / IT security assessment. Overview of IS / IT Standards - ISO 17799; 8. Network and computer security principles; Tracking and managing network traffic. Monitoring and audit, IDS 9. Principles of modern cryptography. Encryption and decryption process, encryption key, cryptanalysis; 10. Symmetric and asymmetric cryptographic algorithms; 11. Known standards and implementations. Hash function; 12. Electronic signature. PKI, certification authority, public key certificate; 13. Blockchain, smart contracts, cryptocurrency.
|
|
Learning activities and teaching methods
|
Monologic (reading, lecture, briefing), Demonstration, E-learning
- Preparation for classes
- 44 hours per semester
- Class attendance
- 30 hours per semester
- Semestral paper
- 40 hours per semester
- Preparation for credit
- 24 hours per semester
- Preparation for exam
- 30 hours per semester
|
|
Learning outcomes
|
Objective of the course in terms of learning outcomes and competences The aim of the course is to acquaint students with the basic principles of security of products and systems based on information technologies. The subject covers safety issues in building and operating information systems. During the semester the students will be acquainted with all areas of information system security and with basic standards related to this area, especially standard ISO 27001.
Students will understand basic principle of IS/IT security, will be able to perform elementary security analysis and will have survey about security technologies and security architectures used in business practice.
|
|
Prerequisites
|
The course has no prerequisities.
|
|
Assessment methods and criteria
|
Oral examination, Test
Credit Requirements: Active participation in seminars, working out a seminar work (audit of information system, DMZ, firewall, PKI etc.) Examination Requirements: Final written test
|
|
Recommended literature
|
-
Dostálek, L. a kol. TCP/IP - bezpečnost. Praha: Computer Press, 2003. ISBN 80-7226-849-X.
-
DOSTÁLEK, Libor, Marta VOHNOUTOVÁ a Miroslav KNOTEK. Velký průvodce infrastrukturou PKI a technologií elektronického podpisu. Brno: Computer Press, 2009. ISBN 9788025126196.
-
Doucek, P. Řízení bezpečnosti informací. Praha: Professional Publishing, 2011, 286 s., 2011. ISBN 978-80-7431-050-8.
-
Schneier, B. Applied Cryptography. New York: John Willey, 1996. ISBN 0-471-11709-9.
-
VACCA, John R. Computer and information security handbook.. Cambridge, MA: Morgan Kaufmann Publishers, an imprint of Elsevier, 2017. ISBN 978-0128038437.
|