Course details
Information System Security
BIS Acad. year 2022/2023 Winter semester 5 credits
The course aims to the security goals, security functions, and security mechanisms. The content is: Introduction into information security, basic terms, threats, weak points, security measures, criteria for system security assessment, Common Criteria, data transmission security, operating system and database security, malicious software, role of cryptography.
Guarantor
Course coordinator
Language of instruction
Completion
Time span
- 39 hrs lectures
- 13 hrs projects
Assessment points
- 70 pts final exam (written part)
- 10 pts mid-term test (written part)
- 20 pts projects
Department
Lecturer
Instructor
Hujňák Ondřej, Ing., Ph.D. (RG-3-02)
Malinka Kamil, Mgr., Ph.D. (DITS)
Perešíni Martin, Ing. (DITS)
Subject specific learning outcomes and competences
Students will learn basic principles of information systems security. They will learn also terminology, basic security goals, functions, and mechanisms.
Learning objectives
The goal is to make students familiar with the basic concepts of information systems security.
Why is the course taught
This course is essential to all engineers working in the areas of computer engineering. Students will learn basic principles of information systems security. They will learn also terminology, basic security goals, functions, and mechanisms.
Study literature
- Hanáček, P., Staudek, J.: Bezpečnost informačních systémů, ÚSIS, Praha, 2000, s. 127, ISBN80-238-5400-3
- Savard, J. J. G.: A Cryptographic Compendium, 2000, dostupné na WWW
Fundamental literature
- Stallings, W.: Cryptography and Network Security, Prentice Hall, 1999, ISBN 0-13-869017-0
Syllabus of lectures
- Introduction
- Threats, vulnerabilities
- Security measures
- Criteria for system security assessment
- Common criteria (CC)
- Security functions
- Risk analysis
- Data transmission security
- Operating system security
- Database security
- Web security
- Smart card applications
- Role of cryptography
Syllabus - others, projects and individual work of students
- A homework on security mechanisms.
- A homework on applied cryptography.
Progress assessment
A mid-term exam evaluation and an evaluation of projects.
Exam prerequisites
To obtain at least one point in each project.
Course inclusion in study plans
- Programme IT-MGR-2, field MBI, any year of study, Compulsory-Elective group O
- Programme IT-MGR-2, field MBS, MIS, any year of study, Compulsory
- Programme IT-MGR-2, field MGM, any year of study, Elective
- Programme IT-MGR-2, field MIN, MMM, any year of study, Compulsory-Elective group B
- Programme IT-MGR-2, field MPV, any year of study, Compulsory-Elective group D
- Programme IT-MGR-2, field MSK, 2nd year of study, Compulsory
- Programme MITAI, field NADE, NBIO, NEMB, NEMB up to 2021/22, NGRI, NHPC, NIDE, NISY, NISY up to 2020/21, NMAL, NMAT, NNET, NSPE, NVIZ, any year of study, Elective
- Programme MITAI, field NCPS, NSEC, NSEN, NVER, any year of study, Compulsory
- Programme MITAI, field NISD, 2nd year of study, Compulsory