Course detail

Information System Security

FIT-BISAcad. year: 2017/2018

The course aims to the security goals, security functions, and security mechanisms. The content is: Introduction into information security, basic terms, threats, weak points, security measures, criteria for system security assessment, Common Criteria, data transmission security, operating system and database security, malicious software,  role of cryptography.

Language of instruction

Czech

Number of ECTS credits

Mode of study

Not applicable.

Guarantor

doc. Dr. Ing. Petr Hanáček

Department

Department of Intelligent Systems (UITS)

Learning outcomes of the course unit

Students will learn basic principles of information systems security. They will learn also terminology, basic security goals, functions, and mechanisms.

Prerequisites

There are no prerequisites

Co-requisites

Not applicable.

Planned learning activities and teaching methods

Not applicable.

Assesment methods and criteria linked to learning outcomes

Study evaluation is based on marks obtained for specified items. Minimimum number of marks to pass is 50.

Course curriculum

    Syllabus of lectures:
    • Introduction
    • Threats, vulnerabilities
    • Security measures
    • Criteria for system security assessment
    • Common criteria (CC)
    • Security functions
    • Risk analysis
    • Data transmission security
    • Operating system security
    • Database security
    • Web security
    • Smart card applications
    • Role of cryptography

    Syllabus - others, projects and individual work of students:
    1. A homework on security mechanisms.
    2. A homework on applied cryptography.

Work placements

Not applicable.

Aims

The goal is to make students familiar with the basic concepts of information systems security.

Specification of controlled education, way of implementation and compensation for absences

A mid-term exam evaluation and an evaluation of projects.

Recommended optional programme components

Not applicable.

Prerequisites and corequisites

Not applicable.

Basic literature

Stallings, W.: Cryptography and Network Security, Prentice Hall, 1999, ISBN 0-13-869017-0

Recommended reading

Hanáček, P., Staudek, J.: Bezpečnost informačních systémů, ÚSIS, Praha, 2000, s. 127, ISBN80-238-5400-3 Savard, J. J. G.: A Cryptographic Compendium, 2000, dostupné na WWW

Classification of course in study plans

  • Programme IT-MSC-2 Master's

    branch MMI , 0 year of study, winter semester, elective
    branch MBI , 0 year of study, winter semester, compulsory-optional
    branch MSK , 2 year of study, winter semester, compulsory
    branch MMM , 0 year of study, winter semester, compulsory-optional
    branch MBS , 0 year of study, winter semester, compulsory
    branch MIS , 0 year of study, winter semester, compulsory
    branch MIN , 0 year of study, winter semester, compulsory-optional
    branch MGM , 0 year of study, winter semester, elective
    branch MPV , 0 year of study, winter semester, compulsory-optional

Type of course unit

 

Lecture

39 hod., optionally

Teacher / Lecturer

doc. Dr. Ing. Petr Hanáček

Syllabus

  • Introduction
  • Threats, vulnerabilities
  • Security measures
  • Criteria for system security assessment
  • Common criteria (CC)
  • Security functions
  • Risk analysis
  • Data transmission security
  • Operating system security
  • Database security
  • Web security
  • Smart card applications
  • Role of cryptography

Project

13 hod., optionally

Teacher / Lecturer

doc. Dr. Ing. Petr Hanáček