ICT Security 2
FEKT-TIC2Acad. year: 2018/2019
The course covers the topics connected to computer network security. The topics include: architecture description and administration of modern network devices, overview of security and performance testing principles, overview of today’s malware and its mitigation methods it and the overview of attacks based on social engineering.
Learning outcomes of the course unit
After course completion, the students will be able to:
• Explain and practically implement the security mechanisms on the network, transport and application layers.
• Explain and practically implement the security mechanisms for wireless networks.
• Use the basic techniques of penetration testing for information gathering, vulnerability detection and exploitation.
• Choose and use suitable tools for infrastructure security testing.
• Choose and use suitable tools for infrastructure performance testing.
• Classify the types of malware and use methods for their destruction.
• Set rules and policies for the limitation of the human factor-based attacks.
Recommended optional programme components
DEFINO, Steven a Larry GREENBLATT. Official certified ethical hacker review guide: for version 7.1. Boston: Course Technology, 2012, xxi, 329 s. ISBN 978-1-133-28291-4.
BOYLES, Tim a Larry GREENBLATT. CCNA security: study guide. Hoboken: Wiley Publishing, 2010, xv, 516 s. ISBN 978-0-470-52767-2.
STALLINGS, William. Cryptography and network security: principles and practice. Seventh edition. xix, 731 pages. ISBN 01-333-5469-5.
PROSISE, Chris. Počítačový útok: Detekce, obrana a okamžitá náprava. Vyd. 1. Praha: Computer Press, 2002, xxii, 410 s. ISBN 80-722-6682-9.
Planned learning activities and teaching methods
Assesment methods and criteria linked to learning outcomes
Language of instruction
2. Secure configuration of switches and routers
3. Secure configuration of wireless networks
4. Firewall s and application filters
5. IDS and IPS systems
6. Network infrastructure vulnerability testing
7. Penetration testing – gathering of information
8. Penetration testing – scanning, identification
9. Penetration testing – vulnerability detection
10. Penetration testing – vulnerability exploitation
11. Network infrastructure performance testing
13. Non-technical attacks
Specification of controlled education, way of implementation and compensation for absences