Full-time study

4 years

prof. Ing. Jaroslav Koton, Ph.D.

Chairman :
prof. Ing. Jaroslav Koton, Ph.D.
Councillor internal :
doc. Ing. Ondřej Ryšavý, Ph.D.
doc. Dr. Ing. Petr Hanáček
doc. Ing. Karel Burda, CSc.
doc. Ing. Václav Zeman, Ph.D.
doc. Ing. Jan Hajný, Ph.D.
prof. Ing. Jiří Mišurec, CSc.
Councillor external :
doc. Ing. Otto Dostál, CSc.

The student is fostered to use the theoretical knowledge and experience gained through own research activities in an innovative manner. He is able to efficiently use the gathered knowledge for the design of own and prospective solutions within their further experimental development and applied research. The emphasis is put on gaining both theoretical and practical skill, ability of self-decisions, definition of research and development hypotheses to propose projects spanning from basic to applied research, ability to evaluation of the results and their dissemination as research papers and presentation in front of the research community.

The study program aims at scientific preparation of doctoral students with deep theoretical knowledge of cryptography and system security. Most study courses are focused on applied mathematics, informatics and telecommunication technologies. The graduate has detailed knowledge about communication and information systems, data transfer and its security, including the use and design of software applications. She is able to analyze modern ciphers and cryptographic protocols, evaluate their security and propose their concrete usage in communication systems. She has a deep knowledge of operating systems, programming languages, database systems, distributed applications, etc. She is also experienced in task algoritmization. She is able to design novel technological solutions for telecommunications with high security standards. The graduate is able to understand and design modern cryptographic systems.

Graduates of the program "Information Security" will be positioned in research, development and design teams, in expert groups of production or business organizations, in the academic sphere and in other institutions involved in science, research, development and innovation, in all companies where communication systems and secure information transfer through data networks are being applied and used.
Our graduates are particularly experienced in the analysis, design, creation or management of complex systems aimed for secure data transfer and processing, as well as in the programming, integration, support, maintenance or sale of these systems.

Doctoral studies are carried out according to the individual study plan, which will prepare the doctoral student in cooperation with the doctoral student at the beginning of the study. The individual study plan specifies all the duties stipulated in accordance with the BUT Study and Examination Rules, which the doctoral student must fulfill to successfully finish his studies. These responsibilities are time-bound throughout the study period, they are scored and fixed at fixed deadlines. The student enrolls and performs tests of compulsory courses, obligatory elective subjects with regard to the focus of his dissertation, and elective courses (English for PhD students, Solutions for Innovative Entries, Scientific Publishing from A to Z).
The student may enroll for the state doctoral exam only after all the tests prescribed by his / her individual study plan have been completed. Before the state doctoral exam, the student prepares a dissertation thesis describing in detail the goals of the thesis, a thorough evaluation of the state of knowledge in the area of ​​the dissertation solved, or the characteristics of the methods it intends to apply in the solution. The defense of the controversy that is opposed is part of the state doctoral exam. In the next part of the exam the student must demonstrate deep theoretical and practical knowledge in the field of cryptology, system security, network security and electrical engineering, electronics. The State Doctoral Examination is in oral form and, in addition to the discussion on the dissertation thesis, it also consists of thematic areas related to compulsory and compulsory elective subjects.
To defend the dissertation, the student reports after the state doctoral examination and after fulfilling conditions for termination, such as participation in teaching, scientific and professional activity (creative activity) and at least a monthly study or work placement at a foreign institution or participation in an international creative project .

The doctoral studies of a student follow the Individual Study Plan (ISP), which is defined by the supervisor and the student at the beginning of the study period. The ISP is obligatory for the student, and specifies all duties being consistent with the Study and Examination Rules of BUT, which the student must successfully fulfill by the end of the study period. The duties are distributed throughout the whole study period, scored by credits/points and checked in defined dates. The current point evaluation of all activities of the student is summarized in the “Total point rating of doctoral student” document and is part of the ISP. At the beginning of the next study year the supervisor highlights eventual changes in ISP. By October, 15 of each study year the student submits the printed and signed ISP to Science Department of the faculty to check and archive.
Within the first four semesters the student passes the exams of compulsory, optional-specialized and/or optional-general courses to fulfill the score limit in Study area, and concurrently the student significantly deals with the study and analysis of the knowledge specific for the field defined by the dissertation thesis theme and also continuously deals with publishing these observations and own results. In the follow-up semesters the student focuses already more to the research and development that is linked to the dissertation thesis topic and to publishing the reached results and compilation of the dissertation thesis.
By the end of the second year of studies the student passes the Doctor State Exam, where the student proves the wide overview and deep knowledge in the field linked to the dissertation thesis topic. The student must apply for this exam by April, 30 in the second year of studies. Before the Doctor State Exam the student must successfully pass the exam from English language course.
In the third and fourth year of studies the student deals with the required research activities, publishes the reached results and compiles the dissertation thesis. As part of the study duties is also completing a study period at an abroad institution or participation on an international research project with results being published or presented in abroad or another form of direct participation of the student on an international cooperation activity, which must be proved by the date of submitting the dissertation thesis.
By the end of the winter term in the fourth year of study students submit the elaborated dissertation thesis to the supervisor, who scores this elaborate. The final dissertation thesis is expected to be submitted by the student by the end of the fourth year of studies.
In full-time study form, during the study period the student is obliged to pass a pedagogical practice, i.e. participate in the education process. The participation of the student in the pedagogical activities is part of his/her research preparations. By the pedagogical practice the student gains experience in passing the knowledge and improves the presentation skills. The pedagogical practice load (exercises, laboratories, project supervision etc.) of the student is specified by the head of the department based on the agreement with the student’s supervisor. The duty of pedagogical practice does not apply to students-payers and combined study program students. The involvement of the student in the education process within the pedagogical practice is confirmed by the supervisor in the Information System of the university.

The study program directly follows the Bachelor´s and Master´s study programs Information Security at FEKT, BUT.

1. Cybersecurity in Transport Systems

   The research will focus on the analysis of threats, vulnerabilities and security methods in Intelligent Transportation Systems (ITS), the Internet of Vehicles, inter-vehicle/intra-vehicle communication and associated digital systems and services in transportation. The work will further deal with how to secure these smart transport systems in an agile, robust and sustainable manner. The minor goal of the work is research of the protection of user privacy in ITS services. The participation on Department’s national and international research projects is expected.

   Tutor: Malina Lukáš, doc. Ing., Ph.D.

2. Hardware-Accelerated Cryptography

   The topic is aimed on research and development in the field of hardware-accelerated algorithms on the FPGA platform. Student will focus on methods of secure implementation with protection against side-channel attacks. Student’s paid involvement in research projects at the UTKO department is expected.

   Tutor: Hajný Jan, doc. Ing., Ph.D.

3. Hybrid Cryptography

   The topic is focused on the design of hybrid cryptographic systems combining classical cryptography (ECDSA, RSA, AES, etc.) with post-quantum cryptography (especially the CRYSTALS family) and possibly quantum cryptography (QKD). The student will be involved in ongoing projects focusing on the design of algorithms and their practical testing on various platforms.

   Tutor: Hajný Jan, doc. Ing., Ph.D.

4. Innovative Approaches to Network Process and Topology Simplification Using Bio-Inspired AI Algorithms

   Network process and topology simplification is pivotal in a multitude of fields such as network design, system architecture, and more. Within this doctoral research, the student will delve into the exploration and development of innovative principles for network process and topology simplification. The principles will be employed on complex systems (like, 5G telecommunication networks systems etc.) to autonomously simplify and optimize their structures and processes. Drawing inspiration from nature, the student will employ bio-inspired algorithms such as Genetic Algorithms, Particle Swarm Optimization, Ant Colony Optimization, and others. These algorithms mimic biological phenomena like evolution, swarm behavior, and foraging patterns, providing robust solutions for complex optimization problems. These developed algorithms will be utilized across various fields, including network design, system architecture simplification, and more. The effectiveness and efficiency of these algorithms will be validated through numerical simulations and practical implementations. The research tools will primarily encompass various types of bio-inspired algorithms, both established and emerging, with potential exploration into hybrid techniques that integrate bio-inspired algorithms with other machine learning or optimization methodologies. The mission of this doctoral research is to expand the current understanding and application of bio-inspired algorithms in network process and topology simplification, paving the way for more efficient, simplified, and optimized systems across various industries. For the topic there is possibility of additional financial support.

   Tutor: Burget Radim, doc. Ing., Ph.D.

5. Machine learning in photonics

   Photonic systems cover a wide range of areas from data transmission, through sensors to quantum networks. Each photonic system has its own requirements for the transmission infrastructure, but also for input and output parameters. Manual optimization of large networks based on different types of signals is almost impossible. With the help of machine learning, the optimization of both the transmitted signals and the entire infrastructure can be achieved in photonic networks. Last but not least, machine learning algorithms can be used to detect and classify non-standard network behavior to minimize security risks.

   Tutor: Münster Petr, doc. Ing., Ph.D.

6. Methods for security testing of computer networks with IPv6 protocol

   The topic focuses on the research and design of new methods that can be used for security testing (including penetration testing) in networks in different phases of the transition to IPv6 (Internet Protocol version 6) protocols. The research focuses on methods applicable to testing network infrastructure, endpoint devices and other specialized devices, with an emphasis on so-called transition mechanisms.

   Tutor: Jeřábek Jan, doc. Ing., Ph.D.

7. Modern Authentication and Electronic Service Access Control

   The topic is focused on the research and development of novel cryptographic mechanisms for user authentication. Student will focus on the methods of strong authentication for online services based on multiple factors (smart cards, tokens, telephones) and their formal security proofs. Student’s paid involvement in research projects at the UTKO department is expected.

   Tutor: Hajný Jan, doc. Ing., Ph.D.

8. New methods using artificial intelligence for penetration test

   The topic is focused on research and design of new methods using artificial intelligence that can be used during the security testing (penetration test). The research is focused on suitable methods for web applications penetration testing, network infrastructure penetration testing, but also for penetration testing of dedicated devices such as smart meters. The participation on Department’s research projects is expected.

   Tutor: Martinásek Zdeněk, doc. Ing., Ph.D.

9. New Principles of Anomaly Detection Using Machine Learning

   Anomaly detection is a concept widely applied to numerous domains, such as financial fraud, cyber intrusion and many others. Within this topic, a doctoral student will focus on research and development of new principles and algorithms of anomaly detection using machine learning. The proposed principles will be applied mainly on text data (normal text, network syslogs, etc.) to automatically identify anomalies in large datasets. Some of the fields, where the developed anomaly detection algorithms will be applied on, include e-mails, network performance syslogs, network security syslogs and patient symptoms data. As preferred research tools, student will primarily consider supervised and unsupervised machine learning concepts, as well as deep learning techniques. The developed algorithms will be verified through the numerical simulations as well as implementation in experimental networks. This topics will be in close cooperation with ATT company with possibility of additional financial support.

   Tutor: Hošek Jiří, doc. Ing., Ph.D.

10. Optical fiber infrastructure security

    Fiber optic networks have evolved rapidly in recent years to meet the ever-increasing demand for increasing capacity. Today, optical fibers are widely used in all types of networks due to not only transmission speed or maximum achievable distance but also security. Although fiber optic networks are considered completely secure, there are ways to capture or copy part of the data signal. Both imperfections of passive optical components and, for example, monitoring outputs of active devices can be used. With the advent of quantum computers, current encryption could be broken. It is therefore necessary to address the security of fiber-optic networks, analyze security risks and propose appropriate countermeasures.

    Tutor: Münster Petr, doc. Ing., Ph.D.

11. Post-Quantum Cryptography

    The topic is aimed on research and development in the field quantum-safe systems for key establishment and encryption. Student will focus on methods of quantum and post-quantum systems combination and practical aspects of implementation into existing networks in BUT lab. Student’s paid involvement in research projects at the UTKO department is expected.

    Tutor: Hajný Jan, doc. Ing., Ph.D.

12. Quantum key distribution secured optical networks

    Today's digital world is dependent on data security during communication but also in storage, for example in e-banking, e-commerce, e-health or e-government. With the advent of quantum computers, there is a risk of potential security breaches today. Quantum Key Distribution (QKD) provides a way to distribute and share secret keys that are necessary for cryptographic protocols. The information is coded into individual photons. Integrating QKD systems into existing network infrastructure used for telecommunications is a topical challenge. Some other major challenges include increasing of the key rate, increasing the range of the QKD system, or reducing the complexity and robustness of existing solutions.

    Tutor: Münster Petr, doc. Ing., Ph.D.

13. Research on Interactive Methods for Effective Cybersecurity Education and Training

    The topic of the dissertation focuses on research and design of new methods for cybersecurity education. The research will focus on developing a mathematical model and profiling algorithm that will evaluate the user in a cyber range platform environment based on the assumptions of the learned or trained persons concerning difficulty, task completion time, cues used, and other measurable parameters. The topic should also focus on research of appropriate methods to detect cheating in cyber range environments. The research and validation of the developed methods will be carried out in the BUTCA platform. Participation in the department’s research projects is expected.

    Tutor: Martinásek Zdeněk, doc. Ing., Ph.D.

14. Security and Privacy in Intelligent Infrastructures

    The topic focuses on the research of applied modern cryptography (light cryptography, schemes with privacy protection, authentication and key management) and optimization of schemes within intelligent networks such as Internet of Everything, Internet of vehicles and smart cities. The research deals in more detail with the design of secure decentralized and heteregenous networks and services with enhanced privacy protection of users. The participation on Department’s national and international research projects is expected.

    Tutor: Malina Lukáš, doc. Ing., Ph.D.

15. Simulation and laboratory model for cybersecurity assessment in the power industry

    The aim of this thesis is to propose a comprehensive model of the communication options considered for smart grids in the power industry, which will allow the verification of cyber security in a simulation and laboratory environment. The choice and selection of the appropriate technology and its security is the most difficult issue for distribution system operators when building a communication infrastructure. Therefore, another objective of this work is to propose and experimentally validate a methodology for evaluating communication technologies and their security for smart grids in the power industry.

    Tutor: Mlýnek Petr, doc. Ing., Ph.D.

16. Tools and Methods for Cybersecurity Education

    The topic is focused on researching new methods and developing tools for designing and creating training and educational programs in cybersecurity. The aim of the topic is to develop a methodology for designing programmes using the ENISA ECSF framework, design and verification of methods for assessing programme content according to the ECSF skills and knowledge structure, extension of algorithms for quantification of content according to individual profiles and development of software tools implementing the above mentioned functionalities including ensuring compliance with current legislation and recommendations of security authorities.

    Tutor: Hajný Jan, doc. Ing., Ph.D.