Students will acquire knowledge about security issues of relevant Internet protocols, with special emphasis on principles and methods of protection of information and communication infrastructure.

1. identify key elements that influence the network and application security
2. explain the need for the implementation of security mechanisms
3. describe security methods and procedures in networks and applications
4. assess network and application security
5. identify security requirements of networks and applications
6. analyze strengths and weaknesses of security mechanisms

Lectures, with lecture notes and presentations available in advance on the web.

Midterm exam will be held after the first lecture cycle, the final exam after the second lecture cycle. The students can also take regular exams.

Laboratory exercises will be held in 5 cycles, each in extent of 3 hours.

Teaching staff is available for consultations during the whole academic year.

1. Introduction. Security threats. Security requirements for networks and services.
2. Security analysis. Protection measures. Security standards, organizations and bodies. Relevant laws and recommendations.
3. Cryptographic protection. Basic definitions and objectives: symmetric and asymmetric algorithms, hash functions, digital signature, key management.
4. Digital certificates. Public key infrastructure (PKI). PKI components and users. Architecture.
5. Operating system security. Vulnerabilities. Malware. Viruses, warms, trojans. Windows and Unix examples.
6. Protection of computers and networks. Types of threats and attacks, levels of defense. Examples of internet protocols' and applications' vulnerabilities. Protection methods on the network layer.
7. TCP/IP protocol stack security - network and transport layer. Protocol vulnerabilities and attacks.
8. Midterm examination.
9. Firewall: traffic filtering. Firewall architectures. Network address translation (NAT). Implementations. Advantages and disadvantages of various models.
10. Techniques and tools for vulnerability scaning. Intrusion detection systems. Host based and network based. Hybrid systems.
11. Virtual private networks: security protocols, design, advantages and disadvantages of various models.
12. Security of web traffic and web servers. HTTP security. SSL.
13. Web users management. Authentication. Application and browser security.
14. E-mail security. S/MIME, PGP. Domain Name System.
15. Final examination.