Infopaket

Protection of Information in Computer Systems

ВБС 2.1

Вибіркова дисципліна для ОП

First

2021/2022

7 Semester

4

The student should know: Principles of information protection in computer systems; Basic methods and tools for security audit of computer systems; Principles of operation of protection mechanisms at the level of operating systems; Basic methods of cryptographic protection of information; The structure of typical cryptographic ciphers; The working principle of public key infrastructure; Theory of cryptographic protocols. The student should be able to: Use software for auditing computer systems; Work with databases of software vulnerabilities; Configure information protection tools at the level of the operating system; Work with cryptographic libraries to create a reliable communication channel.

Full-time form

The educational discipline "Protection of information in computer systems" is based on the cycle of disciplines of professional and practical training. Before studying the discipline "Information protection in computer systems", it is necessary to prepare and pass exams/tests in the following disciplines: "Hardware and software of computer systems", "Programming", "Computer networks", "System software " "Higher mathematics". The student must know: higher mathematics, software and hardware of a personal computer, operating systems, computer networks, programming. The student should be able to: use a personal computer, use a hypervisor to configure virtual machines and the network between them, install the OS and system software in virtual machines, configure system software.

Concept of security in computer systems; The most common techniques of attacks on computer systems; Software vulnerabilities; Security and protections at the level of the operating system; Protection against attacks on computer systems in the corporate network; Introduction to cryptography; Mathematical foundations of cryptography; Frequency analysis of texts; Block ciphers; Authentication of messages; Diffie-Hellman key exchange protocol; Rivest-Shamir-Adleman (RSA); Key management and cryptographic protocols.

1. Hertzog, Raphaël, and Jim O'Gorman. Kali Linux Revealed: Mastering the Penetration Testing Distribution. offsec Press, 2017. 2. Kocher, Paul, et al. "Spectre attacks: Exploiting speculative execution." arXiv preprint arXiv:1801.01203 (2018). 3. Savard, John JG. "A cryptographic compendium." John Savard's Home Page 30 (1999). 4. Гапак О.М. Методичні вказівки і завдання до лабораторних робіт з курсу «Захист інформації в комп’ютерних системах» для студентів 3-4-го курсу інженерно-технічного факультету спеціальності «комп’ютерна інженерія». – Ужгород: «АУТДОР-ШАРК», 2019. – 52 с. 5. Грайворонський М.В., Новіков О.М. Безпека інформаційно-комунікаційних систем. – К.: ВНV, 2009. – 608 с. 6. Остапов С.Е., Валь Л.О. Основи криптографії: навчальний посібник. Чернівці: Книги–ХХІ, 2008. – 188с. 7. Schneier B. Applied cryptography, 1996 // Cover and title pages. – 1997. – Т. 125147.

Lectures, laboratory work, individual independent work

Semester assessment: The study semester has two content modules: content module 1 includes topics 1-5, content module 2 includes topics 6-13. Intermediate modular control is estimated at 20 points. Final assessment (in the form of a score): The score ticket consists of 4 open-ended questions chosen at random. Each question is evaluated from 0 to 10 points. In total, you can get from 0 to 40 points for the credit work. A condition for achieving a positive grade for a discipline is obtaining at least 60 points, the grade for the exam cannot be less than 24 points. Conditions for admission to the final assessment: a condition for admission to the assessment is that the student obtains a total of no less than the critical-calculated minimum for the semester. Students who, during the semester, scored a lower number of points than the critical-calculated minimum of 36 points must write an additional test paper in order to be admitted to the credit.

Ukrainian