Computer Systems and Communications Security
Code
9232
Academic unit
Faculdade de Ciências e Tecnologia
Department
Departamento de Informática
Credits
6.0
Teacher in charge
Henrique João Lopes Domingos, José Augusto Legatheaux Martins
Weekly hours
2
Teaching language
Português
Objectives
Starting from the previous backgorund of students in computer systems and network security topics, the objective of this course is the study of advanced research topics and emerging solutions for dependable and secure computer systems and networks, as well as, security and privacy approaches for global distributed systems and applications.
The course topics are organized in four main study directions: (i) New Foundations of Applied Computational Cryptography, covering some relevant techniques and mechanisms, such as: secure erasure coding, secret-splitting algorithms, threshold and group oriented digital signatures, attribute-based and identity-based encryption, homomorphic cryptography and searchable-encryption techniques, with particular impact on emergent solutions for privacy-preserving data-management and computations with encrypted data and intrusion-tolerant services for distributed systems;
(ii) Trusted Computing, studying relevant and emergent techniques related to the use of TPM devices, Trusted Execution Environments and Runtime Integrity Attestation solutions;
(iii) Privacy-Enhanced Computing Systems, involving relevant research-proposals for private data management and privacy-enhanced information retrieval solutions, including the support for oblivious operations on outsourced encrypted data-repositories;
(iv) Secure communication for eco-systems of IoT solutions, approaching secure communication, data-dissemination and routing services for wireless sensor-based networks (WSNs) and personal area networks (PANs), and the secure integration of such eco-systems in trusted, usable and dependable IoT (Internet-of-Things) solutions.
Prerequisites
Conhecimentos anteriores em redes de computadores, programação e algoritmos de sistemas distribuídos, fundamentso sistemas de operação e fundamentos de segurança para sistemas e redes de computadores.
Como referência apontam-se entre os conhecimentos anteriores sober segurança os seguintes conhecimentos tidos como nucleares no EEE/ACM Computer Science Curriculum:
I) Frameworks de segurança para sistemas e redes de computadodres bem como aspetos de normalização de serviços de segurança para sistemas e redes de computadores.
II) Conhecimentos sobre fundamentos e tecnologias de segurança para sistemas distribuídos, redes de computadores e aplicações, nomeadamente: ferramentas e técnicas criptográficas; protocolos e serviços de autenticação; autenticação de utilizadores; modelos de controlo de acessos; sistemas de detecção e prevenção de intrusões, segurança básica ao nível de sistemas de operação, protocolos de segurança na pilha TCP/IP e segurança básica de redes locais sem fios.
Como referência dos anteriors tópicos sugere-se o enquadramento do seguinte livro e capítulos indicados.William Stallings, L. Brown, Computer Security: Principles and Practice - 3rd Edition, Pearson (2014)
- Chap. 1 - Overview
- Chap. 2 - Cryptographic Tools
- Chap 20 - Symmetric Encryption and Message Confidentiality
- Chap. 21 - Public Key Cryptography and Message Authentication
- Chap. 3 - User Authentication
- Chap. 4 - Access Control
- Chap. 8 - Intrusion Detection
- Chap. 9 - Firewalls and Intrusion Prevention Systems
- Chap. 10 - Buffer Overflow
- Chap. 11 - Software Security
- Chap. 12 - Operating System Security