Archívum - 2019-2020-2

Archive - 2019-2020-2


IT Security (VIHIAC01)

This course is delivered in the Computer Science BSc program in the 6th semester. The official syllabus is available on the faculty's web site. On this page, you will find operative information related to the course. Lecture slides are available in the Moodle system of the department.

Information about on-line forms of teaching the course IT Security

Teaching of the course IT Security (vihiac01 English) will be continued using on-line methods from the week of March 23, 2020, as follows:

Lectures:
We will pre-record the lectures and make the recording available both in audio and video forms. The slides in PDF format will be available in the Moodle system of the department as before. In addition to the slides, we put in Moodle a URL pointing to the audio material and a URL pointing to the video of the lecture. Tha audio material will be stored on our local lab server, while the video will be made available via Youtube. The PDF of the slides and the audio will be small enough to be able to download and use them in an off-line manner. Youtube will need on-line connection obviously.
At the regular scheduled time intervals of the lecture, we will hold an on-line consultation using MS Teams. Those who want to participate at this consultation should get familiar with the course material (see above) before the consultation, and use the consultation to ask questions. Questions can also be sent to the lecturers before the consultation by sending e-mail to vihiac01en@crysys.hu. The lecturer will prepare for answering the received questions and begin the consultation with discussing those questions. Then (s)he will respond to any further questions received during the consultation via the chat panel of the Teams meeting. The consultiations will be held in the third 45 min of the scheduled time interval of the course, i.e., 12pm-1pm, on every Thursday. The first 2x45 min can be used to study the pre-recorded and distributed course material. It is not mandatory to participate at these consultations; use the opportunity wisely.

Homework:
Nothing is changed with respect to the homework, the challenges should be solved and solutions should be submitted in the same way as before.

Test:
The test towards the end of the semester was planned to be a Moodle test from the beginning. However, to complete the test, you should not come to the university, but the test will be done from home now. More information on this will be distributed in due time. It is clear that we will not be able to check and detect potential cheating, so I remind you to engineering ethics I was talking about at the first lecture. Cheating is unfair with those who don't cheat, it is morally unacceptable and it should be avoided.

Communications:
We will continue to use broadcast Neptun messages as an official form of communication with you, however we advise you to watch also the web site of the course and the course's Moodle.

There will surely be glitches, we ask you to be patient and cooperative. We make all efforts to finish this semester as efficiently and effectively as possible.

CrySyS Team

Célkitűzés

Objectives

This course gives an overview of the different areas of IT security with the aim of increasing the security awareness of computer science students and shaping their attitude towards designing and using computing systems. The course prepares BSc students for security challenges that they may encounter during their professional career, and at the same time, it provides a basis for those student who want to comtinue their studies at MSc level. We put special emphasis on software security and the practical aspects of developing secure programs.

Lecturers

Előadók

Követelmények

Requirements

During the semester

1 homework assignment (consisting in multiple challenges) and 1 test.

Calculation of the grade

P = T + H, where T is the points obtained on the test (min 20, max 50 points) and H is the points obtained for the homework (min 20, max 50 points).
Grading:
excellent (5): P >= 85 points;
good (4): P >= 70 points;
satisfactory (3): P >= 55 points;
pass (2): P >= 40 points;
fail (1): P < 40 points.

Órák ideje és helye

Time and location of classes

Előadás

Lecture

  • Live consultation on Teams, Thursday, 12:15-13:00, on-line

Konzultáció

Megbeszélés szerint, az előadóval előre egyeztetett időpontban.

Office hours

Please contact the lecturer to schedule an appointment.

Előadások

Lectures

Dátum Téma Előadó
Date Topic Lecturer
2020.02.13. Introduction to IT security Buttyán L.
2020.02.20. History of cryptography Buttyán L.
2020.02.27. Applied modern cryptography Buttyán L.
2020.03.05. Malware and botnets Bencsáth B.
2020.03.12. User authentication and access control Ládi G.
2020.03.19. --- Spring Break ---
2020.03.26. Software security Futóné Papp D.
2020.04.02. Memory corruption attacks and countermeasures Gazdag A.
2020.04.09. Web security Gazdag A.
2020.04.16. Mobile and cloud security Gazdag A., Ládi G.
2020.04.23. Network security (offensive side) Bencsáth B.
2020.04.30. Network security (defensive side) Holczer T.
2020.05.07. Privacy issues and PETs Ács G.
2020.05.14. Economics of security and privacy Biczók G.
2020.05.21. Exam test

Házi feladat

Homework

Homework assignment

The homework assignment for the semester will be available on the avatao.com platform. You should use this platform to access the challenges of the assignment. However, solutions must be submitted via the Moodle system of the department. The challenges are related to the topics covered by the course. We recommend that you first try to solve every challenge on your own, without any help. However, if you get stuck, you can look at the hints available for each challenge and read part of the solution, or the whole solution, if you wish. In other words, you can access the hints, read them, and solve the challenge with that help. We expect you to spend some time on this and don't ask your mates for the solution, as you can read and understand it yourself. We also hope that some of you will take the challenges as real challenges and try to solve them without the hints. Remember that you can learn the most by DOING it, not just listening and reading about it.

Deadlines

Határidő

Cryptography: March 12, 2020.
User authentication: March 26, 2020.
Software security: April 9, 2020.
Memory corruption: April 23, 2020.
Web security: May 7, 2020.

Számonkérés

Exam

  • Test: May 21, 2020. 10:15 - 11:00 or 18:15 - 19:00 (Budapest time) - on-line, Moodle
  • Test re-take: May 25, 2020. 10:15 - 11:00 or 18:15 - 19:00 (Budapest time) - on-line, Moodle

Kiegészítő források

Readings

Korábbi évek

Previous Years