The course aims to provide the student with a basic knowledge of the main aspects and technologies relating to the security of telecommunications networks, with the basic concepts, reference terminology, security architectures, and the main encryption techniques (symmetrical and asymmetrical) being summarised at the beginning of the course. It is noted that, although the proposed content is mainly focused on network and telecommunications security topics, most of it is also relevant to the general context of computer security.
The module aims to provide students with basic knowledge of the main aspects and technologies related to the security of telecommunications networks and, in a broader sense, of distributed computing systems. The knowledge acquired enables the student to deal with the design, configuration, and management of telecommunications and IT security in complex digital systems. The topics covered are organized into three parts: - Basic Technologies: cryptography, secure hashing, message authentication code, digital signature, key distribution, and authentication. - Protocols: data link layer security, network layer security, transport layer security, application layer security. - Specific technologies: firewalling, blockchain, and cloud security”.
The course's main objective is to provide a basic knowledge of the main aspects and techniques required to implement secure network and telecommunications services. The class is structured into two main parts.
The first part, after a concise reminder of the basic concepts, architectures, and main encryption techniques, completes the knowledge of the fundamental technologies with the presentation and discussion of secure hash functions, causal number generation mechanisms for security applications, data integrity assurance technologies, digital signature mechanisms, key distribution techniques and finally authentication approaches and solutions.
The second part introduces and describes the most relevant security protocols in use at the different network layers, in particular the line layer, the protocols and mechanisms adopted on both wired and wireless LANs, the IPSec protocol for the network layer, the SSL-TSL protocols for the transport layer, and secure e-mail and DNS protection mechanisms at the application layer.
As a final topic, firewalls' operation and use, hints of blockchain, and cloud security are addressed.
At the end of the course, the student is familiar with the leading cyber security techniques used in telecommunications networks, can identify the most suitable solutions for securing different network contexts, and can critically analyze approaches that have already been adopted or proposed.
The student, to understand the course, need to have followed and studied the course Internet Technologies: Architectures and Protocols (90147) or to know about the following arguments
Traditional direct lessons with application experiences, which are chosen among the network, transport, application layers, or firewalls. Please note that both support material and lectures are in English.
Students with valid certifications for Specific Learning Disorders (SLDs), disabilities or other educational needs are invited to contact the teacher and the School's contact person for disability at the beginning of teaching to agree on possible teaching arrangements that, while respecting the teaching objectives, take into account individual learning patterns. Contacts of the School's disability contact person can be found at the following link Comitato di Ateneo per l’inclusione delle studentesse e degli studenti con disabilità o con DSA | UniGe | Università di Genova
Students with valid certifications for Specific Learning Disorders (SLDs), disabilities or other educational needs are invited to contact the teacher for additional support materials.
Ricevimento: Appointment upon students' requests (direct or by email).
The timetable for this course is available here: EasyAcademy
The examination consists of an initial multiple-choice written test followed by an oral assessment. The examined students only access the oral assessment if they obtain a score above a minimum threshold of sufficiency on the test.
Within the mandatory written examination, the student's knowledge of the main concepts discussed in the course shall be evaluated. The oral exam ascertains the level of critical capacity and reasoning acquired by the student on the course topics through pointed questions on the various technologies, requests to outline possible solutions to application problems, and critical analysis of predefined scenarios and situations.
Students with learning disorders ("disturbi specifici di apprendimento", DSA) will be allowed to use specific modalities and supports that will be determined on a case-by-case basis in agreement with the delegate of the Engineering courses in the Committee for the Inclusion of Students with Disabilities.