During the System security course, we will analyze the individual components of computer systems through security vulnerabilities.

Students will be introduced to the definition of the system as a whole, through which we investigate various potential dangers from the point of view of security.

We will start with the basics of authentication and authorization, we will learn about different attack vectors and how to effectively know them, prevent, eliminate and mitigate the damage of a potential attack. We will present the operation and capabilities of intrusion detection and 

protection systems, as well as their limitations.

An important role in system protection is also played by virtualization and the segmentation component, which will subsequently concretely analyze the operation of virtual machines and hypervisors (as tools), as well as disk and memory virtualization.

We will also present the principle of minimum rights, the basics of fire barriers and other functionalities to limit potential damage in cases of attacks or system malfunctions.

As part of the course, we will present the course and goal of penetration testing (external, internal and physical) and report writing. We will also briefly focus on the topic of basic attacks on web applications, programs in general, and the implementation of cryptographic algorithms in networks

The contents of the course include the following topics:

• Common vulnerabilities and exposures (CVE) and in-depth security,
• Fire barriers and access control list,
• leveraging encryption for security,
• system integrity, change management, alarms,
• minimum permissions and mandatory access control,
• VMs and containers,
• mitigation and web application firewall (WAF),
• automation and physical security,
• scanning of servers, systems on servers and software,
• trusted computing.