Networks, cloud and application security (Computer networks and cloud technologies)

The course, taught in English in the first semester of the first year of the Master of Science in Cybersecurity, is the first module of the annual course "Networks, cloud and application security", mandatory for all tracks. The course delves into the design principles of essential technologies underlying modern computer networks and cloud technologies, providing a good understanding of fundamental and advanced topics related to the working of the Internet, Networking Systems, and Cloud Computing solutions.

Networks, cloud and application security (Networks, cloud, and application security)

The course, taught in English in the second semester of the first year of the Master of Science in Cybersecurity, is the second module of the annual course "Networks, cloud and application security", mandatory for all tracks. The course delves into the essential approaches, methodologies, and technologies related to the security of traditional and modern computer networks and cloud environments.

Networks, cloud and application security (Computer networks and cloud technologies)

Students will build up knowledge (at a different level of depth depending on the specific topic), skills and a deep understanding of mechanisms and motivations underlying the following technologies and solutions: - Fundamental concepts of computer network design: IPv4 network design, Virtual local area network design, Routing and Forwarding solutions - Advanced topics computer network solutions: IPv6 network design, MPLS protocol architecture, Protocols and techniques for quality of service on IP networks - Next-generation computer networks paradigm: Software Defined Networking (SDN) and Network Functions Virtualization (NFV). - Computing virtualization technologies and cloud computing models (public/private/hybrid, IaaS/PaaS/SaaS).

Networks, cloud and application security (Networks, cloud, and application security)

Students will build up knowledge (at a different level of depth based on the topic), skills and a deep understanding of mechanisms and motivations underlying the following technologies and solutions: - Different attacks against traditional network systems and protocols; - Design common network defenses and filtering solutions; - Traffic analysis to discover security problems; - Virtual Private Network and channel protection mechanisms and technologies; - Security and privacy topics in cloud computing services; - Security issues in next-generation computer networks.

Networks, cloud and application security (Computer networks and cloud technologies)

Knowledge about computer networks as obtained in a bachelor's degree (Laurea) in computer engineering. In particular, excellent understanding of the TCP/IP protocol suite (IPv4, TCP and UDP) and basic concepts related to technologies used to realize local area networks (Ethernet).

Networks, cloud and application security (Networks, cloud, and application security)

Knowledge about computer networks and cloud systems as obtained in a bachelor's degree (Laurea) in computer engineering and the first module of the course "Computer networks and cloud technologies". Knowledge about fundamental aspects of cybersecurity as provided by the courses "Information System Security", such as security definitions and properties, the main category of attacks (e.g., sniffing, spoofing, DOS), basic terminology of network security (secure communication, firewall, IDS, IPS).

Networks, cloud and application security (Computer networks and cloud technologies)

- IPv4 network design (0.5 CFU), Routing in the Internet (0.5 CFU), LAN and VLAN design (0.7 CFU) - IPv6 protocol, coexistence with IPv4, and IPv6 network design (1CFU) - MPLS (0.9 CFU), Techniques for quality of service (QoS) support (0.2 CFU), Optical networks (0.2 CFU) - Computing virtualization technologies (0,2 CFU) - Software Defined Networking and Network Programmability(0,3 CFU) - Network Functions Virtualization (0,2 CFU) - Cloud computing models and technologies: (1,3 CFU)

Networks, cloud and application security (Networks, cloud, and application security)

- Advanced analysis of network attacks at different layers of the ISO/OSI stack (1 CFU) - Network security monitoring (0.5CFU) - Basis of network incident response and event management (0.3CFU) - Network defenses and filtering solutions: (1.2CFU); - Virtual Private Network (IPsec VPN, TLS VPN) and channel protection (1.2CFU) - Cloud Computer Security: (1.5 CFU) - Security issues to Software Defined Networking and Network Functions Virtualization (0,3 CFU)

Networks, cloud and application security (Computer networks and cloud technologies)

Networks, cloud and application security (Networks, cloud, and application security)

Networks, cloud and application security (Computer networks and cloud technologies)

The course consists mainly of classroom lectures. These are complemented by supervised classroom exercise sessions in which students can apply the concepts learned during the lectures to realistic use cases and discuss them with the instructor. Finally, for a subset of the topics, the course includes lab sessions to help retain the concepts learned during the lectures by observing the related technologies in action. Specifically, the course is structured into lectures in the classroom for 5.1 credits and laboratories for 0.9 credits.

Networks, cloud and application security (Networks, cloud, and application security)

The course consists mainly of classroom lectures. These are complemented by supervised classroom exercise sessions in which students can apply the concepts learned during the lectures to realistic use cases and discuss them with the instructor. Finally, for a subset of the topics, the course includes lab sessions to help retain the concepts learned during the lectures by observing the related technologies in action. Specifically, the course is structured into lectures in the classroom for 4.8 credits and laboratories for 1.2 credits.

Networks, cloud and application security (Computer networks and cloud technologies)

The teachers will provide the material (copy of slides and links to online resources) on the course website.

Networks, cloud and application security (Networks, cloud, and application security)

The teachers will provide the material (copy of slides and links to online resources) on the course website.

Networks, cloud and application security (Computer networks and cloud technologies)

Slides; Dispense; Esercitazioni di laboratorio; Video lezioni dell’anno corrente; Strumenti di auto-valutazione;

Networks, cloud and application security (Networks, cloud, and application security)

Slides; Dispense; Libro di testo; Esercitazioni di laboratorio; Video lezioni dell’anno corrente;

E' possibile sostenere l’esame in anticipo rispetto all’acquisizione della frequenza

Networks, cloud and application security (Computer networks and cloud technologies)

Modalità di esame: Prova scritta in aula tramite PC con l'utilizzo della piattaforma di ateneo;

Networks, cloud and application security (Networks, cloud, and application security)

Modalità di esame: Prova orale facoltativa; Prova scritta in aula tramite PC con l'utilizzo della piattaforma di ateneo;

Networks, cloud and application security (Computer networks and cloud technologies)

Exam: Computer-based written test in class using POLITO platform;

Networks, cloud and application security (Networks, cloud, and application security)

Exam: Optional oral exam; Computer-based written test in class using POLITO platform;

...

Networks, cloud and application security (Computer networks and cloud technologies)

The exam consists of 30 multiple-choice questions to ensure the student has acquired the expected knowledge (see expected learning outcomes). For the part about skills, the questions may be related to the tools experimented with in the laboratories. The written Test will be taken using the Exams platform in a classroom. In case of technical problems, the students may be asked to write their Test with pencil and paper. The Test is closed-book, i.e., the student cannot consult any material during the Test and cannot use any electronic device except for the PC used for the Test. The maximum grade of the Test is 30/30, and the total duration, as measured by the Exams platform, which includes the setup time, is 1 hour and 10 minutes. The following evaluation criteria will be applied: correct answer: 1 point, wrong answer: -0.33 points, no answer provided: 0 points. A mark on the written Test larger than or equal to 23/30 will give the student the right to take an integrative (and elective) oral test. The oral Test allows the student to obtain the 30L. A sample exam test will be made available to the students through the Exercise platform.

Networks, cloud and application security (Networks, cloud, and application security)

The exam consists of a written test that may include open-answer and closed-answer questions or exercises to check that the student has acquired the expected knowledge (see expected learning outcomes). For the part about skills, the questions may be simple exercises or use cases related to the tools experimented with in the laboratories. The written Test will be taken using the Exams platform in a classroom. In case of technical problems, the students may be asked to write their Test with pencil and paper. The Test is closed-book, i.e., the student cannot consult any material during the Test and cannot use any electronic device except for the PC used for the Test. The maximum grade of the Test is 30/30, and the total duration, as measured by the Exams platform, which includes the setup time, is 1 hour and 30 minutes. A mark on the written Test greater than or equal to 25/30 will give you the right to take an integrative (and totally elective) oral test. The oral Test allows the student to obtain the 30L. Alternatively, the student can develop individual homework about one of the course's topics, delivering a written report followed by an oral presentation. The report and the oral presentation are evaluated up to 30L/30. A sample exam test will be made available to the students through the Exercise platform.

Gli studenti e le studentesse con disabilità o con Disturbi Specifici di Apprendimento (DSA), oltre alla segnalazione tramite procedura informatizzata, sono invitati a comunicare anche direttamente al/la docente titolare dell'insegnamento, con un preavviso non inferiore ad una settimana dall'avvio della sessione d'esame, gli strumenti compensativi concordati con l'Unità Special Needs, al fine di permettere al/la docente la declinazione più idonea in riferimento alla specifica tipologia di esame.