Hardware & Wireless Security (Hardware and embedded security)

The course is taught in English and aims to present the most significant aspects of Hardware Security, covering both intellectual property protection and the threads to the functionality of the systems, including their most common weakness, vulnerabilities, attacks, and possible mitigations and remediations. The course mixes lectures and hands-on experiences. The course includes a final exam in which students can face theoretical and practical questions related to hardware security.

Hardware & Wireless Security (Wireless and device-to-device communication Security)

The course, taught in English in the second semester of the second year of the Master of Science in Cybersecurity, is one of the characterizing courses of all the tracks. It aims at presenting the technologies for wireless communications and the security challenges they create for the cyber security of IT systems. This course focuses on the challenges in providing secure communication and network services in various wireless systems and approaches to managing these challenges. Topic coverage includes both the technology overview of different wireless communications systems and vulnerabilities, attacks, security mechanisms, and trade-offs at various layers of the protocol stack, from aspects of physical communication to application and service security issues; examples include jamming, MAC-layer misbehaviour, selective packet dropping, and cross-layer holistic attacks. The course introduces wireless technologies, including cellular, WiFi, Bluetooth, NFC, IoT-specific technologies and navigation systems. The students will learn about the various wireless system architectures and the security challenges one must consider and face to offer a reliable and secure communication system. The students will gain hands-on experience using tools and practical lab experiences.

Hardware & Wireless Security (Hardware and embedded security)

Having completed the course, the participant will: - Get familiar with the basic concepts of hardware security, and in particular: - System Security - Secure Environments - Hardware and Hardware-based Security - For each field, get familiar with its main: - Vulnerabilities - Attacks - Countermeasures

Hardware & Wireless Security (Wireless and device-to-device communication Security)

- Knowledge of the wireless communication - Knowledge of specific wireless technologies, including cellular, WiFi, Bluetooth, NFC, IoT-specific solutions and navigation systems. - Knowledge of security challenges in wireless transmission systems - Knowledge of the leading solution and countermeasures to detect and limit possible attacks - Gain hands-on experience in vulnerability analysis and secure system, service, or protocol design.

Hardware & Wireless Security (Hardware and embedded security)

Attendees are assumed to be familiar with the basic concepts of: - C and C++ programming languages - Assembly programming languages - Computer Architectures - Digital System Design

Hardware & Wireless Security (Wireless and device-to-device communication Security)

- Knowledge of computer network architectures, WiFi, and TCP/IP protocol stack. - Basic knowledge of programming languages and application security. - Knowledge of the main categories of attack against IT systems. - Knowledge of the main concepts (public-key and symmetric encryption) and technologies (PKI, firewall, VPN, TLS) for IT security. - Knowledge of the security architectures for authentication and access control. - Ability to analyze the risks of a distributed application.

Hardware & Wireless Security (Hardware and embedded security)

- Introduction to Hardware Security [3h] - Basics of VLSI Design and IP [4h] - IP Security [10h] - Watermarking of HW IPs - Basics of PCB Security - Hardware-based security: [3h] - Introduction & Basic concepts - Implementations - Hardware Trust [6h] - Introduction & Basic Concepts - Hardware Counterfeiting - True Random Number Generators (TRNG) - Physically Unclonable Functions (PUF) - HW Attacks [10h] - Side-Channel Attacks - Fault Attacks - Test-infrastructure-based Attacks - Invasive Attacks - Hardware Trojans

Hardware & Wireless Security (Wireless and device-to-device communication Security)

1) Security at the physical layer (1.5 CFU) - Review of basic concepts for digital communications: Wireless Communication Overview, Wireless Channel, Signal Propagation, Digital Modulations - Physical layer security issues: jamming, anti-jamming/Jamming-resistance - Global Navigation Satellite Systems (GNSS) and positioning: Operating principles, signals and main systems (GPS and Galileo); Intentional and unintentional interference with GNSS signals, jamming, spoofing and countermeasures 2) Security of Cellular Networks (1 CFU) - 3G/4G/5G Network Structure and Architectures - Authentication and Confidentiality in cellular networks - Overview of Attacks and Countermeasures. 3) Security in WiFi Networks (1.5 CFU) - IEEE 802.11 Architecture and Protocols, Control and Management Frames - Security in WiFi: Rogue Access Points, WEP, WPA, IEEE 802.11i, IEEE 802.11w, Selfish behaviour at the WLAN MAC Layer. - Lab on WiFi security 4) Bluetooth security (1 CFU) - Overview of Bluetooth wireless technology, Bluetooth pairing, authentication, confidentiality, Low energy features - Bluetooth Vulnerabilities, Threats, and Countermeasures: bluesnarfing, bluejacking, DoS, MiTM - Lab on Bluetooth security 5) Security of Near Field Communications (NFCs) and RFIDs (1 CFU) - Introduction to NFC and RFID Technologies, Tags and Readers - NFC and RFID Security and Privacy Issues, Real-World Attacks, Standardisation Activities, Authentication and Access Control Protocols.

Hardware & Wireless Security (Hardware and embedded security)

Hardware & Wireless Security (Wireless and device-to-device communication Security)

Hardware & Wireless Security (Hardware and embedded security)

The course includes: - Lectures [36 h] - Hands-on sessions [24 h]

Hardware & Wireless Security (Wireless and device-to-device communication Security)

The course is structured into lectures in the classroom (5 credits) and laboratories (1 credit), consisting of software tools and sniffers to put into practice some of the theoretical attacks seen during the classes. During the labs, the students will discuss their solutions to the assigned exercises with the teachers.

Hardware & Wireless Security (Hardware and embedded security)

- Copies of the teaching materials used for both the lectures and the Labs.

Hardware & Wireless Security (Wireless and device-to-device communication Security)

The teachers will provide the material (slides and links to online resources) on the course website.

Hardware & Wireless Security (Hardware and embedded security)

Slides; Esercitazioni di laboratorio; Video lezioni dell’anno corrente; Strumenti di simulazione;

Hardware & Wireless Security (Wireless and device-to-device communication Security)

Hardware & Wireless Security (Hardware and embedded security)

Modalita di esame: Prova scritta in aula tramite PC con l'utilizzo della piattaforma di ateneo;

Hardware & Wireless Security (Wireless and device-to-device communication Security)

Modalita di esame: Prova orale facoltativa; Prova scritta in aula tramite PC con l'utilizzo della piattaforma di ateneo;

Hardware & Wireless Security (Hardware and embedded security)

Exam: Computer-based written test in class using POLITO platform;

Hardware & Wireless Security (Wireless and device-to-device communication Security)

Exam: Optional oral exam; Computer-based written test in class using POLITO platform;

...

Hardware & Wireless Security (Hardware and embedded security)

The course exam will consist of questions and short exercises.

Hardware & Wireless Security (Wireless and device-to-device communication Security)

The exam consists of a written test that may include open-answer and closed-answer questions or exercises to check that the student has acquired the expected knowledge and skills (see expected learning outcomes). For the part about skills, the questions may be simple exercises or use cases related to the tools experimented with in the laboratories. For each question, the maximum grade that can be obtained is specified. The final grade will be the sum of the grades assigned to the answers given to the questions. The written test will be taken using the Exams platform in a classroom. In case of technical problems, the students may be asked to write their test with pencil and paper. The total duration of the test, as measured by the Exams platform, which includes the setup time, is 1 hour and 40 minutes. The test is closed-book, i.e., the student cannot consult any material during the test and cannot use any electronic device except the PC used for the test. Students with a grade of 25/30 or higher can opt for the oral exam. During the oral, the students will discuss all topics presented during the course. The grade of the oral exam may add a score between -3 and +3 to the grade of the written exam. Additionally, the teachers will request an oral exam in case of doubts about the evaluation of the written test. The oral exam will consist of additional questions to resolve the teachers' doubts in the evaluation. A sample exam test will be made available to the students through the Exercise platform.

Gli studenti e le studentesse con disabilita o con Disturbi Specifici di Apprendimento (DSA), oltre alla segnalazione tramite procedura informatizzata, sono invitati a comunicare anche direttamente al/la docente titolare dell'insegnamento, con un preavviso non inferiore ad una settimana dall'avvio della sessione d'esame, gli strumenti compensativi concordati con l'Unita Special Needs, al fine di permettere al/la docente la declinazione piu idonea in riferimento alla specifica tipologia di esame.