Secure Infrastructures

Recommended Prerequisites

Basic Unix skills; Basic networking and computer architecture concepts.

Teaching Methods

The methodologies used in the course unit will be organized as follows:

- Presentation and discussion of concepts in theoretical classes.

- Practical exercises and preparation of assignments in real-life scenarios, with guidance in laboratory classes.

Practical assignments will be structured in a project logic, allowing for a deeper exploration of a (sub)topic of the program, through the application of concepts taught, in the scope of vulnerability and risk analysis, and subsequent planning and development of alternative solutions.

Learning Outcomes

This course aims to provide students with the opportunity to acquire knowledge about advanced techniques for the design and protection of infrastructures, articulating the different aspects of their development with strict security requirements. In the end, students should acquire skills in the analysis, design, development, and validation of critical infrastructures involving real case studies, focusing on the following key competencies:
- Evaluation, analysis, and management of cybersecurity and related risks within computer systems and the organizations in which they operate.
- Practical application of theoretical knowledge in the assessment and management of security, in contexts ranging from data centers to industrial IoT environments.
Additionally, it is intended that students develop and exercise skills in problem-solving, oral and written communication, interpersonal relations, and teamwork.

Work Placement(s)

No

Syllabus

• Design of secure infrastructures for computing infrastructures (on-premises, cloud-based and hybrid)
• Risk management and analysis
• Incident response techniques
• Intrusion detection and prevention systems (IDS/IPS)
• Alarm and audit mechanisms
• Security in mobile environments
• Internet of Things (IoT) and Industrial IoT security
• Protection of industrial control networks and other critical infrastructures
• Security in communication services
• Standardization and regulatory frameworks.

Head Lecturer(s)

Professor A Definir - Departamento de Engenharia Informática

Assessment Methods

Assessment
Exam: 50.0%
Resolution Problems: 50.0%

Bibliography

Dotson, Chris. 2023. Practical Cloud Security: A Guide for Secure Design and Deployment. Sebastopol, CA: O’Reilly Media.

Simos, Mark, 2023, Zero Trust Overview and Playbook Introduction: Guidance for business, security, and technology leadersand practitioners, Packt Publishing, ISBN 1800568665.

Knapp, Eric D., and Joel Thomas Langill. 2024. Industrial Network Security: Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems. 3rd ed. Rockland, MA: Syngress Media.

Chantzis, Fotios, Evangel Deirme, and Ioannis Stais. 2021. Practical Iot Hacking: The Definitive Guide to Attacking the Internet of Things. San Francisco, CA: No Starch Press.

Ackerman, Pascal, 2021, Industrial Cybersecurity - Second Edition: Efficiently monitor the cybersecurity posture of your ICS environment, Packt Publishing, ISBN 1800202091