| 10626968 | BIOMETRIC SYSTEMS [INFO-01/A] [ENG] | 1st | 1st | 6 |
Educational objectives Educational goals:
To be able to design and evaluate a biometric or multibiometric system.
To know the features and basic techniques related to physical biometric identifiers, such as face, fingerprint, iris, etc., and behavioral, such as gait, signature (dynamic), voice, typing mode, etc. Architecture of a biometric system: unimodal systems and multibiometric architectures. To be able to evaluate the performance of a biometric system according to the adopted modality: verification and identification. To be able to evaluate/assure the robustness of a biometric system against spoofing attacks (identity theft).
Knowledge and understanding:
Fundamentals of design of a biometric system and of the techniques to extract/match the specific characteristics for the main biometric traits.
Applying knowledge and understanding:
To be able to design and implement an application for biometric recognition for at least one biometric trait.
Making judgments:
To be able to assess the performance and robustness of a biometric system to presentation attacks. To be able to transfer techniques and protocols in different contexts.
Communication skills:
To be able to communicate/share the requirements of a biometric system, the most suited modalities for a certain application, and the performance measures of a system.
Learning skills:
To be able to autonomously get a deeper insight on the course topics, in relation to either specific/complex techniques and methods, or to biometric traits not covered in the course.
|
| 10626703 | Computer systems and programming [INFO-01/A] [ENG] | 1st | 1st | 6 |
Educational objectives General Objectives
The main objective of the course is to provide the fundamentals of system programming.
Specific Objectives
Students will be able to independently develop programs that interact with the operating system and exploit its services.
Knowledge and Understanding
Knowledge of the C programming language and of the tools normally available in the development environment (compiler, preprocessor, debugger, make, etc.).
Knowledge of the main functions of an operating system and its fundamental components (scheduler, virtual memory manager, filesystem, etc.).
Knowledge of the most important primitives and interfaces for creating and synchronizing processes and threads, and for exchanging messages and signals.
Knowledge of the socket framework and its API.
Applying Knowledge and Understanding
Ability to invoke system primitives and correctly integrate system calls into applications.
Ability to select the most appropriate frameworks and paradigms according to application requirements and runtime characteristics.
Autonomy of Judgement
Students will be able to assess the complexity and the implementation criteria of specific applications.
Communication Skills
Students will be able to describe how their applications use the system call API and explain the reasons behind their choices.
Learning Skills
Students will be able to further develop their skills by examining advanced topics in system programming.
|
| 10625772 | DATA AND NETWORK SECURITY [INFO-01/A] [ENG] | 1st | 2nd | 6 |
Educational objectives Educational goals
The Data and Network Security course is designed to provide students with a comprehensive understanding of a broad spectrum of cybersecurity concepts, paradigms, and real-world applications. It provides a solid foundation in the fundamental principles of cybersecurity while exposing students to current trends and cutting-edge developments in the field. Moreover, the course promotes active participation through class discussions on cybersecurity topics.
The course emphasizes a critical perspective on the evolving threat landscape, encouraging students not only to learn the foundations of cybersecurity but also to explore emerging challenges and current research trends. Each lecture is structured with a dual purpose: first, to introduce a specific cybersecurity topic, such as authentication mechanisms, malware, covert communication channels, cyber deception, remote attestation in IoT, digital forensics, data privacy, software-defined networking, and advanced persistent threats; second, to highlight key research questions, emerging threats, and novel techniques related to each topic. This approach ensures that students acquire both a solid theoretical background and an awareness of practical challenges and research-driven issues.
A central aim of the course is to cultivate critical thinking and research-oriented curiosity. Students are encouraged to move beyond a superficial understanding of the topics by engaging with research papers that have advanced the state of the art or uncovered new vulnerabilities and system abuses. To foster this mindset, students will conduct independent research on a cybersecurity topic of their choice, analyze current approaches, present their findings to their peers, and participate in discussions on future directions in cybersecurity. This active engagement with contemporary research equips students with the skills needed to critically evaluate, question, and contribute to the evolution of the field.
Knowledge and understanding
By the end of the course, students will have acquired knowledge of the fundamental principles of data and network security, with particular reference to core security concepts, such as confidentiality, integrity, and availability; common cyber threats, vulnerabilities, and attack vectors, with a focus on emerging trends and practices; network security architectures, protocols, and defense mechanisms; security standards, policies, and risk management methodologies; and current research trends and emerging technologies in cybersecurity.
Applying knowledge and understanding
By the end of the course, students will be able to analyze the security requirements of computer networks and information systems, analyze and critically evaluate current solutions in the field of data and network security, evaluate security mechanisms such as malware detection systems and emerging network technologies, identify vulnerabilities, and propose appropriate mitigation strategies.
Making judgements
By the end of the course, students will have developed the ability to critically assess the security posture of systems and networks; critically evaluate emerging trends and proposed attack and defense solutions presented in the scientific literature; compare alternative security solutions while considering technical, organizational, and economic constraints; analyze security incidents and identify appropriate response strategies; make informed decisions regarding risk management and security policies; and evaluate the ethical, legal, and privacy implications associated with cybersecurity solutions.
Communication skills
By the end of the course, students will be able to communicate security concepts clearly to both technical and non-technical audiences, with particular attention to technical audiences having limited knowledge of specific cybersecurity domains; produce technical documentation, security reports, and risk assessments, including SWOT analyses; prepare technical presentations suitable for both academic and industrial contexts to communicate the outcomes of their research activities and emerging research directions; and effectively present security analyses and research proposals.
Learning skills
By the end of the course, students will have developed the ability to independently acquire and evaluate new knowledge in the rapidly evolving field of cybersecurity through an in-depth analysis of the scientific literature on state-of-the-art security solutions; analyze scientific literature, technical standards, and industry best practices to address emerging security challenges and propose innovative solutions or new research directions; and adapt to evolving technologies, emerging threat scenarios, and changing regulatory requirements, such as the GDPR.
|
| 10630068 | Economics of technology and management [IEGE-01/A] [ENG] | 1st | 2nd | 6 |
Educational objectives Educational goals
Know how to apply management accounting tools to support and improve corporate decision-making processes.
Use planning methodologies to manage complex technology projects.
Knowledge and understanding
Gain a solid understanding of the fundamental concepts of economics and management, with a particular focus on technological aspects.
Develop a thorough understanding of the key aspects, concepts, and tools of management accounting and project management.
Applying knowledge and understanding
The ability to effectively implement time and cost planning tools in business or technology case studies.
The ability to translate IT security and infrastructure requirements into budget plans that are sustainable for the organization.
Making judgements
Develop the critical thinking skills needed to analyze, evaluate, and understand complex management issues.
Recognize the economic and technological impact of business decisions.
Communication skills
Be able to communicate and defend one’s strategic decisions.
Correctly use technical and economic terminology related to project and cost management.
Learning skills
Develop the flexibility to independently adopt new business models and management tools that will emerge in the cybersecurity and technological innovation sectors.
|
| 10628603 | INTERNET OF THINGS [INFO-01/A] [ENG] | 1st | 2nd | 6 |
Educational objectives General objectives:
The course will provide students with both theoretical and practical background on wireless and Internet of Things systems. The course includes an hands on lab.
Specific objectives:
The course will provide students with both theoretical and practical background on wireless and Internet of Things systems. The unique challenges of such systems will be introduced, explaining why they requires special design choices with respect to wired networks. The student will be able to reason on what are the right design choices to increase efficiency, reliability, energy efficiency,..., creating the background for being able to design future generation sensing and IoT systems. He/she will also have the possibility to have hands on experience on programming IoT devices in a lab.
Course summary
-Introduction to Wireless Systems (design challenges of a wireless system; things to know on how the signal propagate, on how to design a low power system and on how to cope with limited resources available)
-From 2G to 5G: Cellular systems evolution towards an integrated system including also Internet of Things (Architecture, Protocols, Procedures, detailed presentation of how cellular systems work)
-Sensing systems basics: MAC protocols, routing protocols, localization and synchronization
-Towards the Internet of Things: features, standards, open challenges, low power IoT radio technologies -SigFox, LoRa
-Trends in Internet of Things research. This part will cover on going research issues related to future generation IoT systems. It will be based on research papers and maybe subject of revision during the class based on students interests and emerging topics. The following topics are expected to be addressed:
*Towards zero energy consuming IoT systems: how energy harvesting and wake up radios, as well as passive backscattering technologies are changing what and for how long we can do in IoT systems.
* IoT security issues and how blockchain technologies is being exploited in large scale IoT deployments to enable IoT vertical applications.
* When IoT meets machine learning: system level optimization at scale through machine learning techniques.
* IoUT (Internet of Underwater Things): how IoT, robotic technologies and machine learning are changing the Blue Economy sector.
- Lab: IoT systems programming
Knowledge and understanding:
At the end of the course students will have acquired knowledge about the performance trade offs associated to different system design choices and will be able to read and understand technical documents on wireless and IoT systems (papers, standards,---). At the end of the course students will be able to analyze standards and technical documents, understanding and implementing them. He/she will have done practical hands on experience on the programming and performance evaluation of such systems.
Application of knowledge and understanding:
The students will be able to provide solutions for new generations of wireless and IoT systems.
Judgment skills:
Students will develop the analytical skills necessary to evaluate various alternatives for the design of wireless and IoT systems selecting the best alternative for a
specific application scenario.
Communication skills:
Students will learn to present, in a synthetic and accurate way, using an adequate technical language, ideas, solutions and research results on wireless and IoT systems.
Learning ability:
The course will provide students with both theoretical and practical background on wireless and Internet of Things systems.
|
| 10630001 | MOBILE APPLICATIONS AND CLOUD COMPUTING [IINF-05/A] [ENG] | 2nd | 1st | 6 |
Educational objectives General Objectives
The "Mobile Edge and Cloud Computing" course explores the integration of mobile computing, edge computing, and cloud computing, focusing on architectural and software aspects for the development of modern, scalable, and adaptive distributed systems. The course includes the development of mobile applications that leverage features such as mobile device sensors and integrate modern Machine Learning libraries and cloud services. Additionally, the course covers techniques for load balancing, offloading, and resource optimization, as well as workload management in distributed scenarios.
Specific Objectives
Knowledge and Understanding
The course aims to provide students with the necessary knowledge to understand:
the specific characteristics of mobile apps compared to desktop apps;
the main design patterns for mobile applications;
the key security issues related to mobile application development;
the use of major cloud backend services and the edge/fog computing paradigm;
the methodologies for designing and developing simple backend services deployed on cloud or edge platforms;
the classification of cloud service models.
At the end of the course, students will be familiar with the architectures and paradigms of mobile, edge, and cloud computing, understanding their operating principles, distinctive characteristics, and the main development models, including mobile-first, cloud-native, and serverless.
Applying Knowledge and Understanding
Students will be able to:
design and develop, independently or with the support of Artificial Intelligence tools, software applications for mobile systems (e.g., using Android Studio) that exploit sensors, graphical user interfaces, and cloud services according to the mobile-first paradigm;
design and understand cloud-native applications;
design and develop serverless backend services deployable on cloud or edge infrastructures;
configure and use cloud services through the management consoles of providers such as Google Cloud and AWS;
critically evaluate alternative solutions for implementing cloud and edge services by comparing them in terms of performance, energy efficiency, communication latency, scalability, and cost;
understand and apply the main resource management algorithms for edge and cloud computing systems, including autoscaling and load balancing algorithms, also based on Reinforcement Learning techniques.
Making Judgments
Students will develop the ability to critically evaluate different architectures and design solutions by comparing their advantages, limitations, and implications in terms of scalability, sustainability, security, privacy, and quality of service, also through the analysis of scientific papers published in leading international journals and conferences.
Communication Skills
Students will acquire the ability to describe and present architectures, algorithms, and design solutions using appropriate technical terminology through the preparation and discussion of presentations on scientific papers, as well as short in-class seminars.
Learning Skills
Students will develop the ability to independently explore new technologies, frameworks, and platforms in the fields of mobile, edge, and cloud computing by consulting technical documentation and scientific literature, and by continuously updating their knowledge in this rapidly evolving field.
|
| 10625908 | Practical Network Defense [INFO-01/A] [ENG] | 1st | 2nd | 6 |
Educational objectives Educational goals
The "Practical Network Defense" course aims to provide students with the theoretical and, above all, practical skills necessary to design, implement, and monitor effective defense strategies within modern network infrastructures. Through a hands-on approach heavily focused on cloud-based virtual laboratory environments, students will learn how to analyze network vulnerabilities, mitigate the attack surface, and respond promptly to threats by simulating real-world attack and defense scenarios.
Knowledge and understanding
Upon successful completion of this course, students will have acquired knowledge regarding:
The fundamental principles of network security, with a particular focus on the Defense in Depth paradigm, and minimizing the attack surface.
The operation, architecture, and configuration of perimeter and internal security tools, such as Firewalls, VPNs, IDS/IPS, Proxies, and Demilitarized Zones (DMZs).
Network monitoring and traffic analysis methodologies through log study and packet capturing.
Cyber deception concepts using Honeypots and Honeynets.
The main network attack techniques (e.g., session hijacking, man-in-the-middle) used to test the robustness of defenses.
The role of security policies in network service governance and compliance.
Applying knowledge and understanding
Upon successful completion of this course, students will be able to:
Configure and deploy security appliances (Firewalls, IDS/IPS, Proxies) within a cloud-based virtual infrastructure.
Apply network hardening and network access control to restrict packet flow using granular rules.
Isolate critical network components by designing DMZs and segmenting traffic securely.
Utilize analysis and monitoring tools to detect anomalies, analyze network packets, and interpret system logs.
Deploy and monitor Honeypots/Honeynets in isolated environments to analyze attacker behavior.
Conduct controlled security tests (simulating attacks such as MitM or hijacking) to verify the effectiveness of the applied countermeasures.
Translate high-level requirements into enforceable and measurable network security policies.
Making judgements
Upon successful completion of this course, students will be able to:
Critically evaluate the security posture of an existing network infrastructure, identifying attack vectors and potential weaknesses.
Select the most appropriate countermeasures and defense tools based on the balance between cost, complexity, performance, and risk level.
Analyze network traffic and logs to independently distinguish between legitimate activities, false positives, and actual intrusion attempts.
Formulate independent judgments on the effectiveness of security policies adopted within an organization.
Communication skills
Upon successful completion of this course, students will be able to:
Draft technical reports and project documentation clearly describing the implemented defense architecture and configurations deployed in the cloud laboratory.
Effectively communicate discovered network vulnerabilities and mitigation strategies to both technical specialists and non-technical/managerial stakeholders.
Clearly explain and justify the rationale behind choosing a specific security policy or countermeasure.
Learning skills
Upon successful completion of this course, students will have developed:
The ability to independently keep up to date with new cyber threats, emerging vulnerabilities (Zero-Days), and evolutions in network defense tools.
The autonomy to navigate cloud and virtualization environments to test and implement new security solutions.
The capability to learn how to use new monitoring, attack simulation, or encryption software by directly consulting official technical documentation.
|
| 10627806 | Risk management [ECON-09/B] [ENG] | 2nd | 1st | 6 |
Educational objectives General objectives
The course addresses the assessment of cyber risks affecting organizational information systems, the methodologies for managing and mitigating such risks, and the implementation of appropriate countermeasures to enhance the security of private and public organizations.
Specific objectives
The course examines the relationships between the operating mechanisms of information systems and computer networks and the cyber threats to which they may be exposed. It covers methods for identifying, assessing, and mitigating security risks through the adoption of appropriate technical and organizational countermeasures. Particular emphasis is placed on the practical application of the acquired knowledge through case studies and hands-on exercises. The course is primarily based on the ISO/IEC 27005 standard for information security risk management, complemented by the NIST SP 800-30 framework.
Knowledge and understanding
At the end of the course, students will be able to:
analyze the most common and significant cyber threats and relate them to vulnerabilities affecting information systems and networks;
assess the business risks associated with security threats and vulnerabilities;
recommend appropriate risk treatment strategies and security countermeasures or justify the acceptance of identified risks when appropriate;
explain the fundamental mechanisms used to detect and respond to attacks against information systems and networks;
understand the principles of continuous improvement in information security risk management.
Applying knowledge and understanding
At the end of the course, students will be able to identify, analyze, and assess the risks affecting the operation and security of information systems and evaluate their potential impact on organizational activities. They will be able to apply recognized risk assessment and management methodologies to select appropriate technical, organizational, and administrative countermeasures, taking into account effectiveness, costs, and governance requirements.
Making judgements
Students will develop the analytical skills required to evaluate alternative solutions during the risk assessment process, critically assessing security architecture choices, the risks associated with different design decisions, and the security objectives required according to the sensitivity and value of the information being protected.
Communication skills
Students will acquire the ability to document and justify their technical decisions using appropriate reporting methods and automated documentation tools. They will also be able to prepare and deliver presentations on topics related to cybersecurity risk management.
The notions acquired during the course will provide students with a basic knowledge in order to further deepen the more technical aspects, and to keep themselves informed about the continuous developments and updates of the assessment of cybersecurity risks of systems
|
| 10627805 | Secure Computation [INFO-01/A] [ENG] | 1st | 2nd | 6 |
Educational objectives Educational goals
The objectives of this course consist of presenting the concept of secure computation with the purpose of designing systems for data protection according to the data in use paradigm, therefore avoiding data leakage towards servers, satisfying the principle of data minimization. This course includes both theoretical and practical contents.
The course will introduce the concepts of security through simulation, the use of garbled circuits, the computations through encrypted data via homomorphic encryption, secret sharing and fairness in distributed computations, including both theoretical and practical aspects, presenting concrete use cases and devoting part of the allocated time to the use of libraries allowing to concretely implement software including the above functionalities.
Knowledge and understanding
Knowledge of the concept of secure, fair and private computation.
Knowledge of the cryptographic tools useful for secure computation.
Understanding the practical limits when achieving practical secure computation.
Applying knowledge and understanding
Use of libraries to realize applications of secure computation.
Measure the performance and the obtained security levels with existing libraries.
Making judgements
The students will be able to judge the actual (in)security of a design and its performance.
Communication skills
The students will learn how to illustrate the various options to securely realize systems through techniques of secure computation.
Learning skills
The students will obtain the necessary background for a deeper study of the subjects.
|
| 10626358 | SECURITY IN SOFTWARE APPLICATIONS [INFO-01/A] [ENG] | 1st | 1st | 6 |
Educational objectives General Objectives
The basics of security in software programs
Specific Objectives
Methodologies and tools to find and remove the most common software vulnerabilities, and to develop software free of security flaws
Knowledge and Comprehension
Learning the most effective techniques to remove vulnerabilities from code and to develop software satisfying specific security policies
Ability to Apply Knowledge and Comprehension
The student is able to transfer knowledge of methodologies to the selection of appropriate techniques and tools to remedy the presence of vulnerabilities.
Autonomy of Judgement
The student learns to analyze problems and identify the proper methodologies and tools to solve software security problems.
Ability to Communicate
The student is able to communicate successfully and defend the choices made in the selection of appropriate methodologies and tools.
Ability to Learn
The student is able to continue the learning process autonomously to u
|
| 10628635 | Systems and Control Methods for Cyber-Physical Security [IINF-04/A] [ENG] | 1st | 2nd | 6 |
Educational objectives General objectives
The course aims at providing basic concepts and methodologies of control theory, operations research and game theory, which constitute an analytical framework for the modeling of cyber-physical systems and of the main types of attacks on cyber-physical systems (for example: "denial of service", " replay attack "," covert attack "," false data injection ") and for the solution of security games and decision problems. The course will summarize a number of such methodologies and show how their application is able to deal with cyber-physical security problems in numerous example use cases.
Specific objectives
Knowledge and understanding:
The students will learn methodologies for to model and solve security problems in cyber-physical systems by unsing control theory, game theory and operations research methodologies.
Apply knowledge and understanding:
At the end of the course, the student will be able to derive abstract mathematical models for a wide class of cyber-physical systems, to analyze, starting from these models, some important properties concerning their security.
Critical and judgment skills:
The student will be able to to face cybersecurity problems through control theory, game theory and operations research methodologies.
Communication skills:
The course activities allow the student to be able to communicate / share the main problems concerning cybersecurity problems in cyber-physical systems and the possible design choices for their soultions.
Learning ability:
The aim of the course is to make students aware on how to deal with control and decision-making problems in the context of cybersecurity problems in cyber-physical systems.
|
| 10627535 | Blockchain and distributed ledger technologies [INFO-01/A] [ITA] | 2nd | 1st | 6 |
Educational objectives General objectives
Blockchains represent a novel and revolutionary paradigm for the distributed management of transactional systems. A blockchain is a protocol for managing distributed ledgers, i.e., for the decentralised storage of a tamper-proof sequence of transactions maintained and verified by participating nodes. A combination of peer-to-peer networks, consensus mechanisms, cryptography, and market incentives lies at the core of blockchains, ensuring data integrity and transparency. An increasing number of blockchain platforms supports smart contracts, i.e., executable code that defines how business processes are carried out between parties (e.g., transferring digital assets when a condition is met). Designing secure, verifiable, and efficient blockchain-based applications requires the ability to properly architect interactions among involved parties. The course covers the principles and technologies underlying blockchain platforms and their properties, while also providing tools for designing and analysing decentralised applications.
Specific objectives
The course covers four main areas: 1) fundamentals of blockchain and distributed ledger technologies; 2) operation of Bitcoin, transactions, UTXO, Script, and Proof-of-Work consensus; 3) operation of Ethereum, accounts, EVM, gas, Proof-of-Stake, and an introduction to smart contracts, including basics of tokens and NFTs; 4) analysis of DeFi protocols, wallets, incentives, and blockchain-based applications.
Knowledge and understanding
Students will learn the fundamentals of blockchain and distributed ledger technologies, understanding the interaction between cryptographic primitives, data structures, peer-to-peer networks, transactional models, and consensus protocols that ensure integrity, persistence, and security. They will also study Bitcoin and Ethereum, focusing on transactions, UTXO, Script, Proof-of-Work, accounts, EVM, gas, and Proof-of-Stake. Smart contracts will be introduced, including their role and functioning, with implementation insights on tokens and NFTs. An overview of cybersecurity challenges related to wallets, DeFi, exchanges, and blockchain applications will be provided, along with regulatory and privacy considerations.
Application of knowledge and understanding
By the end of the course, students will have a strong understanding of distributed ledger and blockchain fundamentals and will be able to design and implement blockchain-based systems. They will also be able to produce high-value reports for stakeholders of decentralised applications.
Making judgments
Students will develop the ability to evaluate the quality of decentralised applications and blockchain solutions in terms of reliability, behavioural robustness, execution cost, on-chain/off-chain balance, applicability, cybersecurity, and privacy.
Communication skills
Students will learn how to document design choices using diagrams and reporting tools, and will also develop the ability to prepare presentations on scientific topics.
Learning skills
The knowledge acquired will provide a solid foundation for further technical study and for independently staying up to date with developments in blockchain and distributed ledger technologies.
|
| 10627247 | Machine Learning Security [INFO-01/A] [ENG] | 2nd | 1st | 6 |
| 10627472 | Quantum Computing [INFO-01/A] [ENG] | 2nd | 1st | 6 |
Educational objectives Educational goals:
The course aims to equip students with foundational concepts of quantum computing that will enable them to pursue further studies or take up jobs in the quantum IT industry.
This course has four specific goals:
to introduce the mathematical foundations of quantum computing that are necessary to understand the counterintuitive features of quantum algorithms;
to present the fundamental notions of quantum computing;
to introduce several non-trivial quantum algorithms and quantum communication protocols, and to analyze their behavior;
to show how simple quantum algorithms and protocols can be implemented and run on a simulator or on a quantum computer.
Knowledge and understanding:
At the end of the course, students should be aware of and fully understand the main differences between classical and quantum computers, the quantum circuit and bra–ket formalisms, and the main quantum algorithms (Grover’s, Shor’s, HHL, etc.) and protocols (e.g., BB84 and teleportation). In addition, students should be familiar with the different technologies used for quantum hardware implementation.
Applying knowledge and understanding:
Students will be able to use the theoretical notions presented in class to develop and/or implement quantum solutions to problems. The practical sessions will provide hands-on experience with quantum circuits run on simulators or quantum computers, reinforcing the theoretical concepts covered in lectures. In addition, students will be able to deepen their studies independently by consulting other materials on the subject, including the scientific literature.
Making judgments:
Students will refine these skills through regular problem-solving assignments to be completed at home. The acquired knowledge and skills will enable them to critically select or adapt existing quantum approaches to solve the problem at hand, or to develop new quantum techniques where necessary. They will also be able to evaluate efficiency and identify the pros and cons of their quantum solutions.
Communication skills:
Students will be encouraged to collaborate with their peers through the development, documentation, and completion of homework assignments.
Learning skills:
The course will equip students with the technical background necessary to pursue doctoral (PhD) studies both in related fields such as quantum communication and quantum simulation, and in specific aspects of quantum computing.
|
| 10628969 | Advanced cryptography [INFO-01/A] [ITA] | 1st | 2nd | 6 |
Educational objectives General Objectives
Traditional cryptographic tools are insufficient for data protection in emerging scenarios. The objectives of this course consist in presenting several modern cryptographic tools and techniques along with their applications to realize the principle of "security and privacy by design" in cyberspace. This course provides both theoretical and practical expertise.
Specific Objectives
The course will illustrate the power of advanced signature schemes, advanced encryption schemes, verifiable random functions, privacy-preserving proof systems, and cryptographic puzzles. A particular focus will be given to concrete applications such as e-voting, e-auctions, privacy-preserving contact tracing, digital cash, anonymous cryptocurrencies, identity wallets, secure messaging, fighting misinformation, GDPR compliance (right to be forgotten and data minimization principles), and practical libraries and tools for advanced cryptography.
Knowledge and Understanding
Knowledge of the security properties of advanced cryptographic tools.
Knowledge of the main hardness assumptions on which the security of advanced cryptographic tools is based.
Knowledge of cryptographic schemes currently used in practice.
Understanding of their practical and theoretical properties.
Applying Knowledge and Understanding
How to select and combine the appropriate advanced cryptographic tools for a given application.
How to analyze the security and efficiency of a system based on advanced cryptographic tools.
Autonomy of Judgment
Students will be able to assess whether a system is secure according to a realistic threat model.
Communication Skills
Students will learn how to illustrate the resilience of a digital system against concrete attacks.
Learning Skills
Students will acquire the necessary background for deeper study of the subject.
|
| 10628435 | Security and Privacy of Smart Environments [IINF-05/A] [ENG] | 2nd | 1st | 6 |
Educational objectives GENERAL OBJECTIVES
The course aims to provide students with a comprehensive overview of the security and privacy challenges in smart systems, including cyber-physical systems, smart homes, smart cities, and intelligent transportation systems. With the integration of sensors, actuators, connectivity, and AI-based automation, smart systems expose sensitive data and critical infrastructure to a wide range of threats. The course introduces principles, technologies, and methodologies to design secure and privacy-preserving smart environments. It also explores the socio-technical aspects of deploying such systems in real-world contexts.
SPECIFIC OBJECTIVES
Knowledge and Understanding: Students will gain an understanding of the architectural and functional aspects of smart systems and the related security and privacy implications.
Apply Knowledge and Understanding: Students will be able to analyze smart system scenarios, identify vulnerabilities, and apply relevant protection techniques.
Critical and Judgment Skills: Students will develop critical thinking on the design trade-offs between functionality, usability, security, and privacy in smart environments.
Communication Skills: Through class discussions and project presentations, students will enhance their ability to communicate technical concepts clearly and effectively.
Learning Ability: The course encourages self-learning and the development of practical skills through case study analysis and project activities.
|