DATA PRIVACY AND SECURITY
Obiettivi formativi
The course provides essential knowledge in data privacy and cybersecurity, blending theoretical concepts with practical skills. Students will explore core principles of modern cryptography, secure network communication, blockchain technologies, and common software vulnerabilities (particularly those relevant to web security). In addition, the course includes real-world case studies and examines regulations in the context of cybersecurity and privacy.
Risultati di apprendimento attesi
Making judgements: Students are expected to be able to reflect on the managerial and social responsibilities of applying digital technologies in the development of enterprise systems. Throughout the entire course, students will be invited to apply their multidisciplinary knowledge to critically assess realistic scenarios for strategic and tactical decision making.
Communications Skills: This course will give the students the possibility to acquire and to understand major terms and concepts so as to communicate effectively their ideas, findings, proposals, analysis, and critical reasoning in the area of data privacy and security.
Learning skills: This course will empower students with the capability to learn how to use networking and security tools, and to apply them to real-world problems in an independent and critical way.
Contenuti Del Corso
The course will cover the following topics: Cryptography: symmetric and asymmetric ciphers, hashing, and digital signatures; Authentication: password, MFA, certificates; Core concepts behind networks: TCP/IP; Blockchain technologies; Anonymous communications: TOR network, Dark Web; Software vulnerabilities: CWE, Zero day vs n-day, CVE, CVSS, OWASP Top 10; Web security: server-side and client-side vulnerabilities; Cybersecurity case studies and regulations.
Testi Di Riferimento
Slides and course material will be made available on the e-learning platform.
Metodologie Didattiche
The course consists of lectures and practical lab sessions.
Modalità di verifica dell'apprendimento
Continuous assessment: Lab sessions will propose challenges that students should solve (with the help of the lecturers) to demonstrate their active participation and understanding of the topic covered.
Final exam: (a) Project: Analysis of one real-world vulnerabilities; (b) Written exam: Open and closed questions on the course topics.
Criteri per l’assegnazione dell’elaborato finale
Quality of the research proposal addressing a relevant problem in data privacy and security
Settimana 1
Cryptography: symmetric ciphers; Lab: crypto challenges; Lab: crash course on computer systems
Settimana 2
Cryptography: asymmetric ciphers; Lab: crypto challenges; Lab: crash course on virtualization and containers
Settimana 3
Cryptography: hashing and digital signatures; Lab: crypto challenges; Lab: crash course on computer networks (part I)
Settimana 4
Authentication: passwords, MFA, certificates; Lab: password cracking challenges; Lab: crash course on computer networks (part II)
Settimana 5
Anonymous communication: TOR, Dark Web; Lab: Network challenges (part I); Lab: Network challenges (part II)
Settimana 6
Blockchain technologies; Lab: blockchain challenges (part I); Lab: blockchain challenges (part II)
Settimana 7
Software vulnerabilities: CWE, Zero day vs n-day, CVE, CVSS, OWASP Top 10; Lab: crash course on web technologies (part I); Lab: crash course on web technologies (part II)
Settimana 8
Web security: server-side vulnerabilities; Lab: web challenges (part I); Lab: web challenges (part II)
Settimana 9
Web security: client-side vulnerabilities; Lab: web challenges (part III); Lab: web challenges (part VI)
Settimana 10
Cybersecurity case studies
Settimana 11
Cybersecurity regulations
Settimana 12
Wrap-up of the course