Courses – Fakultet tehničkih nauka u Novom Sadu

Subject: Security and Privacy in the Internet of Things (19.SEM020)

Native organizations units: No data

Type of studies	Title
Master Academic Studies	Software Engineering and Information Technologies (Godina: 1, Summer)
Master Academic Studies	Information Engineering (Godina: 1, Summer)
Master Academic Studies	Computing and Control Engineering (Godina: 1, Summer)
Master Academic Studies	Information and Analytics Engineering (Godina: 1, Summer)
Master Academic Studies	Information Security (Godina: 1, Summer)

General information:

Category	Theoretical-methodological
Scientific or art field	Applied Computer Science and Informatics
Interdisciplinary	No
ECTS	6

Educational goal:

Students learn about the methods and techniques for modeling and implementing the security aspects of the Internet of Things with data protection and privacy preservation in mind.

Educational outcome:

After successfully completing the course, students gain theoretical and practical knowledge about the secure engineering of the Internet of Things, data protection and privacy preservation. The students are able to design, implement and evaluate the state of the art security techniques for IoT devices. Also, the students are able to understand different security threats in the Internet of Things and the methods for their detection, prevention, and remediation.

Course content:

Introduction to secure engineering of the Internet of Things: definition, basic concepts, security requirements, types of devices and architectures. Types of attacks: wireless reconnaissance and mapping, physical security attacks, security protocol attacks, application security attacks. Principles of secure engineering in IoT: building security into design and development, threat modeling, compliance, system monitoring, penetration testing, security training and education. Cryptography in IoT: algorithms for encryption, decryption, hash functions, digital signatures, cryptographic controls built into IoT messaging and communication protocols, key exchange. Identity and access management in IoT: registration and device lifecycle, authentication mechanisms, IoT IAM (Identity and Access Management) infrastructure, access control schemes, trust models. Data protection and privacy preservation in IoT: challenges and requirements for privacy preservation in IoT, privacy impact assessment, schemes for privacy protection. Cloud security for IoT: cloud services for IoT, cloud security controls for IoT, new approaches in cloud computing and IoT integration.

Teaching methods:

Lectures. Computer practice. Consultations. The examination is oral. The final grade is formed on the basis of achievement in the laboratory practice classes and oral examination.

Literature:

Authors	Title	Year	Publisher	Language
Džejms Foršou	NAPADI NA MREŽNE PROTOKOLE HAKERSKI VODIČ	2018	MIKRO KNJIGA	Serbian language
Edward Ashford Lee, Sanjit Arunkumar Seshia	Introduction to embedded systems: A cyber-physical systems approach	2017	MIT Press	English
Knapp, E.D., Samani, R.	Applied Cyber Security and the Smart Grid	2013	Elsevier	English
Dogan Ibrahim	RASPBERRY PI 3	2014	AGENCIJA EHO	Serbian language
Tyson Macaulay	RIoT Control: Understanding and Managing Risks and the Internet of Things	2016	Morgan Kaufmann - Elsevier	English
Knapp, E.D., Langill, J.T.	Industrial Network Security: Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems	2015	Elsevier	English
Wendell Odom	CCNA 200-301 Zvanični vodič za sertifikat, knjiga 1	2020	KOMPJUTER BIBLIOTEKA	Serbian language
Li, S., Xu, L.D.	Securing the Internet of Things	2017	Elsevier	English
Brian Russell, Drew Van Duren	Practical Internet of Things Security	2016	Packt Publishing	English
Rosner, G.	Privacy and the Internet of Things	2017	O Reilly	English