Učni načrt predmeta

Predmet:
Sistem varovanja kritične infrastrukture
Course:
Critical Information Infrastructure Protection
Študijski program in stopnja /
Study programme and level
Študijska smer /
Study field
Letnik /
Academic year
Semester /
Semester
Informacijske in komunikacijske tehnologije, 2. stopnja Digitalna transformacija 1 2
Information and Communication Technologies, 2nd cycle Digital Transformation 1 2
Vrsta predmeta / Course type
Izbirni / Elective
Univerzitetna koda predmeta / University course code:
IKT2-658
Predavanja
Lectures
Seminar
Seminar
Vaje
Tutorial
Klinične vaje
work
Druge oblike
študija
Samost. delo
Individ. work
ECTS
15 15 15 105 5

*Navedena porazdelitev ur velja, če je vpisanih vsaj 15 študentov. Drugače se obseg izvedbe kontaktnih ur sorazmerno zmanjša in prenese v samostojno delo. / This distribution of hours is valid if at least 15 students are enrolled. Otherwise the contact hours are linearly reduced and transfered to individual work.

Nosilec predmeta / Course leader:
doc. dr. Rok Bojanc
Sodelavci / Lecturers:
prof. dr. Borka Jerman-Blažič
Jeziki / Languages:
Predavanja / Lectures:
slovenščina, angleščina / Slovenian, English
Vaje / Tutorial:
Pogoji za vključitev v delo oz. za opravljanje študijskih obveznosti:
Prerequisites:

Zaključen študijski program prve stopnje s področja naravoslovja, tehnike ali računalništva.

Student must complete first-cycle study programmes in natural sciences, technical disciplines or computer science.

Vsebina:
Content (Syllabus outline):

Kritična informacijska infrastruktura
Definicija osnovnih pojmov, informacijski sistemi, varnost, zanesljivost, splošna infrastruktura in uporaba v kritičnih sektorjih, prepletenost in soodvisnost, uporabniki in izvajalci infrastrukture.

Grožnje
Grožnje informacijskim sistemom v javnem in industrijskem sektorju, primeri izvrševanja groženj in napak kritičnih informacijskih sistemov, viri in motivi groženj, posledice groženj, razvrstitev groženj in njihovo preprečevanje.

Javne politike in pobude
Zgodovina, kritični sektorji, Slovenija, EU in svet, pravni vidiki, zgodnje obveščanje.

Varovanje
Informacijski sistemi, varnost, zaščita, varnostne arhitekture, storitve in mehanizmi, načrtovanje, nadzor, upravljanje, vzdrževanje, varnostni standardi; fizično varovanje.

Kompleksni sistemi
Lastnosti in modeli kompleksnih sistemov, pristopi obravnave in upravljanja tveganja, zanesljivosti ter povezanosti, obravnava napadov na sisteme in napak delovanja sistemov.

Izzivi varovanja kritične informacijske infrastrukture
Novi sektorji in tehnologije, trendi evolucije pristopov varovanja, človeški in socialni vidiki

Critical information infrastructure
Definition of basic concepts, information systems, security, dependability, common infrastructure and usage in critical sectors, interconnection and interdependencies, critical infrastructure stakeholders.

Threats
Threats to public and critical infrastructure information systems, critical information systems failures, threat sources and motivation, threat consequences, threat classification and mitigation.

Public policies and initiatives
History, critical sectors, Slovenia, European Union and world, legalization and regulation, early warning systems.

Protection
Information systems, security, safety, security architectures, services, mechanisms, design, control, management, maintenance, security standards; physical security.

Complex systems
Complex systems properties and models, approaches to risk, dependability and interconnection modelling and management, attack and system failure modelling.

Critical information infrastructure trends
New market sectors and technology, future protection trends, human and social aspects

Temeljna literatura in viri / Readings:

Izbrana poglavja iz naslednjih knjig: / Selected chapters from the following books:
- S. Das, K. Kant, N. Zhang, Handbook on Securing Cyber-Physical Critical Infrastructure, P.C Morgan Kaufmann, 2012. ISBN: 978-0-124-15815-3
- A. Wenger, V. Mauer, M. Dunn Cavelty, International CIIP Handbook: An Inventory and Analysis of National Protection Policies, Vol. I, II, 2006, ISSN: 1660-3222
- D. J. Landoll, The Security Risk Assessment Handbook: A Complete Guide for Performing Security Risk Assessments. Auerbach Publications, 2006. ISBN 978-1-439-82148-0.
- J. Lopez, R. Setola, S. Wolthusen, Critical Infrastructure Protection: Advances in Critical Infrastructure Protection: Information Infrastructure Models, Analysis, and Defense. Springer, 2012. ISBN: 978-3-642-28920-0
- P. Theron, S. Bologna, Critical Information Infrastructure Protection and Resilience in the ICT Sector Hardcover. IGI Global, 2013. ISBN: 978-1-466-62964-6
- J. R. Vacca, Cyber Security and IT Infrastructure Protection. Syngress, 2013. ISBN: 978-0-124-20047-0

Cilji in kompetence:
Objectives and competences:

Cilji predmeta so zagotoviti, da bo študent, ki bo uspešno končal ta predmet, pridobil:
- Sposobnost analize, sinteze in predvidevanja rešitev ter posledic
- Obvladanje raziskovalnih metod, postopkov in procesov, razvoj kritične in samokritične presoje
- Sposobnost uporabe znanja v praksi
- Avtonomnost v strokovnem delu
- Razvoj komunikacijskih sposobnosti in spretnosti, posebej komunikacije v mednarodnem okolju
- Etična refleksija in zavezanost profesionalni etiki
- Kooperativnost, delo v skupini (in v mednarodnem okolju)

Predmet pripravlja študente, da bodo sposobni:
- Razumeti in oceniti grožnje kritični informacijski infrastrukturi
- Zaščititi kritično informacijsko infrastrukturo v skladu z javnimi politikami in iniciativami v svetu

Objecitves of the subject is to assure that student who completes this course successfully will acquire:
- An ability to analyse, synthesise and anticipate solutions and consequences
- To gain the mastery over research methods, procedures and processes, a development of the critical judgment
- An ability to apply the theory in to a practice
- An autonomy in the professional work
- Communicational-skills development; particularly in international environment
- Ethical reflection and obligation to a professional ethics
- Cooperativity, team work (in international environment)

This course prepares students to be able to:
- Understand and evaluate threats to critical information infrastructure
- Protect critical information infrastructure in compliance with world wide public policies and initiatives

Predvideni študijski rezultati:
Intendeded learning outcomes:

Študent bo znal izbrati ter uporabiti pristope in metodologije za obravnavo in upravljanje tveganja, zanesljivosti in povezanosti sistemov kritičnih informacijskih infrastruktur

The student will be capable to select and use approaches and methodologies for addressing and management of risk, dependability and interconnection of critical infrastructure systems

Metode poučevanja in učenja:
Learning and teaching methods:

Predavanja, seminar, konzultacije, individualno delo

Lectures, seminar, consultations, individual work

Načini ocenjevanja:
Delež v % / Weight in %
Assesment:
Pisni ali ustni izpit
50
Exam
Seminarska naloga
25
Seminar work
Ustni zagovor
25
Oral defence of seminar work
Reference nosilca / Lecturer's references:
1. JERMAN-BLAŽIČ, Borka. The cybersecurity labour shortage in Europe : moving to a new concept for education and training. Technology in society. [Print ed.]. 2021, vol. 67, str. 101769-1-101769-13. ISSN 0160-791X
2. ERMAN-BLAŽIČ, Borka, JERMAN BLAŽIČ, Andrej. Overcoming the digital divide with a modernapproach to learning digital skillsfor the elderly adults. Education and information technologies. 2020, vol. 25, no. 1, str. 259-279. ISSN 1360-2357
3. ERMAN-BLAŽIČ, Borka. Changing the landscape of cybersecurity education in the EU : will the new approach produce the required cybersecurity skills?. Education and information technologies. 2021, 26 str., graf. prikazi. ISSN 1360-2357
4. CIGOJ, Primož, JERMAN-BLAŽIČ, Borka. An intelligent and automated WCMS vulnerability-discovery tool : the current state of the web. IEEE access. 2019, vol. 7, str. 175466-175473. ISSN 2169-3536
5. JERMAN-BLAŽIČ, Borka, JERMAN BLAŽIČ, Andrej. Cybersecurity skills among European high-school students : a new approach in the design of sustainable educational development in cybersecurity. Sustainability. 2022, vol. 14, iss. 8, 23 str., graf. prikazi, tabele. ISSN 2071-1050