|
|
Security and Risk Analysis in Practice
Calta, Filip ; Luc, Ladislav (advisor) ; Veber, Jaromír (referee)
This thesis describes issues of risk analysis and security of company assets. Theoretical part of the thesis looks into the terminology of the topic with closer familiarization of procedures that are commonly used in risk analysis solutions and in company information security. Practical part of the thesis is focused on application of risk analysis using ISO/IEC 27005 methods on a concrete company, which is focused on distribution and consultation in the field of audio and video technology business. In risk analysis qualitative methods of valuation are used. An output of the analysis could be seen in added annex. The output of this thesis should be a treatment that shall prevent creation of risks, which had been found in previously defined area. Scope of the study is focused on purchase and sale.
|
|
|
Knowledge sharing applications and their safety
Kůrka, Jan ; Veber, Jaromír (advisor) ; Luc, Ladislav (referee)
The purpose of this bachelor's thesis is to describe security issues of knowledge sharing web applications. Basic terms related to the topic are defined in the theoretical part. Types of tests that can be used to verify safety of the application are described further, followed by introduction of OWASP foundation and their development and documentation projects. The project OWASP Top Ten 2013 informing about the ten most critical security threats to web application is then described in more detail. Finally, theoretical part presents knowledge sharing applications and their best-known open-source representatives. Practical part of the thesis is dedicated to penetration testing the three most widely used wiki applications. A particular testing methodology is presented, including the procedure and the results of the tests themselves. The results are commented and explained in detail and the overall security of every application is evaluated. Contribution of this bachelor's thesis is verification of security in currently most widely used knowledge sharing applications and finding their vulnerabilities. The test results together with the found insufficiencies will be sent to the developers of these applications.
|
|
|
Security risks of smartphones
Káňová, Eva ; Luc, Ladislav (advisor) ; Veber, Jaromír (referee)
The topic of this bachelor's thesis is security and protection of data by using smartphones. The theoretical first part focuses on history of smartphones and introduces the best-known operating systems. The second part describes attacks on mobile phones, their future and the most famous attacks. Another section contains methods, which protect smartphones against attacks. Next part focuses on the comparison of antivirus program, according to specific criteria. The last part contains description of my survey. The goal of this survey is to find an answer to the question, if people care about the protection of data and realize the consequences of no good protection.
|
|
|
IT risk management in trading company
Pail, Vojtěch ; Veber, Jaromír (advisor) ; Luc, Ladislav (referee)
This thesis focuses on IT risk management process. IT risks of trading company are identified by using risk assessment techniques. The risk assessment is conducted according to international standard ISO/IEC 27005 and ISACAs Risk IT Framework. Finally, risks are evaluated and controls are proposed.
|
|
|
Denial of service attacks
Marek, Viktor ; Klíma, Tomáš (advisor) ; Veber, Jaromír (referee)
The main objective of this bachelor thesis is an analysis of denial of service attacks and the subsequent simulation of selected denial of service attacks. To achieve the goal of this thesis, the initial point in theoretical part consists of the defined main terms related to denial of service attacks. These terms are: cyber attacks, denial of service attack and distributed denial of service attacks. Further in this part of this thesis is defined description of the person who executes denial of service attacks and motives, which lead the person to these acts. At the conclusion of the theoretical part of the thesis are mentioned several classifications of denial of service attacks. The practical part of the thesis is then focused on the analysis of the most frequent denial of service attacks and their possible defense. Furthemore, this section also includes a general defense against denial of service attacks and the known examples of denial of service attacks younger than two years. Based on the acquired knowledge about the denial of service attacks, is in the conclusion of the practical part of the thesis made simulation of two selected methods of denial of service attacks.
|
|
|
Vulnerability assesment tools
Charvát, Michal ; Veber, Jaromír (advisor) ; Klíma, Tomáš (referee)
This bachelor thesis is focused on a specific area of information systems security, which is called vulnerability assesment. Vulnerability assesment is executed with special tools called vulnerability scanners. In the the beginning of the first part I will introdukce the area of information systems security and its breaf history, the basic terms of vulnerability assesment and related topics, such as penetration testing. In the following part few test will be executed using some of the chosen available and free tools and then analyze its results. The main criteria will be the number and criticality of the given vulnerabilities. Finally the user-friedly aspect of each tool will be evalueted, which could be a little subjective matter.
|
|
|
E-mail server and anti-spam protection
Kučera, Jan ; Luc, Ladislav (advisor) ; Veber, Jaromír (referee)
This thesis deals with e-mail server and anti-spam protection. Its content is the presentation of information on various types of spam, anti-spam protection options and principles of e-mail communication. Furthermore, the content of this work is to install and configure e-mail server and test its anti-spam filters. Test results are compared with the results of the free e-mail inboxes. The main goal is to provide readers with comprehensive information on spam issues, and also helping them when making e-mail server on their own. Testing anti-spam protection should offer insight on the quality of the chosen solutions for e-mail server.
|
|
|
Malware, internet threat - types and protection
Vaňková, Aneta ; Luc, Ladislav (advisor) ; Veber, Jaromír (referee)
This bachelor thesis deals the world malware and what this word means. The theoretical part describes the particular division of malware, its history and development from the 70s to the present. Other chapters include targets of hackers, why malware exists and what is the motivation of its authors. Conclusion of the theoretical part describes other threats which are on the Internet. The practical part includes two explorations. The first is dedicated to antivirus, it represents the most frequently used programs, their functionality and user interface. Test of infected file demonstrates the functionality and level of security. Final summary assists users in selecting the appropriate antivirus for their computer. The second is realized as a questionnaire which determines the awareness of the general public about the danger of malware and defence against it. The conclusion evaluate results of explorations of the practical part, it compares targets of this bachelor thesis and monitors their achievement or provides information about extension of explorations.
|
|
|
Analysis of modern payment methods
Klimeš, Martin ; Matuštík, Ondřej (advisor) ; Veber, Jaromír (referee)
This bachelor thesis is focused on the modern payment methods, which has nowadays became one of the most popular and used form of paying. The aim of this work is to formalise an analysis of modern payment methods and define its factor of successes. The bachelor thesis is being divided into several chapters. The first chapter is sourced from (available) written literature, highlighting the main definitions, focusing on the given topic in general but also briefly describes the historical points of view on it and the theoretical methods of critical success factors. The next chapter describes payment methods, which are being used nowadays, then focuses on the analysis of payment methods it self. Methods that are new, modern and innovative in different forms. Each method gives the basic information, function, security, typical situation and advantages and disadvantages of different forms of modern payment methods. Through this analysis we can determine the factors of success of payment methods and creates a discussion, which will result into a summary of factors that should improve and help with the development of the new payment methods. The last chapter contains selected forms of payment methods tested in real conditions.
|
|
|
Spam, risks and countermeasures from the position of selected banking entities od Czech Republic
Kubů, Tereza ; Luc, Ladislav (advisor) ; Veber, Jaromír (referee)
This bachelor thesis focuses on the issue of an unsolicited mail, also known as a spam. Mo-reover, the thesis deals with preventive measures against these spams on the side of banking institutions operating in the Czech Republic.The objective of the theoretical part is to famili-arise a reader with basic characteristics of spam, its development, possible methods of its prevention and risks, which are related to the banking sector. In practical part of the thesis, a reader can find selected banking sectors operating on the Czech market. Those were analysed in the terms of providing adequate and good-quality information about the spam, its possible security risks and the security features of the internet banking. The outcome of the analysis is the evaluation of the quality of preventive steps of the Czech banks against the unsolicited mail.
|
guest ::
RSS feed.