Executive program

Presentation:

The Cyber-security Futura course aims to provide essential knowledge related to cybersecurity, covering both the principles and methodologies underlying the security of computer systems and telecommunications networks, from both technical and organizational perspectives.

Audience:

Entrepreneurs, IT managers, programmers, system integrators, security managers, quality and organizational managers, and human resources managers.

Objectives:

  1. Introduce the main issues in cybersecurity.
  2. Learn the fundamental concepts and typical methodologies in this field.
  3. Be able to identify key security issues in one’s own systems.
  4. Critically evaluate existing solutions in the market.
  5. Identify major trends in cybersecurity evolution.
  6. Recognize relevant regulatory and AI-related aspects.

Instructors:

  • Stefano Ferretti, Associate Professor at UniUrb
  • Gabriele D’Angelo, Confirmed Researcher, Department of Computer Science – Science and Engineering, UNIBO
  • Francesco Meoni, Head of BI-REX Pilot Line

Full Program:

Module 1 (Online):

  • September 20 and 24, 9:00 AM – 12:30 PM

Introduction to Information Security

  • Basic concepts and principles of information security.
  • Case studies: initial analysis of current examples.
  • Essential terminology in the security domain.
  • Defining the concept of computer vulnerability through notable examples.
  • Fundamental principles and mechanisms for designing (and implementing) a “reasonably secure” system.
  • Security as a process.
  • Beyond technical aspects.
  • Mitigating threats and managing vulnerabilities that cannot be eliminated.

Module 2 (Online):

  • September 27 and October 1, 9:00 AM – 12:30 PM

Basic Tools and Mechanisms for System Protection

  • Authentication mechanisms: balancing innovation and limitations.
  • Authorization mechanisms: who can access what?
  • Brief introduction to cryptographic mechanisms and practical use cases.
  • Exercise: exploring the Bi-Rex network infrastructure and pilot line. Are they secure or vulnerable?
  • Practical example of attacking HTTP/HTTPS protocols.
  • Assessing the security level of currently available systems.

Module 3 (Online):

  • October 3 and 11, 9:00 AM – 12:30 PM

Attacks, Countermeasures, and Future Perspectives

  • Ransomware: present and future extortion mechanisms.
  • Internet of Things (IoT).
  • Case histories: insulin pumps and the vulnerability market.
  • Cloud computing.
  • Security analysis of Industry 4.0 systems connected to the Internet.
  • Risks of Bring Your Own Device (BYOD) policies and proper management.
  • Understanding firewalls and antivirus software.
  • Brief overview of network security (both wired and wireless).

Module 4 (Online):

  • October 17, 9:00 AM – 12:30 PM
  • October 21, Stefano Ferretti (9:00 AM – 1:00 PM); Gabriele D’Angelo (2:00 PM – 5:30 PM)

Regulatory Aspects of Cybersecurity and Artificial Intelligence

  • Introduction to the “European Regulation on the Protection of Personal Data” (GDPR EU 2016/679).
  • How can a budget-limited company improve its security level?
  • Starting points:
    • National Cyber Security Laboratory (CINI).
    • White Paper on Cyber Security.
    • National Framework for Cybersecurity (15 Essential Controls for Cybersecurity).
  • Regulatory aspects:
    • “Measures for a high common level of cybersecurity in the Union” (NIS-2).
    • “Cyber Resilience Act” (CRA).
    • “Artificial Intelligence Act” (AI Act).
    • Certifications: ISO 27001.
  • AI and Cybersecurity:
    • Attacks on Machine Learning.
    • Data poisoning.
    • Using ML to identify outliers and anomalies.
    • AI-driven defense and attacks.
    • Ethics and privacy in AI.