Ing. Ivana Trummová

Ing. Ivana Trummová

Ing. Josef Kokeš, Ph.D.

Department of Information Security

Given the rapid advancement of quantum computers, which can break todays commonly used asymmetric schemes, it is essential to develop and analyze postquantum algorithms resistant to such attacks. This thesis addresses the theoretical foundations of the postquantum digital signature scheme SPHINCS+. Each of the underlying concepts is sequentially constructed and expressed mathematically. Another outcome of the work is a functional C++ reference implementation based on the official FIPS 205 standard. The design of the implementation according to the official pseudocode is also described. Finally, the authors experiences working with the standard are discussed.

Ing. Ivana Trummová

Ing. David Pokorný

Department of Information Security

This thesis addresses the urgent need for a quantumresistant key exchange algorithm by providing a thorough analysis and practical evaluation of the ML-KEM (FIPS 203), the NIST-standardized post-quantum key-encapsulation mechanism. First, the problematic of post-quantum cryptography is outlined, followed by a detailed description of ML-KEMs architecture. A modular C++ prototype is then presented, illustrating each algorithmic high-level component (key generation, encapsulation, decapsulation) as well as all necessary auxiliary functions. Benchmarking against the official reference code reveals expectable differences in terms of efficiency, the prototype library performs roughly four times more cycles. Finally, the work concludes that FIPS 203 offers a solid documentation quality, although many vectors of non-critical improvements were found and listed. Dominantly, the standard lacks of depiction of many needed auxiliary routines and in general omits completely or insufficiently mentions non-trivial components.

Ing. Ivana Trummová

Ing. David Pokorný

Department of Information Security

The aim of the thesis is to analyze the post-quantum algorithm CRYSTALS-Dilithium, which has been standardized in FIPS 204, and to create a cryptographic library based on it. The thesis focuses on explaining post-quantum cryptography and its current importance. It also provides an overview of the mathematical foundations on which CRYSTALS-Dilithium is based and describes the standard in which it is used. In addition, the thesis shows how creating an implementation of a cryptographic library proceeds in C++, what challenges may arise while working with FIPS 204 and how the new implementation compares to already existing solutions.

Ing. Ivana Trummová

Ing. Eliška Krátká

Department of Information Security

The thesis explains what a cyberwar is, its origin and how it is utilized in the Ukraine-Russia war. The thesis examines specific examples of cyber operation during the war and assessing their impact on the overall conflict. Special attention is payed to the wiper malware attacks, which is a type of attack that gained prominence during the conflict. One notable example, WhisperGate, is examined in greater detail and re-created for analysis. The implementation includes source code and two possible methods of delivery and execution. This implementation offered insight into the inner workings of wiper attacks, which is used to prepare a set of security policies. The main outcome of the thesis is a short list of recommendations that can be used by IT professionals that are looking to strengthen their company security even with limited resources. These recommendations include least privilege principle, whitelisting applications or regular backups.

Ing. Ivana Trummová

Ing. Eliška Krátká

Department of Information Security

This bachelors thesis focuses on phishing as one of the most common forms of cyberattacks. The thesis aims to study the phishing principles, introduce protective strategies for users, and test the effectiveness of a defense measure. The theoretical part presents the forms of phishing, the tools used by attackers, and social engineering techniques. In the experimental part, a phishing attack simulation is carried out on Facebook, and the effectiveness of educational measures is tested on a sample of high school students. The thesis introduces a practical approach to user vulnerability to phishing and examines the efficiency of preventive education on the success rate of phishing campaigns. The results suggest the importance of educational activities in the field of cybersecurity and highlight specific directions that phishing prevention efforts may take. At the same time, they indicate that one-time training may not be sufficient to achieve lasting behavioral change among users.