Course Schedule Spring 2016

This schedule is subject to change. Please check back frequently.


Introduction

Monday Lecture Wednesday Lecture Thursday Discussion
Jan. 18
No Class, Martin Luther King, Jr. birthday
Jan. 20
Preliminaries
Class Overview; Threat models, vulnerabilities, attacks; how to think like an attacker and a defender
Introduce Operating Systems (Gene)
Jan. 25
Ethics and the Law
Normative ethics, community standards; CFAA, wiretap laws, university policy

Operating System Security

Monday Lecture Wednesday Lecture Thursday Discussion
Jan. 27
Control hijacking, Part 1
Software architecture and a simple buffer overflow
(Gene)
Feb. 1
Control hijacking, Part 2
Common exploitable application bugs, shellcode
Feb. 3
Malware, Part 1
Drive-by downloads, spyware, key loggers
Introduce AppSec Project, Checkpoint 1
Introduce AppSec Project, Checkpoint 2
(Gene)
Feb. 8
Malware, Part 2
(continued)
AppSec Project, Checkpoint 1 due 6pm
Feb. 10
Defending weak applications
Isolation, sandboxing, virtual machines
Introduce Web (HB)
Feb. 15
Authentication and passwords
Strong and weak passwords, salting, password cracking, online vs. offline guessing
Feb. 17
Web attacks and defenses
Cookies; XSS, CSRF, and SQL-injection attacks and defenses
AppSec Project, Checkpoint 2 due 6pm
Introduce Web Project, Checkpoint 1
Introduce Web Project, Checkpoint 2
(HB)
Feb. 22
Catch up!
Finish remaining OS topics

Cryptography

Monday Lecture Wednesday Lecture Thursday Discussion
Feb. 24
Message integrity, pseudorandom functions
Alice and Bob, crypto games, Kerckhoffs's principle, hashes and MACs
Web Project, Checkpoint 1 due 6pm
Review OS Security (Gene)
Feb. 29
Randomness and pseudorandomness, Block Ciphers
Generating randomness, PRGs, one-time pads, Simple ciphers, AES, block cipher modes
Mar. 2
Key exchange and key management
Diffie-Hellman key exchange, man-in-the-middle attacks
(Due)
Mar. 7
HTTPS
The HTTPS PKI, SSL certificates and CAs
Web Project, Checkpoint 2 due 6pm
Mar. 9
Hot Topics in Cryptography
Mining Your Ps and Qs: Detection of Widespread Weak Keys in Network Devices
Introduce Crypto Project, Checkpoint 1
Introduce Crypto Project, Checkpoint 2
Review Crypto (Due)

Networking and Distributed Systems Security

Monday Lecture Wednesday Lecture Thursday Discussion
Mar. 14
Networking 101
Everything you wanted to know about networks but were afraid to ask
Crypto Project, Checkpoint 1 due 6pm
Mar. 16
Network attacks
Hijacking, eavesdropping, DoS, DNS, BGP
Introduce Networking (Simon)
Mar. 21
No Class, Spring Vacation
Mar. 23
No Class, Spring Vacation
Mar. 28
Network attacks
Hijacking, eavesdropping, DoS, DNS, BGP
Mar. 30
Networking Attacks in Practice
NTP Amplification attacks, Booters
Crypto Project, Checkpoint 2 due 6pm
Introduce Networking Project, Checkpoint 1
Introduce Networking Project, Checkpoint 2
(Simon)
Apr. 4
Networking Defenses
TLS, IPSec, Wep, IDS, Firewall
Apr. 6
Anonymity
Need for privacy, Proxies, Tor
Networking Project, Checkpoint 1 due 6pm
(Simon)
Apr. 11
Worms Botnet Evolution
Techniques, Measurements, Ecosystem
Apr. 13
Worms Botnet Evolution (cont)
Techniques, Measurements, Ecosystem
Review Networking (Simon)
Apr. 18
Hot Topics in Network Security
Heartbleed and SMTP Security
Networking Project, Checkpoint 2 due 6pm

Security in Context

Monday Lecture Wednesday Lecture Thursday Discussion
Apr. 20
Cloud Computing Security
Data breaches, Compromised credenals, Hacked interfaces and APIs, Exploited system vulnerabilities, ...
Introduce Forensics Project, Checkpoint 1
Introduce Forensics Project, Checkpoint 2
(Leslie)
Apr. 25
Bitcoin
Andrew Miller gives you ten dollars
Forensics Project, Checkpoint 1 due 6pm
Apr. 27
Physical security
Locks and safes, lock picking techniques; defenses
Final Exam Review (Leslie)
May. 2
DarkWeb
A topic selected by class vote
May. 4
Final Thoughts
Unsolicited words of wisdom from Bailey
Forensics Project, Checkpoint 2 due 6pm

Midterm Exam: 7:00–9:00 PM, Wednesday, March 9 (Location: 1002 ECEB) Midterm Study Guide

Final Exam: 7:00–10:00 P.M., Monday, May 9 (Location: 1320 DCL) Final Study Guide