Introduction to Computer Security

Course schedule overview

The scheduling and selection of lecture topics is subject to minor adjustment as the semester progresses, but the assignment and exam dates are not expected to change.

Date	Lecture topic	Assignments due
Tuesday 1/22	Introduction and logistics
Thursday 1/24	Part 1 overview: security failures in action
Tuesday 1/29	Low-level vulnerabilities
Thursday 1/31	Low-level attack techniques
Friday 2/1		~~HA1 attack 1~~ (postponed)
Tuesday 2/5	Low-level defenses and counter-attacks 1
Wednesday 2/6		Project pre-proposal
Thursday 2/7	Low-level defenses and counter-attacks 2
Friday 2/8		~~HA1 attack 2~~ (postponed)
Tuesday 2/12	Defensive programming and design 1
Wednesday 2/13		Exercise set 1
Thursday 2/14	Defensive programming and design 2
Friday 2/15		~~HA1 attack 3~~ (postponed)
Tuesday 2/19	Access control basics
Thursday 2/21	Information-flow and mandatory access control
Friday 2/22		~~HA1 attack 4~~ (postponed)
Monday 2/25		Project progress report #1
Tuesday 2/26	Protection, isolation, and assurance
Wednesday 2/27		Exercise set 2
Thursday 2/28	Part 2 overview: protocols and attacks
Friday 3/1		HA1 attack 0
Tuesday 3/5	In-class midterm exam
Thursday 3/7	Symmetric cryptography
Friday 3/8		HA1 attack 1
Tuesday 3/12	Public-key cryptography
Thursday 3/14	"S" protocols for the Internet
Friday 3/15		HA1 attack 2 and design
Tuesday 3/19	No class, spring break
Thursday 3/21	No class, spring break
Friday 3/22		~~HA1 bonus attacks~~
Tuesday 3/26	Web security: server side
Wednesday 3/27		Exercise set 3
Thursday 3/28	Web security: client side
Friday 3/29		HA1 bonus attacks
Monday 4/1		Project progress report #2
Tuesday 4/2	Crypto and protocol failures
Thursday 4/4	Security middleboxes
Tuesday 4/9	Malware and network DoS
Wednesday 4/10		Exercise set 4
Thursday 4/11	Privacy-enhancing network overlays
Friday 4/12		~~Hands-on assignment 2~~
Monday 4/15		Hands-on assignment 2
Tuesday 4/16	Usability of security
Thursday 4/18	Application: electronic voting
Friday 4/19		Project progress report #3
Tuesday 4/23	Lecture catchup
Wednesday 4/24		Exercise set 5
Thursday 4/25	Project presentations 1
Tuesday 4/30	Guest lecture: quantitative information flow
Thursday 5/2	Project presentations 2, last class
Monday 5/6		Project final report
Thursday 5/9	Final exam 4:00pm-6:00pm

Detailed reading and lecture schedule

Tuesday, January 22nd (6-up slides): High level overview, course assignments and grading logistics. No readings.
Thursday, January 24th (6-up slides): Overview of course first half, examples of software and OS-level vulnerabilities and attacks. Readings: Anderson Chapter 1, "What Is Security Engineering?"; Anderson Chapter 25, "Managing the Development of Secure Systems".
Tuesday, January 29th (6-up slides): Low-level vulnerabilities. Reading: Crispin Cowan, Perry Wagle, Calton Pu, Steve Beattie, and Jonathan Walpole. Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade (IEEE version, some formatting issues) (local mirror of author's version), DISCEX 2000.
Thursday, January 31st (6-up slides, as presented 2/5): Low-level attack techniques. Reading: Tilo Müller, ASLR Smack & Laugh Reference (posted with permission of the author)
Tuesday, February 5th (6-up slides, as presented 2/7): Low-level defenses and counter-attacks, part 1. Reading: Martín Abadi, Mihai Budiu, Úlfar Erlingsson, and Jay Ligatti. “Control-flow integrity”, ACM CCS 2005. (Campus download link)
Thursday, February 7th (6-up slides, as presented 2/12): Low-level defenses and counter-attacks, part 2. Reading: Hovav Shacham. “The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86)”, ACM CCS 2007, and Nicolas Carlini, Antonio Barresi, Mathias Payer, David Wagner, and Thomas R. Gross, “Control-Flow Bending: On the Effectiveness of Control-Flow Integrity”, USENIX Security 2015.
Tuesday, February 12th (6-up slides, as presented 2/14): Defensive programming and design 1. Readings: Jerome H. Saltzer and Michael D. Schroeder, The Protection of Information in Computer Systems. Part I: Basic Principles Of Information Protection. David Wheeler, Secure Programming for Linux and Unix HOWTO, chapter 6: Avoid Buffer Overflow and chapter 7: Structure Program Internals and Approach.
Thursday, February 14th (6-up slides, as presented 2/19): Defensive programming and design 2. Reading: Daniel J. Bernstein, Some thoughts on security after ten years of qmail 1.0, CSAW 2007.
Tuesday, February 19th (6-up slides, as presented 2/21): OS security: authentication and basic access control. Readings: Anderson Chapter 2 Usability and Psychology sections 2.4-2.5: "Passwords" and "System Issues", and Chapter 15 Biometrics.
Thursday, February 21st (6-up slides, as presented 2/26): OS security: access control. Readings: Anderson Chapter 4 Access Control and Chapter 8 Multilevel Security, and Mark S. Miller, Ka-Ping Yee, and Jonathan Shapiro, "Capability Myths Demolished" Technical Report SRL2003-02, Systems Research Laboratory, Johns Hopkins University.
Tuesday, February 26th (6-up slides, as presented 2/28): OS security: high assurance? Readings: Anderson Chapter 9 Multilateral Security sections 9.1-9.2 and Chapter 26, System Evaluation and Assurance.
Thursday, February 28th (6-up slides): Introduction to network security: protocols and attacks. Readings: Firewalls and Internet Security: Repelling the Wily Hacker. William R. Cheswick, Steven M. Bellovin, and Aviel D. Rubin, Second Edition. Chapter 2, A Security Review of Protocols: Lower Layers and Chapter 3, Security Review: The Upper Layers.
Tuesday, March 5th: no lecture or readings, in-class midterm. The 2013, 2014, 2015, and 2017 midterms are available for comparison. Now also the 2013, 2014, 2015, and 2017 solutions.
Thursday, March 7th (6-up slides, bcecho notes): Symmetric cryptography. Readings: Anderson Chapter 5, Crypography, sections 5.1-5.6.
Tuesday, March 12th (6-up slides, as presented 3/26): Public-key cryptography. Readings: Anderson Chapter 5 section 5.7. And Introduction to Modern Cryptography, Jonathan Katz and Yehuda Lindell, Chapter 1, Introduction, sections 1.1, 1.2, and 1.4.
Thursday, March 14th (6-up slides, as presented 3/28): Crypto protocols, "S" protocols for the Internet, and PKI. Reading: David Kaloper-Meršinjak, Hannes Mehnert, Anil Madhavapeddy, and Peter Sewell, "Not-Quite-So-Broken TLS: Lessons in Re-Engineering a Security Protocol Specification and Implementation.", Sections 2-3.
Tuesday, March 26th: (6-up slides, as presented 4/2) Web security part 1. Reading: OWASP Top 10 - 2017: The Ten Most Critical Web Application Security Risks.
Thursday, March 28th: (6-up slides, as presented 4/4) Web security part 2. No additional reading.
Tuesday, April 2nd: (6-up slides, as presented 4/9) More crypto protocols, and crypto failures. Readings: Anderson Chapter 3, Protocols. Another reference for the protocol parts is the paper "Programming Satan's Computer", by Ross Anderson and Roger Needham, Computer Science Today 1995. It provides even more examples of broken protocols and design principles, but it's optional: you're not responsible for anything from it beyond what was in lecture.
Thursday, April 4th: (6-up slides, as presented 4/11) Firewalls and intrusion detection. Readings: Anderson Chapter 11, Physical Protection; Cheswick and Bellovin Chapter 3 (first edition), Firewall Gateways; David Wagner and Paolo Soto, "Mimicry Attacks on Host-Based Intrusion Detection Systems", ACM CCS 2002 (campus download link).
Tuesday, April 9th: (6-up slides, as presented 4/16) Malware and network DoS. Readings: David Moore, Colleen Shannon, Geoffrey M. Voelker, and Stefan Savage, "Internet Quarantine: Requirements for Containing Self-Propagating Code", INFOCOM 2003; Marius Barat, Dumitru-Bogdan Prelipcean, and Dragoș Teodor Gavriluț, "A study on common malware families evolution in 2012" Journal of Computer Virology and Hacking Techniques, November 2013 (campus download link).
Thursday, April 11th: (6-up slides, as presented 4/18) Privacy-enhancing network overlays. Readings: Anderson section 23.4, Privacy Technology (part of chapter 23, The Bleeding Edge); Roger Dingledine, Nick Mathewson, and Paul Syverson, "Challenges in deploying low-latency anonymity (draft)".
Tuesday, April 16th: (6-up slides) Usability of security. Readings: Anderson Chapter 2, "Usability and Psychology". Devdatta Akhawe and Adrienne Porter Felt, "Alice in Warningland: A Large-Scale Field Study of Browser Security Warning Effectiveness". USENIX Security Symposium, August 2013.
Thursday, April 18th: (6-up slides) Electronic voting. Readings: Anderson section 23.5, Elections (part of chapter 23, The Bleeding Edge); Joseph A. Calandrino, Ariel J. Feldman, J. Alex Halderman, David Wagner, Harlan Yu, and William P. Zeller. "Source Code Review of the Diebold Voting System", Executive Summary through Section 3: Major Attacks (pp. i-17); David Chaum, Richard Carback, Jeremy Clark, Aleksander Essex, Stefan Popoveniuc, Ronald L. Rivest, Peter Y. A. Ryan, Emily Shen, and Alan T. Sherman. "Scantegrity II: End-to-End Verifiability for Optical Scan Election Systems using Invisible Ink Confirmation Codes", EVT 2008.
Tuesday, April 23th: Catch up lecture; no additional reading.
Thursday, April 25th: Final project student presentations #1
Tuesday, April 30th: (6-up slides) Guest lecture: quantitative information flow, presented by Seonmo Kim. Reading: Andrew Myers, Sam Hopkins, and Jed Liu. Lecture notes on Quantitative Information Flow, Cornell University CS 6113, fall 2013.
Thursday, May 2nd: Final project student presentations #2, last lecture period
Thursday, May 9th: Final exam, 4:00-6:00pm in Keller Hall 3-125 (same room as lectures)