CS 642 - Computer Security

Expected lecture schedule is below. The schedule will be adjusted as the course continues.

Skimming the reading materials before lecture to understand the context and main points will be very useful. Being prepared to ask intelligent questions about the readings is an easy way to get participation credit.

Date	Topic	Details
January 20	Introduction	Course overview, computer security, ethics, security principles. Slides: [pdf] Further reading: Reflections on Trusting Trust, Ken Thompson Inside the Secretive World of 0-day Exploit Sales, Charlie Miller
January 25	OS Security	Access control, capabilities, privilege levels, Unix permissions. Slides: [pdf] Further reading: Mulitics Security Evaluation: Vulnerability Analysis, Paul Karger, Roger Schell The protection of information in computer systems, Saltzer and Schroeder
January 27	x86 Review	Lecture by Drew Davidson Review details of x86 ISA, process memory layout, introduce buffer overflows. Slides: [pdf] [pptx]
February 1	Low-level Software Security	Buffer overflows, format string vulnerabilities, integer overflows, heap overflows. Slides: [pdf] Further reading: Smashing The Stack For Fun And Profit, Aleph One Basic Integer Overflows, Blexim Exploiting Format String Vulnerabilities, Scut, Team Teso Low-level Software Security by Example, U. Erlingsson, Y. Younan, and F. Piessens The Ethical Hacker's Handbook, Ch 11: Basic Linux Exploits, A. Harper et al.
February 3	Finding Security Vulnerabilities	Fuzzing, reverse engineering, static analysis, and dynamic analysis. Slides: [pdf] Further reading: The Hacker Strategy, Dave Aitel Real World Fuzzing, Charlie Miller
February 8	Memory Protection Mechanisms	Data execution prevention, address space layout randomization, stack protector, sandboxing, and containment. Slides: [pdf] Further reading: On the Effectiveness of Address-Space Randomization, Shacham et al. The Security Architecture of the Chromium Browser, Barth et al. StackGuard: Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks, Cowan et al.
February 10	Web Security	Browser security, same origin policy, cookies. Slides: [pdf] Further reading: Securing Frame Communication in Browsers, A. Barth et al. Browser Security: Lessons from Google Chrome, C. Reis et al.
February 15	Web Security	Cookies, session hijacking. Slides: [pdf] Further reading: Cross Site Scripting Explained, Amit Klein Robust Defenses for Cross-Site Request Forgery, Barth et al. Clickjacking Vulnerability and Countermeasures, A. Narayanan Advanced SQL Injection In SQL Server Applications, Chris Anley
February 17	Class Canceled	No class
February 22	Web Security	Cross-site scripting, cross-site request forgery, SQL injection. Slides: [pdf]
February 24	Cryptography Intro	Intro to crypto, symmetric/assymetric encryption, MACs, digital signatures, key exchange, TLS. Slides: [pdf] Further reading: A Method for Obtaining Digital Signatures and Public-Key Cryptosystems, R. Rivest, A. Shamir, L. Adleman Communication Theory of Secrecy Systems, C. Shannon (reference only) RFC 5426: TLS Protocol v1.2, Dierks, Rescorla (reference only)
February 29	Symmetric Cryptography	Provable security, Shannon security, one-time pad encryption, block ciphers, modes of operations Slides: [pdf] Further reading: Recommendation for Block Cipher Modes on Operation, NIST Keying Hash Functions for Message Authentication, M. Bellare, R. Canetti, H. Krawczyk
March 2	Symmetric Cryptography	Symmetric encryption continued: hash functions, HMAC. Slides: [pdf]
March 4	Midterm Review Session	Review selected topics before midterm exam.
March 7	Midterm Exam	In-class midterm
March 9	Public Key Cryptography	HMAC, authenticated encryption, public key encryption, digital signatures, certificates, hybrid encryption. Slides: [pdf] [pdf]
March 14	Passwords	Password-based cryptography, password based key derivation Slides: [pdf] Further reading: PKCS #5: Password-Based Cryptography Specification, B. Kaliski (reference only)
March 16	Network Security	ARP Spoofing, 802.11, evil-twins, packet sniffing, man-in-the-middle attacks. Slides: [pdf] Further reading: Address Resolution Protocol Spoofing and Man-in-the-Middle Attacks, R. Wagner and J. Bryner A Look Back at 'Security Problems in the TCP/IP Protocol Suite', Steven Bellovin Wireshark tool, (for reference)
March 21	Spring Break	No class
March 23	Spring Break	No class
March 28	Network Security	IP fragmentation attacks, UDP, TCP, denial of service. Slides: [pdf] Further reading: How a Bookmaker and a Whiz Kid Took On a DDOS-based Online Extortion Attack, Scott Berinato Practical Network Support for IP Traceback, Savage et al. Inferring Internet Denial-of-Service Activity, David Moore
March 30	DNS Security	Domain names system (DNS) Slides: [pdf] Further reading: DNS Cache Poisoning, Steve Friedl A Survey of BGP Security, Butler et al.
April 11	Network Scanning and Detection	Border gateway protocol, route-hijacking, port scanning, host fingerprinting, stealth scans, intrusion detection systems. Slides: [pdf] Further reading: Nmap Scanning Tool, (for reference) Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection, T. Ptacek and T. Newsham ZMap: Fast Internet-Wide Scanning and its Security Applications, Z. Durumeric et al.
April 13	Privacy, Censorship, and Surveillance	Mass surveillance, Anonymous browsing, The Onion Router (TOR), deep packet inspection. Slides: [pdf] [pdf] Further reading: Tor: The Second-Generation Onion Router, Dingeldine et al. Ignoring the Great Firewall of China, Clayton et al.
April 18	Virtualization Security	Virtual machines, reset vulnerabilities, VM introspection, covert channels. Slides: [pdf] Further reading: A Note on the Confinement Problem, Brian Lampson When Virtual is Harder than Real: Security Challenges in Virtual Machine Based Computing Environments, T. Garfinkel and M. Rosenblum When Good Randomness Goes Bad: Virtual Machine Reset Vulnerabilities and Hedging Deployed Cryptography, T. Ristenpart and S. Yilek Not-So-Random Numbers in Virtualized Linux and the Whirlwind RNG, A. Everspaugh, Y. Zhai, R. Jellinek, T. Ristenpart, and M. Swift
April 20	Cloud Computing	Public cloud risk models, cloud cartography, VM placement gaming, side channels. Slides: [pdf] Further reading: Hey, You, Get Off of My Cloud: Exploring Information Leakage in Third-Party Compute Clouds, Ristenpart et al. A Placement Vulnerability Study in Multi-Tenant Public Clouds, Varadarajan et al. AmazonIA: When Elasticity Snaps Back, Bugiel et al.
April 25	Botnets	Malware ecosystem, botnets, command and control, domain flux C&C, sinkholing. Slides: [pdf] Further reading: Your Botnet is My Botnet: Analysis of a Botnet Takeover, B Stone-Gross et al. Measuring Pay-per-Install: The Commoditization of Malware Distribution, J Caballero et al.
April 27	Botnets	Malware ecosystem, botnets, command and control, domain flux C&C, sinkholing.
May 2	Bitcoin	Basic mechanism underlying Bitcoin, proof-of-work, blockchain, privacy implications. Further reading: Bitcoin: A Peer-to-Peer Electronic Cash System, Satoshi Nakamoto
May 4	Android Security	Guest lecture: Drew Davidson Mobile risk model, android security model, android permissions, taint tracking. Slides: [pdf] Further reading: TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones, Enck et al. PScout: Analyzing the Android Permission Specification, Kathy Wain Yee Au et al. Understanding Android Security, Enck et al.
May 6	Final Exam Review Session	Review selected topics in preparation for the final exam.

CS 642: Intro to Computer Security

Announcements

Homework 1

Homework 2

Homework 3

Homework 4

Course Info

Summary

Grading

Final Exam

Instructor

Teaching Assistants

Lectures