CSE 127: Computer Security: Syllabus


Date Topic and reading
Tue, Mar. 29 Introduction
Reading:
Thu, Mar. 31 Buffer Overflows and Memory Safety
Reading:
Tue, Apr. 5 Legacy Software: Mitigation and Sandboxing
Reading:
Thu, Apr. 7 Secure Programming, Manually and with Tools
Reading:
Tue, Apr. 12 The TCP/IP Protocol Suite
(Guest lecturer: Stefan Savage; online slides)
Reading:
Thu, Apr. 14 Firewalls, NATs, and Intrusion Detection
(Guest lecturer: Chris Kanich; online slides)
Reading:
Tue, Apr. 19 No class—Passover
Thu, Apr. 21 Systems and Network Security Catchup
Reading:
Tue, Apr. 26 Browsers and the Same-Origin Policy
Reading:
Thu, Apr. 28 Memory Vulnerabilities in Browsers
Reading:
Tue, May 3 Cross-Origin Attacks
Reading:
Thu, May 5 Frames: Communication and Clickjacking
Reading:
Tue, May 10 HTTPS
Reading:
Thu, May 12 Midterm exam
Tue, May 17 Web Security Catchup
Reading: none
Thu, May 19 Worms and Botnets
Reading:
Tue, May 24 Authentication and Phishing
Reading:
Thu, May 26 Spam and CAPTCHAS
(Guest lecturer: Kirill Levchenko)
Reading:
Tue, May 31 Access Control, Covert Channels, the Common Criteria, and Secure Operating Systems
Reading (skim):
Thu, Jun. 2 New and Advanced Topics: Voting Security
Reading:
Tue, Jun. 7
11:30 AM–2:30 PM
(Final Exam)

Navigation: CSE // CSE 127 // Syllabus