CSE 127: Computer Security

Syllabus


Date
Topic
Sept 27
Introduction
Oct 2
Security Foundations
Read by today: Thompson, Reflections on Trusting Trust and Chapter 1 in The Craft of System Security (textbook)
Oct 4
Low-level Software Security I: Buffer Overflows
Read by today:
Smashing the Stack for Fun and Profit by Aleph One and Chapter 6 in The Craft of System Security (textbook).
Oct 9
Low-level Software Security II: Format Strings, Shellcode and Stack protection
Read by today:
Memory Errors: The Past, the Present, and the Future by van der Veen et al.
Oct 11
Low-level Software Security III: Integer overflow, ROP and CFI
Oct 16
Low-level Software Security IV: Heap attacks
Read by today: Understanding glibc malloc by sploitfun.
Oct 18
Cancelled
Oct 23
Crypto I
Read by today: Chapter 7 in The Craft of System Security (textbook)
Oct 25
Crypto II: PKI and side channels
Oct 30
Midterm Exam
Nov 1
User authentication
Nov 6
System Security I
Read by today: Chapter 3.4 and 4 in The Craft of System Security (textbook)
Nov 8
Systems Security II
Nov 13
Web Security I
Read by today: Chapter 12 in The Craft of System Security (textbook)
Nov 15
Web Security II
 
Nov 20
Network Security I
Nov 22
Thanksgiving
Nov 27
Malware and Cybercrime (guest lecture: Geoff Voelker)
Nov 29
Network Security II
Dec 4
Hardware Security: Spectre, Meltdown and Rowhammer
Also see: Schwarz and Lipps Spectre/Meltdown talk
Dec 6
Blockchain/Bitcoin
Dec 10
Final Exam: 3:00pm–5:59pm