15-330 Schedule

Schedule

The following is a tentative schedule. It will likely change and be updated throughout the semester.

Week	Dates	Lecture Topics	Lab Topic	Assignments	Readings
Week 1	8-Jan to 12-Jan	Security Principles Introduction to Security and the Course Threat Models and Trusted Computing Bases	GDB Refresher		On Trusting Trust Chapter 1 (up to and including 1.8) of Computer Security and the Internet: Tools and Jewels
Week 2	15-Jan to 19-Jan	Software Security Execution Semantics and Buffer Overflows Format String Vulnerabilities	Thinking Up Exploits	HW1 Released	Chapter 3 of Computer Systems A Programmers Perspective (Use as a reference) Smashing the Stack for Fun and Profit Smashing the Stack in 2011 Exploiting Format String Vulnerabilities [Sections 2.1, 3] Exploiting Format String Vulnerabilities [Rest of Paper]
Week 3	22-Jan to 26-Jan	Basic Control Flow Attack Defenses and Return Oriented Programming Retrofitting Memory Safety	ROP Gadgets		ASLR Smack and Laugh Reference Design of ASLR in PAX The Geometry of Innocent Flesh on the Bone Return-into-libc without Calls (on the x86) [Sections 1 and 3.1-3.2.4]
Week 4	29-Jan to 2-Feb	Type Safety and Verification Analysis and Isolation Techniques	Thinking Up Exploits Part 2	HW1 Checkpoint: 30-Jan at 5:00pm	Control Flow Integrity Principles, Implementations, and Applications [Sections 1-3]
Week 5	5-Feb to 9-Feb	Security Principles Authentication, Authorization, Audit Cryptography: Intro to Cryptography	Exam 1 Review	HW1 Due: 8-Feb at 5:00pm
Week 6	12-Feb to 16-Feb	Exam 1 (Mon 13-Feb) Cryptography: PRFs, PRPs, and Proof by Reduction			A Graduate Course in Applied Cryptograpy [Appendix A.1, A.2 (not A.2.3), A.3, Appendix B] A Graduate Course in Applied Cryptograpy [2.1, 2.2, and 3.10] A Graduate Course in Applied Cryptograpy [4.4] Handbook of Applied Cryptography Chapter 1 Coursera Cryptography Course with Dan Boneh
Week 7	19-Feb to 23-Feb	Symmetric Key Cryptography	Basic Network Communication and AES	HW2 Released	A Graduate Course in Applied Cryptograpy [2.3, 2.4, 4.1, 4.2, 4.5, 5.1, 5.3-5.5]
	26-Feb to 2-Mar	Spring Break!
Week 8	5-Mar to 9-Mar	Integrity, Hashes, and MACs Public Key Cryptography	Diffie-Hellman Wisdom	HW2 Checkpoint: ~~6-Mar at 5:00pm~~ 7-Mar at 5:00pm	A Graduate Course in Applied Cryptograpy [6.1 (except 6.1.1),6.3, 8.1 (except 8.1.1), 8.3, 8.6, 8.7 (except 8.7.1-8.7.3), Intro to Ch.9 and 9.1,9.4.3] A Graduate Course in Applied Cryptograpy [10.1-10.5 (skip subsections on "Mathematical details" and 10.5.1), 11.1, 11.2 (skip 11.2.1), 11.4 (but skip proof details), 13.1 (except 13.1.2)]
Week 9	12-Mar to 16-Mar	Public Key Cryptography Blockchains and Cryptocurrencies	Exam 2 Review	HW2 Due: ~~15-Mar at 5:00pm~~ 16-March at 4:30pm	Overview of SSL/TLS
Week 10	19-Mar to 23-Mar	Exam 2 (Mon 20-Mar) Web Security Part 1		HW3 Released
Week 11	26-Mar to 30-Mar	Part 2	Investigating Single-Sign On with Tamper Dev
Week 12	2-Apr to 6-Apr	Part 3 WiFi Security Part 1 Part 2	WiFi Security Lecture	HW3 Checkpoint: 3-Apr at 5:00pm	Chapter 12 of Computer Security and the Internet: Tools and Jewels Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2 Brute forcing Wi-Fi Protected Setup. When poor design meets poor implementation.
Week 13	9-Apr to 13-Apr	Introduction to Network Security Passive RFID Security	Fun with RFID	HW3 Due: 12-Apr at 5:00pm
Week 14	16-Apr to 20-Apr	Human Factors Making Security Usable Privacy			Pages 1-14 of "Why Johnny Can’t Encrypt A Usability Evaluation of PGP 5.0" Pages 1-7 of A Firm Foundation for Private Data Analysis