CS155 Computer and Network Security

Course Syllabus

Spring 2019

 
Lecture 1:
Tue 4/ 2/19
(DB)
Course overview   [pdfpptx]
Readings:

Part 1: Basics
 
Lecture 2:
Thu 4/ 4/19
(DB)
Control hijacking attacks: exploits   [pdfpptx]
Readings:
 
Lecture 3:
Tue 4/ 9/19
(DB)
Control hijacking attacks: defenses   [pdfpptx]
Readings:
 
Lecture 4:
Thu 4/11/19
(ZD)
Principle of least privilege, access control, and operating systems security   [pdfkey]
Readings:
 
Lecture 5:
Tue 4/16/19
(DB)
Isolation and sandboxing   [pdfpptx]
Readings:
 
Lecture 6:
Thu 4/18/19
(ZD)
Testing for vulnerabilities: fuzzing, static and dynamic analysis.   [pdfkey]
Readings:

Part 2: Web Security
 
Lecture 7:
Tue 4/23/19
(ZD)
Basic web security model   [pdf]
Readings:
 
Lecture 8:
Thu 4/25/19
(ZD)
Web application security   [pdfkey]
Readings:
 
Lecture 9:
Tue 4/30/19
(DB)
Overview of cryptography   [pdfpptx]
Readings:
 
Lecture 10:
Thu 5/ 2/19
(DB)
HTTPS: goals and pitfalls   [pdfpptx]
Readings:
 
Lecture 11:
Tue 5/ 7/19
(DB)
Authenticating users on the Web   [pdfpptx]
Readings:

Part 3: Network security
 
Lecture 12:
Thu 5/ 9/19
(ZD)
Internet Protocol Security   [pdfkey]
Readings:
 
Lecture 13:
Tue 5/14/19
(ZD)
Internet Protocol Security Contd. and DDoS   [pdfkey]
Readings:
 
Lecture 14:
Thu 5/16/19
(ZD)
DoS Attacks and Network Defenses   [pdfkey]
Readings:

Part 4: Security of mobile platforms
 
Lecture 15:
Tue 5/21/19
(ZD)
Android and iOS: mobile platform security architecture   [pdfkey]
Readings:
 
Lecture 16:
Thu 5/23/19
(inv)
Topics in Android security: Rene Mayrhofer, Google
Readings:

Part 5: Odds and ends
 
Lecture 17:
Tue 5/28/19
(DB)
Processor security: Intel SGX and the Spectre attack   [pdfpptx]
Readings:
 
Lecture 18:
Thu 5/30/19
(ZD)
Privacy and anonymity on the Internet   [pdfpptx]
Readings:
  • ???
 
Lecture 19:
Tue 6/ 4/19
(inv)
Final invited lecture: Eric Rescorla, Mozilla   [pdfpptx]