15-330 Schedule

Schedule

The following is a tentative schedule. It will likely change and be updated throughout the semester.

Week	Dates	Lecture Topics	Lab Topic	Assignments	Readings
Week 1	17-Jan to 21-Jan	Security Principles Introduction to Security and the Course Threat Models and Trusted Computing Bases	GDB Refresher		On Trusting Trust
Week 2	24-Jan to 28-Jan	Software Security Execution Semantics and Buffer Overflows Control-Flow Attacks	Thinking Up Exploits	HW1 Released	Chapter 3 of Computer Systems A Programmers Perspective (Use as a reference) Smashing the Stack for Fun and Profit Smashing the Stack in 2011 Exploiting Format String Vulnerabilities [Sections 2.1, 3] Exploiting Format String Vulnerabilities [Rest of Paper]
Week 3	31-Jan to 4-Feb	Basic Control Flow Attack Defenses Return Oriented Programming	ROP Gadgets		ASLR Smack and Laugh Reference Design of ASLR in PAX The Geometry of Innocent Flesh on the Bone Return-into-libc without Calls (on the x86) [Sections 1 and 3.1-3.2.4]
Week 4	7-Feb to 11-Feb	Retrofitting Memory Safety Analysis and Isolation Techniques			Control Flow Integrity Principles, Implementations, and Applications [Sections 1-3]
Week 5	14-Feb to 18-Feb	Security Design Principles Systems Security Modern OS Security and Authorization Logic	Exam 1 Review	HW1 Due: 15-Feb at 5:00pm
Week 6	21-Feb to 25-Feb	Exam 1 (Mon 22-Feb) Cryptography Intro to Cryptography Terminology			A Graduate Course in Applied Cryptograpy [Appendix A.1, A.2 (not A.2.3), A.3, Appendix B] A Graduate Course in Applied Cryptograpy [2.1, 2.2, and 3.10] A Graduate Course in Applied Cryptograpy [4.4] Handbook of Applied Cryptography Chapter 1 Coursera Cryptography Course with Dan Boneh
	28-Feb to 4-Mar	Spring Break!
Week 7	7-Mar to 11-Mar	Symmetric Key Cryptography	Basic Network Communication and AES	HW2 Released	A Graduate Course in Applied Cryptograpy [2.3, 2.4, 4.1, 4.2, 4.5, 5.1, 5.3-5.5]
Week 8	14-Mar to 18-Mar	Public Key Cryptography	Diffie-Hellman Wisdom		A Graduate Course in Applied Cryptograpy [10.1-10.5 (skip subsections on "Mathematical details" and 10.5.1), 11.1, 11.2 (skip 11.2.1), 11.4 (but skip proof details), 13.1 (except 13.1.2)] Overview of SSL/TLS
Week 9	21-Mar to 25-Mar	Integrity, Hashes, and MACs Blockchains and Cryptocurrencies			A Graduate Course in Applied Cryptograpy [6.1 (except 6.1.1),6.3, 8.1 (except 8.1.1), 8.3, 8.6, 8.7 (except 8.7.1-8.7.3), Intro to Ch.9 and 9.1,9.4.3]
Week 10	28-Mar to 1-Apr	Web Security Part 1 Part 2	Exam 2 Review	HW2 Due: 1-Apr at 5:00pm
Week 11	4-Apr to 8-Apr	Part 3 Exam 2 (Wed 7-Apr)	Investigating Single-Sign On with Tamper Dev	HW3 Released
Week 12	11-Apr to 15-Apr	WiFi Security Part 1 Part 2	TBA		Chapter 12 of Computer Security and the Internet: Tools and Jewels Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2 Brute forcing Wi-Fi Protected Setup. When poor design meets poor implementation.
Week 13	18-Apr to 22-Apr	Human Factors Making Security Usable Privacy	Exam 3 Review (Exam 3 will occur during the scheduled final exam slot.)	HW3 Due: 22-Apr at 5:00pm	Pages 1-14 of "Why Johnny Can’t Encrypt A Usability Evaluation of PGP 5.0" Pages 1-7 of A Firm Foundation for Private Data Analysis