CSEP564 Computer Security (Autumn 2012)
Readings
The following is a list of readings for CSEP564. The main course page is here: here.
September 27, 2012
Read the following by October 18. You are not required to read these by the first lecture. There will not be additional assigned readings for October 18; however, we encourage you to start reading these as early as possible. UPDATE 9/28: You are not required to enter a review for these readings into HotCRP; the October 18 deadline is on the "honor system."
Optional readings:
Recommended optional video:
Slides for the first lecture:
October 4, 2012
Theme: Understanding the adversaries
Required readings:
Optional readings:
October 11, 2012
Theme: Understanding the adversaries and security for emerging technologies (that may not have adversaries yet)
Required readings:
Optional readings:
October 18, 2012
Complete the assigned textbook readings from September 27, 2012.
October 25, 2012 and November 1, 2012
NOTE: There may be an additional reading for Nov 1. We will update this note as soon as possible.
UPDATE: No additional reading for Nov 1.
Highly recommended but optional readings:
For the final, I will draw from the lectures and not the text in the book. However, I do encourage you to familiarize yourself with the text since it will complement the lecture.
(As an FYI, there will be a homework assignment related to cryptography; the homework questions will be similar to the exercises in the book Cryptography Engineering, but you do not need to actually read that book.)
Slides for the crypto (10/25 and 11/1 -- we'll use the whiteboard to augment; I'll try to send out photos of the whiteboard after class):
November 8, 2012
Topics: Threat Modeling at Microsoft (Mike Grimm guest lecture) and physical security.
Slides to be posted soon.
Slides on threat modeling
Slides on physical security
November 15, 2012
Topics: Web security and classic papers.
Required readings:
Optional readings:
Slides on Web security
November 29, 2012
Topics: Web tracking, Botnets, HCI+security
Required readings:
Optional readings:
Guest lecturers
- Franzi Roesner, on web tracking
- David Dittrich, on botnet take overs
- Tamara Denning, on HCI+security in the context of medical devices
December 6, 2012
Topics: Web and Mobile
Required readings:
Optional readings related to web:
Option classic readings (not related to web and mobile):