CSE logo University of Washington Computer Science & Engineering
 CSE 484 / CSE M 584: Computer Security (Winter 2009)
  CSE Home   About Us    Search    Contact Info 

Course home
 Home
Administrivia
 Overview
 Using course email
 Forum
Schedule
 Schedule
Assignments
 Homework
 Course Blog
 Labs
Lab information
 Getting lab accounts
 Unix tutorials
   

Lectures

Please note that the schedule is subject to changes based on our progess and student interests.

The list of readings for each class and other extra information are at the bottom of this page.

Week of Monday Wednesday Thursday
January 5 Lecture 1 Lecture 2 Section 3
January 12 Lecture 4 Lecture 5 Section 6
January 19 Holiday Lecture 7 Section 8
January 26 Lecture 9 Lecture 10 Section 11
February 2 Lecture 12 Lecture 13 Section 14
February 9 Lecture 15 Lecture 16 Section 17
February 16 Holiday Lecture 18 Section 19
February 23 Lecture 20 Lecture 21 Section 22
March 2 Lecture 23 Lecture 24 Section 25
March 10 Lecture 26 Lecture 27 Section 28

Additional Material

Lecture 1

Topic: Introduction to Security.

Slides: here.

Required reading: Daswani et al, Chapters 1, 2, and 3. (Note: The book switches the definition of false positive and false negative at the top of page 11.)

Lecture 2

Topic: Software Security.

Slides: here. (The class lecture notes draw a stack frame as: [buf] [Saved SP] [ret/IP] [str] Caller's frame...This is a little confusing, since the "Saved SP" here refers to the saved value of the frame pointer from the previous (calling) stack frame.)

Required reading: Daswani et al, Chapters 5 and 6.

Recommended reading (for project): Aleph One, Smashing the Stack for Fun and Profit. Text file available here: http://www.cs.washington.edu/education/courses/484/09wi/lectures/stack.txt.

Recommened reading (for project): scut / team teso, Exploiting Format String Vulnerabilities. PDF available here: http://www.cs.washington.edu/education/courses/484/09wi/lectures/formatstrings.pdf.

Recommended reading (for project): Chien and Szor, Blended Attacks. PDF available here: http://www.peterszor.com/blended.pdf.

Optional: McGraw and Viega, Software Security Principles Part 1, Part 2, Part 3, Part 4, Part 5.

Optional: Harold, Fuzz Testing. Available online here: http://www.ibm.com/developerworks/java/library/j-fuzztest.html.

Optional: Fuzz Testing Tools and Techniques.

Optional: Wheeler, Secure Programming for Linux and Unix HOWTO. Available online here: http://www.dwheeler.com/secure-programs/.

Section 3

Lecture 4

Topic: Intro to Cryptography.

Slides: here.

Required reading: Handout, Chapteres 1 and 2.

Lecture 5

Topic: Crypto Intro and Web Security.

Slides: here.

Required reading: Daswani et al, Chapters 7, 8, and 10.

Section 6

Lecture 7

Topic: Symmetric Cryptography

Slides: here.

Required reading: Handout, Chapters 3 and 4. Skip Sections 3.5.3 through 3.5.7.

Section 8

Lecture 9

Topic: Physical security.

Slides: NA.

Required reading: NA.

Lecture 10

Topic: Symmetric Cryptography.

Slides: here.

Required reading: Handout, Sections 7.1, 7.2, 7.3, 9.1, 9.2, and 9.7.

Section 11

Lecture 12

Topic: Symmetric Cryptography and Networks.

Slides: here.

Required reading: NA.

Lecture 13

Topic: Networks.

Slides: here.

Required reading: NA.

Section 14

Lecture 15

Topic: Networks and authentication.

Slides: here.

Required reading: NA.

Lecture 16

Topic: User authentication.

Slides: here.

Required reading: NA.

Section 17

Lecture 18

Topic: Crypto context and anonymity.

Slides: here.

Required reading: Daswani et al, Chapter 9. (Content from last class.)

Section 19

Lecture 20

Topic: Intrusion detection and asymmetric cryptography.

Slides: here.

Required reading: Daswani et al, Chapter 13, 14, 15.3, 15.5.

Lecture 21

No class.

Section 22

Lecture 23

Topic: Asymmetric cryptography.

Slides: here.

Required reading: NA.

Lecture 24

Topic: Human aspects.

Slides: here.

Required reading: NA.

Section 25

Lectures 26 and 27

Topic: Research directions

Slides:

Section 28


CSE logo Computer Science & Engineering
University of Washington
Box 352350
Seattle, WA  98195-2350
(206) 543-1695 voice, (206) 543-2969 FAX