CSE 484 / CSE M 584: Computer Security (Fall 2016)

Class Schedule

Note: Dates in the future are tentative and subject to slight changes (e.g., as guest lectures are scheduled). Please check back often.
Also note: Research reading deadlines for CSE M 584 students are not listed on this calendar. You can find them here.

Date Topic and Slides Readings Assignments
09/28/2016 Course overview & Introduction to security [slides] None
09/30/2016 Introduction to security & The security mindset [slides] Daswani, Chapter 1 Class survey ("Homework #0") due (8pm) [Survey]
10/03/2016 Guest lecture: Tadayoshi Kohno [] Daswani, Chapter 6
10/05/2016 Software security: Buffer overflows [slides] Daswani, Chapter 6

Recommended: Smashing the Stack for Fun and Profit and Exploiting Format String Vulnerabilities and Once Upon a free()
Sign the Ethics Form by 5pm!

Lab #1 out [Details]
10/07/2016 Guest lecture: David Aucsmith Daswani, Chapter 3
10/10/2016 Software security: Buffer overflows continued [slides] None Homework #1 due (8pm) [details]
10/12/2016 Guest lecture: Emily McReynolds, UW Tech Policy Lab None
10/14/2016 Software security: Miscellaneous [slides] Daswani, Chapter 12 Lab #1 checkpoint due (5pm) [details]
10/17/2016 Software security: Terminology and ideas;
Cryptography: Intro [slides]
10/19/2016 Cryptography: Symmetric encryption (start) [slides] Daswani, Chapter 15
10/21/2016 Cryptography: Symmetric encryption (finish) [slides] Daswani, Chapter 13
10/24/2016 Cryptography: Hash functions and MACs (start) [slides] None
10/26/2016 Cryptography: Hash functions and MACs (finish); Asymmetric key crypto (start) [slides] Daswani, Chapter 14
10/28/2016 Cryptography: Asymmetric key crypto (finish) [slides] None
10/31/2016 Cryptography: Certificates and SSL/TLS [slides] Daswani, Chapter 7 Lab #1 due (5pm) [details]
11/02/2016 Crypto/Web SecurityCertificate Authorities, SSL/TLS [slides] None
11/04/2016 Web Security: Intro [slides] Daswani, Chapter 10 Homework #2 due (8pm) [details]
11/07/2016 Web Security: Web application security (CSRF, XSS) [slides] None
11/09/2016 Web Security: Web application security (XSS and Injections) [slides] None
11/11/2016 No class (Veteran's Day) Daswani, Chapters 8 and 10

Recommended: Advanced SQL Injection, XSS Cheat Sheet
11/14/2016 Web Security: Web application security (SQL injection, session management) [slides] None
11/16/2016 Web privacy: Third-party tracking [slides] None
11/18/2016 Physical Security Daswani, Chapter 9

Recommended (funny!):
James Mickens on passwords
11/21/2016 Passwords and Authentication (start) [slides] Understanding Android Security Lab 2 due (5pm) [details]
11/23/2016 No class - Thanksgiving None
11/25/2016 No class - Thanksgiving None
11/28/2016 Mobile Platform Security [slides] None
11/30/2016 Usable Security [slides] None
12/02/2016 Usable Security (finish), [slides] None
12/05/2016 Guest Lecture: Chris Handsen, Detective [] None
12/07/2016 Loose Ends: Anonymity and Secure Messaging [slides] None
12/09/2016 Loose Ends: Tor and Secure Messaging [slides] None
12/12/2016 (No class: finals week)