CSE 484 / CSE M 584: Computer Security (Spring 2016)

Class Schedule

Note: Dates in the future are tentative and subject to slight changes (e.g., as guest lectures are scheduled). Please check back often.
Also note: Research reading deadlines for CSE M 584 students are not listed on this calendar. You can find them here.

Date Topic and Slides Readings Assignments
03/28/2016 Course overview [slides] None
03/30/2016 Introduction to security [slides] Daswani, Chapter 1
04/01/2016 Software security: Buffer overflows [slides] Daswani, Chapter 6
04/04/2016 Software security: Buffer overflows continued [slides] Daswani, Chapter 6

Recommended: Smashing the Stack for Fun and Profit and Exploiting Format String Vulnerabilities and Once Upon a free()
04/06/2016 Software security: Miscellaneous [slides] Daswani, Chapter 3 Sign the Ethics Form by 5pm!
04/08/2016 Guest lecture: David Aucsmith None Homework #1 due (8pm) [details]
04/11/2016 Software security: Principles;
Cryptography: Intro [slides]
04/13/2016 Cryptography: Symmetric encryption (start) [slides] Daswani, Chapter 12
04/15/2016 Cryptography: Symmetric encryption (finish) [slides] None
04/18/2016 Cryptography: Hash functions and MACs (start) [slides] Daswani, Chapter 15 Lab #1 checkpoint due (8pm) [details]
04/20/2016 Cryptography: Hash functions and MACs (finish); Asymmetric key crypto (start) [slides] Daswani, Chapter 13
04/22/2016 Guest lecture: Karl Koscher, UCSD None
04/25/2016 Cryptography: Asymmetric key crypto (finish) [slides] Daswani, Chapter 14
04/27/2016 Crypto meets Web Security: Certificates and SSL/TLS [slides] None
04/29/2016 Web Security: Basic web security model [slides] Daswani, Chapter 7 Lab #1 due (8pm) [details]
05/02/2016 Web Security: Basic web security model (finish) [slides] None
05/04/2016 Web Security: Web application security (CSRF, XSS) [slides] Daswani, Chapter 10
05/06/2016 Guest lecture: Yoshi Kohno None Homework #2 due (8pm) [details]
05/09/2016 Web Security: Web application security (SQL injection, session management) [slides] Daswani, Chapters 8 and 10

Recommended: Advanced SQL Injection, XSS Cheat Sheet
05/11/2016 Web privacy: Third-party tracking [slides] None
05/13/2016 Guest lecture: Emily McReynolds, UW Tech Policy Lab None Final Project Deadline #1 (8pm) [details]
05/16/2016 Authentication and passwords [slides] Daswani, Chapter 9

Recommended (funny!):
James Mickens on passwords
05/18/2016 Mobile Platform Security (start) [slides] Understanding Android Security
05/20/2016 Guest lecture: Charlie Reis, Google Chrome Security None Lab #2 Due [details]
05/23/2016 Mobile Platform Security (finish) [slides] None
05/25/2016 Usable Security [slides] None
05/27/2016 Usable Security (finish),
Physical Security [slides]
None Homework #3 due [details]
05/30/2016 No class (holiday) None
06/01/2016 Anonymity [slides] None Final Project Deadline #2 (8pm) [details]
06/03/2016 Loose Ends: Anonymity (finish), Side Channels, Emerging Technologies [slides] None Lab #3 due [details]
06/06/2016 (No class: finals week, projects due) Final Projects Due (8pm) [details]