Class Schedule

Notes:


Date Topic and Slides Recommended Readings Assignments
Week 1
09/28/2022 Course overview [slides]
09/30/2022 Introduction to security [slides] Optional:
Security Engineering Chapter 1
Week 2
10/03/2022 Software security: Buffer overflows [slides] Sign the ethics form (11:59pm)
10/05/2022 Software security: Buffer overflows continued [slides] Strongly recommended:
Smashing the Stack for Fun and Profit [Corrected and reformatted, original] and Exploiting Format String Vulnerabilities and Once Upon a free()
10/07/2022 Software security: Buffer overflows + defenses [slides] Homework #1 due (11:59pm)
Week 3
10/10/2022 Software security: Buffer overflows defenses and more [slides]
10/12/2022 Software security: Misc
Cryptography: Introduction [slides]
Optional:
Security Engineering Chapter 5
10/14/2022 Cryptography: Intro and randomness [slides] (Keep reading the previous one) Lab #1a due (11:59pm) -- Delayed 24 hours to Saturday, Oct 15 11:59pm (due to lab outage)
Week 4
10/17/2022 Cryptography: Randomness and symmetric encryption [slides]
10/19/2022 Cryptography: Symmetric encryption [slides]
10/21/2022 Cryptography: Finish symmetric encryption, Start hash functions [slides]
Week 5
10/24/2022 Cryptography: Finish hash functions, Start asymmetric cryptography [slides]
10/26/2022 Cryptography: Asymmetric cryptography [slides] Lab #1b due (11:59pm) -- Delayed 24 hours to Thursday, Oct 27 11:59pm
10/28/2022 Web security: Certificates and (start) browser security model [slides]
Week 6
10/31/2022 Canceled
11/02/2022 Web security: Same origin policy and XSS [slides]
11/04/2022 Guest lecture: Yoshi Kohno (University of Washington) on "Ethical Frameworks and Computer Security" Homework #2 due (11:59pm)
Week 7
11/07/2022 Web security: XSS and SQL injection [slides] Strongly recommended:
Advanced SQL Injection,
XSS Cheat Sheet
11/09/2022 Web security: CSRF and Browser security model [slides]
11/11/2022 No class: Veterans Day Final Project checkpoint #1 due (11:59pm)
Week 8
11/14/2022 Authentication [slides] Optional (funny):
"This World of Ours" by James Mickens
11/16/2022 Guest lecture: Emily McReynolds on Security and Law/Policy
11/18/2022 Usable security [slides]
Week 9
11/21/2022 Guest lecture: Umar Iqbal (University of Washington) on web privacy [slides]
11/23/2022 No class: Thanksgiving
11/25/2022 No class: Thanksgiving
Week 10
11/28/2022 Mobile platform security [slides]
11/29/2022
(Tuesday)
(not a class day) Lab 2 due (11:59pm)
11/30/2022 Anonymity [slides] Final Project checkpoint #2 due (11:59pm)
12/02/2022 Guest lecture: Charlie Reis (Google)
Week 11
12/05/2022 Side channels [slides]
12/07/2022 Physical security (not recorded) [slides]
12/09/2022 Emerging technologies / Wrap-up [slides] Homework #3 due (11:59pm)
Finals Week
12/12/2022 (No meeting) Final Project due (11:59pm)