Course Syllabus

Spring 2010


Lecture 1: 3/30/10 (mit)	Course overview [pdf, ppt] Reading: Reflections on Trusting Trust, Ken Thompson Botnets, Cybercrime, and Cyberterrorism: Vulnerabilities and Policy Issues for Congress (Congressional Research Services report)

Part 1: Basics

Lecture 2: 4/ 1/10 (bon)	Control hijacking attacks: exploits and defenses [pdf, ppt] Reading: Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade, Crispin Cowan, et al. Smashing The Stack For Fun And Profit, Aleph One Basic Integer Overflows, blexim Optional: Bypassing Browser Memory Protections, A. Sotirov (a detailed analysis of Windows memory protection)

Lecture 3: 4/ 6/10 (inv)	Exploitation techniques and fuzzing [pdf, ppt] Reading: How hackers look for bugs by Dave Aitel Real world fuzzing, by Charlie Miller Effective Bug Discovery, vf.

Lecture 4: 4/ 8/10 (mit)	Secure system design, access control, and protection [pdf, ppt] Reading: SetUID Demystified, Chen, Dean, and Wagner, 2002. Understanding Android Security, Enck, Ongtang, and McDaniel, 2009

Lecture 5: 4/13/10 (inv)	Tools for writing robust application code [pdf] Reading: KLEE: Unassisted and Automatic Generation of High-Coverage Tests for Complex Systems Programs, by C. Cadar, D. Dunbar, D. Engler Finding Security Vulnerabilities in Java Applications with Static Analysis, by B. Livshits and M. Lam

Lecture 6: 4/15/10 (mit)	Use of cryptography in computer security [pdf, ppt] Reading: Five-minute university Why cryptosystems fail, Ross Anderson

Lecture 7: 4/20/10 (bon)	Dealing with bad (legacy) application code: sandboxing and isolation [pdf, ppt] Reading: Traps and Pitfalls: Practical Problems in System Call Interposition Based Security Tools, T. Garfinkel Efficient Software-Based Fault Isolation, Robert Wahbe, et al. A note on the confinement problem, Butler Lampson

Part 2: Web Security

Lecture 8: 4/22/10 (mit)	Basic web security model [pdf, ppt] Reading: Securing Browser Frame Communication. Adam Barth, Collin Jackson, and John C. Mitchell The Security Architecture of the Chromium Browser. Adam Barth, Collin Jackson, Charles Reis, and the Google Chrome Team

Lecture 9: 4/27/10 (bon)	User authentication and session management [pdf, ppt] Reading: Secure Session Management With Cookies for Web Applications. Chris Palmer Designing and Conducting Phishing Experiments, Finn and Jakobsson, 2007 Threat Metrix, Device Fingerprinting and Fraud Protection Whitepaper

Lecture 10: 4/29/10 (mit)	Web application security [pdf, ppt] Reading: Cross site scripting explained, Amit Klein SQL Injection attacks, Chris Anley Robust Defenses for Cross-Site Request Forgery. Adam Barth, Collin Jackson, and John C. Mitchell

Lecture 11: 5/ 4/10 (bon)	HTTPS: goals and pitfalls [pdf, ppt] Reading: ForceHTTPS: protecting high-security web sites from network attacks, by A. Barth and C. Jackson Certified lies: detecting and defeating interception attacks against SSL, by C. Soghoian and S. Stamm

Part 3: Network security

Lecture 12: 5/ 6/10 (bon)	Security problems in network protocols: TCP, DNS, SMTP, and routing [pdf, ppt] Reading: A look back at Security Problems in the TCP/IP Protocol Suite, S. Bellovin, ACSAC 2004. A survey of BGP security, 2005. DNS cache poisoning, Steve Friedl

Lecture 13: 5/11/10 (mit)	Network defense tools: Firewalls, VPNs, Intrusion Detection, and filters [pdf, ppt] Reading: A Security Evaluation of DNSSEC with NSEC3, J. Bau and J.C. Mitchell Distributed Firewalls, S. Bellovin Bro: A System for Detecting Network Intruders in Real-Time, V. Paxon

Lecture 14: 5/13/10 (bon)	Unwanted traffic: denial of service attacks [pdf, ppt] Reading: Practical network support for IP Traceback, S. Savage, et al. A DoS-Limiting Network Architecture, Yang, Wetherall, and Anderson A detailed DDoS extortion story

Lecture 15: 5/18/10 (bur)	Network security testing [pdf, ppt] Reading: The Art of Port Scanning , Fyodor pOf 2: Dr. Jekyll had something to Hyde, Zalewski

Lecture 16: 5/20/10 (bur)	Malware: Computer viruses, Spyware, and key-loggers [pdf, ppt] Reading: Hunting for metamorphic, Szor, P. Ferrie

Lecture 17: 5/25/10 (bur)	bot-nets: attacks and defenses [pdf, ppt] Reading: Inside the slammer worm, S. Savage An Analysis of Conficker's Logic and Rendezvous Points Know Your Enemy: Fast-Flux Service Networks, Honeynet

Part 5: Final topics

Lecture 18: 5/27/10 (bon)	The Trusted Computing Architecture [pdf, ppt] Reading: Understanding trusted computing: will its benefits outweigh its drawbacks? by E. Felten Terra: A Virtual Machine-Based Platform for Trusted Computing by T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, and D. Boneh

Lecture 19: 6/ 1/10 (inv)	Final lecture

CS155 Computer and Network Security

Course Syllabus

Spring 2010