Course Syllabus

Spring 2010


Lecture 1: 3/29/11 (bon)	Course overview [pdf, ppt] Reading: Reflections on Trusting Trust, Ken Thompson The Legitimate Vulnerability Market -- Inside the Secretive World of 0-day Exploit Sales, Charlie Miller Botnets, Cybercrime, and Cyberterrorism: Vulnerabilities and Policy Issues for Congress (Congressional Research Services report)

Part 1: Basics

Lecture 2: 3/31/11 (bon)	Control hijacking attacks: exploits and defenses [pdf, ppt] Reading: Buffer Overflows: Attacks and Defenses for the Vulnerability of the Decade, Crispin Cowan, et al. Basic Integer Overflows, blexim Bypassing Browser Memory Protections, A. Sotirov (a detailed analysis of Windows memory protection) Smashing The Stack For Fun And Profit, Aleph One

Lecture 3: 4/ 5/11 (inv)	Exploitation techniques and fuzzing [pdf, ppt] Reading: How hackers look for bugs by Dave Aitel Real world fuzzing, by Charlie Miller Effective Bug Discovery, vf.

Lecture 4: 4/ 7/11 (mit)	Secure system design, access control, and protection [pdf, ppt] Reading: SetUID Demystified, Chen, Dean, and Wagner, 2002. Understanding Android Security, Enck, Ongtang, and McDaniel, 2009

Lecture 5: 4/12/11 (mit)	Tools for writing robust application code [pdf] Reading: KLEE: Unassisted and Automatic Generation of High-Coverage Tests for Complex Systems Programs, by C. Cadar, D. Dunbar, D. Engler Finding Security Vulnerabilities in Java Applications with Static Analysis, by B. Livshits and M. Lam

Lecture 6: 4/14/11 (bon)	Dealing with bad (legacy) application code: sandboxing and isolation [pdf, ppt] Reading: Traps and Pitfalls: Practical Problems in System Call Interposition Based Security Tools, T. Garfinkel Efficient Software-Based Fault Isolation, Robert Wahbe, et al. A note on the confinement problem, Butler Lampson

Lecture 7: 4/19/11 (mit)	Use of cryptography in computer security [pdf, ppt] Reading: Five-minute university Why cryptosystems fail, Ross Anderson

Part 2: Web Security

Lecture 8: 4/21/11 (mit)	Basic web security model [pdf, ppt] Reading: Securing Browser Frame Communication. Adam Barth, Collin Jackson, and John C. Mitchell The Security Architecture of the Chromium Browser. Adam Barth, Collin Jackson, Charles Reis, and the Google Chrome Team

Lecture 9: 4/26/11 (bon)	User authentication and session management [pdf, ppt] Reading: Secure Session Management With Cookies for Web Applications. Chris Palmer Designing and Conducting Phishing Experiments, Finn and Jakobsson, 2007 Threat Metrix, Device Fingerprinting and Fraud Protection Whitepaper

Lecture 10: 4/28/11 (mit)	Web application security [pdf, ppt] Reading: Cross site scripting explained, Amit Klein SQL Injection attacks, Chris Anley Robust Defenses for Cross-Site Request Forgery. Adam Barth, Collin Jackson, and John C. Mitchell

Lecture 11: 5/ 3/11 (bon)	HTTPS: goals and pitfalls [pdf, ppt] Reading: ForceHTTPS: protecting high-security web sites from network attacks, by A. Barth and C. Jackson Certified lies: detecting and defeating interception attacks against SSL, by C. Soghoian and S. Stamm

Part 3: Network security

Lecture 12: 5/ 5/11 (bon)	Security problems in network protocols: TCP, DNS, SMTP, and routing [pdf, ppt] Reading: A look back at Security Problems in the TCP/IP Protocol Suite, S. Bellovin, ACSAC 2004. A survey of BGP security, 2005. DNS cache poisoning, Steve Friedl

Lecture 13: 5/10/11 (mit)	Network defense tools: Firewalls, VPNs, Intrusion Detection, and filters [pdf, ppt] Reading: A Security Evaluation of DNSSEC with NSEC3, J. Bau and J.C. Mitchell Distributed Firewalls, S. Bellovin Bro: A System for Detecting Network Intruders in Real-Time, V. Paxon

Lecture 14: 5/12/11 (bur)	Network security testing [pdf, ppt] Reading: The Art of Port Scanning , Fyodor pOf 2: Dr. Jekyll had something to Hyde, Zalewski

Lecture 15: 5/17/11 (bur)	Malware: Computer viruses, Spyware, and key-loggers [pdf, ppt] Reading: Hunting for metamorphic, Szor, P. Ferrie

Lecture 16: 5/19/11 (bur)	bot-nets: attacks and defenses [pdf, ppt] Reading: Inside the slammer worm, S. Savage An Analysis of Conficker's Logic and Rendezvous Points Know Your Enemy: Fast-Flux Service Networks, Honeynet

Lecture 17: 5/24/11 (bon)	Unwanted traffic: denial of service attacks [pdf, ppt] Reading: Practical network support for IP Traceback, S. Savage, et al. A DoS-Limiting Network Architecture, Yang, Wetherall, and Anderson A detailed DDoS extortion story

Part 5: Final topics

Lecture 18: 5/26/11 (bon)	The Trusted Computing Architecture [pdf, ppt] Reading: Understanding trusted computing: will its benefits outweigh its drawbacks? by E. Felten Terra: A Virtual Machine-Based Platform for Trusted Computing by T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, and D. Boneh

Lecture 19: 5/31/11 (inv)	Final lecture

CS155 Computer and Network Security

Course Syllabus

Spring 2010