CMPSCI 177: Computer Security and Privacy

Previous Class Web Page (Fall 2005)

Class Syllabus

Overhead Transparencies

• Introduction (pdf)
• Security Policies (pdf)
• Formal Security Models (pdf)
• Cryptography (pdf)
• Security Principles (pdf)
• Merkle-Hellman Knapsack (pdf)
• Internet Security (pdf) -- THIS IS A BIG FILE
• Buffer Overflows (pdf)
• Authentication (pdf)
• Lattice Security Model (pdf)
• Noninterference Security Model (pdf)
• Introduction to Intrusion Detection (pdf)
• SQL Injection Attacks (pdf)
• Learning-based Anomaly Detection (pdf)
• Privacy (pdf)
• Malware (pdf)
• Online Banking (pdf)

Reading Assignments

• Bishop Chapter 1
• "Software Engineering Encyclopedia Article" by Kemmerer (pdf)
• Bishop Chapter 4
• Bishop Chapters 5 and 6
• Bishop Chapter 8
• Bishop Chapter 12
• Bishop Chapter 23
• Smashing The Stack For Fun And Profit by Aleph One
• Bishop Chapter 11
• Bishop Chapter 15 and 27
• "Security Policies and Security Models" by J.A. Goguen and J. Meseguer (pdf)
• Bishop Chapters 21 and 22
• "Designing and Implementing a Family of Intrusion Detection Systems" by Vigna, Valeur, and Kemmerer - THIS IS OPITIONAL READING (pdf)
• SQL Injection Attacks by Example
• "Distributed Usage Control" by Pretschner, Hilty, and Basin (pdf)
• "Malware - Background and Motivation" by Christopher Kruegel (pdf)
• "Security Testing of the Online Banking Service of a Large International Bank" by dos Santos, Vigna, and Kemmerer (pdf)

Homework Assignments

• Homework 1 -- Security Terms and Obtaining Security Information (pdf)
• Homework 2 -- Vulnerability Information (pdf)
• Homework 3 -- Multi-step Attacks and Security Policies (pdf)
• Homework 4 -- Crypto Analysis (pdf),
• -- ascii for cryptograms
• Homework 5 -- Buffer Overflows (pdf)
• Homework 6 Password Security (pdf)
• Homework 7 -- DES, Public Key, Lattice Model, and Noninterference Model (pdf)
• Homework 8 Auditing and Intrusion Detection (pdf)

Homework Solutions

Handouts

• Personal Questionnaire (pdf)
• DES 16 round example - courtesy of Prof. Konheim (pdf)
• Final Topics (pdf)

Email

• To join the class mailing list
  

  ---

  Last modified: December 7, 2006 by Dick Kemmerer
  kemm@cs.ucsb.edu