ScheduleΒΆ
The schedule will change as the course progresses, in part based on student interests. If you are particularly interested in some topic not covered here, send mail to the course staff (mailto:staff).
Submit your answers (and questions) of each lecture via Submission web site, and post your questions to colleagues (and staffs) on Piazza.
| Monday | Tuesday | Wednesday | Thursday | Friday |
| Aug 18 First day of class (No class) |
Aug 19 | Aug 20 LEC 1: Introduction, threat models |
Aug 21 | Aug 22 ADD DATE |
| Aug 25 LEC 2: Integer overflows and static analysis (slides) Preparation: Read KINT / slides (osdi12) (Question) |
Aug 26 | Aug 27 LEC 3: Security mitigations in modern OSes (slides) Preparation: Read Ubuntu / Win8 (bh12) (Question) |
Aug 28 | Aug 29 |
| Sep 1 Labor day |
Sep 2 | Sep 3 LEC 4: Mass pwnage: guest lecture by Tielei Wang Preparation: Read Iworm / slides (sec14) (Question) |
Sep 4 | Sep 5 |
| Sep 8 LEC 5: Control hijacking attacks Preparation: Read Sigreturn oriented programming / slides / poc (s&p14) (Question) |
Sep 9 | Sep 10 LEC 6: Jailbreaking iPhone: guest lecture by YeongJin Jang Preparation: Read Slides (bh14) (Question) |
Sep 11 | Sep 12 |
| Sep 15 LEC 7: Software fault isolation Preparation: Read RockSalt (pldi12) (Question) |
Sep 16 | Sep 17 LEC 8: Performace & security trade-off: ASLR, guest lecture by Byoungyoung Lee Preparation: Read Morula / slides (sec14) / Hash collision Slides (bh14) (Question) |
Sep 18 | Sep 19 |
| Sep 22 LEC 9: Control flow integrity Preparation: Read CFI for binaries / slides (sec13) (Question) |
Sep 23 | Sep 24 LEC 10: Project propsal presentations slides DUE: 5min brainstorming presentation |
Sep 25 | Sep 26 |
| Sep 29 LEC 11: Auditing Preparation: Read Poirot / slides (osdi12) (Question) |
Sep 30 | Oct 1 LEC 12: Web security Preparation: Read DOM-based XSS / slides / post-XSS (ccs13) (Question) |
Oct 2 Project meetings with staff (here) |
Oct 3 Project meetings with staff (here) |
| Oct 6 LEC 13: Data privacy: guest lecture by Billy Lau Preparation: Read Mimesis Aegis / slides (sec14) (Question) |
Oct 7 | Oct 8 No class (trip to OSDI) |
Oct 9 | Oct 10 DROP DATE |
| Oct 13 Fall Student Recess |
Oct 14 Fall Student Recess |
Oct 15 LEC 14: Project propsal presentations DUE: 10min proposal presentation |
Oct 16 | Oct 17 |
| Oct 20 LEC 15: Project propsal presentations DUE: 10min proposal presentation |
Oct 21 | Oct 22 LEC 16: Symoblic execution Preparation: Read Klee / slides (osdi08) (Question) |
Oct 23 | Oct 24 |
| Oct 27 LEC 17: DNS security Preparation: Pentesting with DNS (Question) |
Oct 28 | Oct 29 LEC 18: Web security Preparation: Top Ten Web Hacking 2014 (Question) |
Oct 30 | Oct 31 |
| Nov 3 LEC 19: New web design Preparation: Read Embassies / slides (nsdi13) (Question) |
Nov 4 | Nov 5 LEC 20: Language for security Preparation: Read Hails / slides (osdi12) (Question) |
Nov 6 | Nov 7 |
| Nov 10 LEC 21: Kernel bugs Preparation: Read Linux kernel vulnerabilities / slides (apsys11) / Kernel exploits / (full-nelson) (Question) |
Nov 11 | Nov 12 LEC 22: A11y Attacks: guest lecture by YeongJin Jang Preparation: Read A11y / slides (ccs14) (Question) |
Nov 13 | Nov 14 |
| Nov 17 LEC 23: Kernel exploits Preparation: Read Ret2dir / slides (sec14) (Question) |
Nov 18 | Nov 19 LEC 24: Side-channel attack Preparation: Read Breaking kernel space ASLR / slides (s&p13) (Question) |
Nov 20 Project meetings with staff (here) |
Nov 21 |
| Nov 24 LEC 25: Hardware security: trusted computing Preparation: Read Haven / slides (osdi14) (Question) |
Nov 25 | Nov 26 LEC 26: Anonymity network Preparation: Read Tor / slides (sec04), Spoiled onions / slides (pets14) (lecture) (Question) |
Nov 27 Thanksgiving |
Nov 28 Thanksgiving |
| Dec 1 LEC 27: Demo day DUE: Project demo & presentation |
Dec 2 | Dec 3 LEC 28: Demo day DUE: Project demo & presentation |
Dec 4 | Dec 5 Last day of classes |
| Dec 8 Final exam week (No final!) |
Dec 9 Final exam week (No final!) |
Dec 10 Final exam week (No final!) |
Dec 11 Final exam week (No final!) |
Dec 12 Final exam week (No final!) |