ScheduleΒΆ

The schedule will change as the course progresses, in part based on student interests. If you are particularly interested in some topic not covered here, send mail to the course staff (mailto:staff).

Submit your answers (and questions) of each lecture via Submission web site, and post your questions to colleagues (and staffs) on Piazza.

MondayTuesday WednesdayThursday Friday
Aug 18
First day of class (No class)
Aug 19 Aug 20
LEC 1: Introduction, threat models
Aug 21 Aug 22
ADD DATE
Aug 25
LEC 2: Integer overflows and static analysis (slides)
Preparation: Read KINT / slides (osdi12) (Question)
Aug 26 Aug 27
LEC 3: Security mitigations in modern OSes (slides)
Preparation: Read Ubuntu / Win8 (bh12) (Question)
Aug 28 Aug 29
Sep 1
Labor day
Sep 2 Sep 3
LEC 4: Mass pwnage: guest lecture by Tielei Wang
Preparation: Read Iworm / slides (sec14) (Question)
Sep 4 Sep 5
Sep 8
LEC 5: Control hijacking attacks
Preparation: Read Sigreturn oriented programming / slides / poc (s&p14) (Question)
Sep 9 Sep 10
LEC 6: Jailbreaking iPhone: guest lecture by YeongJin Jang
Preparation: Read Slides (bh14) (Question)
Sep 11 Sep 12
Sep 15
LEC 7: Software fault isolation
Preparation: Read RockSalt (pldi12) (Question)
Sep 16 Sep 17
LEC 8: Performace & security trade-off: ASLR, guest lecture by Byoungyoung Lee
Preparation: Read Morula / slides (sec14) / Hash collision Slides (bh14) (Question)
Sep 18 Sep 19
Sep 22
LEC 9: Control flow integrity
Preparation: Read CFI for binaries / slides (sec13) (Question)
Sep 23 Sep 24
LEC 10: Project propsal presentations slides
DUE: 5min brainstorming presentation
Sep 25 Sep 26
Sep 29
LEC 11: Auditing
Preparation: Read Poirot / slides (osdi12) (Question)
Sep 30 Oct 1
LEC 12: Web security
Preparation: Read DOM-based XSS / slides / post-XSS (ccs13) (Question)
Oct 2
Project meetings with staff (here)
Oct 3
Project meetings with staff (here)
Oct 6
LEC 13: Data privacy: guest lecture by Billy Lau
Preparation: Read Mimesis Aegis / slides (sec14) (Question)
Oct 7 Oct 8
No class (trip to OSDI)
Oct 9 Oct 10
DROP DATE
Oct 13
Fall Student Recess
Oct 14
Fall Student Recess
Oct 15
LEC 14: Project propsal presentations
DUE: 10min proposal presentation
Oct 16 Oct 17
Oct 20
LEC 15: Project propsal presentations
DUE: 10min proposal presentation
Oct 21 Oct 22
LEC 16: Symoblic execution
Preparation: Read Klee / slides (osdi08) (Question)
Oct 23 Oct 24
Oct 27
LEC 17: DNS security
Preparation: Pentesting with DNS (Question)
Oct 28 Oct 29
LEC 18: Web security
Preparation: Top Ten Web Hacking 2014 (Question)
Oct 30 Oct 31
Nov 3
LEC 19: New web design
Preparation: Read Embassies / slides (nsdi13) (Question)
Nov 4 Nov 5
LEC 20: Language for security
Preparation: Read Hails / slides (osdi12) (Question)
Nov 6 Nov 7
Nov 10
LEC 21: Kernel bugs
Preparation: Read Linux kernel vulnerabilities / slides (apsys11) / Kernel exploits / (full-nelson) (Question)
Nov 11 Nov 12
LEC 22: A11y Attacks: guest lecture by YeongJin Jang
Preparation: Read A11y / slides (ccs14) (Question)
Nov 13 Nov 14
Nov 17
LEC 23: Kernel exploits
Preparation: Read Ret2dir / slides (sec14) (Question)
Nov 18 Nov 19
LEC 24: Side-channel attack
Preparation: Read Breaking kernel space ASLR / slides (s&p13) (Question)
Nov 20
Project meetings with staff (here)
Nov 21
Nov 24
LEC 25: Hardware security: trusted computing
Preparation: Read Haven / slides (osdi14) (Question)
Nov 25 Nov 26
LEC 26: Anonymity network
Preparation: Read Tor / slides (sec04), Spoiled onions / slides (pets14) (lecture) (Question)
Nov 27
Thanksgiving
Nov 28
Thanksgiving
Dec 1
LEC 27: Demo day
DUE: Project demo & presentation
Dec 2 Dec 3
LEC 28: Demo day
DUE: Project demo & presentation
Dec 4 Dec 5
Last day of classes
Dec 8
Final exam week
(No final!)
Dec 9
Final exam week
(No final!)
Dec 10
Final exam week
(No final!)
Dec 11
Final exam week
(No final!)
Dec 12
Final exam week
(No final!)