Topics will vary from year to year, but will focus mainly on network perimeter protection, host-level protection, authentication technologies, intellectual property protection, formal analysis techniques, intrusion detection and similarly advanced subjects. Emphasis in this course is on understanding how security issues impact real systems, while maintaining an appreciation for grounding the work in fundamental science. The course will consist of in-class workshops and interactive discussions. There will be programming assignments and a course project. Students will also be expected to read assigned papers and to present at least one research paper and lead a discussion on it.
ThF 2:30-3:45
Location: Wyman Park 4th floor conference room.
Martin Abadi, Roger Needham. "Prudent Engineering Practice for Cryptographic Protocols", IEEE Transactions on Software Engineering 22, 1 (January 1996), 6-15. (ps)
Jim Chow, Ben Pfaff, Tal Garfinkel, Kevin Christopher, Mendel Rosenblum, "Understanding Data Lifetime via Whole System Simulation," 2004 Usenix Security Symposium. (pdf)
Hao Chen, David Wagner. "MOPS: an Infrastructure for Examining Security Properties of Software" , CCS '02 November 18-22, 2002, Washington, DC, USA. (ps)
Mihai Christodorescu and Somesh Jha, "Static Analysis of Executables to Detect Malicious Patterns", 12th USENIX Security Symposium, 2003. (pdf)
Ruby B. Lee, David K. Karig, John P. McGregor, and Zhijie Shi. "Enlisting Hardware Architecture to Thwart Malicious Code Injection", International Conference on Security in Pervasive Computing, 2003. (pdf)
Rakan El-Khalil and Angelos D. Keromytis, Hydan: Hiding Information in Program Binaries, BlackHat/DefCon, 2004. (pdf)
David S. Peterson, Matt Bishop, and Raju Pandey, A Flexible Containment Mechanism for Executing Untrusted Code, USENIX Security Conference, 2002. (pdf)
Hovav Shacham, Matthew Page, Ben Pfaff, Eu-Jin Goh, Nagendra Modadugu, Dan Boneh, "On the Effectiveness of Address-Space Randomization," CCS '04, Oct. 25-29, Washington, DC, USA. (pdf)
Dawson Engler, David Yu Chen, Seth Hallem, Andy Chou, and Benjamin Chelf, Bugs as Deviant Behavior: A General Approach to Inferring Errors in Systems Code, Symposium on Operating Systems Principles, 2001. (pdf)
The strength of the university depends on academic and personal integrity. In your studies, you must be honest and truthful. Ethical violations include cheating on exams, plagiarism, reuse of assignments, improper use of the Internet and electronic devices, unauthorized collaboration, alteration of graded assignments, forgery and falsification, lying, facilitating academic dishonesty, and unfair competition.
Academic honesty is required in all work you submit to be graded. Except where the instructor specifies group work, you must solve all homework and programming assignments without the help of others. For example, you must not look at any other solutions (including program code) to your homework problems or similar problems. However, you may discuss assignment specifications with others to be sure you understand what is required by the assignment.
*If* your instructor permits using fragments of source code from outside sources, such as your textbook or on-line resources, you must properly cite the source. Not citing it constitutes plagiarism. Similarly, your group projects must list everyone who participated.
Falsifying program output or results is prohibited.
Your instructor is free to override parts of this policy for particular assignments. To protect yourself: (1) Ask the instructor if you are not sure what is permissible. (2) Seek help from the instructor or TA, as you are always encouraged to do, rather than from other students. (3) Cite any questionable sources of help you may have received.
Students who cheat will suffer a serious course grade penalty in addition to being reported to university officials. You must abide by JHU's Ethics Code: Report any violations you witness to the instructor. You may consult the associate dean of students and/or the chairman of the Ethics Board beforehand. For more information, see the guide on Academic Ethics for Undergraduates (http://www.advising.jhu.edu/ethics.html) and the Ethics Board web site (http://ethics.jhu.edu).