CS 675 - Secure Software Systems

Attacks on computer systems have become part of everyday life. It is the goal of this class to teach a
thorough understanding of the possible security failures, as well as the protection mechanism. The class
will cover network and host security concepts and mechanisms; basic cryptographic algorithms and protocols;
authentication and authorization protocols; access control models; common network (wired and wireless)
attacks; typical protection approaches, including firewalls and intrusion detection systems; and operating
systems and application vulnerabilites, exploits, and countermeasures; distributed denial of service attacks
and botnets. The class will not only cover the subjects in theory but instead also provide the students with
an extensive hands-on experience. The class will involve a fair amount of programming. Those who take the
class are expected to be able to program in C/C++, have some basic knowledge of assembly language, and be
familiar with network basics and programming, as well as Unix-like operating systems.

There will be group projects for this class. Programming sections of a project should compile and run on the Unix lab
machines. For projects dealing with Windows/MacOS or other OSes, you must get the permission of the instructor.

Project I: A 5 to 8-page paper summarizing your project findings plus a 15-minute presentation to the class followed by 10-15 minutes of discussion.

Project II: A 15-page paper summarizing your project findings, plus any programming appendices, and a 30-minute presentation followed by 15-30 minutes of discussion.

Week	Date	Topics	Reading
1	January 15, 2008	Introduction. Host security and network security. Security mechanisms. Failures. Basic cryptography types. History & terminology. Cryptanalysis. Steganography.	Bishop 1
2	January 22, 2008	Basic cryptography cont. Block ciphers. Stream ciphers. Hash functions. Public key cryptography. Digital Signatures. Cryptographic protocols. Attacks.	Bishop 9-11 Stallings 3-6
3	January 29, 2008	Authentication and authorization. Password based attacks. Address based attacks. Cryptographic based biometrics protocols. Project I topic discussions.	Bishop 12 Stallings 7-10
4	February 5, 2008	Security models. Access matrix. Mandatory access control. Discretionary access control. Role based access control. Biba model.	Bishop 2, 4-6
5	February 12, 2008	Intrusion detection components. Categories. Anomaly detection. Misuse detection. Virus/worm scanners. Honeypots. Intrusion prevention systems countermeasures. Problems.	Bishop 25
6	February 19, 2008	No classes. Monday schedule.
7	February 26, 2008	Firewalls. Types of firewalls. De-militarized zones. Distributed firewalls. Personal firewalls. Attacks. Project presentations I	Bishop 26 Stallings 16
8	March 4, 2008	Denial of service. Types of DoS. Host network defense detection and countermeasures.	Bishop 26 Mirkovic 4-6
9	March 11, 2008	Worms and viruses definitions. Exploits. Detection. Protection.	Bishop 29 Stallings 15
10	March 18, 2008	No classes - Spring Break
11	March 25, 2008	Vulnerabilities. Protocol attacks. Code attacks. Buffer overflows. Race conditions. Argument attacks. SQL Injection.	Bishop 23
12	April 1, 2008	Analysis. Safe languages. Proof-carrying code. Software fault isolation. Code signing. Program shepherding. Sandboxing. Protecting the stack.	Bishop 29
13	April 8, 2008	System security. Email security. Web security. File system security.	Bishop 27 Stallings 12, 14
14	April 15, 2008	Wired security. IPsec. VPNs. SSL. Attacks & defenses.
15	April 22, 2008	Wireless security. WEP. Radius attacks & defenses. Special topics. Draft presentations/papers due.
16	April 29, 2008	Special topics / Project presentations II.

Week

Date

Topics

Reading

January 15, 2008

Introduction. Host security and network security. Security mechanisms. Failures. Basic cryptography types. History & terminology. Cryptanalysis. Steganography.

Bishop 1

January 22, 2008

Basic cryptography cont. Block ciphers. Stream ciphers. Hash functions. Public key cryptography. Digital Signatures. Cryptographic protocols. Attacks.

Bishop 9-11
Stallings 3-6

January 29, 2008

Authentication and authorization. Password based attacks. Address based attacks. Cryptographic based
biometrics protocols.

Project I topic discussions.

Bishop 12
Stallings 7-10

February 5, 2008

Security models. Access matrix. Mandatory access control. Discretionary access control. Role based
access control. Biba model.

Bishop 2, 4-6

February 12, 2008

Intrusion detection components. Categories. Anomaly detection. Misuse detection. Virus/worm scanners.
Honeypots. Intrusion prevention systems countermeasures. Problems.

Bishop 25

February 19, 2008

No classes. Monday schedule.

February 26, 2008

Firewalls. Types of firewalls. De-militarized zones. Distributed firewalls. Personal firewalls. Attacks.

Project presentations I

Bishop 26
Stallings 16

March 4, 2008

Denial of service. Types of DoS. Host network defense detection and countermeasures.

Bishop 26
Mirkovic 4-6

March 11, 2008

Worms and viruses definitions. Exploits. Detection. Protection.

Bishop 29
Stallings 15

March 18, 2008

No classes - Spring Break

March 25, 2008

Vulnerabilities. Protocol attacks. Code attacks. Buffer overflows. Race conditions. Argument attacks. SQL
Injection.

Bishop 23

April 1, 2008

Analysis. Safe languages. Proof-carrying code. Software fault isolation. Code signing. Program shepherding. Sandboxing. Protecting the stack.

Bishop 29

April 8, 2008

System security. Email security. Web security. File system security.

Bishop 27
Stallings 12, 14

April 15, 2008

Wired security. IPsec. VPNs. SSL. Attacks & defenses.

April 22, 2008

Wireless security. WEP. Radius attacks & defenses. Special topics.

Draft presentations/papers due.

April 29, 2008

Special topics / Project presentations II.

CS 675 - Secure Computer Systems

Tuesdays - 6:15pm-8:45pm in EAS 229A