CIS4360 - Computer Security Fundamentals - Spring 2025 - Schedule | ||||
| Date | Topic | Resources | Homework | |
| Week 1 | 1/07 | Logistics. Introduction. | Logistics Slide 0 | |
| 1/09 | Network Security: Sniffing & Spoofing, DoS: direct and reflection, fragmentation and Ping of Death and TearDrop | Slide 1 | ||
| Week 2 | 1/14 | Network Security, continued: TCP issues, TCP SYN Flood, TCP Hijacking | Slide 1 | Lab 1 |
| 1/16 | Network Security, continued: DNS and Kaminsky's attack. | Slide 1 | ||
| Week 3 | 1/21 | Campus closed | ||
| 1/23 | Campus closed | |||
| Week 4 | 1/28 | Software Security: Access control, MAC and Bell-LaPadula model, Access Control List with examples in Unix, setuid. | Slide 2 | |
| 1/30 | Software Security, continued: attacks on setuid programs via capability leaking, race condition, and environment variables. | Slide 2 | Lab 1 due (1/31) | |
| Week 5 | 2/04 | Web Security: overview, SQL Injection, CRSF attack | Slide 3 | Lab 2 |
| 2/06 | Web Security, continued: XSS attac. Intro to Crypto: classical ciphers, perfect secrecy and one-time pad | Slide 3, Slide 4 | ||
| Week 6 | 2/11 | Intro to Crypto, continued: limitation of one-time pad, principles of modern crypto. Blockcipher: syntax, PRF security. | Slide 4, Slide 5 | Lab 2 due (2/10) Lab 3 |
| 2/13 | ||||
| Week 7 | 2/18 | |||
| 2/20 | Lab 3 due (2/21) | |||
| Week 8 | 2/25 | |||
| 2/27 | ||||
| Week 9 | 3/04 | |||
| 3/06 | ||||
| Week 10 | 3/11 | Springbreak | ||
| 3/13 | Springbreak | |||
| Week 11 | 3/18 | |||
| 3/20 | ||||
| Week 12 | 3/25 | |||
| 3/27 | ||||
| Week 13 | 4/01 | |||
| 4/03 | ||||
| Week 14 | 4/08 | |||
| 4/10 | ||||
| Week 15 | 4/15 | |||
| 4/17 | ||||
| Week 16 | 4/22 | |||
| 4/24 | ||||