Special Topics in Security Home Page

ECE 5698: Introduction to Computer Security

Security

Instructor

Engin Kirda

For correspondence, send a mail to ek@ccs.neu.edu

Office Hours: Wednesdays, 1:40-2:40pm

News

  1. 12.02.2013 Challenge 6 is online.
  2. 11.04.2013 Challenge 5 is online.
  3. 10.21.2013 Challenge 4 is online.
  4. 10.09.2013 Challenge 3 is online.
  5. 09.30.2013 Challenge 2 is online.
  6. 09.23.2013 Challenge 1 is online.
  7. 09.09.2013 Course schedule updated.
  8. 09.04.2013 Course website online.

Abstract

Today, computer security problems have started to impact the practical aspects of our lives. Even though there is a considerable corpus of knowledge about tools and techniques to protect systems, information about what the actual vulnerabilities are and how they are exploited is not generally available. Also, there are many misconceptions when it comes to protecting systems.

This course deals with common programming, configuration, and design mistakes and ways to detect and avoid them. Examples are used to highlight general error classes, such as stack and heap overflows. Possible protection and detection techniques are examined. The course includes a number of practical lab assignments where participants are required to apply their knowledge as well as a discussion of the current research in the field. Students will learn how the security of systems can be violated, and how such attacks can be detected and prevented. The course aims to make the students "security aware", and gain a basic understanding about security issues.

Some Planned Topics for Lectures

  • Code security
  • Web security
  • Malware
  • Underground economy
  • Social network security and fraud
  • Reverse engineering and binary analysis
  • Intrusion detection
  • Testing
  • Operational security

Prerequisites

Programming experience (this course is not for you if you are a complete beginner)
Knowledge of C/C++ useful
Basic web programming knowledge is useful
Knowledge of general computer science concepts

Dates and Times

Mondays, 2:50pm-04:20pm, SL 123

Wednesdays, 2:50pm-4:20pm, SL 123

Slides and Schedule

Week of 9-13 December Final exam (Covers material from Class 14-24)
12.04.2013 Class 24 ([downloads slides])
12.02.2013 Class 23 ([downloads slides])
11.25.2013 Class 22 ([downloads slides])
11.20.2013 Class 21 ([downloads slides])
11.18.2013 Class 20 / Quiz 3 / ([downloads slides])
11.13.2013 Class 19 ([downloads slides])
11.06.2013 Class 18 ([downloads slides])
11.04.2013 Class 17 ([downloads slides])
10.30.2013 Class 16 ([downloads slides])
10.28.2013 Midterm exam (Covers material from Class 1-13)
10.23.2013 Class 14 ([downloads slides])
10.21.2013 Class 13 ([downloads slides])
10.16.2013 Class 12 / Quiz 2 / ([downloads slides])
10.09.2013 Class 11 / Lab session
10.07.2013 Class 10 ([downloads slides])
10.02.2013 Class 9 / Invited talk / ([downloads slides])
09.30.2013 Class 8 / Quiz 1 / Lab session
09.25.2013 Class 7 ([downloads slides])
09.23.2013 Class 6 Challenge 1 ([downloads slides])
09.18.2013 Class 5 ([downloads slides])
09.16.2013 Class 4 ([downloads slides])
09.11.2013 Class 3 ([download slides])
09.09.2013 Class 2 ([download slides])
09.04.2013 Class 1 ([download])

Grading

The course grade will be based on:

10%: Participation
10%: 3 Quizzes
27%: Midterm exam
30%: Final exam
23%: Security labs


Last Modified: Wed Dec 4 16:44:32 EST 2013


Northeastern University, Boston, http://www.neu.edu