Special Topics in Security Home Page

ECE 5698: Introduction to Computer Security

Security

Instructor

Engin Kirda

For correspondence, send a mail to ek@ccs.neu.edu

Office Hours: Mo, 3-4pm

News

  1. 12.01.2015 Challenge 6 is online.
  2. 11.03.2015 Challenge 5 is online.
  3. 10.20.2015 Challenge 4 is online.
  4. 10.10.2015 Challenge 3 is online.
  5. 10.06.2015 Challenge 2 is online.
  6. 09.25.2015 Challenge 1 is online.
  7. 09.21.2015 Account information was sent out.
  8. 09.18.2015 Course schedule, exam dates, and quiz dates updated.
  9. 09.10.2015 Course website online.

Abstract

Today, computer security problems have started to impact the practical aspects of our lives. Even though there is a considerable corpus of knowledge about tools and techniques to protect systems, information about what the actual vulnerabilities are and how they are exploited is not generally available. Also, there are many misconceptions when it comes to protecting systems.

This course deals with common programming, configuration, and design mistakes and ways to detect and avoid them. Examples are used to highlight general error classes, such as stack and heap overflows. Possible protection and detection techniques are examined. The course includes a number of practical lab assignments where participants are required to apply their knowledge as well as a discussion of the current research in the field. Students will learn how the security of systems can be violated, and how such attacks can be detected and prevented. The course aims to make the students "security aware", and gain a basic understanding about security issues.

Some Planned Topics for Lectures

  • Code security
  • Web security
  • Malware
  • Underground economy
  • Social network security and fraud
  • Reverse engineering and binary analysis
  • Intrusion detection
  • Testing
  • Operational security

Prerequisites

Programming experience (this course is not for you if you are a complete beginner)
Knowledge of C/C++ useful
Basic web programming knowledge is useful
Knowledge of general computer science concepts

Dates and Times

Tuesdays, 1:30-3pm, FR 237

Fridays, 1:30-3pm, FR 237

Slides and Schedule

(Use the class authentication credentials to access the material)

Week of 14-18 December Final exam
12.11.2015 Class 25 No class -- good luck with the finals
12.08.2015 Class 24 download slides)
12.04.2015 Class 23 download slides)
12.01.2015 Class 22 / Quiz 3 / (download slides)
11.24.2015 Class 21 (download slides)
11.20.2015 Class 20 (download slides)
11.17.2015 Class 19 (download slides)
11.13.2015 Class 18 (download slides)
11.10.2015 Class 17 / Quiz 2 / Lab Session (independent)
11.06.2015 Class 16 (download slides)
11.03.2015 Class 15 (download slides)
10.30.2015 Class 14 (download slides)
10.27.2015 Midterm exam
10.23.2015 Class 13 (download slides)
10.20.2015 Class 12 / Lab Session (independent)
10.16.2015 Class 11 (download slides)
10.13.2015 Class 10 / Quiz 1 / Lab Session
10.09.2015 Class 9 (download slides)
10.06.2015 Class 8 (download slides)
10.02.2015 Class 7 (download slides)
09.29.2015 Class 6 (download slides)
09.25.2015 Class 5 (download slides)
09.22.2015 Class 4 (download slides)
09.18.2015 Class 3 / No class
09.15.2015 Class 2 (download slides)
09.11.2015 Class 1 / Quiz 0 (download slides)

Grading

The course grade will be based on:

5%: Participation
10%: 3 Quizzes (1-2-3)
5%: Quiz 0 -- entry check
27%: Midterm exam
30%: Final exam
23%: Security labs


Last Modified: Tue Dec 8 16:20:02 EST 2015


Northeastern University, Boston, http://www.neu.edu