Below is the calendar for this semester course. This is the preliminary schedule, which will be altered as the semester progresses. It is the responsibility of the students to frequently check this web-page for schedule, readings, and assignment changes. As the professor, I will attempt to announce any change to the class, but this web-page should be viewed as authoritative. If you have any questions, please contact me (contact information is available at the course homepage).
| Date | Topic | Assignments Due | Readings for Discussion (do readings before class) | |
| 01/11/11 | ( |
Course Syllabus
(link)
| ||
| 01/13/11 | Laboratory Instruction | |||
| 01/18/11 | ( |
New Directions in Cryptography, W. Diffie and M. E. Hellman, IEEE Transactions on Information Theory, vol. IT-22, Nov. 1976, pp: 644-654.
(link)
| ||
| 01/20/11 | ( |
Network Security: Private Communication in a Public World, Chapter 19
(link)
| ||
| 01/25/11 | ( | Assigment #1 |
Computer Networking: A Top-Down Approach, Kurose and Ross, Section 4.6 (Routing on the Internet)
(link)
| |
| 01/27/11 | ||||
| 02/01/11 | ( |
R. Mahajan, D. Wetherall, and T. Anderson. Understanding BGP Misconfiguration. In Proceedings of ACM SIGCOMM 2002.
(link)
Steven M. Bellovin and Emden R. Gansner, Using Link Cuts to Attack Internet Routing, 2003.
(link)
| ||
| 02/03/11 | ( |
The Internet Protocol Journal - Volume 6, Number 3, Securing the Border Gateway Protocol, Stephen T. Kent.
(link)
Kevin Butler, Toni Farley, Patrick McDaniel, and J. Rexford, A Survey of BGP Security Issues and Solutions. Proceedings of the IEEE, 2010(1):100-122, January, 2010
(link)
| ||
| 02/08/11 | ( |
Kenneth A. Goldman, Ronald Perez, and Reiner Sailer, Linking Remote Attestation to Secure Tunnel Endpoints, Proceedings of the first ACM workshop on Scalable trusted computing (STC '06).
(link)
| ||
| 02/10/11 | USENIX Security Deadline - no class | |||
| 02/15/11 | Laboratory Instruction | |||
| 02/17/11 | ( |
Russ White. Securing BGP Through Secure Origin BGP. The Internet Protocol Journal, 6(3), 2003.
(link)
Patrick McDaniel, William Aiello, Kevin Butler, and John Ioannidis, Origin Authentication in Interdomain Routing. Journal of Communication Networks, Elsevier, 50(16):2953-2980, November, 2006.
(link)
| ||
| 02/22/11 | In class: Enck Thesis | |||
| 02/24/11 | ( |
Computer Networking: A Top-Down Approach, Kurose and Ross, Section 4.7 (Broadcast and Multicast Routing)
(link)
Ran Canetti, Juan Garay, Gene Itkis, Daniele Micciancio, Moni Naor and Benny Pinkas, Multicast Security: A Taxonomy and Some Efficient Constructions, INFOCOM '99.
(link)
| ||
| 03/01/11 | ( |
RFC 2094 - Group Key Management Protocol (GKMP) Architecture, H. Harney, C Muckenhirn, July 1997.
(link)
Patrick McDaniel, Atul Prakash, and Peter Honeyman. Antigone: A Flexible Framework for Secure Group Communication. Proceedings of the 8th USENIX Security Symposium, pages 99-114, August 1999. Washington, DC.
(link)
Mittra, S. 1997. Iolus: a framework for scalable secure multicasting. SIGCOMM Comput. Commun. Rev. 27, 4 (Oct. 1997).
(link)
| ||
| 03/03/11 | Midterm - in class | |||
| 03/08/11 | No class - Spring Break | |||
| 03/10/11 | No class - Spring Break | |||
| 03/15/11 | ( | Assigment #2 | ||
| 03/17/11 | ( |
P3P: Privacy Primer, Simpson Garfinkel and Lorrie Cranor. O'Reilly Policy Devcenter, Feb 2002.
(link)
| ||
| 03/22/11 | ( | |||
| 03/24/11 | ( |
Tor: The Second-Generation Onion Router, Roger Dingledine, Nick Mathewson, and Paul Syverson. In the Proceedings of the 13th USENIX Security Symposium, August 2004.
(link)
| ||
| 03/29/11 | ( |
Crowds: Anonymity for Web Transactions, Michael Reiter and Aviel Rubin. In ACM Transactions on Information and System Security 1(1), June 1998.
(link)
Marc Waldman, Aviel D. Rubin, and Lorrie F. Cranor, Publius, A robust, tamper-evident and censorship-resistant web publishing system, 9th USENIX Security Symposium, (August, 2000).
(link)
| ||
| 03/31/11 | ( |
Patrick Traynor, Patrick McDaniel, and Thomas La Porta, Security for Telecommunications Networks. Springer, Series: Advances in Information Security, July, 2008. ISBN: 978-0-387-72441-6. (Chapters 1-4)
(link)
| ||
| 04/05/11 | ( | Assigment #3 |
Patrick Traynor, William Enck, Patrick McDaniel, and Thomas La Porta, Exploiting Open Functionality in SMS-Capable Cellular Networks. Journal of Computer Security, 16(6):713-742, Febraury, 2009.
(link)
Patrick Traynor, William Enck, Patrick McDaniel, and Thomas La Porta, Mitigating Attacks on Open Functionality in SMS-Capable Cellular Networks. IEEE/ACM Transactions on Networking (TON), 17(1):40-53, 2009.
(link)
| |
| 04/07/11 | ( | |||
| 04/12/11 | ( |
Voice over IP: Risks, Threats and Vulnerabilities, Angelos Keromytis, Symantec Research Labs Europe, 2009
(link)
S. McGann and D. Sicker, An Analysis of Security Threats and Tools in SIP-Based VoIP Systems, 2nd Annual VoIP Security Workshop, 2005.
(link)
| ||
| 04/14/11 | ( |
S. Salsano, L. Veltri and D. Papalilo, SIP security issues: the SIP authentication procedure and its processing load. IEEE Network, 2002.
(link)
Hemant Sengar, Duminda Wijesekera, Haining Wang, and Sushil Jajodia. VoIP Intrusion Detection Through Interacting Protocol State Machines, Proceedings of the International Conference on Dependable Systems and Networks, 2006
(link)
| ||
| 04/19/11 | ( |
William Enck, Machigar Ongtang, and Patrick McDaniel, Understanding Android Security. IEEE Security and Privacy Magazine, 7(1):50--57, January/February, 2009.
(link)
| ||
| 04/21/11 | ( |
William Enck, Machigar Ongtang, and Patrick McDaniel. On Lightweight Mobile Phone App Certification. Proceedings of the 16th ACM Conference on Computer and Communications Security (CCS), pages 235-245, November 2009.
(link)
| ||
| 04/26/11 | ( | |||
| 04/28/11 | ( | Assigment #4 | ||
| 05/01/11 | Final - TBD | |||