Below is the calendar for this semester course. This is the preliminary schedule, which will be altered as the semester progresses. It is the responsibility of the students to frequently check this web-page for schedule, readings, and assignment changes. As the professor, I will attempt to announce any change to the class, but this web-page should be viewed as authoritative. If you have any questions, please contact me (contact information is available at the course homepage).
| Date | Topic | Assignments Due | Readings for Discussion (do readings before class) | |
| 08/23/10 | ( | |||
| 08/30/10 | Project Plan/Abstract | |||
| 09/06/10 | No class - Labor Day | |||
| 09/08/10 | Class Held (12pm-2pm), 356 IST | |||
| 09/13/10 | ( | Related Work |
How to Write a Security Paper, Patrick McDaniel, 2008 (unfinished manuscript).
link Presenter:
Patrick McDaniel
| |
| 09/20/10 | Body |
Cheney, J., Chong, S., Foster, N., Seltzer, M., and Vansummeren, S. 2009. Provenance: a future history. In Proceeding of the 24th ACM SIGPLAN Conference Companion on Object Oriented Programming Systems Languages and Applications (Orlando, FL, October, 2009).
link Presenter:
Devin Pohly
| ||
| 09/27/10 | Experimental Results/Evaluation |
Mikhail A. Lisovich, Deirdre K. Mulligan and Stephen B. Wicker, Inferring Personal Information from Demand-Response Systems, IEEE Security and Privacy, 2010, pages 11-20.
link Presenter:
Steve McLaughlin
C. Laughman, K. Lee, R. Cox, S. Shaw, S. Leeb, L. Norford and P. Armstrong, Power signature analysis, IEEE Power and Energy Magazine, Vol 1(2), Pages 56-63, 2003
link Presenter:
Steve McLaughlin
| ||
| 10/04/10 |
Stephen McLaughlin, Dmitry Podkuiko, Adam Delozier, Sergei Miadzvezhanka, and Patrick McDaniel. Multi-vendor Penetration Testing in the Advanced Metering Infrastructure. Proceedings of the 26th Annual Computer Security Applications Conference (ACSAC), December 2010. Austin, TX.
link Presenter:
Patrick McDaniel
| |||
| 10/11/10 | ||||
| 10/18/10 |
Seny Kamara and Kristin Lauter, Cryptographic Cloud
Storage, in Proceedings of Financial Cryptography: Workshop on
Real-Life Cryptographic Protocols and Standardization 2010,
January 2010.
link Presenter:
Sergei Miadzvezhanka
Patients, pacemakers, and implantable defibrillators:
human values and security for wireless implantable medical
devices. Tamara Denning, Alan Borning, Batya Friedman, Brian
T. Gill, Tadayoshi Kohno, William H. Maisel
link Presenter:
Dmitry Podkuiko
Security and Privacy Vulnerabilities of In-Car Wireless Networks: A Tire Pressure Monitoring System Case Study Ishtiaq Rouf, University of South Carolina, Columbia; Rob Miller, Rutgers University;Hossen Mustafa and Travis Taylor, University of South Carolina, Columbia; Sangho Oh,Rutgers University; Wenyuan Xu, University of South Carolina, Columbia; Marco Gruteser, Wade Trappe, and Ivan Seskar, Rutgers University
link Presenter:
Dmitry Podkuiko
| |||
| 10/25/10 | ||||
| 11/01/10 |
Michael S. Ware, Christopher J. Fox. Securing Java Code: Heuristics and
An Evaluation of Static Analysis Tools.
link Presenter:
Damien Octeau
The SLAM Project: Debugging System Software via Static Analysis, Thomas Ball and Sriram K. Rajamani
link Presenter:
Damien Octeau
Scalable Integrity-Guaranteed AJAX, Thomas Moyer and Patrick McDaniel
link Presenter:
Tom Moyer
| |||
| 11/08/10 |
Shacham, H. 2007. The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86). In Proceedings of the 14th ACM Conference on Computer and Communications Security (Alexandria, Virginia, USA, October 28 - 31, 2007). CCS '07. ACM, New York, NY, 552-561.
link Presenter:
Phillip Koshy
Francillon, A. and Castelluccia, C. 2008. Code injection attacks on harvard-architecture devices. In Proceedings of the 15th ACM Conference on Computer and Communications Security (Alexandria, Virginia, USA, October 27 - 31, 2008). CCS '08. ACM, New York, NY, 15-26.
link Presenter:
Phillip Koshy
| |||
| 11/15/10 | ||||
| 11/18/10 | Paper Submission | |||
| 11/22/10 | No class - Thanksgiving | |||
| 11/29/10 |
Bryan Parno and Jonathan M. Mc{C}une and Adrian Perrig, Bootstrapping Trust in Commodity Computers,Proceedings of the IEEE Symposium on Security and Privacy, May 2010.
link Presenter:
Tom Moyer
Catalano, Dario and Di Raimondo, Mario and Fiore, Dario and Gennaro, Rosario, Off-line/on-line signatures: theoretical aspects and experimental results, Proceedings of the Practice and theory in public key cryptography, 11th international conference on Public key cryptography (PKC'08), 2008.
link Presenter:
Tom Moyer
| |||
| 12/06/10 |
Jeff Naruchitparames, M. Gunes and C. Evrenosoglu, "Secure Communications in the Smart Grid", IEEE Consumer Communications and Networking Conference Session on Smart Grids, Las Vegas, NV, Jan 9-12, 2011.
link Presenter:
Sid Stamm, Brandon Sterne, and Gervase Markham. 2010. Reining in the web with content security policy. In Proceedings of the 19th international conference on World wide web (WWW '10). ACM, New York, NY, USA, 921-930.
link Presenter: | |||