introduction cs 236 advanced computer security peter
play

Introduction CS 236 Advanced Computer Security Peter Reiher April - PowerPoint PPT Presentation

Aug 07, 2023 •330 likes •838 views

Introduction CS 236 Advanced Computer Security Peter Reiher April 1, 2008 Lecture 1 Page 1 CS 236, Spring 2008 Outline Subject of class Class topics and organization Reading material Class web page Grading Projects

  1. Introduction CS 236 Advanced Computer Security Peter Reiher April 1, 2008 Lecture 1 Page 1 CS 236, Spring 2008

  2. Outline • Subject of class • Class topics and organization • Reading material • Class web page • Grading • Projects • Office hours Lecture 1 Page 2 CS 236, Spring 2008

  3. Subject of Class • Advanced topics in computer security • Concentrating on unsolved problems and recent research • Covering both networks and computers – Only real crypto research is out of scope • Intended for students with serious research interest in security • Goal is to help such students learn how to do this kind of research Lecture 1 Page 3 CS 236, Spring 2008

  4. Doing Research in Security • A lot of bad research is done is security – Unimportant problems – Unrealistic approaches – Unverified conclusions • The point of the class is to set you on the right road Lecture 1 Page 4 CS 236, Spring 2008

  5. Class Organization • A little bit different • Every Tuesday I will describe a problem area and a solution approach • On Thursday, entire class will discuss that idea – Critiquing, designing, suggesting other alternatives • More or less how a research group works Lecture 1 Page 5 CS 236, Spring 2008

  6. Tuesday Classes • I will give a presentation • Usually two parts 1. Discussing problem and existing approaches 2. Suggesting another approach • Readings will be papers related to the area Lecture 1 Page 6 CS 236, Spring 2008

  7. In Between Classes • I will assign students into groups – Probably of three students • Each group should discuss the problem and idea among themselves • In preparation for a more detailed discussion on Thursday • Groups will change every week Lecture 1 Page 7 CS 236, Spring 2008

  8. Thursday Classes • A general group discussion – Involving all students • Maybe developing idea • Maybe burying it • Maybe coming up with something else Lecture 1 Page 8 CS 236, Spring 2008

  9. Associated Written Assignments • Each group will produce a five page write-up • Due before next Tuesday • Describing their thoughts on the topic • Will be graded Lecture 1 Page 9 CS 236, Spring 2008

  10. The Weekly Topics • No topic the first week – Intro today, I won’t be here Thursday • No topic the last week – Students will present their projects in those sessions • That leaves eight slots Lecture 1 Page 10 CS 236, Spring 2008

  11. Topics We Will Discuss • Data flow in operating systems – Data tethers • Botnet defenses – Infamy • Securing web servers Lecture 1 Page 11 CS 236, Spring 2008

  12. Topics We Might Discuss • Security for sensor networks • Cyberwarfare and national scale cyber defense • Data provenance issues • Operating systems and TPM • Ubiquitous computing security • Worms, DDoS, IP spoofing • Many other possibilities Lecture 1 Page 12 CS 236, Spring 2008

  13. Reading Material • No textbook • 2-4 papers for each class • Papers will be made available on class web page • In some cases, web pages may be used instead of papers Lecture 1 Page 13 CS 236, Spring 2008

  14. Class Web Page • http://www.lasr.cs.ucla.edu/classes/236_1.spring08 • Will show class schedule • And list papers for each class – With links to them • Other useful information also there Lecture 1 Page 14 CS 236, Spring 2008

  15. Grading • 40% weekly reports • 10% class participation • 50% project • No final exam Lecture 1 Page 15 CS 236, Spring 2008

  16. Weekly Reports • Done by small groups • ~5 pages each • Discussing/critiquing topic and approach for each week • Due before the Tuesday of next week Lecture 1 Page 16 CS 236, Spring 2008

  17. Class Participation • Not graded on brilliance • But on involvement and ability to contribute to discussion • If you can’t regularly attend this class, you won’t do well in it • Also not a good class to sleep through • Or to take if you don’t care much about the subject Lecture 1 Page 17 CS 236, Spring 2008

  18. Class Projects • Half of your grade • Group projects (2-4 people) • On some topic involving computer security • Must be a research topic – Not just implementing known stuff – Need not be on topic covered in class Lecture 1 Page 18 CS 236, Spring 2008

  19. Project Proposals • Project proposals due at end of 4 th week of class (April 25) • 1-page summary of what you want to do • Can be submitted as hard copy or email • Not graded, but required • I’ll approve and/or provide other feedback Lecture 1 Page 19 CS 236, Spring 2008

  20. Project Status Reports • Due at end of 7 th week of classes (May 16) • 1-3 page summaries of the progress you’ve made to that date – Hint: there should be some • Hard copy or email OK • Not graded, but required Lecture 1 Page 20 CS 236, Spring 2008

  21. Project Presentation • Last two class days reserved for project presentations • In-class presentation of your project – Demo, if feasible • Graded as part of project itself Lecture 1 Page 21 CS 236, Spring 2008

  22. Project Demonstration • If not feasible to demo in class, arrange a separate demo with me • Projects should (usually) produce something demonstrable • Important that demo shows off something interesting about project • Graded as part of project Lecture 1 Page 22 CS 236, Spring 2008

  23. Project Reports • Written reports on project • Due Monday of finals week (June 9) • 15 pages is typical length • Should: – Describe problem and approach – Cover difficulties and interesting points – Describe implementation – Show that you’ve learned something from it! Lecture 1 Page 23 CS 236, Spring 2008

  24. What Makes a Good Project? • Probably requires coding – Hardware OK, if you can do it – Theoretical work acceptable, but you’ll need real results • Probably requires testing and/or measurement • Should be research – Original work no one else has already done – Based on a promising idea – Ideally, this should be capable of being converted to a publishable research paper Lecture 1 Page 24 CS 236, Spring 2008

  25. Office Hours • MW 2-3 • In 3532F Boelter Hall • I’m around a lot, so other times can be arranged by appointment • But I’ll be away April 3 – Possibly other days TBA Lecture 1 Page 25 CS 236, Spring 2008

  26. Prerequisites • Should have taken CS 118 and 111 • Should have taken my CS 136 on Computer Security – Or similar class elsewhere • I’m not going to check on this • But I’ll assume you know this material – I won’t be presenting reviews of this material Lecture 1 Page 26 CS 236, Spring 2008

  27. Kinds of Security Things You Should Know About • IPsec • Security protocols • Key exchange, certificates, certification hierarchies • Basics of security threats and mechanisms • Use of cryptography for authentication, privacy, and other purposes • Basics of firewalls and virus protection systems • Basics of viruses and worms Lecture 1 Page 27 CS 236, Spring 2008

  28. Kinds of Networking Things You Should Know About • TCP/IP • Routing protocols • How DNS works • Multicast protocols • Basic ad hoc networking • Basics of wireless networks • Basic design and architecture of the Internet Lecture 1 Page 28 CS 236, Spring 2008

  29. Kinds of OS Things You Should Know About • File systems • Basic OS organization • Important OS elements – E.g., booting and device drivers • IPC and memory management Lecture 1 Page 29 CS 236, Spring 2008

  30. A Short Introduction • What is this class really about? • Learning how to do research in computer security • Primarily by doing it – Partly the weekly discussions – Partly the projects Lecture 1 Page 30 CS 236, Spring 2008

  31. What’s Worth Looking At? • A matter of both opinion and perspective • Basically, – Where are the big risks? – Where can we do better? – What technologies aren’t good enough? Lecture 1 Page 31 CS 236, Spring 2008

  32. The IRC Hard Problems List • The Infosec Research Council (IRC) • Group of US government agencies that care a lot about security – Enough to fund research into it • They are in the process of creating a “hard problems” list Lecture 1 Page 32 CS 236, Spring 2008

  33. What Are They After? • A list of the problems that most need solving – From US government perspective • Particularly those that require substantial research • With an eye towards creating a roadmap for future security research Lecture 1 Page 33 CS 236, Spring 2008

  34. Who Is the IRC? • Representatives from most relevant agencies – IARPA – IC Advanced Research and Development Activity – CIA - Central Intelligence Agency – DOD - Department of Defense (including the Air Force, Army, Defense Advanced Research Projects Agency, National Reconnaissance Office, National Security Agency, Navy, and Office of the Secretary of Defense) – DOE - Department of Energy – DHS - Department of Homeland Security – FAA - Federal Aviation Administration – NASA - National Aeronautics and Space Administration – NIH - National Institutes of Health – NIST - National Institute of Standards and Technology – NSF - National Science Foundation – TSWG - Technical Support Working Group Lecture 1 Page 34 CS 236, Spring 2008

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CS654 Advanced Computer Architecture Lec 1 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 1 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 1 - Introduction Peter Kemper Adapted from the slides of EECS 252 by Prof. David Patterson Electrical Engineering and Computer Sciences University of California, Berkeley Outline Computer Science

388 views • 15 slides
CS654 Advanced Computer Architecture Lec 3 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 3 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 3 - Introduction Peter Kemper Adapted from the slides of EECS 252 by Prof. David Patterson Electrical Engineering and Computer Sciences University of California, Berkeley Outline Computer Science

646 views • 28 slides
CS654 Advanced Computer Architecture Lec 2 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 2 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 2 - Introduction Peter Kemper Adapted from the slides of EECS 252 by Prof. David Patterson Electrical Engineering and Computer Sciences University of California, Berkeley Outline Computer Science

387 views • 13 slides
CS654 Advanced Computer Architecture Lec 4 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 4 - Introduction Peter Kemper Adapted from the slides

CS654 Advanced Computer Architecture Lec 4 - Introduction Peter Kemper Adapted from the slides of EECS 252 by Prof. David Patterson Electrical Engineering and Computer Sciences University of California, Berkeley Technology Trends

348 views • 23 slides
Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Introduction to OS Security Trent

770 views • 28 slides
Introduction CS 136 Computer Security Peter Reiher April 1, 2014 Lecture 1 Page 1 CS 136,

Introduction CS 136 Computer Security Peter Reiher April 1, 2014 Lecture 1 Page 1 CS 136,

Introduction CS 136 Computer Security Peter Reiher April 1, 2014 Lecture 1 Page 1 CS 136, Spring 2014 Purpose of Class To introduce students to computer security issues To familiarize students with secure software development

1.18k views • 72 slides
Introduction CS 136 Computer Security Peter Reiher January 10, 2017 Lecture 1 Page 1 CS 136,

Introduction CS 136 Computer Security Peter Reiher January 10, 2017 Lecture 1 Page 1 CS 136,

Introduction CS 136 Computer Security Peter Reiher January 10, 2017 Lecture 1 Page 1 CS 136, Winter 2017 Purpose of Class To introduce students to computer security issues To familiarize students with secure software development

599 views • 57 slides
Introduction CS 136 Computer Security Peter Reiher January 8, 2008 Lecture 1 Page 1 CS 136,

Introduction CS 136 Computer Security Peter Reiher January 8, 2008 Lecture 1 Page 1 CS 136,

Introduction CS 136 Computer Security Peter Reiher January 8, 2008 Lecture 1 Page 1 CS 136, Winter 2008 Purpose of Class To introduce students to computer security issues To familiarize students with secure software development

1.19k views • 72 slides
The Security Theme: an introduction School of Computer Science The University of Manchester 1

The Security Theme: an introduction School of Computer Science The University of Manchester 1

Advanced Computer Science Security Theme The Security Theme: an introduction School of Computer Science The University of Manchester 1 Advanced Computer Science Security Theme Outline Ratio of hackers to security professionals Why

784 views • 22 slides
INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

ADVANCED COMPUTER SECURITY INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT IS SECURITY? A systems security policies describe What the system is supposed to do Store and provide access

479 views • 16 slides
Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer

Introduction to Computer Security Rev. Sept 2015 What is Computer Security? 2 Computer Security is the protection of computing systems and the data that they store or access 3 Why is Computer Security Important? Computer Security allows

690 views • 19 slides
CS654 Advanced Computer Architecture Lec 12 Vector Wrap-up and Multiprocessor Introduction

CS654 Advanced Computer Architecture Lec 12 Vector Wrap-up and Multiprocessor Introduction

CS654 Advanced Computer Architecture Lec 12 Vector Wrap-up and Multiprocessor Introduction Peter Kemper Adapted from the slides of EECS 252 by Prof. David Patterson Electrical Engineering and Computer Sciences University of California,

988 views • 71 slides
CS 563 Mobile OS & Device Security Advanced Computer Security CS 563 University of Illinois

CS 563 Mobile OS & Device Security Advanced Computer Security CS 563 University of Illinois

CS 563 Mobile OS & Device Security Advanced Computer Security CS 563 University of Illinois at Urbana-Champaign Presentation by: Gliz Seray Tuncay Administrative Announcements : Reaction paper was due today (and all classes)

807 views • 52 slides
Advanced System Security CSE544 - Spring 2007 Introduction Computer and Network Security

Advanced System Security CSE544 - Spring 2007 Introduction Computer and Network Security

561 views • 18 slides
Introduction to Cryptography CS 136 Computer Security Peter Reiher January 17, 2017 Lecture 3

Introduction to Cryptography CS 136 Computer Security Peter Reiher January 17, 2017 Lecture 3

Introduction to Cryptography CS 136 Computer Security Peter Reiher January 17, 2017 Lecture 3 Page 1 CS 136, Winter 2017 Outline What is data encryption? Cryptanalysis Basic encryption methods Substitution ciphers

1.16k views • 66 slides
Introduction to Provable Security Alejandro Hevia Dept. of Computer Science, Universidad de

Introduction to Provable Security Alejandro Hevia Dept. of Computer Science, Universidad de

Introduction to Provable Security Introduction to Provable Security Alejandro Hevia Dept. of Computer Science, Universidad de Chile Advanced Crypto School, Florian opolis October 17, 2013 1/77 Introduction to Cryptography Part I

1.15k views • 99 slides
X10: New opportunities for X10: New opportunities for Compiler-Driven Performance

X10: New opportunities for X10: New opportunities for Compiler-Driven Performance

X10: New opportunities for X10: New opportunities for Compiler-Driven Performance Compiler-Driven Performance via a new Programming Model via a new Programming Model Kemal Ebcioglu Kemal Ebcioglu Vijay Saraswat Vijay Saraswat Vivek Sarkar

460 views • 27 slides
Crowdsourcing CSCI 470: Web Science Keith Vertanen

Crowdsourcing CSCI 470: Web Science Keith Vertanen

Crowdsourcing CSCI 470: Web Science Keith Vertanen Overview Crowdsourcing = Crowd + Outsourcing Incented coopera6on Paid tasks Compe66ons

544 views • 17 slides
Where am I? Operating System And Virtualization Identification Without System Calls Jason L.

Where am I? Operating System And Virtualization Identification Without System Calls Jason L.

Where am I? Operating System And Virtualization Identification Without System Calls Jason L. Wright (jason@thought.net) Cyber Security Symposium April 17-19, 2017 Coeur dAlene, Idaho, USA This research was developed with funding from the

457 views • 13 slides
Computing Week 9 LBSC 671 Creating Information Infrastructures Muddiest Points BIBFRAME

Computing Week 9 LBSC 671 Creating Information Infrastructures Muddiest Points BIBFRAME

Computing Week 9 LBSC 671 Creating Information Infrastructures Muddiest Points BIBFRAME The analog hole Goals for Today Understand what makes stupid computers seem smart Understand how the Internet works Commercial

1.43k views • 58 slides
CS535 Big Data 1/22/2020 Sangmi Lee Pallickara CS535 Big Data | Computer Science Department

CS535 Big Data 1/22/2020 Sangmi Lee Pallickara CS535 Big Data | Computer Science Department

CS535 Big Data 1/22/2020 Sangmi Lee Pallickara CS535 Big Data | Computer Science Department | Colorado State University CS535 BIG DATA PART A. BIG DATA TECHNOLOGY 1. INTRODUCTION TO BIG DATA What is Big Data? Sangmi Lee Pallickara

569 views • 7 slides
Welcome to the Government Blockchain Association (GBA) Meet Up May 15 th , 2017 Blockchain

Welcome to the Government Blockchain Association (GBA) Meet Up May 15 th , 2017 Blockchain

Welcome to the Government Blockchain Association (GBA) Meet Up May 15 th , 2017 Blockchain for Homeland Security, Defense and Law Enforcement Agenda Brief Review What is blockchain and why is it important? What are the defining

795 views • 31 slides
Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and

Software Model Checking Using Bogor Software Model Checking Using Bogor a Modular and Extensible Model Checking Framework a Modular and Extensible Model Checking Framework 3rd Estonian Summer School in Computer and System Science

301 views • 8 slides
A Minicourse on Multithreaded Programming Charles E Leiserson Harald Prok op MIT Lab

A Minicourse on Multithreaded Programming Charles E Leiserson Harald Prok op MIT Lab

A Minicourse on Multithreaded Programming Charles E Leiserson Harald Prok op MIT Lab oratory for Computer Science T ec hnology Square Cam bridge Massac h usetts f celprokop g l cs

370 views • 13 slides

More recommend