CSE 684 Network/System Attack Methods (Spring 2006)
Course Description
This is a 2-credit special topics course on
network/system attack methods, i.e.,
techniques that hackers use to break computer/network/application security.
Students who plan to
take this course are expected to have at least an undergraduate-level
or graduate-level computer security course, i.e., enough familiarity
with confidentiality, integrity, authentication, and non-repudiation.
We will study the attack methods discussed in the textbook as well as
publicly available security advisory, analyze why existing systems are
vulnerable to these attacks, and derive system design principles to
prevent such vulnerabilities.
Because the course will be heavily oriented towards
classroom discussion, student presentation, and class projects,
it is NOT appropriate for auditors.
This semester we will go beyond memory error-related software
security, and
focus on application-level security, i.e., those related to web applications,
network games, availability of internet services, security co-processors,
network routing, and insider threats.
In particular, we will study attack tools such as Nmap, Nessus, and Metasploit.
It is possible to make it as a 3-credit course by taking a 1-credit CSE587 and
doing extra work.
We will meet two hours per week, and alternate between my lectures and
students' presentations on a week by week basis.
The major component of this course are three homeworks and the class project.
Students are organized into two-person teams to
design and implement
a computer/network security mechanism. Each team is required to
make a 30-minute presentations for its project to the class
at the end of the semester.
In addition, every team is asked to turn in a
publication-quality
research paper documenting the experiments, results, and analysis.
The grade will be based on: 45% Homework, 5% Classroom interaction and presentation, and 50% Project.
The workload is estimated to be about 6 hours per week,
excluding the project effort and lecture time. The first meeting is at 10AM on 2/2/2006 (Thursday)
in Room 1414.
Administrative Matters
- Location: Room 1441 (Conference Room in Faculty Area)
- Time: 9:20AM-11:10PM, Thursday, the first meeting (2/2/2006)
- Optional Textbook: The Shellcoder's Handbook by Koziol, Litchfield, et al.
- Instructor: Professor Tzi-cker Chiueh
- Office: CS Building, Room 1449
- Phone: 631-632-8449
- mail: chiueh@cs.sunysb.edu
- Office Hours: 4-5PM Mon/Wed
- Course Homepage: http://www.ecsl.cs.sunysb.edu/cse684
Special Needs
If you have a physical, psychological, medical or learning disability that may impact on your ability to carry out assigned course
work, I would urge that you contact the staff in the Disabled Student Services office (DSS), Room 133 Humanities,
632-6748/TDD. DSS will review your concerns and determine, with you, what accommodations are necessary and
appropriate. All information and documentation of disability is confidential.
Handouts
Related Links
