CS513 Computer Security - Lecture Annex

Lecture 1 (01/26/99) Trustworthy Networked Information Systems.

Readings:

• Trust in Cyberspace, chapters 1 and 6.
• The President's Commission on Critical Infrastructure Protection has recently completed a very through study on some of the issues facing the nation. If you don't want to read the entire report, a summary is available.
• Lecture 1 in last year's scribed lecture notes.

Lecture 2 (01/28/99) Design principles for secure systems.
-Homework 1 is posted on the web.
-Starting 2/2, our class will meet in Kimball B11

Readings:

• The Protection of Information in Computer Systems by Saltzer & Schroeder, Proceedings of the IEEE, 63, 9, (Sept 1975), 1278-1308.
• Lecture 4 in last year's scribed lecture notes.
• Scribed lecture notes made at today's lecture.

Lecture 3 (02/02/99) Access Control Policies and Mechanisms.

Readings:

• Scribed lecture notes made at today's lecture.

Lecture 4 (02/04/99) Access Control in Java2 (JDK 1.2).

Readings:

• Overview and Motivation for JDK 1.2 Security Architecture
• JavaSoft's tutorial for JDK 1.2
• JavaSoft's Security Guides for JDK 1.2
• Securing Java by Gary McGraw and Ed Felten (Wiliey, 1999).
• Scribed lecture notes made at today's lecture.

Lecture 5 (02/09/99) Implementing Complete Mediation.
-Programming project phase I is posted on web.
-Pick up cs513 computer accounts from Linda, room 4115C after 1:30 any day this week.
-Hand in homework 1.

Readings:

• Scribed lecture notes made at today's lecture.

Lecture 6 (02/11/99) Access Control in UNIX and Windows NT.

Readings:

• Lecture 7 in last year's scribed lecture notes.

Lecture 7 (02/16/99) Capabilities.
-Pick-up graded HW 1 from Upson 303.

Readings:

• Lecture 8 in last year's scribed lecture notes.

Lecture 8 (02/18/99) Capabilities (continued).
-See new "HINTS" page for helpful advice regarding the project. This page is now posted on www.
-HW regrade policy: Write a note explaining why the grade should be changed, attach it to your graded HW, and drop that off with Prof. Schneider's administrative assistant.

Readings:

• Lecture 9 in last year's scribed lecture notes.

Lecture 9 (02/23/99) Capabilities Revocation and Review.
-Project Q+A and Discussion scheduled for Wed, 2/24, 8pm in Hollister B-14

Readings:

• Lecture 10 in last year's scribed lecture notes.

Lecture 10 (02/25/99) Authentication.
-Project due date extended to 9am Thursday, March 4. No late submissions will be accepted.
-Project submission instructions are now posted on www.
-New project hint posted on www.

Readings:

• Chapters 7, 8, and 9.3.4 in Network Security, Private Communication in a Public World (Kaufman, Perlman, and Speciner), Prentice Hall, 1995. On reserve in the Engineering Library. This material compliments not only this but the subsequent authentication lectures as well.
  
• Lecture notes made at today's lecture.

Lecture 11 (03/02/99) Authentication -- Trusted Paths and Smart Cards
-There will be no class on 03/08.

Readings:

• Lecture notes made at today's lecture.

Lecture 12 (03/04/99) Authentication -- Lamport's hash and biometrics
-No lecture on 03/08

Readings:

• Lecture notes made at today's lecture.

Lecture 13 (03/11/99) Authentication and Delegation in Distributed Systems
-Programming project phase II is now (3/13) posted on web.

Readings:

• An architecture for practical delegation in a distributed system, by Morrie Gasser and Ellen McDermott, Proceedings of the 1990 IEEE Symposium on Security and Privacy (Oakland, CA., May 1990) pp. 20-30.
• Lecture notes made at today's lecture.

Lecture 14 (03/16/99) Authentication and Delegation in Distributed Systems (cont't)
-TA David Gutierrez will start having office hours Tues, Thurs 1130-1230, Ups 320.

Readings:

• An architecture for practical delegation in a distributed system, by Morrie Gasser and Ellen McDermott, Proceedings of the 1990 IEEE Symposium on Security and Privacy (Oakland, CA., May 1990) pp. 20-30.
• Lecture notes made at today's lecture.

Lecture 15 (03/18/99) SFI (Software-based Fault Isolation)
-Phase I grades have been distributed.
-Phase I grading criteria have been posted.

Readings:

• Lecture notes for today's lecture.

Lecture 16 (03/30/99) Law and Policy I

Readings:

• Slides (pdf) presented in class.

Lecture 17 (03/18/99) Law and Policy II

Readings:

• Slides (pdf) presented in class.

Lecture 18 (04/06/99) Enforceable Security Policies

Readings:

• Enforceable Security Policies, Computer Science Dept., Technical Report TR98-1664
• Lecture notes corresponding to today's lecture.

Lecture 19 (04/08/99) "In-lined" Reference Monitors

Readings:

• SASI Enforcement of Security Policies: A Retrospective, submitted for publication.
• Lecture notes corresponding to today's lecture.

Lecture 20 (04/13/99) Introduction to Cryptography

Readings:

• Chapter 2 in Security in Computing (by Charles P. Pfleeger), Prentice Hall, 1997.
• Lecture 23 in last year's scribed lecture notes.

Lecture 21 (04/15/99) Private key Cryptography

Readings:

• Chapter 3 in Network Security Private Communication in a Public World (by Charlie Karufman, Radia Perlman, and Mike Speciner), Prentice Hall, 1995.
• Lecture 24 in last year's scribed lecture notes.

Lecture 22 (04/20/99) Information Flow Control

Readings:

• Slides (postscript) presented in class.

Lecture 23 (04/22/99) Information Flow Control (con't)

Readings:

• Slides (postscript) presented in class.

Lecture 24 (04/27/99) Kerberos

Readings:

• Lecture 25 in last year's scribed lecture notes.

Lecture 25 (04/29/99) Public key Cryptography

Readings:

• Lecture 26 in last year's scribed lecture notes.