Science of Security

Assignments: Reviews, Presentations, Project.

DateEvent
01/18/12

Topic: Introduction to Science of Security
Presenter: Clarkson

Required reading:

  • none.

Suggested reading:

01/23/12

Topic: Fundamentals of Computer Security
Presenter: Clarkson

Required reading:

  • Fred B. Schneider. Chapter 1 of an untitled in-progress textbook, 2007. Even though this is required, you do not need to write a review of it.

Suggested reading:

  • none.
01/25/12

Class cancelled

01/30/12

Topic: Fundamentals of Access Control
Presenter: Clarkson

Required reading:

  • Pierangela Samarati and Sabrina De Capitani di Vimercati. Access Control: Policies, Models, and Mechanisms. In Foundations of Security Analysis and Design: Tutorial Lectures, Lecture Notes in Computer Science, vol. 2171, pp. 137–193, 2001. Even though this is required, you do not need to write a review of it. Skip the HRU formalization (pp. 5–7), because we'll discuss it in detail on 02/06/12. Also skip section 4.5, and all of sections 6 and 8.

Suggested reading:

  • The parts you skipped in the required reading.
02/01/12

Topic: Fundamentals of Information Flow
Presenter: Clarkson

Required reading:

  • Andrei Sabelfeld and Andrew C. Myers. Language-Based Information-Flow Security. IEEE Journal on Selected Areas in Communications, 21(1):5–19, 2003. Even though this is required, you do not need to write a review of it. Skim sections 5 and 6. This is an example of a survey paper, which you need to write for your project. But it's much longer than what you'll write.

Suggested reading:

  • The parts you skimmed in the required reading.
02/06/12

Project proposal due

Topic: Security Policies and Enforcement Mechanisms
Presenter: Roberts

Required reading:

Suggested reading:

  • None.
02/08/12

Topic: Security Policies and Enforcement Mechanisms
Presenter: Kang

Required reading:

Suggested reading:

02/13/12

Topic: Security Policies and Enforcement Mechanisms
Presenter: Kaczmarek

Required reading:

Suggested reading:

02/15/12

Topic: Security Policies and Enforcement Mechanisms
Presenter: Clarkson

Required reading:

  • Michael R. Clarkson and Fred B. Schneider. Hyperproperties. In Proceedings of IEEE Computer Security Foundations Symposium, pp. 51–65, 2008.

Suggested reading:

  • Bowen Alpern and Fred B. Schneider. Defining Liveness. Information Processing Letters, 21(4):181–185, 1985.
02/20/12

Presidents' Day

02/22/12

Class cancelled

02/23/12

Project survey paper due

02/27/12

Project review meetings (individual)

02/29/12

Project review meetings (individual)

03/05/12

Topic: Security Policies and Enforcement Mechanisms
Presenter: Hirsch

Required reading:

Suggested reading:

  • None.
03/07/12

Topic: Security Policies and Enforcement Mechanisms
Presenter: Zhang

Required reading:

Suggested reading:

03/12/12

Spring break

03/14/12

Spring break

03/19/12

Topic: Security Metrics
Presenter: Roberts

Required reading:

Suggested reading:

  • None.
03/21/12

Topic: Security Metrics
Presenter: Kaczmarek

Required reading:

Suggested reading:

  • TBA
03/26/12

Topic: Security Metrics
Presenter: Kang

Required reading:

  • Solomon W. Golomb, Robert E. Peile, and Robert A. Scholtz. Basic Concepts in Information Theory and Coding: The Adventures of Secret Agent 00111. New York, Plenum Press, 1994. Pages 1–21. Even though this is required, you do not need to write a review of it.
  • Geoffrey Smith. On the Foundations of Quantitative Information Flow. In Proceedings International Conference on Foundations of Software Science and Computation Structures, pp. 288–302, 2009.

Suggested reading:

03/28/12

Topic: Security Metrics
Presenter: Clarkson

Required reading:

  • Michael R. Clarkson and Fred B. Schneider. Quantification of Integrity. In Proceedings IEEE Computer Security Foundations Symposium, pp. 28–43, 2010.

Suggested reading:

  • None.
04/02/12

Class cancelled (work on project)

04/04/12

Project midterm draft paper due

Class cancelled (work on project)

04/09/12

Project peer reviews due

Project review meetings (individual)

04/11/12

Project review meetings (individual)

04/16/12

Class cancelled (work on project)

04/18/12

Topic: Provable Security
Presenter: Zhang

Required reading:

Suggested reading:

04/23/12

Topic: Provable Security
Presenter: Hirsch

Required reading:

Suggested reading:

04/25/12

Topic: The Science of Security
Presenter: Clarkson

Required reading:

04/30/12

Final project presentations

05/01/12

Make-up Day (no class)

05/02/12

Final project presentations

(Designated Monday)

05/04/12

Project poster session. Marvin Center, room TBA, 4–6 pm.

05/09/12

Project final paper due