Week 1
Trust, thinking about threats, and a mini-intro to TCP/IP
- [Read by 9/14] Inside the Twisted Mind of the Security Professional, by Bruce Schneier
- [Read by 9/14] Reflections on Trusting Trust,
by Ken Thompson. Also, do some searching to learn about the aftermath of the presentation of this paper.
- [Read by 9/14] The Preface and Chapter 1 of Ross Anderson's
Security Engineering, 2nd edition
- [Due 9:50, 9/16] A network tools scavenger hunt.
NOTE: bring your answers printed out on paper to class on Friday.
- [Read by 9/19] Sections 1, 1.1, 2, 2.1, and 2.2 of
RFC 7230: Hypertext Transfer Protocol (HTTP/1.1): Message Syntax and Routing.
Also, all of Section 4 and Section 5.5 in
RFC 7230: Hypertext Transfer Protocol (HTTP/1.1): Semantics and Content. Bring questions to class.
Week 2
Packet sniffing with wireshark; beginning cryptography; SSH
Week 3
Cryptography continued; SSH
Week 4
SSL/TLS
Week 5
Threat modeling, social engineering
Week 6
Midterm break, XSS, ARP cache poisoning
Week 7
Buffer overflow, ARP poisoning, etc.
Week 8
Voting, presentations, visitors
Weeks 9, 10
Wrapping up.