CSE 564 (Autumn 2008)

Computer Security and Privacy

Class Schedule (Dates More than One Week Later Subject to Slight Changes)

Date and Topic	Readings	Announcements
9/24/2008 Introduction	Required Reading (no written reviews required, and not critical to read before the first class): Attack Trees. Schneier. Dr. Dobbs Journal, 1999. Security Criteria for Electronic Voting. Neumann. 16th National Computer Security Conference 1993. Security and Privacy for Implantable Medical Devices. Halperin, Heydt-Benjamin, Fu, Kohno, and Maisel. IEEE Pervasive Computing 2008. Optional Reading: Why Cryptosystems Fail. Anderson. CCS 1993. Analysis of an Electronic Voting System. Kohno, Stubblefield, Rubin, and Wallach. IEEE Symposium on Security and Privacy 2004. Pacemakers and Implantable Cardiac Defibrillators: Software Radio Attacks and Zero-Power Defenses. Halperin, Heydt-Benjamin, Ransford, Clark, Defend, Morgan, Fu, Kohno, and Maisel. IEEE Symposium on Security and Privacy 2008. Computer Security in the Real World. Lampson.
9/29/2008 Context (I)	Required Reading: Secrecy, Flagging, and Paranoia: Adoption Criteria in Encrypted E-Mail. Gaw, Felten, and Fernandez-Kelly. CHI 2006. Privacy Risk Models for Designing Privacy-Sensitive Ubiquitous Computing Systems. Hong, Ng, Lederer, and Landay. DIS 2004. Optional Reading: Human-in-the-loop: rethinking security in mobile and pervasive systems. Kostakos. CHI 2008. Users are Not the Enemy. Adams and Sasse. Communications of the ACM 1999. An Inquiry into the Nature and Causes of the Wealth of Internet Miscreants. Franklin, Paxson, Perrig, and Savage. CCS 2007.
10/1/2008 Context (II) (Alan Borning)	Required Reading: Value Sensitive Design and Information Systems. Friedman, Kahn, and Borning. In Zhang and Galletta (eds.), Human-computer interaction in management information systems: Foundations (pp. 348-372). Optional Reading: How Much is Location Privacy Worth?. Danezis, Lewis, and Anderson. Workshop on the Economics of Information Security, 2005. Valuating Privacy. Huberman, Adar, and Fine. IEEE Security and Privacy, September/October 2005.
10/6/2008 Context (III)	Required Reading: A Usability Study and Critique of Two Password Managers. Chiasson, van Oorschot, and Biddle. USENIX Security 2006. (Advocate: Seth. Skeptic: Tammy.) On User Choice in Graphical Password Schemes. Davis, Monrose, and Reiter. USENIX Security 2004. (Advocate: Emily. Skeptic: Seth.) Optional Reading: Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0. Whitten and Tygar. USENIX Security 1999. In Search of Usable Security: Five Lessons from the Field. Balfanz, Durfee, Grinter, and Smetters. IEEE Security and Privacy, September/October 2004.	Due: Project Group Formation (11:30pm, by email)
10/8/2008 Building Systems (I)	Required Reading: Helios: Web-based Open-Audit Voting. Adida. USENIX Security 2008. (Advocate: Ryan. Skeptic: Miro.) VoteBox: A Tamper-evident, Verifiable Electronic Voting System. Sandler, Derr, and Wallach. USENIX Security 2008. (Advocate: Kristi. Skeptic: Chloe.) Optional Reading: Analysis of an Electronic Voting System. Kohno, Stubblefield, Rubin, and Wallach. IEEE Security and Privacy 2004. Strategies for Software Attacks on Voting Machines. Kelsey. NIST Threats to Voting Systems 2005. Cryptographic Voting Protocols: A Systems Perspective. Karlof, Sastry, and Wagner. USENIX Security 2005. Simple Verifiable Elections. Benaloh. EVT 2006.	Due: Security Review #1 (11:30pm, via Catalyst)
10/13/2008 Cryptography (I)	Required Reading: Problem Areas for IP Security Protocols. Bellovin. USENIX Security 1996. (Advocate: Ben. Skeptic: Kate.) Cryptanalytic Attacks on Pseudorandom Number Generators. Kelsey, Schneier, Wagner, and Hall. FSE 1998. (Advocate: Jessica. Skeptic: Hao.) Optional Reading: Analysis of the SSL 3.0 Protocol (revised version). Wagner and Schneier. In 2nd USENIX Workshop on Electronic Commerce, 1996. Prudent Engineering Practice for Cryptographic Protocols. Abadi and Needham. IEEE Transactions on Software Engineering, 1995.	Due: Project Proposals (11:30pm, via Catalyst)
10/15/2008 Canceled	Required Reading: Optional Reading:
10/20/2008 Information Flow (Jaeyeon Jung)	Required Reading: Capturing System-wide Information Flow for Malware Detection and Analysis. Yin, Song, Egele, Kirda, and Kruegel. CCS 2007. (Advocate: Rohit. Skeptic: Laura.) Privacy Oracle: a System for Finding Application Leaks Using Black-box Differential Testing. Jung, Sheth, Greenstein, Wetherall, Maganis, and Kohno. CCS 2008. (Advocate: Joe. Skeptic: ???.) Optional Reading:
10/22/2008 Building Systems (II)	Required Reading: Off-the-Record Communication, or, Why Not To Use PGP. Borisov, Goldberg, and Brewer. WPES 2004. (Advocate: Chloe. Skeptic: Emily.) Improved User Authentication in Off-The-Record Messaging. Alexander and Goldberg. WPES 2007. (Advocate: Martin. Skeptic: Peter.) Optional Reading: Secure off-the-record messaging. Di Raimondo, Gennaro, and Krawczyk. WPES 2005. Privacy-Preserving Location Tracking of Lost or Stolen Devices: Cryptographic Techniques and Replacing Trusted Third Parties with DHTs. Ristenpart, Maganis, Krishnamurthy, and Kohno. USENIX Security 2008.
10/27/2008 Network Security and Privacy (Ben Greenstein)	Required Reading: Improving Wireless Privacy with an Identifier-Free Link Layer Protocol. Greenstein, McCoy, Pang, Kohno, Seshan, and Wetherall. MobiSys 2008. Sign up to be an advocate or skeptic! Wireless Device Identification using Radiometric Signatures. Brik, Banerjee, Gruteser, and Oh. Mobicom 2008. Sign up to be an advocate or skeptic! Optional Reading: Inference Attacks on Location Tracks. Krumm. Pervasive 2007.
10/29/2008 Language Security (Dan Grossman)	Required Reading: Language-Based Information-Flow Security. Sabelfeld and Myers. J. SAC 2003. (No advocate / skeptic needed.) Slides (PPT). Optional Reading:
11/3/2008 Large-scale Attacks (I)	Required Reading: Inferring Internet Denial-of-Service Activity. Moore, Voelker, and Savage. USENIX Security 2001. (Advocate: Koos. Skeptic: Alice.) How to 0wn the Internet in Your Spare Time. Staniford, Paxson, and Weaver. USENIX Security 2002. (Advocate: Richa. Skeptic: Kathleen.) Optional Reading: Mapping Internet Sensors with Probe Response Attacks. Bethencourt, Franklin, and Vernon. USENIX Security 2005. Vulnerabilities of Passive Internet Threat Monitors. Shinoda, Ikai, and Itoh. USENIX Security 2005. Self-Stopping Worms. Ma, Voelker, and Savage. ACM WORM Workshop 2005.	Out: Software Attacks Lab
11/5/2008 Large-scale Attacks (II)	Required Reading: Spamalytics: an Empirical Analysis of Spam Marketing Conversion. Kanich, Kreibich, Levchenko, Enright, Paxson, Voelker, and Savage. CCS 2008. (Advocate: Alex. Skeptic: Kristi.) BotMiner: Clustering Analysis of Network Traffic for Protocol- and Structure-Independent Botnet Detection. Gu, Perdisci, Zhang, and Lee. USENIX Security 2008. (Advocate: Tammy. Skeptic: Ben.) Optional Reading: An Inquiry into the Nature and Causes of the Wealth of Internet Miscreants. Franklin, Paxson, Perrig, and Savage. CCS 2007.	Due on 11/7: Security Review #2 (11:30pm, via Catalyst)
11/10/2008 Mobile Devices (I)	Required Reading: An Architecture for Privacy-Sensitive Ubiquitous Computing. Hong and Landay. MobiSys 2004. (Advocate: Cynthia. Skeptic: Martin.) AnonySense: Privacy-Aware People-Centric Sensing. Cornelius, Kapadia, Kotz, Peebles, Shin, and Triandopoulos. MobiSys 2008. (Advocate: Laura. Skeptic: Shih-Yen.) Optional Reading: Developing Privacy Guidelines for Social Location Disclosure Applications and Services. Iachello, Smith, consolvo, Chen, and Abowd. SOUPS 2005. Privacy Risk Models for Designing Privacy-Sensitive Ubiquitous Computing Systems. Hong, Ng, Lederer, and Landay. DIS 2004. Smart-Phone Attacks and Defenses. Guo, Wang, and Zhu. HotNets 2004.	Due: Project Checkpoint (11:30pm, via Catalyst)
11/12/2008 Mobile Devices (II)	Required Reading: Privacy and Security in Library RFID Issues, Practices, and Architectures. Molnar and Wagner. CCS 2004. (Advocate: Shih-Yen. Skeptic: Richa.) RFIDs and Secret Handshakes: Defending Against Ghost-and-Leech Attacks and Unauthorized Reads with Context-Aware Communications. Czeskis, Koscher, Smith, and Kohno. CCS 2008. (Advocate: Miro. Skeptic: Koos.) Optional Reading: Amigo: Proximity-Based Authentication of Mobile Devices Varshavsky, Scannell, LaMarca, and de Lara. UbiComp 2007. Shake Well Before Use: Authentication Based on Accelerometer Data. Mayrhofer and Gellersen. Pervasive 2007. RFID Security and Privacy: A Research Survey. Juels. Journal of Selected Areas in Communication 2006. Attack Lab slides: Slides 1 Slides 2
11/17/2008 Context (IV)	Required Reading: Designing Ethical Phishing Experiments: A study of (ROT13) rOnl query features. Jakobsson and Ratkiewicz. WWW 2006. (Advocate: Kathleen. Skeptic: Alex.) The Emperor's New Security Indicators. Schechter, Dhamija, Ozment, and Fischer. IEEE Symposium on Security and Privacy 2007. (Advocate: Jonathan. Skeptic: Lisa.) Optional Reading: Social Phishing. Jagatic, Johnson, Jakobsson, and Menczer. CACM 2007. R. Dhamija, J.D. Tygar, and M. Hearst. Why Phishing Works. In ACM Conference on Human Factors in Computing Systems, 2006.
11/19/2008 Cryptography (II)	Required Reading: Authenticated Encryption in SSH: Provably Fixing the SSH Binary Packet Protocol. Bellare, Kohno, and Namprempre. CCS 2002. (Advocate: Hao. Skeptic: Elisa.) Identity based encryption from the Weil pairing. Boneh and Franklin. CRYPTO 2001. (Some sections (TBA) may be skipped.) (Advocate: Alice. Skeptic: Lynn.) Optional Reading: Practice-oriented Provable Security. Bellare. International Workshop on Information Security 1997.	Due: Software Attacks Lab (11:59pm, via Catalyst)
11/24/2008 Malware	Required Reading: Automatic Patch-Based Exploit Generation is Possible: Techniques and Implications. Brumley, Poosankam, Song, and Zheng. IEEE Symposium on Security and Privacy 2008. (Advocate: Kate. Skeptic: Jonathan.) Towards Automatic Generation of Vulnerability-Based Signatures. Brumley, Newsome, Song, Wang, and Jha. IEEE Symposium on Security and Privacy 2006. (Advocate: Erik. Skeptic: Rahul.) Optional Reading: SubVirt: Implementing malware with virtual machines. King, Chen, Wang, Verbowski, Wang, and Lorch. IEEE Symposium on Security and Privacy 2006. Designing and implementing malicious hardware. King, Tucek, Cozzie, Grier, Jiang, and Zhou. LEET 2008.
11/26/2008 Anonymity	Required Reading: Free Haven. Dingledine, Freedman, and Molnar. Peer-To-Peer 2000. (Advocate: Lisa. Skeptic: Ankit.) Tor: The Second-Generation Onion Router. Dingledine, Mathewson, and Syverson. USENIX Security 2004. (Advocate: Peter. Skeptic: Erik.) Optional Reading: Crowds: Anonymity for Web Transactions. Reiter and Rubin. ACM TISSEC 1998.	Due: Draft of Written Report (11:30pm, via HotCRP)
12/1/2008 Information Leakage and Side Channels	Required Reading: Remote physical device fingerprinting. Kohno, Broido, and Claffy. IEEE Symposium on Security and Privacy 2005. (Advocate: Rahul. Skeptic: Ryan.) Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems. Kocher. CRYPTO 1996. (Advocate: Ankit. Skeptic: Jessica.) Optional Reading: Timing Attacks on Web Privacy. Felten and Schneider. CCS 2000. Differential Power Analysis. Kocher, Jaffe, and Jun. CRYPTO 1999. Optical Time-Domain Eavesdropping Risks of CRT Displays. Kuhn. IEEE Symposium on Security and Privacy 2002. Information Leakage from Optical Emanations. Loughry and Umphress. ACM TISSEC 2002. Spot me if you can: Uncovering spoken phrases in encrypted VoIP conversations. Wright, Ballard, Coull, Monrose, and Masson. IEEE Symposium on Security and Privacy 2008. On the limits of steganography. Anderson and Petitcolas. IEEE Journal on Selected Areas in Communications 1998. Keyboards and Covert Channels. Shah, Molina, and Blaze. USENIX Security 2006. Information Hiding --- A Survey. Petitcolas, Anderson, and Kuhn. Proceedings of the IEEE 1999.
12/3/2008 Web Security (Helen Wang)	Required Reading: None. Optional Reading: Protection and Communication Abstractions for Web Browsers in MashupOS. Wang, Fan, Howell, and Jackson. SOSP 2007. Robust Defenses for Cross-Site Request Forgery.Barth, Jackson, and Mitchell. CSS 2008. Protecting Browsers from DNS Rebinding Attacks. Jackson, Barth, Bortz, Shao, And Boneh. CCS 2007.	Due: Project Peer Reviews (of Drafts) (11:30pm, via HotCRP) Due: Security Review #3 (11:30pm, 12/4, via Catalyst)
12/8/2008 Project Presentations	Project presentations (8:30am--10:20am)	Due: Project Presentations and Final Written Reports (8:30am, upload both the presentation and the written report to Catalyst)

Date and Topic

Readings

Announcements

9/24/2008

Introduction

Required Reading (no written reviews required, and not critical to read before the first class):

Attack Trees. Schneier. Dr. Dobbs Journal, 1999.
Security Criteria for Electronic Voting. Neumann. 16th National Computer Security Conference 1993.
Security and Privacy for Implantable Medical Devices. Halperin, Heydt-Benjamin, Fu, Kohno, and Maisel. IEEE Pervasive Computing 2008.

Optional Reading:

Why Cryptosystems Fail. Anderson. CCS 1993.
Analysis of an Electronic Voting System. Kohno, Stubblefield, Rubin, and Wallach. IEEE Symposium on Security and Privacy 2004.
Pacemakers and Implantable Cardiac Defibrillators: Software Radio Attacks and Zero-Power Defenses. Halperin, Heydt-Benjamin, Ransford, Clark, Defend, Morgan, Fu, Kohno, and Maisel. IEEE Symposium on Security and Privacy 2008.
Computer Security in the Real World. Lampson.

9/29/2008

Context (I)

Required Reading:

Secrecy, Flagging, and Paranoia: Adoption Criteria in Encrypted E-Mail. Gaw, Felten, and Fernandez-Kelly. CHI 2006.
Privacy Risk Models for Designing Privacy-Sensitive Ubiquitous Computing Systems. Hong, Ng, Lederer, and Landay. DIS 2004.

Optional Reading:

Human-in-the-loop: rethinking security in mobile and pervasive systems. Kostakos. CHI 2008.
Users are Not the Enemy. Adams and Sasse. Communications of the ACM 1999.
An Inquiry into the Nature and Causes of the Wealth of Internet Miscreants. Franklin, Paxson, Perrig, and Savage. CCS 2007.

10/1/2008

Context (II)
(Alan Borning)

Required Reading:

Value Sensitive Design and Information Systems. Friedman, Kahn, and Borning. In Zhang and Galletta (eds.), Human-computer interaction in management information systems: Foundations (pp. 348-372).

Optional Reading:

How Much is Location Privacy Worth?. Danezis, Lewis, and Anderson. Workshop on the Economics of Information Security, 2005.
Valuating Privacy. Huberman, Adar, and Fine. IEEE Security and Privacy, September/October 2005.

10/6/2008

Context (III)

Required Reading:

A Usability Study and Critique of Two Password Managers. Chiasson, van Oorschot, and Biddle. USENIX Security 2006. (Advocate: Seth. Skeptic: Tammy.)
On User Choice in Graphical Password Schemes. Davis, Monrose, and Reiter. USENIX Security 2004. (Advocate: Emily. Skeptic: Seth.)

Optional Reading:

Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0. Whitten and Tygar. USENIX Security 1999.
In Search of Usable Security: Five Lessons from the Field. Balfanz, Durfee, Grinter, and Smetters. IEEE Security and Privacy, September/October 2004.

Due: Project Group Formation (11:30pm, by email)

10/8/2008

Building Systems (I)

Required Reading:

Helios: Web-based Open-Audit Voting. Adida. USENIX Security 2008. (Advocate: Ryan. Skeptic: Miro.)
VoteBox: A Tamper-evident, Verifiable Electronic Voting System. Sandler, Derr, and Wallach. USENIX Security 2008. (Advocate: Kristi. Skeptic: Chloe.)

Optional Reading:

Analysis of an Electronic Voting System. Kohno, Stubblefield, Rubin, and Wallach. IEEE Security and Privacy 2004.
Strategies for Software Attacks on Voting Machines. Kelsey. NIST Threats to Voting Systems 2005.
Cryptographic Voting Protocols: A Systems Perspective. Karlof, Sastry, and Wagner. USENIX Security 2005.
Simple Verifiable Elections. Benaloh. EVT 2006.

Due: Security Review #1 (11:30pm, via Catalyst)

10/13/2008

Cryptography (I)

Required Reading:

Problem Areas for IP Security Protocols. Bellovin. USENIX Security 1996. (Advocate: Ben. Skeptic: Kate.)
Cryptanalytic Attacks on Pseudorandom Number Generators. Kelsey, Schneier, Wagner, and Hall. FSE 1998. (Advocate: Jessica. Skeptic: Hao.)

Optional Reading:

Analysis of the SSL 3.0 Protocol (revised version). Wagner and Schneier. In 2nd USENIX Workshop on Electronic Commerce, 1996.
Prudent Engineering Practice for Cryptographic Protocols. Abadi and Needham. IEEE Transactions on Software Engineering, 1995.

Due: Project Proposals (11:30pm, via Catalyst)

10/15/2008

Canceled

Required Reading:

Optional Reading:

10/20/2008

Information Flow
(Jaeyeon Jung)

Required Reading:

Capturing System-wide Information Flow for Malware Detection and Analysis. Yin, Song, Egele, Kirda, and Kruegel. CCS 2007. (Advocate: Rohit. Skeptic: Laura.)
Privacy Oracle: a System for Finding Application Leaks Using Black-box Differential Testing. Jung, Sheth, Greenstein, Wetherall, Maganis, and Kohno. CCS 2008. (Advocate: Joe. Skeptic: ???.)

Optional Reading:

10/22/2008

Building Systems (II)

Required Reading:

Off-the-Record Communication, or, Why Not To Use PGP. Borisov, Goldberg, and Brewer. WPES 2004. (Advocate: Chloe. Skeptic: Emily.)
Improved User Authentication in Off-The-Record Messaging. Alexander and Goldberg. WPES 2007. (Advocate: Martin. Skeptic: Peter.)

Optional Reading:

Secure off-the-record messaging. Di Raimondo, Gennaro, and Krawczyk. WPES 2005.
Privacy-Preserving Location Tracking of Lost or Stolen Devices: Cryptographic Techniques and Replacing Trusted Third Parties with DHTs. Ristenpart, Maganis, Krishnamurthy, and Kohno. USENIX Security 2008.

10/27/2008

Network Security and Privacy
(Ben Greenstein)

Required Reading:

Improving Wireless Privacy with an Identifier-Free Link Layer Protocol. Greenstein, McCoy, Pang, Kohno, Seshan, and Wetherall. MobiSys 2008. Sign up to be an advocate or skeptic!
Wireless Device Identification using Radiometric Signatures. Brik, Banerjee, Gruteser, and Oh. Mobicom 2008. Sign up to be an advocate or skeptic!

Optional Reading:

Inference Attacks on Location Tracks. Krumm. Pervasive 2007.

10/29/2008

Language Security
(Dan Grossman)

Required Reading:

Language-Based Information-Flow Security. Sabelfeld and Myers. J. SAC 2003. (No advocate / skeptic needed.)
Slides (PPT).

Optional Reading:

11/3/2008

Large-scale Attacks (I)

Required Reading:

Inferring Internet Denial-of-Service Activity. Moore, Voelker, and Savage. USENIX Security 2001. (Advocate: Koos. Skeptic: Alice.)
How to 0wn the Internet in Your Spare Time. Staniford, Paxson, and Weaver. USENIX Security 2002. (Advocate: Richa. Skeptic: Kathleen.)

Optional Reading:

Mapping Internet Sensors with Probe Response Attacks. Bethencourt, Franklin, and Vernon. USENIX Security 2005.
Vulnerabilities of Passive Internet Threat Monitors. Shinoda, Ikai, and Itoh. USENIX Security 2005.
Self-Stopping Worms. Ma, Voelker, and Savage. ACM WORM Workshop 2005.

Out: Software Attacks Lab

11/5/2008

Large-scale Attacks (II)

Required Reading:

Spamalytics: an Empirical Analysis of Spam Marketing Conversion. Kanich, Kreibich, Levchenko, Enright, Paxson, Voelker, and Savage. CCS 2008. (Advocate: Alex. Skeptic: Kristi.)
BotMiner: Clustering Analysis of Network Traffic for Protocol- and Structure-Independent Botnet Detection. Gu, Perdisci, Zhang, and Lee. USENIX Security 2008. (Advocate: Tammy. Skeptic: Ben.)

Optional Reading:

An Inquiry into the Nature and Causes of the Wealth of Internet Miscreants. Franklin, Paxson, Perrig, and Savage. CCS 2007.

Due on 11/7: Security Review #2 (11:30pm, via Catalyst)

11/10/2008

Mobile Devices (I)

Required Reading:

An Architecture for Privacy-Sensitive Ubiquitous Computing. Hong and Landay. MobiSys 2004. (Advocate: Cynthia. Skeptic: Martin.)
AnonySense: Privacy-Aware People-Centric Sensing. Cornelius, Kapadia, Kotz, Peebles, Shin, and Triandopoulos. MobiSys 2008. (Advocate: Laura. Skeptic: Shih-Yen.)

Optional Reading:

Developing Privacy Guidelines for Social Location Disclosure Applications and Services. Iachello, Smith, consolvo, Chen, and Abowd. SOUPS 2005.
Privacy Risk Models for Designing Privacy-Sensitive Ubiquitous Computing Systems. Hong, Ng, Lederer, and Landay. DIS 2004.
Smart-Phone Attacks and Defenses. Guo, Wang, and Zhu. HotNets 2004.

Due: Project Checkpoint (11:30pm, via Catalyst)

11/12/2008

Mobile Devices (II)

Required Reading:

Privacy and Security in Library RFID Issues, Practices, and Architectures. Molnar and Wagner. CCS 2004. (Advocate: Shih-Yen. Skeptic: Richa.)
RFIDs and Secret Handshakes: Defending Against Ghost-and-Leech Attacks and Unauthorized Reads with Context-Aware Communications. Czeskis, Koscher, Smith, and Kohno. CCS 2008. (Advocate: Miro. Skeptic: Koos.)

Optional Reading:

Amigo: Proximity-Based Authentication of Mobile Devices Varshavsky, Scannell, LaMarca, and de Lara. UbiComp 2007.
Shake Well Before Use: Authentication Based on Accelerometer Data. Mayrhofer and Gellersen. Pervasive 2007.
RFID Security and Privacy: A Research Survey. Juels. Journal of Selected Areas in Communication 2006.

Attack Lab slides:

11/17/2008

Context (IV)

Required Reading:

Designing Ethical Phishing Experiments: A study of (ROT13) rOnl query features. Jakobsson and Ratkiewicz. WWW 2006. (Advocate: Kathleen. Skeptic: Alex.)
The Emperor's New Security Indicators. Schechter, Dhamija, Ozment, and Fischer. IEEE Symposium on Security and Privacy 2007. (Advocate: Jonathan. Skeptic: Lisa.)

Optional Reading:

Social Phishing. Jagatic, Johnson, Jakobsson, and Menczer. CACM 2007.
R. Dhamija, J.D. Tygar, and M. Hearst. Why Phishing Works. In ACM Conference on Human Factors in Computing Systems, 2006.

11/19/2008

Cryptography (II)

Required Reading:

Authenticated Encryption in SSH: Provably Fixing the SSH Binary Packet Protocol. Bellare, Kohno, and Namprempre. CCS 2002. (Advocate: Hao. Skeptic: Elisa.)
Identity based encryption from the Weil pairing. Boneh and Franklin. CRYPTO 2001. (Some sections (TBA) may be skipped.) (Advocate: Alice. Skeptic: Lynn.)

Optional Reading:

Practice-oriented Provable Security. Bellare. International Workshop on Information Security 1997.

Due: Software Attacks Lab (11:59pm, via Catalyst)

11/24/2008

Malware

Required Reading:

Automatic Patch-Based Exploit Generation is Possible: Techniques and Implications. Brumley, Poosankam, Song, and Zheng. IEEE Symposium on Security and Privacy 2008. (Advocate: Kate. Skeptic: Jonathan.)
Towards Automatic Generation of Vulnerability-Based Signatures. Brumley, Newsome, Song, Wang, and Jha. IEEE Symposium on Security and Privacy 2006. (Advocate: Erik. Skeptic: Rahul.)

Optional Reading:

SubVirt: Implementing malware with virtual machines. King, Chen, Wang, Verbowski, Wang, and Lorch. IEEE Symposium on Security and Privacy 2006.
Designing and implementing malicious hardware. King, Tucek, Cozzie, Grier, Jiang, and Zhou. LEET 2008.

11/26/2008

Anonymity

Required Reading:

Free Haven. Dingledine, Freedman, and Molnar. Peer-To-Peer 2000. (Advocate: Lisa. Skeptic: Ankit.)
Tor: The Second-Generation Onion Router. Dingledine, Mathewson, and Syverson. USENIX Security 2004. (Advocate: Peter. Skeptic: Erik.)

Optional Reading:

Crowds: Anonymity for Web Transactions. Reiter and Rubin. ACM TISSEC 1998.

Due: Draft of Written Report (11:30pm, via HotCRP)

12/1/2008

Information Leakage and Side Channels

Required Reading:

Remote physical device fingerprinting. Kohno, Broido, and Claffy. IEEE Symposium on Security and Privacy 2005. (Advocate: Rahul. Skeptic: Ryan.)
Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems. Kocher. CRYPTO 1996. (Advocate: Ankit. Skeptic: Jessica.)

Optional Reading:

Timing Attacks on Web Privacy. Felten and Schneider. CCS 2000.
Differential Power Analysis. Kocher, Jaffe, and Jun. CRYPTO 1999.
Optical Time-Domain Eavesdropping Risks of CRT Displays. Kuhn. IEEE Symposium on Security and Privacy 2002.
Information Leakage from Optical Emanations. Loughry and Umphress. ACM TISSEC 2002.
Spot me if you can: Uncovering spoken phrases in encrypted VoIP conversations. Wright, Ballard, Coull, Monrose, and Masson. IEEE Symposium on Security and Privacy 2008.
On the limits of steganography. Anderson and Petitcolas. IEEE Journal on Selected Areas in Communications 1998.
Keyboards and Covert Channels. Shah, Molina, and Blaze. USENIX Security 2006.
Information Hiding --- A Survey. Petitcolas, Anderson, and Kuhn. Proceedings of the IEEE 1999.

12/3/2008

Web Security (Helen Wang)

Required Reading:

None.

Optional Reading:

Protection and Communication Abstractions for Web Browsers in MashupOS. Wang, Fan, Howell, and Jackson. SOSP 2007.
Robust Defenses for Cross-Site Request Forgery.Barth, Jackson, and Mitchell. CSS 2008.
Protecting Browsers from DNS Rebinding Attacks. Jackson, Barth, Bortz, Shao, And Boneh. CCS 2007.

Due: Project Peer Reviews (of Drafts) (11:30pm, via HotCRP)

Due: Security Review #3 (11:30pm, 12/4, via Catalyst)

12/8/2008

Project Presentations

Project presentations (8:30am--10:20am)

Due: Project Presentations and Final Written Reports (8:30am, upload both the presentation and the written report to Catalyst)

yoshi@cs.washington.edu