UB CSE 410/565 Computer Security

Spring 2023; Monday, Wednesday 4:00PM-5:20PM; Knox 110

General Information

Instructor

Dr. Ziming Zhao
E-mail: zimingzh@buffalo.edu
Homepage: https://zzm7000.github.io/
Office hours will be online: Monday 2:30 PM - 3:30 PM or by appointment
You will need to log in to UB Zoom before you join the office hours at https://buffalo.zoom.us/j/95299258797?pwd=QlBhbjJIUlM5WmlETmFtOE5qT1Z5dz09
The lecture recordings will be posted online after each class.

Teaching Assistant

Md. Armanuzzaman Tomal
E-mail: mdarmanu@buffalo.edu
Homepage
Office hours will be online: Wednesday 2:30 PM - 3:30 PM or by appointment
You will need to log in to UB Zoom before you join the office hours at https://buffalo.zoom.us/j/95299258797?pwd=QlBhbjJIUlM5WmlETmFtOE5qT1Z5dz09

Overview

The objectives of this course consist of developing a solid understanding of fundamental principles of the security field and building knowledge of tools and mechanisms to safeguard a wide range of software and computing systems. It is intended for upper-level undergraduate and graduate students, and a tentative list of the covered topics is: cryptographic background and tools; access control; authentication; software security, malware; Internet security protocols and standards (SSL/TLS, IPsec, secure email); intrusion detection and intrusion prevention systems (firewalls); database security; privacy; identity management; security management and risk assessment; legal and ethical aspects (cybercrime, intellectual property)

Downloads: Course Syllabus

Tentative Schedule

Date Topic Notes
Week-1 Class-1 1/30 Overview Notes Video 1. Read CSE and UB academic integrity policies and procedures and finish the quiz on UBLearns.
2. Read Chapter 1.
Week-1 Class-2 2/1 Symmetric Encryption I Notes Video Read Sections 2.1 and 20.2
Week-2 Class-1 2/6 Symmetric Encryption II Notes Read Sections 20.3 and 20.5
Week-2 Class-2 2/8 Data Integrity and Hash Functions Notes Read Sections 2.2, 21.1, and 21.2
Week-3 Class-1 2/13 Data Integrity and Hash Functions Notes  
Week-3 Class-2 2/15 Public-Key Cryptography Notes Sections 2.3, 2.4, 21.4, and 21.5
Week-4 Class-1 2/20 Certificates and Randomness Notes Read Sections 2.4 and 2.5
Week-4 Class-2 2/22 Authentication Notes Read Chapter 3
Week-5 Class-1 2/27 Access Control Notes The instructor will be out of town on the 27th. Instead, the class will be delivered on-line on the 24th 9PM. Students can attend the online session though it is not required. Recording will be provided thereafter.
Week-5 Class-2 3/1 Access Control II Notes  
Week-6 Class-1 3/6 Database Security Notes  
Week-6 Class-2 3/8 Key Establishment and Applications Notes The instructor will be out of town on the 8th. Instead, the class will be delivered on-line on the 10th 9PM. Students can attend the online session though it is not required. Recording will be provided thereafter.
Week-7 Class-1 3/13 Public-Key Infrastructure Notes  
Week-7 Class-2 3/15 *** Midterm Exam *** Midterm-2  
Week-8 Class-1 3/20 === Spring Recess No class ===  
Week-8 Class-2 3/22 === Spring Recess No class ===  
Week-9 Class-1 3/27 Operating System Security Notes  
Week-9 Class-2 3/29 Operating System Security II Notes  
Week-10 Class-1 4/3 Software Security Notes  
Week-10 Class-2 4/5 Software Security II Notes  
Week-11 Class-1 4/10 Software Security III Notes  
Week-11 Class-2 4/12 Building Secure Software Notes  
Week-12 Class-1 4/17 Malware Notes  
Week-12 Class-2 4/18 Network Attacks Notes  
Week-13 Class-1 4/24 Intrusion Detection Notes  
Week-13 Class-2 4/26 Intrusion Prevention Notes  
Week-14 Class-1 5/1 Security Management Notes  
Week-14 Class-2 5/3 Anonymous Communication Notes  
Week-15 Class-1 5/8 Privacy Enhancing Technologies Notes  
Week-15 Class-2 5/10 Beyond 410/565  
Final Exam 5/19 3:30PM-6:30PM  

Resources

Required textbook: Additional resources: