CS 161: Computer Security

Announcements:

  • Homework 7 is due Friday, December 3, 11:59 PM PT.
  • Project 3 is due Friday, December 3, 11:59 PM PT.

Instructors: Raluca Ada Popa and Nicholas Weaver

Lecture: Monday, Wednesday, Friday, 10:00 AM–11:00 AM PT, 100 Lewis and online

Skip to current week

Date Readings Lecture Discussion HW Project
Wed
08/25

Introduction

  1. Slides
    Recording
No discussion HW1
Fri
08/27

1. Security Principles

  1. Slides
    Recording
Mon
08/30

2. x86 Assembly and Call Stack

Reference - x86/GDB Cheat Sheet

  1. Slides
    Recording
61C Review, Security Principles
(solutions)

Project 1

Wed
09/01

3. Memory Safety Vulnerabilities

  1. Slides
    Recording
Fri
09/03

(continued)

  1. Slides
    Recording
Mon
09/06

Holiday (Labor Day)

No lecture Memory Safety
(solutions)
HW2
Wed
09/08

4. Mitigating Memory Safety Vulnerabilities

  1. Slides
    Recording
Fri
09/10

(continued)

  1. Slides
    Recording
Mon
09/13

5. Introduction to Cryptography

  1. Slides
    Recording
Memory Safety Mitigations
(solutions)
Wed
09/15

6. Symmetric-Key Cryptography

  1. Slides
    Recording
Fri
09/17

(continued)

  1. Slides
    Recording
Mon
09/20

7. Cryptographic Hashes

  1. Slides
    Recording
Symmetric Cryptography
(solutions)
HW3
Wed
09/22

8. Message Authentication Codes (MACs)

  1. Slides
    Recording
Fri
09/24

9. Pseudorandom Number Generators (PRNGs)

  1. Slides
    Recording
Mon
09/27

10. Diffie-Hellman Key Exchange

11. Public-Key Encryption

  1. Slides
    Recording
Cryptographic Hashes and MACs
(solutions)
Wed
09/29

12. Digital Signatures

  1. Slides
    Recording
Fri
10/01

13. Certificates

14. Passwords

  1. Slides
    Recording
Mon
10/04

16. Bitcoin

  1. Slides
    Recording
Asymmetric Cryptography
(solutions)
HW4
Wed
10/06

(continued)

  1. Slides
    Recording
Thu
10/07

Midterm (7:00 PM–9:00 PM PT)

Fri
10/08

18. Introduction to Web

  1. Slides
    Recording
Mon
10/11

19. Same-Origin Policy

  1. Slides
    Recording
No Discussion

Project 2 Design

Wed
10/13

17. SQL Injection

22. Cross-Site Scripting (XSS)

  1. Slides
    Recording
Fri
10/15

20. Cookies and Session Management

  1. Slides
    Recording
Mon
10/18

21. Cross-Site Request Forgery (CSRF)

  1. Slides
    Recording
SQL Injection and Cookies
(solutions)
Wed
10/20

23. UI Attacks

  1. Slides
    Recording
Fri
10/22

25. Introduction to Networking

  1. Slides
    Recording
Mon
10/25

26. ARP

28. DHCP

  1. Slides
    Recording
XSS and CSRF
(solutions)
HW5

Project 2

Wed
10/27

27. WPA

  1. Slides
    Recording
Fri
10/29

29. BGP

30. TCP and UDP

  1. Slides
    Recording
Mon
11/01

31. TLS

  1. Slides
    Recording
ARP, DHCP, WPA, TCP
(solutions)
Wed
11/03

(continued)

  1. Slides
    Recording
Fri
11/05

32. DNS

  1. Slides
    Recording
Mon
11/08

33. DNSSEC

  1. Slides
    Recording
TCP and TLS
(solutions)
HW6
Wed
11/10

(continued)

  1. Slides
    Recording
Fri
11/12

34. Denial-of-Service (DoS) Attacks

  1. Slides
    Recording
Mon
11/15

35. Firewalls

36. Intrusion Detection

  1. Slides
    Recording
DNS
(solutions)

Project 3

Wed
11/17

(continued)

  1. Slides
    Recording
Fri
11/19

38. Malware

  1. Slides
    Recording
Mon
11/22

(continued)

39. Anonymity and Tor

  1. Slides
    Recording
No discussion HW7
Wed
11/24

Holiday (Thanksgiving)

No lecture
Fri
11/26

Holiday (Thanksgiving)

No lecture
Mon
11/29

Project 2 discussion (not recorded)

Optional Special Topics: Abuse

  1. Slides
    Recording
Intrusion Detection and Special Topics
Wed
12/01

Optional Special Topics

Fri
12/03

Optional Special Topics

Mon
12/06

RRR week

No lecture Final Review
Wed
12/08

RRR week

No lecture
Fri
12/10

RRR week

No lecture
Mon
12/13

Final exam (8:00 AM–11:00 AM PT)