CS 161: Computer Security

Announcements

Homework 7 has been released and is due Wednesday, August 10, at 11:59 PM PT.
Project 3 has been released and is due Wednesday, August 10, at 11:59 PM PT.
The final exam is on Thursday, August 11, 5:00–8:00 PM PT

Past Announcements

2022-07-25:

We have released design document grades on Gradescope.
- We have released design review sign-up slots. More details on Ed.
Homework 6 has been released and is due Friday, July 29, at 11:59 PM PT.
Project 2 has been released and is due Tuesday, August 2, at 11:59 PM PT.

2022-07-18:

Project 2 has been released.
- The design document is due Thursday, July 21, 11:59 PM PT.
- There is a project party on Wednesday, July 20 from 2:30 PM to 5:00 PM in the Woz.
Homework 5 has been released and is due Friday, July 22, 11:59 PM PT.

2022-07-11:

The midterm exam is Tuesday, July 12 from 5:00 to 7:00 PM PT in Dwinelle 155 (or remote if you filled out the exam accommodations form).
- Please refer to Ed for general exam logistics and for in-person and remote exam logistics.
- There is a midterm review session on Monday, July 11 from 5:00 to 8:00 PM PT in Cory 293 and on Zoom.
Homework 4 has been released and is due Friday, July 15th at 11:59 PM PT.
Project 2 will be released by Wednesday at the latest. More details about this to come within the week!

2022-07-04:

Project 1 is released on the website.
- The full project, including the write-up is due Friday, July 8th, 11:59 PM PT.
Homework 3 has been released and is due Friday, July 8th at 11:59 PM PT.
The midterm exam is on Tuesday, July 12 from 5:00 to 7:00 PM PT.
- To request a remote exam, an alternate time, or any other adjustments, please fill out the exam adjustments form by Saturday, July 9th, 11:59 PM PT.

2022-06-27:

Homework 2 is released on Gradescope and is due Friday, July 1st, 11:59 PM PT.
Project 1 is released on the website.
- The checkpoint, Q1-4, is due Friday, July 1st, 11:59 PM PT.
- The full project, including the write-up is due Friday, July 8th, 11:59 PM PT.
- There will be a Project 1 Party in Soda 500 on Thursday, June 30 from 3:00 to 5:30 PM PT.

2022-06-21:

Homework 1 has been released and is due Friday, June 24, 11:59 PM PT.

Instructors: Fuzail Shakir and Peyrin Kao

Lecture: Monday–Thursday, 12:30 PM–2:00 PM PT, Physics Building 4 + Online

Skip to current week

Date	Lecture	Topic	Discussion	HW	Project
Mon 06/20	No lecture (Juneteenth)		No discussion	HW1
Tue 06/21	Slides Recording	Introduction 1. Security Principles	No discussion		Project 1 Checkpoint
Wed 06/22	Slides Recording	2. x86 Assembly and Call Stack	61C Review, Security Principles (solutions) (recording)
Thu 06/23	Slides Recording	3. Memory Safety Vulnerabilities	61C Review, Security Principles (solutions) (recording)
Mon 06/27	Slides Recording	4. Mitigating Memory Safety Vulnerabilities	Memory Safety (solutions) (recording)	HW2
Tue 06/28	Slides Recording	5. Introduction to Cryptography	Memory Safety (solutions) (recording)
Wed 06/29	Slides Recording	6. Symmetric-Key Cryptography	Memory Safety Mitigations (solutions) (recording)
Thu 06/30	Slides Recording	7. Cryptographic Hashes 8. Message Authentication Codes (MACs)	Memory Safety Mitigations (solutions) (recording)
Mon 07/04	No lecture (4th of July)		Symmetric Key Cryptography (solutions) (recording)	HW3	Project 1
Tue 07/05	Slides Recording	9. Pseudorandom Number Generators (PRNGs) 10. Diffie-Hellman Key Exchange	Symmetric Key Cryptography (solutions) (recording)
Wed 07/06	Slides Recording	11. Public-Key Encryption 12. Digital Signatures	Asymmetric Key Cryptography (solutions) (recording)
Thu 07/07	Slides Recording	13. Certificates 14. Passwords	Asymmetric Key Cryptography (solutions) (recording)
Mon 07/11	Slides Recording	16. Bitcoin	Signatures, Certificates, and Passwords (solutions) (recording)	HW4	Project 2 Design
Tue 07/12	No lecture (Midterm)
Wed 07/13	Slides Recording	18. Introduction to Web 19. Same-Origin Policy	No discussion
Thu 07/14	Slides Recording	20. Cookies and Session Management 21. Cross-Site Request Forgery (CSRF)	No discussion
Mon 07/18	Slides Recording	22. Cross-Site Scripting (XSS) 23. UI Attacks	Cookies and CSRF (solutions) (recording)	HW5
Tue 07/19	Slides Recording	17. SQL Injection	Cookies and CSRF (solutions) (recording)
Wed 07/20	Slides Recording	25. Introduction to Networking	SQL Injection and XSS (solutions) (recording)
Thu 07/21	Slides Recording	26. ARP 28. DHCP 27. WPA	SQL Injection and XSS (solutions) (recording)
Mon 07/25	Slides Recording	29. BGP 30. TCP and UDP	DHCP, ARP, and WPA (solutions) (recording)	HW6
Tue 07/26	Slides Recording	31. TLS	DHCP, ARP, and WPA (solutions) (recording)		Project 2
Wed 07/27	Slides Recording	32. DNS	TLS and TCP (solutions) (recording)
Thu 07/28	Slides Recording	33. DNSSEC	TLS and TCP (solutions) (recording)
Mon 08/01	Slides Recording	34. Denial-of-Service (DoS) Attacks 35. Firewalls	DNS (solutions)	HW7
Tue 08/02	Slides Recording	36. Intrusion Detection	DNS (solutions)
Wed 08/03	Slides Recording	38. Malware	Intrusion Detection (solutions)
Thu 08/04	Slides Recording	39. Anonymity and Tor	Intrusion Detection (solutions)
Mon 08/08	Optional: Hating on gets (Paul Vixie) (slides, recording)				Project 3
Tue 08/09	Optional: Using Buffer Overflows to Speedrun Super Mario Bros. 3
Wed 08/10	No Lecture
Thu 08/11	Final Exam (5:00–8:00 PM PT)
Fri 08/12	Optional: Bitcoin: Burn It With Fire (Nick Weaver)