G<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html><head>
  <title>CS498 Cyber Security</title></head>

<body topmargin="0" leftmargin="0" style="font-size: 10pt; font-family: Arial;" alink="#ee8a0a" bgcolor="#ffffff" link="#27408b" marginheight="0" marginwidth="0" vlink="#27408b">
   
<table style="border-collapse: collapse; position: relative; left: 0pt; top: 0pt; z-index: 0;" bgcolor="#27408b" border="0" bordercolor="#111111" cellpadding="0" cellspacing="0" width="100%">
   <tbody>
    <tr>
     <td height="55" width="100%">     <img src="images/cs498head.gif" align="left" border="0" height="50" hspace="0" width="650">
      </td> 
   </tr>
   <tr>
     <td width="100%">     <!--insert navigation gifs here along with links to course pages. Contact Drew MacGregor if you need different nav buttons. A selection of buttons is in the images folder--> 
    <a href="index.html">     <img src="images/home.gif" border="0" height="35" width="100">
      </a><a href="lectures.html"><img src="images/lectures.gif" border="0" height="35" width="100">
      </a><a href="syllabus.html"><img src="images/syllabus.gif" border="0" height="35" width="100">
      </a><a href="announcements.html"><img src="images/announcements.gif" border="0" height="35" width="100">
      </a><a href="staff.html"><img src="images/staff.gif" border="0" height="35" width="100">
      </a>
<a href="assignments.html"><img src="images/assignments.gif" border="0" height="35" width="100">
      </a></td>
   </tr>
   <tr>
     <td width="100%">     <br>
      </td>
   </tr>
   
  </tbody>
</table>
   <!--below this line is the content for the page, above the line is the navigation. Use these pages as templates for your course. Make sure you edit the title for each page.-->
<br>
 
<div align="left"><a name="Lectures"></a><img src="images/lectures.gif" alt="Lectures" align="middle" height="35" width="100">
 <br>
   
<table border="1" cellpadding="2" cellspacing="2" width="100%">
 <caption>&nbsp;</caption>  <tbody>
    <tr>
 <td valign="top">Date<br>
 </td>
  <td valign="top">Lecture No.<br>
 </td>
<td>Slides</td>
 </tr>

<tr>
<td>1/17/06</td>
<td>1</td>
<td><a href="slides/Intro.ppt">Course Introduction</a> 
(<a href="slides/Intro.pdf">pdf</a>)
<a href="slides/SecureCode.ppt">OS Support for Secure Code</a>
(<a href="slides/SecureCode.pdf">pdf</a>)
</td>
</tr>

<tr>
<td>1/19/06</td>
<td>2</td>
<td>Introduction to the lab. <a href="assignments/lab-overview.pdf">Overview</a>
</td>
</tr>

<tr>
<td>1/24/06</td>
<td>3</td>
<td>Discretionary access control in Windows and Linux, and a discussion of 
new Vista security features.  
<a href="slides/OSNotes.ppt">Slides</a>
(<a href="slides/OSNotes.pdf">pdf</a>)
</tr>

<tr>
<td>1/26/06</td>
<td>4</td>
<td>Lab exercise using Windows discretionary access control.
<a href="assignments/acl-exercise.pdf">ACL lab scenario</a>
</td>
</tr>

<tr>
<td>1/30/06</td>
<td>5</td>
<td>
<a href="slides/Mandatory OS.ppt">Mandatory Access Control mechanisms in SE Linux.</a>
(<a href="slides/Mandatory OS.pdf">pdf</a>)
</td>
</tr>

<tr>
<td>2/2/06</td>
<td>6</td>
<td>SE Linux in the lab. <a href="assignments/selinux-exercise.pdf">Class notes</a></td>
</tr>

<tr>
<td>2/7/06</td>
<td>7</td>
<td>SE Linux in the lab again.
</tr>

<tr>
<td>2/9/06</td>
<td>8</td>
<td>
Malware techniques including buffer overflows, return to libc,
string format errors, and heap overflow. <a href="slides/worm.ppt">slides</a>
(<a href="slides/worm.pdf">pdf</a>).  In addition to readings listed in slides
look at <a href="http://vividmachines.com/shellcode/shellcode.html">
Steve Hanna's Shellcoding page</a>.
</td>
</tr>

<tr>
<td>2/14/06</td>
<td>9</td>
<td>
<a href="slides/malware.ppt">Malware protection techniques</a>
( <a href="slides/malware.pdf">pdf</a> )
</td>
</tr>

<tr>
<td>2/16/06</td>
<td>10</td>
<td>
<a href="slides/IPv4Overview.ppt">
Introduction to security issues in IPv4</a>
( <a href="slides/IPv4Overview.pdf">pdf</a> )
</td>
</tr>

<tr>
<td>2/21/06</td>
<td>11</td>
<td>Network security exercise in the lab.  
<a href="slides/dsniff.pdf">Notes on using dsniff</a>
<a href="http://isc.sans.org/presentations/dnspoisoning.php">
Internet Storm Center Notes on DNS Poisoning Attack</a>
</td>
</tr>

<tr>
<td>2/23/06</td>
<td>12</td>
<td><a href="slides/fw.ppt">Firewall technology.</a> ( 
<a href="slides/fw.pdf">pdf</a>)</td>
</td>
</tr>

<tr>
<td>2/28/06</td>
<td>13</td>
<td>Firewalls in the lab</td>
</tr>

<tr>
<td>3/2/06</td>
<td>14 - Guest Lecture</td>
<td>Jodie Boyer will discuss the security and privacy issues 
associated with building control systems.</td>
</tr>

<tr>
<td>3/7/06</td>
<td>15</td>
<td><a href="slides/SELinuxUpdate.ppt">Updates from SE Linux Symposium</a>
(<a href="slides/SELinuxUpdate.pdf">pdf</a>) and more firewalls in the
lab.
</tr>

<tr>
<td>3/9/06</td>
<td>16</td>
<td><a href="slides/tunnel.ppt">
IPSec and other tunneling technologies</a>
( <a href="slides/tunnel.pdf">pdf</a>)
</td>
</tr>

<tr>
<td>3/14/06</td>
<td>17 - Guest Lecture</td>
<td>Chad Hanson from Trusted Computer Solutions will talk about
using SE Linux and other security systems to build secure systems
for military and other high assurance environments.</td>
</tr>

<tr>
<td>3/16/06</td>
<td>18</td>
<td><a href="slides/SEC-2003v-1.ppt">IPv6 security issues</a>
(<a href="slides/SEC-2003v-1.pdf">pdf</a>) </td>
</tr>

<tr>
<td>3/28/06</td>
<td>19</td>
<td>IPSec in the lab</td>
</tr>

<tr>
<td>3/30/06</td>
<td>20 - Guest Lecture</td>
<td>Himanshu Khurana from NCSA will talk about 
<a href="slides/himanshu-lecture.ppt">setting up
a PKI lab</a> and lead a demonstration using biometrics that uses the
infrastructure.  Class will meet at NCSA.</td>
</tr>

<tr>
<td>4/4/06</td>
<td>21</td>
<td>Alan Carroll will talk about security issues in open online 
communities.  In particular, he will talk about his experience in combating 
junkers in the web log community.
<a href="http://www.sixapart.com/pronet/comment_spam">Overview of comment spam</a>
<a href="http://blog.thought-mesh.net/solidwallofcode/movable_type/weblog_defense.php">Write up on Alan's blog defenses</a>
</td>
</tr>

<tr>
<td>4/6/06</td>
<td>Class canceled</td>
<td>Will meet with groups about group projects</td>
</tr>

<tr>
<td>4/11/06</td>
<td>22</td>
<td><a href="slides/wireless.ppt">Wireless</a> the lab. (<a href="slides/wireless.pdf">pdf</a>)</td>
</tr>

<tr>
<td>4/13/06</td>
<td>23</td>
<td><a href="slides/ids.ppt">Intrusion Detection</a>(<a href="slides/ids.pdf">pdf</a>) and
<a href="slides/SecurityArchitectures2.ppt">Network Security Architectures</a> (<a href="slides/SecurityArchitectures2.pdf">pdf</a>)
</td>
</tr>

<tr>
<td>4/18/06</td>
<td>24</td>
<td>Mike Corn head of CITES security speaking about the effect of the newly extended CALEA on university security</td>
</tr>

<tr>
<td>4/20/06</td>
<td>25</td>
<td>Network IDS in the lab.</td>
</tr>

<tr>
<td>4/25/06</td>
<td>26</td>
<td><a href="slides/Electronic Payments.ppt">Security in E-Payments</a>(<a href="slides/Electronic Payments.pdf">pdf</a>)</td>
</tr>

<tr>
<td>4/27/06</td>
<td>27</td>
<td>Group presentations: Security research environment</td>
</tr>

<tr>
<td>5/3/06</td>
<td>28</td>
<td>Group presentations: Collaborative information sharing</td>
<td></td>
</tr>

  </tbody> 
</table>

<br>
</div></body></html>