CS 387: Advanced Topics in
Information
Assurance - Spring 2006
Course Materials
Course Requirements:
Coursework will consist mostly of paper reading, analysis, and in-class
discussion. Students will be expected to
read papers, present them lucidly, engage in classroom
discussions, and complete a project or term paper with
supervision from the instructor. Each class will have two to three
presentations (covering 2 topics, each with 2 or more papers) and each
presentation will be followed by a 15 minute discussions. Each topic
will be presented by one main presenter and will have a "lead
discusser" (who will lead the discussions) and two other "discussers".
Presentations are not meant to be a 'core dump' of the results in the
paper into powerpoint format! They should explain the topic, analyze
its impact, and creativity in analysis will be rewarded. Each student
will be expected to have 2 presentations, serve as lead discusser for 2
presentations, and as a discusser for 4-6 presentations. Students are
also encouraged to come at the course from different angles and thereby
add more debate, with different viewpoints, to the discussions.
Grading:
- 40%
Presentations: Each student will do two presentations. Points
will be awarded for presentation clarity, depth in analysis,
creativity, willingness to go the extra mile. Each presentation will be
on a specific topic, and I will assign at least one paper (and will try
to assign two related papers). In addition, you should try to find one
more paper on your own on this topic (this will get added to the list
of papers that I will post) -- you should be able to link the material
discussed in this paper to the topic you are presenting. The day of the
presentation you should email your presentations (in PDF or Word or
Powerpoint) to me -- I will post it on the course website.
- The "schedule" of presentations will require that ALL students
finish their first presentation before they are scheduled for their
second presentation.
- 30% Discussions: Each student
will sign up as "lead discusser" for TWO presentations, in
addition to their own presentations. In addition, they will sign up as
secondary discusser for FOUR
other presentations. Points will be awarded based on your depth in
analysis, leading the discussion and starting a debate, and leading the
discussion towards a conclusion.
- 30% Term
paper/Project and Final Presentation: You will take up a topic,
conduct a literature survey, and either write a paper on the topic
(with clear research issues identified in the paper) or do a project
(involving a tangible amount of original research ideas). Your final
presentation will be part of this grade.<>
Reading
List:
I will post a list of relevant papers in the
topic
at this link.
Each student is strongly encouraged to find
interesting papers (search in the online ACM and IEEE libraries, in
addition to your 'usual' web searches) and I will add these to the
relevant papers list.. The number of papers is much too large for us to
cover all of them, so I am going to select a sample and assign them for
the class presentations. These are indicated in the Schedule of
presentations listed below.
.
Reading List
for Second Set of Presentations...
Choose you second presentation
from this set of
papers -- you are encouraged to search for recent papers (search
the web, ACM and IEEE digital libraries) and suggest a paper you want
to present.
NEW:
Description of
term paper requirements and
suggestions.
Schedule
of Presentations:
Presentations
submitted by students will be posted on Blackboard.
- Jan. 19th:
Introduction (Narahari)
- Jan. 26th: Topic: Languages &
Compilers. Required Reading for all students: Why
Cryptosystems Fail by Anderson, 1st Conference on Computer and
Comm. Security '93
- 1.Presentation Papers: (1) Fred B. Schneider, Greg
Morrisett, Robert Harper.
A language-based approach to security . Informatics: 10 Years Back,
10 Years Ahead, Lecture Notes in Computer
Science, Vol. 2000, Springer-Verlag, Heidelberg, 86-101. (2) McGraw, Gary and Greg Morrisett.
Attacking Malicious Code. In
IEEE Software, Volume 17(5), September/October 2000
- Other Discussers:
Michael, Yu-An
-
- 2.Presentation Papers: (1) Trevor Jim, Greg Morrisett, Dan
Grossman, Mike Hicks, James Cheney and Yanling Wang.
Cyclone: A Safe Dialect of C. Usenix
Annual Technical Conference, pages 275-288, Monterey, CA, June 2002.
(2) George C.
Necula, Jeremy Condit, Matthew Harren. CCured:
Type-Safe Retrofitting of Legacy Software. ACM Transactions on Programming
Languages and Systems (TOPLAS), 2004.
- Other Discussers:
Chris, Vijay*
- Feb.2 : Topics: Run-time protection
mechanisms, Secure Co-processor Architectures. Required Reading for all students: S.Smith.
Magic Boxes and Boots: Security in Hardware. IEEE Computer. 37 (10): 106--109.
October 2004
- 3.Presentation Papers: (1) Crispin Cowan, Calton Pu, Dave Maier,
Heather Hinton, Peat Bakke, Steve Beattie, Aaron Grier, Perry Wagle,
and Qian Zhang. StackGuard:
Automatic Adaptive Detection and Prevention of Buffer-Overflow Attacks.
7th USENIX Security
Symposium, January 1998, San Antonio, TX. (2)
Beyond Stack Smashing: Recent Advances in Exploiting Buffer Overruns
by Jonathan Pincus and Brandon Baker, IEEE Security and Privacy,
July/Aug 2004..
- Other Discussers:
Jeffrey, Eugen*
- 4.Presentation Papers:
(1)
Building the IBM 4758 Secure Coprocessor by Dyer et al, IEEE Computer,
Oct 2001. (2) Secure
Coprocessors in Electronic Commerce Applications by Yee and Tygar,
USENIX Electronic Commerce Workshop, 1995.
- Other Discussers:
Chris, George
- Feb. 9: Topic:
"Encrypted Execution Processors".
- 5 Presentation. Papers: (1) Architectural Support for Copy
and Tamper Resistant Software by David Lie, Chandramohan
Thekkath,
Mark Mitchell, Patrick Lincoln, Dan Boneh, John Mitchell, and Mark
Horowitz, ASPLOS 2000. (2) Specifying and Verifying
Hardware for Tamper-Resistant Software by David Lie, John
Mitchell,
Chandramohan Thekkath and Mark Horowitz, IEEE Symposium on Security and
Privacy 2003
- Other Discussers:
Mason, Okan
- 6. Presentation. Papers: (1) Enabling
Trusted Software Integrity by Kirovski et al, ASPLOS 2002. (2) A
Hardware-Software Platform for Intrusion Prevention by Drinic and
Kirovski, MICRO 2004.
- Other Discussers:
Adam, George*
- Feb 16: Topic:
Hardware obfuscation, and stack protection.
- 7. Presentation.
Papers: (1) Xiaotong
Zhuang, Tao Zhang, Hsien-Hsin Lee and Santosh Pande.
Hardware Assisted Control Flow Obfuscation for Embedded Processors.
CASES, Washington DC,
Sept. 2004.<><> (2)
Zhuang, X., Zhang, T. and Pande, S.
HIDE: An Infrastructure for Efficiently Protecting Information Leakage
on the Address Bus. International Conference on
Architectural
Support for Programming Languages and Operating Systems,
Boston, MA., Oct 2004.
- Presenter:
Jeffrey Karrels
- Lead Discusser:
Okan Duzyol
- Other Discussers:
Stefan, Mason
- 8. Presentation. Papers:
(1)
SmashGuard:
A Hardware Solution to Prevent Attacks on the Function Return Address,
H. Ozdoganoglu, C.E. Brodley, T.N. Vikaykumar, B.A. Kuperman. (CACM
2005). (2)
Using
DISE to Protect Return Addresses from Attack Marc L. Corliss,
E Christopher Lewis and Amir Roth. 2004 Workshop on Architectural
Support for Security and Anti-Virus, Oct. 9, 2004.
- Other Discussers:
Yu-An, Brad, Amin
- Feb 23: Topic:
Hardware Architectures and S/W-Compiler Tech. for Tamper Resistance;
- 9. Presentation. Papers:
(1)
AEGIS:
Architecture for Tamper-Evident and Tamper-Resistant Processing by
G. Edward Suh, Dwaine Clarke, Blaise Gassend, Marten van Dijk, Srinivas
Devadas, ICS 2003. (2) Hardware
Support for Code Integrity in Embedded Processors. M. Milenkovic, A.
Milenkovic, E. Jovanov, Proc. of ACM Compilers, Architecture and
Synthesis for Embedded Systems, CASES 2005.
- Lead Discusser:
Yu-An Sun
- Other Discussers:
Jeffrey Karrels, Amin Teymorian
- 10. Presentation. Papers: (1)
Hoi Chang, Mikhail J. Atallah. Protecting Software Code by
Guards. Digital Rights Management
Workshop 2001: 160-175. (2) B. Horne,
L.R. Matheson, C. Sheehan, R.E. Tarjan. Dynamic
self-checking techniques for improved tamper resistance. ACM Digital
Rights Management Workshop , 2001.
- Other Discussers:
Brad, Okan
- Papers:
- March 2: Topic: Data and Memory Protection;
Hardware based Control Flow Protection
- 11. Presentation. Papers:
(1)
Efficient
Memory Integrity Verification and Encryption for Secure Processors
by Suh et al, MICRO 2003. (2) Secure
Program Execution via Dynamic Information Flow Tracking by Suh,
Lee, and Devadas. ASPLOS 2004.
- Lead Discusser:
Chris Toombs
- Other Discussers:
Eugen, Adam
- 12. Presentation. Papers:
(1)
Secure
Embedded Processing through Hardware-assisted Run-time
Monitoring. Divya Arora, Srivaths Ravi, A. Raghunathan, Niraj K Jha.
Proceedings of the Design, Automation, and Test in Europe, DATE
2005, IEEE computer society. (2) Anamolous
Path Detection with Hardware Support. T. Zhang, X. Zhuang, S. Pande, W.
Lee, Proc. of ACM Compilers, Architecture and Synthesis for Embedded
Systems, CASES 2005.
- Other Discussers:
Stefan, Michael
End of Phase 1 of Presentations
- March 9: Topic:
Guest Lectures: (1) FPGAs as secure coprocessors - J. Zambreno; (2)
ForNet- Prof. Memon
Phase 2 Presentations:
- March 23: Topic:
Trusted Computing.
- Lead Discusser:
Adam Vincent
- Other Discussers:
Chris, Mason
- Lead Discusser:
George Sevelle
- Other discussers:
Okun, Stefan
- March 30: Topic:
Address space randomization and ISA Randomization
- Other Discussers:
Jeffrey, Mason
- 16 Presentation.
Papers: ISA Randomization: Countering code
injection attacks with instruction set
randomization. Gaurav Kc, Angelos D. Keromytis, Vassiliss Prevalakis,
Proc. of Computer and Communications Security (CCS), 2003. (or
Randomized Instruction set emulation to disrupt binary code
injection attacks. E. Barrantes, David Ackley, Stephanie Forrest,
T. Palmer, et.al., Proc. of Computer and Communications Security (CCS),
2003.)
- Other discussers:
Jeffrey, Chris
- April 6: Topic:
Memory Protection
- 17 Presentation. Papers:
Memory
predecryption: Hiding the Latency Overhead of Memory
Encryption. Brian Rogers, Yan Solihin, Milos Prvulovic. Proc. ACM
SIGARCH Computer Architecture News, Vol.33, No.1, March 2005.
- Other Discussers:
Eugen, George
- Lead Discusser:
Okun
- Other discussers:
Amin, Michael
- April 13: Topic: Control Flow Protection,
Privacy Architecture
- Other Discussers:
Yu-An, George
- Lead Discusser:
Chris
- Other discussers:
Okun, Eugen
- April 20: Topic:
Crypto hardware and processor implementation
- 21 Presentation. Papers:
Design and Implementation of the AEGIS Single-chip Processor
Using Physical Random Functions. G. Edward Suh. Charles W. O'Donnell,
Ishan Sachdev, Srinivas Devadas.
- Other Discussers:
Michael, Yu-An
- Other discussers:
Amin, Brad
- April 27: Topic: Scan
based and power analysis based attacks
- 23 Presentation. Papers:
Scan
Based Side Channel
attack on Advanced Encryption Standard. B. Yang, K. Wu, R.
Karri, 2005 (or Scan
Based Side
Channel attacks on Data Encryption Standard, B. Yang, K. Wu,
R. Karri, 2004 or Secure Scan: A Design for-test Architecture for
Crypto
Chips. B. Yang, K. Wu, R. Karri. Proc. ACM IEEE Design Automation
Conference, 2005.)
- Other Discussers:
Stefan, Adam
- Lead Discusser:
Jeffrey
- Other discussers:
Adam, Brad
- Course
Wrapup
- May 11:
Final Term Paper Presentations? Need 4 hours!