CS 683: Computer Security and Privacy

Passwords and biometrics
Readings: NSE 9.3
Ch 37. Biometrics from Computer and Information Security Handbook in Safari.
slides
Secure Hash Functions

Network 101 Background on TCP/IP and Internet structure:
- Subnetwork.
- How DNS Works.
- Overview of TCP/IP and the Internet Gary Kessler.
- A Technical Overview of TCP/IP IBM Redbooks
- Another free guide to TCP/IP

Cookies
Readings:
Slides
SSL/TLS
Readings: NSE 5.1~5.5
Slides
Spam filtering
Readings: Graham, A plan for spam
Graham, Better Bayesian Filtering
Google, Spam Explained
Slides
Wireless Security
Readings: NSE 6.1~6.2
Time for action cracking WEP from BackTrack 5 Wireless Penetration Testing.
Slides
Intrusion Detection, Denial of Service attack
Readings: NSE 9.1~9.2,10.5
Intrusion Detection slides are in Blackboard.
DoS slides
Rainbow Tables
Comcast using TCP RST packet
IPSec
Readings: NSE 8.1~8.8
Textbook slides are in Blackboard.
IPSec slides
IKE slides
Firewalls
Readings: NSE 11.1~11.7
Slides in Blackboard.
SQL injection
SQL Inejction Attacks and Defense in Safari.
Oracle SQL Injection Tutorial
slides
TOR
Tor Project website
Mixer slides
Details on TOR
Malicious Software
Readings: NSE 10.1~10.4
Slides in Blackboard
Anonymization and De-anonymization
EPIC's Re-identification resources. Read K-anonymity paper.
L-diversity paper in Blackboard.
Prof. Shmatikov's anonymization slides
How to break anonymity of the Netflix dataset. Read the paper here.
De-Anonymizing Social Networks: FAQ. The full paper is linked from the FAQ.
Cross-Site Scripting
Prof. Shmatikov's slides
Cross-Site Scripting Explained
Buffer Overflow Exploits
slides
CAPTCHA
slides