This course is an introduction to the broad field of computer and network security. We will cover software security, network security, some cryptography, and will discuss several secure applications in detail.
The prerequisites for this course are a C- or better in both CMSC 216 and CMSC 330.
This course covers a very broad range of topics within computer security, with the goal of instilling a security mindset, and teaching some of the core principles of security that will allow students to pursue research in the field upon completion.
The following list of tentative lecture topics will vary in terms of pace:
Throughout the semester, you will be learning (and implementing and launching) various attacks. This is not an invitation to perform these attacks without the express written consent of all parties involved. To do otherwise would risk a violating University of Maryland policies and Maryland and U.S. laws.
The goal is to foster discovery, experimentation, and exploration, but in a safe, ethical, and respectful fashion, always. If you have an idea and want a safe environment to try it out, then let me know, and I'll try to set something up. If you have any questions or concerns, then do not hesitate to contact me or your TAs directly.
Security is a broad topic, and you are encouraged to draw from as many resources as you can (within the bounds of academic integrity, of course). We will make every effort to make all necessary topics available via lectures, slides, handouts, and readings, but as with all educational endeavors, your method of learning may benefit from drawing from other resources, as well. Below are the resources we will be making available to you throughout the semester.
<aside> 💡 If you find useful resources (videos, books, lectures, etc.) that benefit you, please share them with the class on Piazza; someone else will likely benefit from them, as well, and we may incorporate them into the lecture.
</aside>