This course introduces the principles and practice of computer security. It aims to teach you how to model threats to computer systems and how to think like an attacker and a defender. It presents standard cryptographic functions and protocols and gives an overview of threats and defenses for software, host systems, networks, and the Web. It also touches on some of the legal, policy, and ethical issues surrounding computer security in areas such as privacy, surveillance, and the disclosure of security vulnerabilities. The goal of this course is to provide a foundation for further study in computer security and to help you better understand how to design, build, and use computer systems more securely. See the schedule for details.
|Prerequisites||CMSC 15400 or equivalent|
|Lectures||Lectures will be held 11:30a–12:20p Mondays, Wednesdays, and Fridays in Stuart Hall 105.|
|Textbook||We will be using Computer Security and the Internet: Tools and Jewels by Paul van Oorschot. Free PDFs of the book, which is forthcoming in print, are available from that link.|
The coursework for all students consists of nine assignments (mostly CTF-style), ten short responses to readings (about 2 or 3 paragraphs each), and a closed-book final exam.
In addition, students enrolled in CMSC 33250 must complete a research project and submit reactions to assigned reseach papers. All assignments must be done individually.
We will update the course schedule regularly throughout the course.
Assignments will be both distributed and collected on Canvas.
We'll use Campuswire for general discussion and questions about course material and assignments, as well as submission of course requirements that pertain only to 33250 students.
Please try to keep all course-related communication to Campuswire rather than email. If you need to reach out to the instructors (e.g., pertaining to an illness or other events that might be impacting your performance in class), please make a post on Campuswire visible only to the instructors.
|Submission of assignments||
The nine assignments and ten reading responses will be collected via Canvas. The closed-book final exam will be held in person during the final exam period on the date the registrar specifies. For CMSC 33250 students, reactions to research papers and all project-related deliverables must be submitted on Campuswire. Be sure to post these 33250-only submissions as visible only to the instructors.
Reactions to research papers (only 33250 students) will generally be due 11:59pm on Monday evenings. Reading responses (for all students) will generally be due 11:59pm on Tuesday evenings. Assignments (for all students) will generally be due at 11:59pm on Thursday evenings.
We will accept the nine assignments and ten reading responses up to 24 hours late with a 15 point grade penalty. Assignments more than a day late will not be accepted without a previously approved extension. We will not accept late submissions of reactions to research papers or project-related deliverables (both applicable only to CMSC 33250 students).
Of course, in exceptional circumstances related to personal emergencies, serious illness, wellness concerns, family emergencies, and similar, please make the course staff aware of your situation and we will do our best to find a mutually agreeable solution. We do not consider job interviews or non-emergency travel to be exceptional circumstances.
|Undergraduate (CMSC 23200)||Graduate (CMSC 33250)|
|Assignments 2-9||72% (9% each)||44% (5.5% each)|
|Reading Responses (10)||10% (1% each)||5% (0.5% each)|
|Research Paper Reactions||---||5%|