CSCI 331
Introduction to Computer Security Fall 2017
Division III Quantitative/Formal Reasoning
This is not the current course catalog

Program flaws are common. Many of these flaws lie dormant in production code, being either undiscovered or dismissed as benign. However, such flaws frequently offer malicious users an opportunity to alter program behavior. Coupled with widespread internet connectivity, latent vulnerabilities mean that most connected devices are potential targets. Programmers who treat computer security as a second class design consideration do so at their peril. This class explores common vulnerabilities in computer systems, how attackers exploit them, and how systems engineers design defenses to mitigate them. The goal is to be able to recognize potential vulnerabilities in one’s own software and to practice defensive design. Hands-on experience writing C/C++ code to inspect and modify the low-level operation of running programs is emphasized. Finally, regular reading and writing assignments round out the course to help students understand the cultural and historical background of the computer security “arms race.”