Archive for the ‘announcements’ Category

Final review

December 10, 2009

I have posted a summary of things to know for the final exam.

Lectures 22 and 23

November 24, 2009

In the past two lectures we have covered several examples of authentication/key-exchange protocols and attacks that can be carried out against them. This topic makes for great exam questions, so make sure you understand everything discussed in class.

Homework 4 is now available. The homework is intended to give you some practice in analyzing such protocols. Those of you who have a copy of the book may also want to look at all the questions at the ends of Chapters 9, 11, and 12.

Announcements, week of Sept. 28

September 26, 2009

On Monday, I will miss class due to Yom Kippur. There will be a guest lecture by Prof. Bill Arbaugh on rootkits (not wireless security as I announced in class).

In Wednesday we will pick up where we left off in the last lecture. I have also listed some reading that should be done before class. We will begin discussing those articles in Wednesday’s class and continue next Monday. (Although it looks like a lot, the first three links are short essays and at least two of the final three links should be fun to read.)

I have also posted some articles to read for next Monday’s lecture, and I may add 1-2 more.

In addition to the above, I have listed several optional articles. In some cases we will discuss these briefly in class but I thought the articles themselves were too technically difficult to make required reading. In other cases we will not have time to discuss them in class but they reinforce the material or are just plain interesting. Feel free to discuss or ask questions about any of them on the blog.

Welcome to CMSC414!

August 25, 2009

Welcome to the blog for CMS414 (“Computer and Network Security”) being taught by Prof. Jonathan Katz at the University of Maryland in Fall 2009.

This is the first time I am blogging as part of a course I am teaching. Please help me make this experiment a success.

My intention is to post after each lecture, giving a 1-sentence summary of what was covered along with links to the lecture slides and any additional materials. The course syllabus remains the official source for what material you are responsible for, and the course homepage remains the official source for homeworks and other handouts.

In the comments for each lecture, students should feel free to ask questions about that lecture — these questions can then be answered by either myself or other students. I would also encourage students to add their own comments on anything related to the lecture (or security-related in general), and I will post about any interesting news articles (or anything else I see) related to security.

I will also post about each homework when it is assigned. Students can use the comments on those posts to ask/answer general questions, as is done on forums for other classes. I will shut down the blog if I see this cross the line into what I consider cheating.

I have turned off anonymous commenting, and will delete any posts not associated with the name of a student registered for the course.