Course Description
Software security is an idea implemented to protect software against malicious attack and other hacker risks so that the software continues to function correctly under such potential risks. Security is necessary to provide integrity, authentication and availability.
Lectures
- Instructor: Prof. Bing Mao
- Time: 10:10-12:00 am, Tuesday
- Location: Xian II 301
- Teaching Assistants: Chengbin Pang(pangbin2415@gmail.com)
Slides
| Topic | Download |
|---|---|
| Introduction | introduction |
| Software Security Overview | overview |
| Buffer Overflow Attack | BO |
| Defense against Control Flow Hijack | CFH |
| Canary | canary |
| ROP Attack | ROP |
| Format String | format_string |
| Control Flow Integrity | CFI |
| Use-after-free | UAF |
| Control Flow Analysis | CFA |
| Data Flow Analysis | DFA |
| Taint Analysis | taint |
| Byzantine Generals Problem | byzantine |
Projects
Buffer Overflow and ROP attack
- lecture
- Exercise of Buffer Overflow
- Exercise of ROP