No required textbook. Reading materials will be provided on the course website and/or distributed in class.
This course requires a basic understanding of computer networks. You are expected to have taken at least one of the following courses:
Your final grade for this course will be based on the following scheme:
| Week | Monday | Wednesday | Friday/Sunday (No Class) |
|---|---|---|---|
| 1 |
01/05
Administrivia + Security Fundamentals
|
01/07
The Web: History + Basics
|
01/09
[Assigned] Assignment 1: Web Programming |
| 2 |
01/12
The Web: Continued
|
01/14
Cross-Origin Communication
|
01/16
|
| 3 |
01/19
No class - MLK Day
|
01/21
Attacking SOP + XSS
|
01/23
[Deadline] Assignment 1: Web Programming [Assigned] Assignment 2: Attacks and Defenses |
| 4 |
01/26
Content Security Policy
|
01/28
CSRF + Web Supply Chain
|
01/30
|
| 5 |
02/02
SQL Injection + Misc.
|
02/04
Web Tracking + Privacy
|
02/06
[Deadline] Assignment 2: Attacks and Defenses [Assigned] Assignment 3: Fingerprinting |
| 6 |
02/09
Midterm Exam
|
02/11
Server Side Issues
|
02/13
|
| 7 |
02/16
Crypto 101
|
02/18
User Authentication
|
02/20
[Deadline] Assignment 3: Fingerprinting [Assigned] Assignment 4: Pentesting |
| 8 |
02/23
Server Auth: TLS/HTTPS
|
02/25
Server Auth: Web PKI
|
02/27
|
| 9 |
03/02
Social Engineering: Phishing
|
03/04
TBD: UPICK
|
03/06
[Deadline] Assignment 4: Pentesting |
| 10 |
03/09
Final Review
|
03/11
Final Exam
|
03/13
|