ÿþ<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"> <head> <meta http-equiv=Content-Type content="text/html; charset=unicode"> <meta name=ProgId content=Word.Document> <meta name=Generator content="Microsoft Word 14"> <meta name=Originator content="Microsoft Word 14"> <link rel=File-List href="index_files/filelist.xml"> <title> 18-732 - Secure Software Systems - Spring 2013 </title> <!--[if gte mso 9]><xml> <o:DocumentProperties> <o:LastAuthor>Divya</o:LastAuthor> <o:Revision>3</o:Revision> <o:TotalTime>2</o:TotalTime> <o:Created>2013-04-01T16:27:00Z</o:Created> <o:LastSaved>2013-04-16T03:59:00Z</o:LastSaved> <o:Pages>1</o:Pages> <o:Words>376</o:Words> <o:Characters>2146</o:Characters> <o:Company>CMU</o:Company> <o:Lines>17</o:Lines> <o:Paragraphs>5</o:Paragraphs> <o:CharactersWithSpaces>2517</o:CharactersWithSpaces> <o:Version>14.00</o:Version> </o:DocumentProperties> <o:OfficeDocumentSettings> <o:AllowPNG/> </o:OfficeDocumentSettings> </xml><![endif]--> <link rel=themeData href="index_files/themedata.thmx"> <link rel=colorSchemeMapping href="index_files/colorschememapping.xml"> <!--[if gte mso 9]><xml> <w:WordDocument> <w:Zoom>130</w:Zoom> <w:SpellingState>Clean</w:SpellingState> <w:GrammarState>Clean</w:GrammarState> <w:TrackMoves>false</w:TrackMoves> <w:TrackFormatting/> <w:ValidateAgainstSchemas/> <w:SaveIfXMLInvalid>false</w:SaveIfXMLInvalid> <w:IgnoreMixedContent>false</w:IgnoreMixedContent> <w:AlwaysShowPlaceholderText>false</w:AlwaysShowPlaceholderText> <w:DoNotPromoteQF/> <w:LidThemeOther>EN-US</w:LidThemeOther> <w:LidThemeAsian>X-NONE</w:LidThemeAsian> <w:LidThemeComplexScript>X-NONE</w:LidThemeComplexScript> <w:Compatibility> <w:BreakWrappedTables/> <w:SplitPgBreakAndParaMark/> <w:DontVertAlignCellWithSp/> <w:DontBreakConstrainedForcedTables/> <w:DontVertAlignInTxbx/> <w:Word11KerningPairs/> <w:CachedColBalance/> </w:Compatibility> <w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel> <m:mathPr> <m:mathFont m:val="Cambria Math"/> <m:brkBin m:val="before"/> <m:brkBinSub m:val="&#45;-"/> <m:smallFrac m:val="off"/> <m:dispDef/> <m:lMargin m:val="0"/> <m:rMargin m:val="0"/> <m:defJc m:val="centerGroup"/> <m:wrapIndent m:val="1440"/> <m:intLim m:val="subSup"/> <m:naryLim m:val="undOvr"/> </m:mathPr></w:WordDocument> </xml><![endif]--><!--[if gte mso 9]><xml> <w:LatentStyles DefLockedState="false" DefUnhideWhenUsed="false" DefSemiHidden="false" DefQFormat="false" LatentStyleCount="267"> <w:LsdException Locked="false" QFormat="true" Name="Normal"/> <w:LsdException Locked="false" QFormat="true" Name="heading 1"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 2"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 3"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 4"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 5"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 6"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 7"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 8"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="heading 9"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="caption"/> <w:LsdException Locked="false" QFormat="true" Name="Title"/> <w:LsdException Locked="false" Priority="1" Name="Default Paragraph Font"/> <w:LsdException Locked="false" QFormat="true" Name="Subtitle"/> <w:LsdException Locked="false" QFormat="true" Name="Strong"/> <w:LsdException Locked="false" QFormat="true" Name="Emphasis"/> <w:LsdException Locked="false" Priority="99" Name="No List"/> <w:LsdException Locked="false" QFormat="true" Name="No Spacing"/> <w:LsdException Locked="false" QFormat="true" Name="List Paragraph"/> <w:LsdException Locked="false" QFormat="true" Name="Quote"/> <w:LsdException Locked="false" QFormat="true" Name="Intense Quote"/> <w:LsdException Locked="false" QFormat="true" Name="Subtle Emphasis"/> <w:LsdException Locked="false" QFormat="true" Name="Intense Emphasis"/> <w:LsdException Locked="false" QFormat="true" Name="Subtle Reference"/> <w:LsdException Locked="false" QFormat="true" Name="Intense Reference"/> <w:LsdException Locked="false" QFormat="true" Name="Book Title"/> <w:LsdException Locked="false" SemiHidden="true" UnhideWhenUsed="true" QFormat="true" Name="TOC Heading"/> </w:LatentStyles> </xml><![endif]--> <style> <!-- *{font-family:calibri,helvetica,arial,sans-serif;} #CONTENT {left:100px; position:absolute;} /* Font Definitions */ @font-face {font-family:Calibri; panose-1:2 15 5 2 2 2 4 3 2 4; mso-font-charset:0; mso-generic-font-family:swiss; mso-font-pitch:variable; mso-font-signature:-520092929 1073786111 9 0 415 0;} @font-face {font-family:Times; panose-1:2 2 6 3 5 4 5 2 3 4; mso-font-charset:0; mso-generic-font-family:roman; mso-font-pitch:variable; mso-font-signature:536881799 -2147483648 8 0 511 0;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal {mso-style-unhide:no; mso-style-qformat:yes; mso-style-parent:""; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times","serif"; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:minor-fareast; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;} h1 {mso-style-unhide:no; mso-style-qformat:yes; mso-style-link:"Heading 1 Char"; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; mso-outline-level:1; font-size:24.0pt; mso-bidi-font-size:10.0pt; font-family:"Times","serif"; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:minor-fareast; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi; font-weight:bold; mso-bidi-font-weight:normal;} a:link, span.MsoHyperlink {mso-style-unhide:no; color:blue; text-decoration:underline; text-underline:single;} a:visited, span.MsoHyperlinkFollowed {mso-style-unhide:no; color:blue; text-decoration:underline; text-underline:single;} p {mso-style-unhide:no; margin:0in; margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times","serif"; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:minor-fareast; mso-bidi-font-family:"Times New Roman";} span.Heading1Char {mso-style-name:"Heading 1 Char"; mso-style-unhide:no; mso-style-locked:yes; mso-style-link:"Heading 1"; mso-ansi-font-size:16.0pt; mso-bidi-font-size:16.0pt; font-family:"Cambria","serif"; mso-ascii-font-family:Cambria; mso-ascii-theme-font:major-latin; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:major-fareast; mso-hansi-font-family:Cambria; mso-hansi-theme-font:major-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:major-bidi; color:#345A8A; font-weight:bold;} span.SpellE {mso-style-name:""; mso-spl-e:yes;} span.GramE {mso-style-name:""; mso-gram-e:yes;} .MsoChpDefault {mso-style-type:export-only; mso-default-props:yes; font-size:10.0pt; mso-ansi-font-size:10.0pt; mso-bidi-font-size:10.0pt;} @page WordSection1 {size:8.5in 11.0in; margin:1.0in 1.25in 1.0in 1.25in; mso-header-margin:.5in; mso-footer-margin:.5in; mso-paper-source:0;} div.WordSection1 {page:WordSection1;} --> </style> <!--[if gte mso 10]> <style> /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-parent:""; mso-padding-alt:0in 5.4pt 0in 5.4pt; mso-para-margin:0in; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New Roman","serif";} </style> <![endif]--> <meta name=Title content=" 18-732 - Secure Software Systems - Spring 2013 "> <meta name=Keywords content=""> <!--[if gte mso 9]><xml> <o:shapedefaults v:ext="edit" spidmax="1026"/> </xml><![endif]--><!--[if gte mso 9]><xml> <o:shapelayout v:ext="edit"> <o:idmap v:ext="edit" data="1"/> </o:shapelayout></xml><![endif]--> </head> <body bgcolor=white lang=EN-US link=blue vlink=blue style='tab-interval:.5in'> <div class=WordSection1> <h1 align=center style='margin-top:.1pt;margin-right:0in;margin-bottom:.1pt; margin-left:0in;text-align:center'><span style='mso-fareast-font-family:"Times New Roman"'>18-732  Secure Software Systems  Spring 2013<o:p></o:p></span></h1> <table class=MsoNormalTable border=0 cellspacing=7 cellpadding=0 style='mso-cellspacing:5.0pt;mso-yfti-tbllook:1184;mso-padding-alt:5.0pt 5.0pt 5.0pt 5.0pt'> <tr style='mso-yfti-irow:0;mso-yfti-firstrow:yes'> <td width="20%" valign=top style='width:20.0%;padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><b style='mso-bidi-font-weight:normal'><!--table cellpadding=5 bgcolor="#ff3333" border=0> <tr><td> <b>Announcements</b><br><hr> The first day of class is Mon Aug 23. </td></tr> </table-->Meeting time and location</b></p> </td> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal>MW 10:30am 12pm EST in <span class=SpellE>Hamerschlag</span> Hall (HH) 1107 / 7:30-9am PST in Bldg. 23 Rm. 212</p> </td> </tr> <tr style='mso-yfti-irow:1'> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><b style='mso-bidi-font-weight:normal'>Instructors</b></p> </td> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><a href="http://www.ece.cmu.edu/~lbauer">Lujo Bauer</a><br> Email: <a href="http://mailhide.recaptcha.net/d?k=01rT43B7SrW3PVH3HI3G9PnA==&amp;c=0qji2VGt5f3-riIrgQE-vg==">...@cmu.edu</a><br> Office: Collaborative Innovation Center (CIC) 2121<br> Office hours: Tue 10:30 11:30am</p> <p style='margin-top:.1pt;margin-right:0in;margin-bottom:.1pt;margin-left: 0in'><a href="http://www.andrew.cmu.edu/user/danupam">Anupam Datta</a><br> Email: <a href="http://mailhide.recaptcha.net/d?k=01pajtjXM0tUtWfr8U0cx4sA==&amp;c=8_7eITozdfsKRpoapbx-oQ==">...@cmu.edu</a><br> Office: Collaborative Innovation Center (CIC) 2118<br> Office hours: Mon 1:30 2:30pm </p> </td> </tr> <tr style='mso-yfti-irow:2'> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><b style='mso-bidi-font-weight:normal'>Teaching assistants</b></p> </td> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal>Chen <span class=SpellE>Chen</span><br> Email: <a href="http://www.google.com/recaptcha/mailhide/d?k=01fMfzo3tngeKvVX0BcaxkeA==&amp;c=p9qWrFzweUsG1RVN2PoLCLec5kPy5OiPZ459eEcl5Wo=">...@andrew.cmu.edu</a></p> <p style='margin-top:.1pt;margin-right:0in;margin-bottom:.1pt;margin-left: 0in'>Michelle <span class=SpellE>Mazurek</span><br> Email: <a href="http://www.google.com/recaptcha/mailhide/d?k=014VqrxHwsvq6WFqLXJ0YBhA==&amp;c=VofcSyDT8j_SpKPnFoe9lvBgXAqktdMhJyBEzyAZx6w=">...</a>@andrew.cmu.edu </p> <p style='margin-top:.1pt;margin-right:0in;margin-bottom:.1pt;margin-left: 0in'>Office hours: Thu 3 4pm<span style='mso-spacerun:yes'>  </span>in CIC 2214</p> <p style='margin-top:.1pt;margin-right:0in;margin-bottom:.1pt;margin-left: 0in'>Divya Sharma<br> Email: <a href="mailto:...@cmu.edu">...@cmu.edu</a></p> </td> </tr> <tr style='mso-yfti-irow:3'> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><b style='mso-bidi-font-weight:normal'>Discussion board</b></p> </td> <td colspan=2 valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><a href="https://piazza.com/cmu/spring2013/18732/home">https://piazza.com/cmu/spring2013/18732/home</a> </p> </td> </tr> <tr style='mso-yfti-irow:4'> <td valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><b style='mso-bidi-font-weight:normal'>Course description</b></p> </td> <td colspan=2 valign=top style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal>This course will study approaches, mechanisms, and tools used to make software systems more secure. We will motivate the study by discussing common software security dangers (e.g., buffer overflow attacks, cross-site scripting). The majority of the course will be divided into four main modules: architectural approaches to building secure software (e.g., confinement, virtual machines, trusted computing); software analysis (e.g., static analysis and testing, model checking); language-based approaches to building secure software (e.g., type systems, proof-carrying code); and run-time enforcement of security policies (e.g., dynamic taint analysis). Time <span class=GramE>permitting,</span> the course will also cover topics such as the importance of usability to building secure software systems. </p> <p style='margin-top:.1pt;margin-right:0in;margin-bottom:.1pt;margin-left: 0in'>Students will be evaluated based on five mini-projects, three in-class tests, and class participation. The mini-projects will provide students with practical experience with the tools and mechanisms studied in class. Students will work on the projects in groups of two or three, and the projects will be evenly spaced over the course of the semester. </p> </td> </tr> <tr style='mso-yfti-irow:5;mso-yfti-lastrow:yes'> <td style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><b style='mso-bidi-font-weight:normal'><a href="schedule.htm">Schedule (subject to change)</a></b></p> </td> <td style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><span style='font-family:"Calibri","sans-serif"; mso-ascii-theme-font:minor-latin;mso-hansi-theme-font:minor-latin;mso-bidi-font-family: "Times New Roman";mso-bidi-theme-font:minor-bidi'><o:p>&nbsp;</o:p></span></p> </td> <td style='padding:5.0pt 5.0pt 5.0pt 5.0pt'> <p class=MsoNormal><span style='font-family:"Calibri","sans-serif"; mso-ascii-theme-font:minor-latin;mso-hansi-theme-font:minor-latin;mso-bidi-font-family: "Times New Roman";mso-bidi-theme-font:minor-bidi'><o:p>&nbsp;</o:p></span></p> </td> </tr> </table> <p class=MsoNormal><o:p>&nbsp;</o:p></p> </div> </body> </html>