Study of the approaches, mechanisms, and tools used to make software systems more secure. We will motivate the study by discussing common software security threats. The majority of the course will be divided into four main modules: architectural approaches to building secure software (e.g., confinement, virtual machines, trusted computing); software analysis (e.g., static analysis and testing, model checking); language-based approaches to building secure software (e.g., type systems, proof-carrying code); and run-time enforcement of security policies (e.g., dynamic taint analysis).
Chad Williams
Term: Fall 2019
Credits: 3