| 
         
          | September |   
          | Week # | Monday | Tuesday | Wednesday | Thursday | Friday |  
          | 1 | 5 | 6 UBC-wide orientation.No classes.
 | 7 | 8 
              Course overview          Introduction to  Computer Security (printible)   | 9 |   
          | 2 | 12 Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228. | 13 Before the class: 
              Watch and prepare to be quizzed on buffer overflow:
                
                  General Introduction  [pptx][pdf][YouTube]Part I - Basic Buffer Overflows [pptx][pdf][YouTube]Part II - Real Buffer Overflows [pptx][pdf][YouTube]Part III - Countermeasures [pptx][pdf][YouTube]Refresh your memory on modular arithmetics, combinatorics, and elementary statistics: Appendix 2.1, 2.2, and 2.3 from Stamp. Prepare to be quizzed. In the class: 
              Quiz #0 on Buffer Overflow and Number TheoryIntroduction to  Computer Security  (printible)   
 | 14 | 15 Assignment #1 (Risk Analysis)due 11:00 AM. Turn in a paper copy in the class.
 Before the class: 
              Get a student account with TopHat and join there CPEN 442 (join code was sent to all registered students).Study Chapter 1 Stamp.Problems from Stamp to try: 1-20. In the class: 
              Top Hat Quiz on the study material for the class.Project presentation from the previous cohort.Introduction to  Computer Security (printible) Read:  
            Q&A on Legal Implications of Real World Security Analysis from UBC leagal.Stamp: Chapter 2 (except 2.3.6 & 2.3.8) Anderson: 5.1-5.3. Problems from Stamp chapter 2 to look at:  3, 7, 9, 13, 18, 19, 20. | 16 |   
          | 3 | 19 Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228.   | 20 Before the class: 
              Study  Legal Implications of Real World Security Analysis.  Study pages 17-31 of Introduction to  Computer Security (printible).Study Cryptography 101: Goals,Basics, Substitution CiphersStudy all micro-modules of ancient cryptography and then study and pracrtice all parts of Ciphers module. In the class: 
              Q&A on Legal Implications of Real World Security Analysis from UBC leagal.Top Hat Quiz on the study material for the class.Introduction to Cryptography (printable) Read:  
              Stamp: Chapter 2 (except 2.3.6 & 2.3.8). Problems from Stamp chapter 2 to look at:  3, 7, 9, 13, 18, 19, 20. Last day to withdraw from the course without W standing. | 21 Instructor office hours, 3-4 PM, KAIS 4047. Check-in with students with last names starting with A, B, C. | 22 Before the class: 
              Study pages 
                4-9, 
                39  of Introduction to Cryptography (printable).Study Playfair cipher:
                  Playfair Cipher video.Pages 18-37 of Introduction to Cryptography (printable).Random Oracle model and its versions for hash functions, block ciphers, and stream ciphers:
                  pages 
                    46-52 of Introduction to Cryptography (printable).Anderson: Sections 5.1-5.3. In the class: 
              Top Hat Quiz on the study material for the class.Discussion of Introduction to Cryptography  (printable). Read:  
            Stamp: Chapter 2 (except 2.3.6 & 2.3.8).  Problems from Stamp chapter 2 to look at:  3, 7, 9, 13, 18, 19, 20.   | 23 |   
          | 4 | 26 Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-F. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228. | 27 Before the class:(most videos are short)
 
              Study introduction to modern cryptography, videos 1, 2, 3.Study introduction into stream ciphers, videos 1, 2, 3, and Stamp Sections 3.1-3.2.Study random number generators video 1.Study A5/1 cipher
                
                  Pages 7-10 of the slides. Video animation of A5/1.Study block ciphers Introduction video.              Study AES
                videos 1 and 2.AES demos.Stamp Section 3.3.4.  Optionally, study videos AES Parts 3-15 from applied crypto playlist. In the class: 
              Top Hat Quiz on the study material for the class.Discussion of the stream and block ciphers. Problems from Stamp chapter 3 to look at: 3.1-3.6, 3.19. | 28   Last day to obtain authorization for third-party system security analysis from the course professor. Assignment #2 (crypto)due 9:00 PM
 | 29 Before the class: 
              Study modes of operation for block ciphers
                
                  Study Stamp Section 3.3.7.Study modes of operations for block ciphers:  ECB & CBC, CBC, CFB, CTR, Study hash functions:
                
                  Study Sampt Sections 5.1-5.5, 5.7, 5.8.Watch HMAC video (from 6m12s to the end). In the class: 
              Top Hat Quiz on the study material for the class.Symmetric Cryptography (printable)             Problems from Stamp  to look at: 3.22-3.29, 3.31-3.34, 3.36-3.40, 3.43, 5.1-5.9, 5.15-5.22             | 30 |    
         
          | October |   
          | Week # | Monday | Tuesday | Wednesday | Thursday | Friday |  
          | 5 | 3   Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-I. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228.   | 4 Before the class: 
              Study Stamp Chapter 4, all sections except 4.3.2, 4.3.3, 4.5. (which are optional). You can complement your reading with video lectures by Stamp himself: 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11. In the class: 
              Top Hat Quiz on the study material for the class.Asymmetric Cryptography(printable)           Problems from Stamp Chapter 4 to look at:  all. | 5 | 6 Before the class: 
              Study Satmp Sections 9.1-9.4, 9.6, 9.7. You can compliment your reading with video lectures by Stamp himself: 9.1-9.2, 9.3, 9.3.1, 9.3.2-9.3.3, 9.3.4-9.3.5, 9.3.6, 9.4, 9.6 (from 9:30).Problems from Stamp Chapter 9 to look at:  1-33.Review DH protocol with this very affordable videos. In the class: 
              Presentation of a sample design project.Top Hat Quiz on the study material for the class.Authentication of Computers and Key Establishment Over Insecure Networks. deadline for an optional meeting with the instructor to discuss term project proposals | 7 Last day to obtain authorization for third-party system security analysis from the UBC IT Security. |  
          | 6 | 10 Thanksgiving Day. University closed.
 
 | 11 Before the class: 
              Study Satmp Sections 10.1-10.3, 10.5-10.8. You can compliment your reading with video lectures by Stamp himself: 10.1-10.2, 10.3, 10.3.1-10.3.3, 10.5-10.5.1, 10.5.2-10.5.3, 10.6.1-10.6.3, 10.6.2-10.6.5, 10.7-10.7.1, 10.7.2-10.7.3, 10.7.4-10.8.Watch WEP vs. WPA explanation.Try problems from Stamp for Chapter 10:  1-10, 13-19, 36-44. In the class: 
              Top Hat Quiz on the study material for the class.SSH, SSL, Kerberos, WEP, GSM   | 12 | 13 Term project proposals presentations     | 14   Last day to withdraw from the course with W standing.   |  
          | Term project proposals due 9:00 PM via e-mail. |   
          | 7 | 17 Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-P. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228.           | 18 In the class: 
              Principles of Designing Secure Systems (printable) Evaluation of your project team members WRT Project Proposal through iPeer due 11:00 PM. | 19
               | 20 Before the class: 
              Study the first 5 principles of designing secure systems (slides 1-29). In the class: 
              Top Hat Quiz on the study material for the class.Principles of Designing Secure Systems (printable)           | 21 Assignment #3 (VPN)due 9:00 PM
 Evaluation of your project team members WRT Assignment #3 through iPeer due 11:00 PM. |  
          | 8 
 | 24 No instructor office hours this week. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228. | 25* Midterm exam on all the material studied so far.
       | 26 | 27* Before the class: 
              Study all sections of Stamp Chapter 7.Look at problems in Chapter 7: 1-40. In the class: 
              Top Hat Quiz on the study material for the class.              Adversary Models (printable) "How to Break Into Application Security World" by Srikanth Ramu, Senior Application Security Engineer, Ping Identity.     | 28 |    
         
          | November |   
          | Week # | Monday | Tuesday | Wednesday | Thursday | Friday |  
          | 9 
 | October 31 Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-V. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228.   | November 1 Before the class: 
              Study Adversary Models (printable)Study "How to Break Into Application Security World"Study Ethics and Computer Security (printable)Study video of "Ethics in Computer Security Research" by Dave Dittrich part 1, part 2.  During the class: 
              Top Hat Quiz on the study material for the class. | 2 Assignment #4 (passwords)due 9:00 PM.
 | 3 Before the class: 
              Study all sections of chapter 8 in Stamp, with extra attention to ACLs and Capabilities, CAPTCHAs, Firewalls, and IDS.To compliment the reading, view vide lectures on Chapter 8 by Stamp himself, starting with the first one.Look at problems in Chapter 8. During the class: 
              Top Hat Quiz on the study material for the class.Discussion of the study material.   | 4 |  
          | 10 | 7 Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-Z. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228. | 8 Before the class: 
              Study chapter 11 in Stamp. Since you have already studied buffer overflow, you can just refresh you memory by looking through Section 11.2.1. Pay particular attention to all other sections.Look at the problems for chapter 11.Complementary, view video lectures on the material of Chapter 11 by Stamp himself, starting here. During the class: 
              Top Hat Quiz on the study material for the class.Discussion of the study material.   | 9 | 10 Prefinal reports of the term projects  are due 10 PM. Before the class: 
              Study top 10 Web Application security vulnerabilities using this video presentation. During the class: 
              Top Hat Quiz on the study material for the class.Discussion of the study material. Evaluation of your project team members WRT  Finalized Introduction, Related Work, and Methodology sections through iPeer due 11:00 PM. | 11 Remembrance Day. University closed. Service in War Memorial Gymnasium for all students, faculty, alumni, staff, and friends at 10:45 am. |   
          | 11 | 14 Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-Z. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228. | 15 Before the class: Study video lectures on the economics of cybersecurity: Part 1: Basics  
            A brief history,Introduction to economics, The economics of information goods,Security from an economic perspective, Part 2: Security Metrics 
            What to measure?Measuring security levels,Metrics in practice,Metrics from incident data, Part 3: Security Investment and Risk Management 
            Information security strategy,Information security investment,Risk management,Operational security management. During the class: 
            Top Hat Quiz on the study material for the class.Discussion of the study material. | 16
           Assignment #5 (WebGoat)due 9:00 PM
 Evaluation of your project team members WRT  Assignment #5 through iPeer due 11:00 PM. | 17 Before the class: Study video lectures on the economics of cybersecurity (continued): Part 4: Market Failures 
            Market failures,case study 1: Information sharing in incident response,case study 2: payment card security,Policy interventions, Part 5: Behavioural research into security & Policy Implications 
            Prospect Theory,Heuristics and social persuasion,Consumer behaviour and deception,Behavioural economics of privacy,Security economics and policy. During the class: 
            Top Hat Quiz on the study material for the class.Discussion of the study material. | 18 |  
          | 12 | 21 Instructor office hours, 4-5 PM, KAIS 4047. Check-in with students with last names starting with A-Z. Lab, TA office hours, Project Group Meetings, 6:30-20:30 PM, MCLD 228. | 22 Before the class: Study video lectures on usable security: 
              Lecture 1: Introduction.Lecture 2: Design (optional).Lecture 3: Evaluating suable security design (optional).Lecture 4: Guidelines for Secure Interaction Design.Lecture 5: Usable Authentication.TED Talk "What's wrong with your pa$$w0rd?" During the class: 
              End-of-the-term Anonymous evaluation of the course.Top Hat Quiz on the study material for the class and last lecture.Discussion of the study material. 
 | 23 | 24 
              Top Hat Quiz on the study material for the class and last lecture.Tutorial on Making Oral Technical Presentations by Dr. Tatiana TeslenkoHow to make your project video clip. | 25 |    |