Spring 2020

Links to notes etc. on future days are copies of materials from 2019 to give you an idea of what the future will bring. We will update the notes as the course progresses. If you are particularly interested in some topic not covered here, send mail to the course staff.

The year of publication for class readings are shown in parentheses.

The lecture notes may help you remember the lecture content, but they are not a replacement for attending lectures.

MondayTuesday WednesdayThursday Friday
feb 3
LEC 1 (nz): Introduction, threat models (2020 video)
Assigned: Lab 1: Buffer overflows
First day of classes
feb 4 feb 5
LEC 2 (nz): Security architecture (2020 video)
Preparation: Read Google Infrastructure Security (2017) and optionally other details (2018) (Question)
feb 6 feb 7
DUE: Lab 1 part 1
feb 10
LEC 3 (fk): User authentication (2020 video)
Preparation: Read Your password doesn't matter (2019) and U2F (2017) (Question)
feb 11 feb 12
LEC 4 (fk): Buffer overflow defenses (2020 video)
Preparation: Read Baggy bounds checking (2009) + errata (Question)
feb 13 feb 14
DUE: Lab 1 part 2
feb 17
Presidents day
feb 18
LEC 5 (fk): Privilege separation (2020 video)
Preparation: Read OKWS (2004) but skip section 7 (Question)
Monday schedule
feb 19
REC 1 (rayden): Linux Containers (2020 video)
Preparation: Read Chroot (1979), LXC, and iptables
Assigned: Lab 2: Privilege separation
feb 20 feb 21
DUE: Lab 1 all parts
feb 24
LEC 6 (fk): Software fault isolation (2020 video)
Preparation: Read Native Client (2009) (Question)
feb 25 feb 26
LEC 7 (nz): Enclaves (2020 video)
Preparation: Read Komodo (2017) (Question)
feb 27 feb 28
DUE: Lab 2 part 1
mar 2
LEC 8 (fk): Client device security (2020 video)
Preparation: Read iOS Security (2019), pages 1-28 (Question)
mar 3 mar 4
LEC 9 (nz): Android security (2020 video)
Preparation: Read Android Platform Security Model (2019) (Question)
mar 5 mar 6
DUE: Lab 2 parts 2+3
ADD DATE
mar 9
LEC 10 (fk): Symbolic execution (2020 video)
Preparation: Read EXE: Automatically generating inputs of death (2006) (Question)
mar 10 mar 11
LEC 11 (nz): Web security model (2020 video)
Preparation: Read The Tangled Web (2012), Chapters 9-11 and optionally modern web security (2018) (Question)
Assigned: Lab 3: Symbolic execution
Assigned: Lab 5: Final project
mar 12 mar 13
mar 16
Classes cancelled
mar 17
Classes cancelled
mar 18
Classes cancelled
mar 19
Classes cancelled
mar 20
Classes cancelled
mar 23
Spring vacation
mar 24
Spring vacation
mar 25
Spring vacation
mar 26
Spring vacation
mar 27
Spring vacation
mar 30
Quiz 1: Covers lectures 1-11 and labs 1-2
Reference: Past quizzes, solutions
Materials: Open laptop
Time and Location: 1-2:30p, remote details TBD
mar 31 apr 1
LEC 12 (fk): Network security (2020 video, boards)
Preparation: Read Security Problems in TCP/IP (2004) (Question)
apr 2 apr 3
DUE: Lab 2 all parts
DUE: Final project proposal (if you are not doing the default project)
apr 6
LEC 13 (fk): Secure channels (2020 video, boards, handshake)
Preparation: Read Analysis of SSL 3.0 (1996) (Question)
apr 7 apr 8
LEC 14 (nz): Certificates (2020 video)
Preparation: Read SSL and HTTPS (2013) (Question)
apr 9 apr 10
DUE: Lab 3 part 1
apr 13
LEC 15 (guest): Max Burkhardt from Airbnb (Sneaking in network security)
apr 14 apr 15
LEC 16 (nz): Messaging security
Preparation: Read Secure messaging (2015) (or extended version) (Question)
Assigned: Lab 4: Browser security
apr 16 apr 17
DUE: Lab 3 all parts
apr 20
Patriots day
apr 21
DROP DATE
apr 22
LEC 17 (nz): Authenticated data structures
Preparation: Read SUNDR (2004) (Question)
apr 23 apr 24
DUE: Lab 4 parts 1+2
apr 27
LEC 18 (fk): CPU timing attacks (2014 video)
Preparation: Read Spectre (2018) (Question)
apr 28 apr 29
LEC 19 (guest): Nick Mathewson, Anonymous communication (2014 video)
Preparation: Read Tor (2004) and blog posts 1, 2, and 3 (2012) (Question)
apr 30 may 1
DUE: Lab 4 all parts
may 4
LEC 20 (guest): Mark Silis and Jessica Murray; MIT IS&T (2014 video)
may 5 may 6
LEC 21 (guest): Max Krohn, Keybase
Preparation: Read Keybase
may 7 may 8
DUE: Lab 5 parts 0+1, or final project writeup and code
may 11
LEC 22 (nz): Hardware wallets
Preparation: Read Notary (2019) (Question)
may 12
Last day of classes
may 13 may 14 may 15
may 18 may 19 may 20
Final exam: Emphasis on lectures 11-22 and labs 3-4
Reference: Past quizzes, solutions
Materials: Open laptop
Time and Location: remote details TBD
may 21 may 22

Questions or comments regarding 6.858? Send e-mail to the course staff at 6858-staff@lists.csail.mit.edu.

Top // 6.858 home // Last updated Wednesday, 08-Apr-2020 14:51:32 EDT