This course covers foundational work and current topics in computer systems security.
We will read research papers and discuss attacks and defenses against operating systems, client-side software, web applications, and IP networks.
It may be done in a group appropriate to the size of your project.
Generally, the projects will involve analyzing the security of a system or implementing a new defense mechanism.
Understand what the law prohibits — you don't want to end up like this guy.
The EFF provides helpful advice on vulnerability reporting and other legal matters. Please review CAEN's policy document on rights and responsibilities for guidelines concerning use of technology resources at U-M, as well as the Engineering Honor Code.The focus is on original, high quality, unpublished research and implementation experiences.We encourage submissions of papers suggesting novel paradigms, original directions, or non-traditional perspectives.Presentations will take place throughout the semester, as indicated on the course schedule.Group Project (50%) — There will be an extended group project over the course of the semester.To defend a system you need to be able to think like an attacker, and that includes understanding techniques that can be used to compromise security.However, using those techniques in the real world may violate the law and the university's computing practices, or may be unethical.Carefully read the Computer Fraud and Abuse Act (CFAA), a federal statute that broadly criminalizes computer intrusions.This is just one of several laws that govern hacking.This is the first time that ACNS is taking place in the United Kingdom.The proceedings of ACNS 2016 will be published as a separate LNCS volume by Springer.