188.988 Language-based Security
This course is in all assigned curricula part of the STEOP.
This course is in at least 1 assigned curriculum part of the STEOP.

2016S, VU, 2.0h, 3.0EC

Properties

  • Semester hours: 2.0
  • Credits: 3.0
  • Type: VU Lecture and Exercise

Aim of course

This lecture deals with theoretical and practical foundations of language-based security. We will
study the anatomy of attacks as well as a variety of defenses, which we will study and
discuss. Relevant aspects of some of the presented techniques will be practiced in the corresponding
exams.

Subject of course

  • run time organization of programs
  • code injection attacks and defenses
  • buffer overflows und stack canaries
  • ontrol-flow hijacking und control-flow integrity
  • code re-use attacks and defenses
  • return-oriented programming und software diversity
  • non-control data attacks und data-flow integrity and data randomization
  • recent results
  • theoretical security of control-flow integrity
  • trends in software diversity

Additional information

  • Vorlesungsbesuch (incl. Vor- und Nachbereitung): 35h
  • Uebungsaufgaben: 30h
  • Pruefungsvorbereitung und muendliche Pruefung: 10h

Lecturers

  • Brunthaler, Stefan

Institute

Course dates

DayTimeDateLocationDescription
Wed14:00 - 15:3002.03.2016 D - Freihaus, FH Hörsaal 1Intro
Thu17:00 - 19:0010.03.2016 - 09.06.2016Seminarraum 366-MST Lecture
Language-based Security - Single appointments
DayDateTimeLocationDescription
Wed02.03.201614:00 - 15:30 D - Freihaus, FH Hörsaal 1Intro
Thu10.03.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu17.03.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu07.04.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu14.04.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu21.04.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu28.04.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu12.05.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu19.05.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu02.06.201617:00 - 19:00Seminarraum 366-MST Lecture
Thu09.06.201617:00 - 19:00Seminarraum 366-MST Lecture

Examination modalities

Beurteilung von Beispielen und mündliche Prüfung.

Course registration

Begin End Deregistration end
01.03.2016 00:01 01.04.2016 23:45 31.03.2016 23:45

Curricula

Study CodeObligationSemesterPrecon.Info
066 937 Software Engineering & Internet Computing Mandatory elective

Literature

No lecture notes are available.

Preceding courses

Continuative courses

Language

if required in English