Software Security Lecture 10 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.

Slides:



Advertisements
Similar presentations
Slide 01-1COMP 7370, Auburn University COMP 7370 Advanced Computer and Network Security Dr. Xiao Qin Auburn University
Advertisements

PAF 101 “Begin with the End in Mind” Module 1, Lecture 4
Software Security Lecture 4 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 11 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Class 1 Background, Tools, and Trust CIS 755: Advanced Computer Security Spring 2015 Eugene Vasserman
Software Security Lecture 9 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
CIS101 Introduction to Computing Week 11 Spring 2004.
Software Security Lecture 12 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 8 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Software Security Lecture 0 Fang Yu Dept. of MIS National Chengchi University Spring 2011.
Software Security Lecture 6 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Department of Informatics, UC Irvine SDCL Collaboration Laboratory Software Design and sdcl.ics.uci.edu 1 Informatics 121 Software Design I Lecture 2 Duplication.
Software Security Lecture 5 Fang Yu Dept. of MIS, National Chengchi University Spring 2011.
Mathematics 2 The Eighth and Ninth lectures Seventh week / 5/ 1436 هـ أ / سمر السلمي.
CA446 SMT Project Assessment. Timescale Today: end of Week 8 Demo & Presentation: Week 11 or 12 (NB, Easter Monday Week 12) Propose to teach next Week.
Engineering H193 - Team Project Gateway Engineering Education Coalition Spring Quarter 2006 P. 1 Today and the Week Ahead Week 3 Day 1.
COMS W1004 Introduction to Computer Science June 25, 2008.
Lec 3: April 4th, 2006EE512 - Graphical Models - J. BilmesPage 1 Jeff A. Bilmes University of Washington Department of Electrical Engineering EE512 Spring,
CSE 305 Introduction to Programming Languages
Overview of Financial Management  Introduction  Keys to Success  Recitations  Class Structure - Syllabus  Text – 2nd Preliminary Draft of Fin. Mgmt.
ENEE 408C Lab Capstone Project: Digital System Design Spring 2006 Class Web Site:
CSE 322: Software Reliability Engineering Topics covered: Course outline and schedule Introduction, Motivation and Basic Concepts.
Component-Based Software Engineering Dr R Bahsoon 1 Announcement 1: Presentations Component-Based Software Dr. Rami Bahsoon School of Computer Science.
3/30/15Oregon State University PH 106, Lecture #11 Physics 106 Chris Coffin Wngr 283
CSE 116 Introduction to Computer Science For Majors II Carl Alphonce 219 Bell Hall.
CSIS-116: Survey of Information Technology Dr. Eric Breimer.
CSCE 211: Digital Logic Design
Jan. 25, 2001CSci Clark University1 CSci 250 Software Design & Development Lecture #4 Thursday, Jan. 25, 2001.
SE 204, IES 506 – Human Computer Interaction Lecture 1: Introduction Lecturer: Gazihan Alankuş Please look at the last two slides for assignments (marked.
CSE 436 Software Engineering Workshop Course Overview Christopher Gill CSE 436 January 2007 Department of Computer Science and Engineering.
Network Security CS nd Term Course Syllabus Cairo University Faculty of Computers and Information.
Network Simulation and Testing Polly Huang EE NTU
 SSR: Remember AR  Nuts and bolts (assignment, rubric, calendar)  Group share articles, select working topic for PSA, hand in each member’s assignment.
Updated Today's talk should help you to understand better  what your responsibilities for this module  how you will be taught  how you.
Dr. Gina Green Intro to Information Technology & Processing.
Week 1 c0209 Software Engineering Course Practice Project Course Overview Software Institute, Nanjing University, Spring 2007 c0209.
Engineering Secure Software. Vulnerability of the Day  Each day, we will cover a different type of code-level vulnerability Usually a demo How to avoid,
INF 212 ANALYSIS OF PROG. LANGS LECTURE 1 Instructors: Crista Lopes Copyright © Instructors.
CEN 4010 First Lecture January 9, 2006 CEN 4010 Introduction to Software Engineering Spring 2006 Instructor: Masoud Sadjadi
Network Simulation and Testing Polly Huang EE NTU
Web Logic Vulnerability By Eric Jizba and Yan Chen With slides from Fangqi Sun and Giancarlo Pellegrino.
CSCE 496/896 Self-Managing Computer Systems Ying Lu 106 Schorr Center
Object Oriented Programming (FIT-II) J. H. Wang Feb. 20, 2009.
Cross Site Scripting and its Issues By Odion Oisamoje.
1 IELTS Listening & Speaking Fall 2012 Meet twice a week (106FB meet W,F. 108AC meet Th,M.) Website:
Workshop in compile-time techniques for detecting Javascript exploits Shir Landau-Feibish, Shmulik Regev, Noam Rinetzky
CEN First Lecture CEN 4010 Introduction to Software Engineering Instructor: Masoud Sadjadi
DAY 4: EXCEL CHAPTER 1 Sravanthi Lakkimsetty Aug 26,2015.
GIS 1 GIS Tutorial, Third Edition PPD 631 – GIS for PPD Welcome! Bonnie Shrewsbury and Barry Waite - Instructors.
CPS 49S Google: The Computer Science Within and its Impact on Society Shivnath Babu Spring 2008.
EECS 354: Network Security Group Members: Patrick Wong Eric Chan Shira Schneidman Web Attacks Project: Detecting XSS and SQL Injection Vulnerabilities.
Course Information CSE 2031 Fall Instructor U. T. Nguyen /new-yen/ Office: CSEB Office hours:  Tuesday,
CSCE 990 Advanced Distributed Systems Seminar Ying Lu 104 Schorr Center
Prof. James A. Landay University of Washington Winter 2009 Introduction & Course Overview CSE 441 – Advanced HCI January 6, 2009.
1 IELTS Listening & Speaking Fall 2012 Meet twice a week (106FB meet W,F. 108AC meet Th,M.) Website:
Web Design Monday, February 11 Bell Work ◦ Explain what functionality is Essential Question ◦ How can I tell if a site has good design or poor design?
Course Information CSE 2031 Fall Instructor U.T. Nguyen Office: CSE Home page:
Course Overview Stephen M. Thebaut, Ph.D. University of Florida Software Engineering.
Mathematics 2 The ninth and tenth Lectures
FALL 2017 Dr. Senanu Spring-Pearson
Engineering Secure Software
Script for First Meeting
Course Information EECS 2031 Fall 2016.
How to succeed in my course, part 1
How to succeed in my course, part 1
CS 250, Discrete Structures, Fall 2014 Nitesh Saxena
Engineering Secure Software
Homework #1 Business six drivers.
Chapter 1 Chemistry in Our Lives
CS Problem Solving and Object Oriented Programming Spring 2019
Presentation transcript:

Software Security Lecture 10 Fang Yu Dept. of MIS, National Chengchi University Spring 2011

Announcement  Project meeting with your professor:  One hour meeting with me at my office (Health Center 4F)  All the team members need to attend  Please prepare slides to present your ideas  I will give you my feedback on your proposal  Available slots:  This Friday 8:00~4:00

Project teams (Schedule)  Anthony Cimo, Alexis Kirat, Kuan-Ming Chen and I-Yang Dong (Friday, 8:00-9:00)  Juilette Maxime Lessing, Hsing Huang and Chen-Yi Yang  Jorina van Malsen, Eric Huang and Ruei- Chen Dai (Friday, 3:00-4:00)  Adam Fremd, Vincent Liou and Ruei-Jiun Liang (Monday, 8:00-9:00)

Outline  Today, we will have Chen Yi presenting the last book chapter: Detect Vulnerabilities in Source Code (Chapter 18)  We will also have two paper presentations:  Kuan-Ming leads the discussion: Detection and Analysis of Drive-by-Download Attacks and Malicious JavaScript Code. (Security You can find the tool Wepawet here.  Eric leads the discussion on: Toward Automated Detection of Logic Vulnerabilities in Web Applications. (Security

Next Week  We will videotape the class  I will present my paper “Patching Vulnerabilities with Sanitization Synthesis”  I will also introduce to you our tool “Stranger”  We will also have two paper discussions: (1) Static Detection of Security Vulnerabilities in Scripting Languages (by Alex) and (2) Static Detection of Cross-site Scripting Vulnerabilities (by Juliette Lessing)