Also, you can always send email to cs.kent.edu with questions and/or to set up an appointment. Usual turnaround will be a few hours during the day. Email use is to be preferred over voicemail, which will not be checked as often.
Additional bibliography:
http://en.wikipedia.org/wiki/List_of_tools_for_static_code_analysis.
Read the text and bibliography. Only general reading assignments will be given. The tests will be take home. This means that I expect you to do some research in order to answer the questions.
The class will mostly cover material in the same order as the text book, there may be exceptions however. It is the student's responsibility to maintain an awareness of the material in the text that is currently being covered. Ask the instructor if you are unsure of the material currently being covered.
The syllabus may be changed during the semester if necesary: changes will be announced in class; they might also show up on the instructor's website.
Week | Dates | Material |
1 | Aug 25, 27 | Introductory material: why secure coding? Static Analysis |
2 | Sep 3 | (Sep 1 is Labour Day) Installing and using cppcheck |
3 | Sep 8, 10 | Strings, manipulation errors, vlunerabilities and exploits |
4 | Sep 15, 17 | Mitigation strategies; string handling functions, |
Runtime protection strategies, some vulnerabilities. | ||
5 | Sep 22, 24 | Subverting Pointers. Memory management and MM problems |
6 | Sep 29, Oct 2 | (cont) MM problems; mitigation. Integer mismanagement |
7 | Oct 7, 9 | Continue Integer problems, vulnerabilities, mitigation |
8 | Oct 14, 16 | Formatted Output problems, mitigation. |
9 | Oct 21, 23 | Concurrency problems. |
10 | Oct 28, 30 | File I/O problems. |
11 | Nov 4, 6 | More on File I/O, some recommended practices |
12 | Nov 13 | (Nov 11 is Veteran's Day) Continue recommended Practices |
13 | Nov 18, 20 | Remaining time reserved for slack, selected topics, review |
14 | Nov 25 | Nov 27 starts the Thanksgiving Recess |
15 | Dec 2, 4 | |
Dec 9 to 13 | Finals Week |
Class Participation | 10% |
Midterm (Due Wednesday October 16 at 10 PM) | 20% |
Final (Due Friday Dec 13 at 12:30 PM) | 30% |
Programming Assignments | 40% |
Please note that the final will be comprehensive and is due in the early afternoon of the Friday of Finals week..
97-100 | will convert into an A |
94-96 | will convert into at least an A- |
91-93 | will convert into at least a B+ |
88-90 | will convert into at least a B |
85-87 | will convert into at least a B- |
82-84 | will convert into at least a C+ |
79-81 | will convert into at least a C |
76-78 | will convert into at least a C- |
73-75 | will convert into at least a D+ |
66-72 | will convert into at least a D |
The course withdrawal deadline is November 3 2013.