Work in Progress: Note that this website is for an upcoming course and features including but not limited to assignments, dates and times, or session topics and order are generally subject to change.

Schedule #

This is the schedule for Example Lecture. For another detailed overview of topics see the syllabi page.

Deadlines

Assignments (~ every 2 weeks): A01 A02 A03
Paper readings (~ every 2 weeks): P01
Final exam: Final (Sat, Aug 26 - 11:59pm , in )

Week 1 - First Week #

Monday, 2024-08-19 - Friday, 2024-08-23

Mon - Aug 19, 2024| First day of classes

Base lecture:

Mon - Aug 19, 2024 - #lec-intro

6:00pm-7:15pm

Lecture 1: Course Introduction

Included in recording of Lec00

Slides, Recording

Mentioned Resources:

🌐 ACM SIGSOFT Empirical Standards for Software Engineering

Additional Material:

🗎 BD Payne, WK Edwards, A Brief Introduction to Usable Security, IEEE Internet Computing, 2008.

With recorded="true" shortcode parameter:

Wed - Aug 21, 2024 - #lec-hcs

Pre-recorded

Lecture 2: Human-Centered Security (Pre-recorded)

📹 Pre-recorded lecture, no in-person class.

Slides, Recording

Additional Material:

🕮 L Cranor, S Garfinkel, Security and Usability: Designing Secure Systems that People Can Use, O'Reilly Media, 2005.

Fri - Aug 23, 2024

11:59pm

Deadlines: Sun, Jul 21 - 1:59pm (Raleigh time) via Gradescope:

Week 2 #

Monday, 2024-08-26 - Friday, 2024-08-30

With short = "Guest Lecture:" in the toml:

Mon - Aug 26, 2024 - #lec-foundations

6:00pm-7:15pm

Guest Lecture: Foundations

Slides, Recording

Mentioned Resources:

🗎 S Keshav, How to read a paper, ACM SIGCOMM CCR, 2007.
🗎 T Kohno, Y Acar, W Loh, Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversations, USENIX Security, 2023.

With label = "xyz" in the toml (note the different lecture label in the card header):

Wed - Aug 28, 2024 - #xyz

6:00pm-7:15pm

Lecture 4: Ethical Considerations

Slides, Recording

Mentioned Resources:

🌐 NC State IRB Website

Fri - Aug 30, 2024

11:59pm

Deadlines: Sat, Jan 26 - 11:59pm (Raleigh time) via Gradescope:

Assignment 02 #A02

Week 3 #

Monday, 2024-09-02 - Friday, 2024-09-06

Mon - Sep 02, 2024| Labor Day - No Classes, University Closed

With time = "XYZ pm" as shortcode parameter (note different lecture time in header):

Wed - Sep 04, 2024 - #lec-exp1

XYZ pm

Lecture 5: Experiment Design 1

Slides, Recording

Additional Material:

🗎 Acar et al., Comparing the Usability of Cryptographic APIs, IEEE S&P, 2017.

Week 4 - Red & White Week #

Monday, 2024-09-09 - Friday, 2024-09-13

Mon - Sep 09, 2024 - #lec-exp2

6:00pm-7:15pm

Lecture 6: Experiment Design 2

Slides, Recording

Mentioned Resources:

🌐 ACM SIGSOFT Empirical Standards for Software Engineering

Wed - Sep 11, 2024 - #lec-pop

6:00pm-7:15pm

Lecture 7: Populations & Sampling

Slides, Recording

Fri - Sep 13, 2024

11:59pm

Deadline: Sat, Aug 26 - 11:59pm (Raleigh time) via Gradescope:

Assignment 03 #A03

Week 5 #

Monday, 2024-09-16 - Friday, 2024-09-20

Mon - Sep 16, 2024| No Class, enjoy Wellness Day

Tue - Sep 17, 2024| Wellness Day - No Classes

Wed - Sep 18, 2024 - #lec-data

6:00pm-7:15pm

Lecture 8: Data Collection

Slides, Recording

Week 6 #

Monday, 2024-09-23 - Friday, 2024-09-27

Fri - Sep 27, 2024

11:59pm

Deadline: Sat, Aug 26 - 11:59pm (Raleigh time) via Gradescope:

Assignment 03 #A03

[… Time jump …]

Week 15 - Thanksgiving #

Monday, 2024-11-25 - Friday, 2024-11-29

Mon - Nov 25, 2024 - #lec-qual

6:00pm-7:15pm

Lecture 9: Qualitative Data

Slides, Recording

Wed - Nov 27, 2024| Thanksgiving Break - No Classes

Thu - Nov 28, 2024| Thanksgiving Holiday - No Classes, University Closed

Fri - Nov 29, 2024| Thanksgiving Holiday - No Classes, University Closed

Week 16 - Final Week #

Monday, 2024-12-02 - Friday, 2024-12-06

Mon - Dec 02, 2024 - #lec-ssc

6:00pm-7:15pm

Lecture 10: Software Suppy Chain Security

Slides, Recording

Mentioned Resources:

🌐 White House, President's Executive Order 14028, 2021.
🗎 Ladisa et al., SoK: Taxonomy of Attacks on Open-Source Software Supply Chains, IEEE S&P, 2023.
🗎 Neupane et al., Beyond Typosquatting: An In-Depth Look at Package Confusion, USENIX Security, 2023.
🌐 Checkmarx, Surprise: When Dependabot Contributes Malicious Code , 2023.
🗎 Wermke et al., Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects, IEEE S&P, 2022.
🗎 Fourné et al., It's like flossing your teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security, IEEE S&P, 2023.
🗎 Wermke et al., "Always Contribute Back": A Qualitative Study on Security Challenges of the Open Source Supply Chain, IEEE S&P, 2023.
🌐 Open Source Security Foundation

Additional Material:

🎧 Open Source Security Podcast, Episode 421 - CISA’s new SSDF attestation form, Mar 24, 2024.
🎧 Changelog, Ship It #94 - Scoring your project's security, Mar 9, 2024.
🌐 OpenSSF's SLSA
🌐 OpenSSF's ScoreCards
🌐 OpenSSF's Sigstore
🌐 SCORED Workshop

Tue - Dec 03, 2024| Last day of classes

Wed - Dec 04, 2024| Reading Day

Fri - Dec 13, 2024

7:00pm

Final Exam (7:00pm – 9:30pm) #

In-person, ~60min
More info:

Week 17 #

Monday, 2024-12-09 - Friday, 2024-12-13

Sat - Dec 14, 2024| Fall Commencement Exercises

CSC XXX

This Site

Quick Links

Schedule #

Week 1 - First Week #

Week 2 #

Week 3 #

Week 4 - Red & White Week #

Week 5 #

Week 6 #

Week 15 - Thanksgiving #

Week 16 - Final Week #

Final Exam (7:00pm – 9:30pm) #

Week 17 #