Schedule #
This is the schedule for Example Lecture. For another detailed overview of topics see the syllabi page.
Deadlines
- Assignments (~ every 2 weeks): A01 A02 A03
- Paper readings (~ every 2 weeks): P01
- Final exam: Final (Sat, Aug 26 - 11:59pm , in
Week 1 - First Week #
Monday, 2024-08-19 - Friday, 2024-08-23
Base lecture:
- 🗎 BD Payne, WK Edwards, A Brief Introduction to Usable Security, IEEE Internet Computing, 2008.
With recorded="true"
shortcode parameter:
Deadlines: Sun, Jul 21 - 1:59pm (Raleigh time) via Gradescope:
Week 2 #
Monday, 2024-08-26 - Friday, 2024-08-30
With short = "Guest Lecture:"
in the toml:
- 🗎 S Keshav, How to read a paper, ACM SIGCOMM CCR, 2007.
- 🗎 T Kohno, Y Acar, W Loh, Ethical Frameworks and Computer Security Trolley Problems: Foundations for Conversations, USENIX Security, 2023.
With label = "xyz"
in the toml (note the different lecture label in the card header):
Deadlines: Sat, Jan 26 - 11:59pm (Raleigh time) via Gradescope:
Week 3 #
Monday, 2024-09-02 - Friday, 2024-09-06
With time = "XYZ pm"
as shortcode parameter (note different lecture time in header):
- 🗎 Acar et al., Comparing the Usability of Cryptographic APIs, IEEE S&P, 2017.
Week 4 - Red & White Week #
Monday, 2024-09-09 - Friday, 2024-09-13
Deadline: Sat, Aug 26 - 11:59pm (Raleigh time) via Gradescope:
Week 5 #
Monday, 2024-09-16 - Friday, 2024-09-20
Week 6 #
Monday, 2024-09-23 - Friday, 2024-09-27
Deadline: Sat, Aug 26 - 11:59pm (Raleigh time) via Gradescope:
[… Time jump …]
Week 15 - Thanksgiving #
Monday, 2024-11-25 - Friday, 2024-11-29
Week 16 - Final Week #
Monday, 2024-12-02 - Friday, 2024-12-06
- 🌐 White House, President's Executive Order 14028, 2021.
- 🗎 Ladisa et al., SoK: Taxonomy of Attacks on Open-Source Software Supply Chains, IEEE S&P, 2023.
- 🗎 Neupane et al., Beyond Typosquatting: An In-Depth Look at Package Confusion, USENIX Security, 2023.
- 🌐 Checkmarx, Surprise: When Dependabot Contributes Malicious Code , 2023.
- 🗎 Wermke et al., Committed to Trust: A Qualitative Study on Security & Trust in Open Source Software Projects, IEEE S&P, 2022.
- 🗎 Fourné et al., It's like flossing your teeth: On the Importance and Challenges of Reproducible Builds for Software Supply Chain Security, IEEE S&P, 2023.
- 🗎 Wermke et al., "Always Contribute Back": A Qualitative Study on Security Challenges of the Open Source Supply Chain, IEEE S&P, 2023.
- 🌐 Open Source Security Foundation
- 🎧 Open Source Security Podcast, Episode 421 - CISA’s new SSDF attestation form, Mar 24, 2024.
- 🎧 Changelog, Ship It #94 - Scoring your project's security, Mar 9, 2024.
- 🌐 OpenSSF's SLSA
- 🌐 OpenSSF's ScoreCards
- 🌐 OpenSSF's Sigstore
- 🌐 SCORED Workshop
Final Exam (7:00pm – 9:30pm) #
- In-person, ~60min
- More info:
Week 17 #
Monday, 2024-12-09 - Friday, 2024-12-13